$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft File: 5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft (raw, json) Hash identifier: tx3CF27IAsEs2GBA+kVAklwvyWb7VfiIoj/eJ5AQu0Y= Subject key identifier: 01:19:78:DB:D6:C2:FB:76:FB:D6:F3:38:35:2E:9E:E1:D2:D2:2C:5F Authority key identifier: E4:D6:2D:31:29:7F:17:E4:9C:42:FA:7A:7B:66:23:62:4A:D9:41:75 Certificate issuer: /CN=A91B9B0D/serialNumber=E4D62D31297F17E49C42FA7A7B6623624AD94175 Certificate serial: 0633 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NYtMSl_F-ScQvp6e2YjYkrZQXU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft Manifest number: 062E Signing time: Fri 28 Mar 2025 22:55:33 +0000 Manifest this update: Fri 28 Mar 2025 22:55:32 +0000 Manifest next update: Fri 04 Apr 2025 22:55:32 +0000 Files and hashes: 1: 5NYtMSl_F-ScQvp6e2YjYkrZQXU.crl (hash: /TSc+dLl65jPudclaTDDSwFf7yURtmBhLQCFLdM0KU8=) 2: 3F9CDA68179911EDB9008D18C4F9AE02.roa (hash: uQ87OwRIbPff2rIgxwDqjjJe9H/t71HNB3Wpu5Q8ifI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.crl rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NYtMSl_F-ScQvp6e2YjYkrZQXU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 22:55:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1587 (0x633) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9B0D Validity Not Before: Mar 28 22:55:32 2025 GMT Not After : Apr 4 22:55:32 2025 GMT Subject: CN=67e728e4-c0e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:70:2e:dc:40:14:d3:87:ce:84:6d:a8:2f:b6: 56:ce:4f:ad:64:d8:45:6f:c4:45:e5:49:ea:d7:e3: 57:08:c2:31:40:1e:33:d2:e7:32:bb:89:50:40:3c: 67:e8:d2:8e:d9:d9:fe:f3:20:91:1b:8b:3e:8a:19: 2e:17:32:bc:8a:a7:f8:7d:88:64:dc:4e:49:72:08: 61:ba:8a:f4:01:2f:0e:54:cf:d2:86:b1:30:55:2e: 95:2a:a3:5b:22:b5:dd:26:b6:64:1c:34:da:2a:d6: ca:3d:a1:c7:87:17:d7:3d:f1:b1:eb:b9:e2:2f:c6: 62:3b:a4:df:40:fa:52:3f:23:9e:08:94:f8:73:64: 85:39:79:6d:6c:ac:0f:ad:f1:e6:34:8d:45:1a:88: 02:b9:38:ba:77:63:ed:96:ed:ca:6f:ba:fa:c8:de: 70:80:06:c6:89:85:02:27:d3:97:36:f1:ad:14:07: a6:07:c9:6e:c9:88:52:85:50:5c:56:a0:bc:a8:df: d9:0e:13:30:9e:7b:ad:02:6a:d3:21:0c:d4:5d:56: ba:e7:b5:f6:a0:41:a3:a9:8d:45:6e:82:f9:ec:99: fb:32:86:34:8b:83:c3:d1:da:03:09:a7:d7:52:0c: 45:64:90:b3:61:88:e5:1d:8b:e5:a2:5d:55:5a:79: 60:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:19:78:DB:D6:C2:FB:76:FB:D6:F3:38:35:2E:9E:E1:D2:D2:2C:5F X509v3 Authority Key Identifier: keyid:E4:D6:2D:31:29:7F:17:E4:9C:42:FA:7A:7B:66:23:62:4A:D9:41:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NYtMSl_F-ScQvp6e2YjYkrZQXU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:8f:62:18:2c:ca:4f:38:b1:7b:3c:14:f9:5a:a8:06:a5:be: 3a:4a:3f:55:cf:5b:23:db:2b:7f:8e:aa:ac:05:98:c7:a5:69: d7:5f:2f:3a:8a:ca:85:45:77:1a:93:fe:4e:04:7b:47:29:eb: 3b:d1:3e:c1:b4:41:43:f1:c2:57:e8:e1:c4:3f:01:47:68:6b: 62:0e:f6:dc:d9:95:8c:15:eb:c5:68:ec:1f:33:d5:c3:f4:2b: 7e:e2:cf:07:05:74:70:e4:bd:d3:1c:d7:50:05:d4:dd:f0:91: 07:c6:3a:14:74:d9:dd:6f:2d:18:7b:37:dc:63:d5:a9:18:9d: d7:95:5f:b8:0c:65:4f:fd:7d:c3:9e:f1:bf:2f:21:9f:19:e9: 8d:6c:d6:f5:f1:33:5a:76:8f:bc:49:fa:53:f4:3e:fb:37:37: 29:78:be:ee:21:49:aa:c8:0d:78:c5:4d:4e:ce:bc:9c:4f:9c: e9:2c:19:4c:95:2c:77:2f:47:61:d8:0e:03:b5:75:e4:7a:5a: c8:3f:21:ce:ad:d0:96:81:eb:ab:07:e5:33:d6:2a:87:29:e7: bd:23:66:7c:00:cd:58:33:b8:0b:0d:eb:8b:bd:86:c4:dc:68: 42:b2:4e:1d:71:1b:0a:ee:05:03:2e:03:2e:78:94:dd:e8:95: 02:51:32:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBjMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlCMEQxMTAvBgNVBAUTKEU0RDYyRDMxMjk3RjE3RTQ5QzQyRkE3QTdCNjYyMzYy NEFEOTQxNzUwHhcNMjUwMzI4MjI1NTMyWhcNMjUwNDA0MjI1NTMyWjAYMRYwFAYD VQQDEw02N2U3MjhlNC1jMGUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5nAu3EAU04fOhG2oL7ZWzk+tZNhFb8RF5Unq1+NXCMIxQB4z0ucyu4lQQDxn 6NKO2dn+8yCRG4s+ihkuFzK8iqf4fYhk3E5Jcghhuor0AS8OVM/ShrEwVS6VKqNb IrXdJrZkHDTaKtbKPaHHhxfXPfGx67niL8ZiO6TfQPpSPyOeCJT4c2SFOXltbKwP rfHmNI1FGogCuTi6d2Ptlu3Kb7r6yN5wgAbGiYUCJ9OXNvGtFAemB8luyYhShVBc VqC8qN/ZDhMwnnutAmrTIQzUXVa657X2oEGjqY1FboL57Jn7MoY0i4PD0doDCafX UgxFZJCzYYjlHYvlol1VWnlgeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAEZeNvW wvt2+9bzODUunuHS0ixfMB8GA1UdIwQYMBaAFOTWLTEpfxfknEL6entmI2JK2UF1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUIwRC9BMjhFQ0JDMDhB QjYxMUVCODIzN0Q0MTRDNEY5QUUwMi81Tll0TVNsX0YtU2NRdnA2ZTJZallrclpR WFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVOWXRNU2xfRi1TY1F2cDZlMllqWWtyWlFYVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUIwRC9BMjhFQ0JDMDhBQjYxMUVCODIzN0Q0MTRDNEY5QUUwMi81Tll0TVNsX0Yt U2NRdnA2ZTJZallrclpRWFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFj2IYLMpPOLF7PBT5WqgGpb46Sj9Vz1sj2yt/jqqsBZjHpWnXXy86 isqFRXcak/5OBHtHKes70T7BtEFD8cJX6OHEPwFHaGtiDvbc2ZWMFevFaOwfM9XD 9Ct+4s8HBXRw5L3THNdQBdTd8JEHxjoUdNndby0YezfcY9WpGJ3XlV+4DGVP/X3D nvG/LyGfGemNbNb18TNado+8SfpT9D77NzcpeL7uIUmqyA14xU1OzrycT5zpLBlM lSx3L0dh2A4DtXXkelrIPyHOrdCWgeurB+Uz1iqHKee9I2Z8AM1YM7gLDeuLvYbE 3GhCsk4dcRsK7gUDLgMueJTd6JUCUTJF -----END CERTIFICATE-----Generated at Fri Apr 4 21:32:17 2025 by rpki-client