$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3174/B131F89CEECD11EC8CF4471EC4F9AE02/5CK_AmFA0gPv1r_eruJoqosEZtU.mft File: 5CK_AmFA0gPv1r_eruJoqosEZtU.mft (raw, json) Hash identifier: nyQ0eRgwmCaBd87gusAdxOXSuWSpFEclxPWrIzERCMw= Subject key identifier: 5F:02:6D:27:1E:2B:C9:3C:0F:9E:26:BC:53:3E:12:4A:BC:AC:46:C9 Authority key identifier: E4:22:BF:02:61:40:D2:03:EF:D6:BF:DE:AE:E2:68:AA:8B:04:66:D5 Certificate issuer: /CN=A91C3174/serialNumber=E422BF026140D203EFD6BFDEAEE268AA8B0466D5 Certificate serial: 02B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CK_AmFA0gPv1r_eruJoqosEZtU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3174/B131F89CEECD11EC8CF4471EC4F9AE02/5CK_AmFA0gPv1r_eruJoqosEZtU.mft Manifest number: 02B2 Signing time: Thu 17 Apr 2025 01:07:44 +0000 Manifest this update: Thu 17 Apr 2025 01:07:44 +0000 Manifest next update: Thu 24 Apr 2025 01:07:44 +0000 Files and hashes: 1: 5CK_AmFA0gPv1r_eruJoqosEZtU.crl (hash: YdoYolqKphZZUr/zCostTHw3eAqe5HTPOBxx9aDBb4g=) 2: 9A4B6146EED111EC9BDD4C49C4F9AE02.roa (hash: 5l/0i4Mj7CkFahUXGxLru5zWwX7qpr1hA77tgI5t7fk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3174/B131F89CEECD11EC8CF4471EC4F9AE02/5CK_AmFA0gPv1r_eruJoqosEZtU.crl rsync://rpki.apnic.net/member_repository/A91C3174/B131F89CEECD11EC8CF4471EC4F9AE02/5CK_AmFA0gPv1r_eruJoqosEZtU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CK_AmFA0gPv1r_eruJoqosEZtU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Apr 2025 01:07:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 694 (0x2b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3174, serialNumber=E422BF026140D203EFD6BFDEAEE268AA8B0466D5 Validity Not Before: Apr 17 01:07:44 2025 GMT Not After : Apr 24 01:07:44 2025 GMT Subject: CN=68005460-0f85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:4d:f4:02:d2:8a:25:bf:0d:cd:f7:b1:5f:94: 89:aa:52:cd:fe:29:b0:be:a7:95:fa:e5:e1:86:99: a0:94:64:56:2e:f3:5d:dd:6c:ea:f8:a7:62:28:20: 4b:41:ae:8f:76:51:52:fb:fc:e1:c2:8c:af:55:91: 95:42:b1:b8:43:a5:33:b4:30:84:57:da:31:8d:94: 91:4e:ff:aa:f4:06:90:aa:b2:bc:f7:8a:cb:53:03: bb:44:24:f7:a4:c9:dc:35:ca:54:3b:ff:4f:39:d0: 68:a0:77:61:00:1f:f6:fb:52:5a:00:ef:a4:c6:46: fe:bc:bd:d8:62:e6:38:bc:82:a2:00:cd:04:e2:0c: 66:37:49:6e:c0:27:8d:79:47:94:a0:64:47:64:23: c1:e5:0f:2a:b8:08:31:0c:03:ed:81:d6:36:35:5c: a8:a1:2b:bf:7d:9c:81:f0:9f:a3:66:24:88:95:42: 75:79:37:9c:9b:5d:c6:7c:96:d8:dc:c3:04:6a:22: 89:f7:f4:d9:ca:76:11:e7:37:13:c6:1c:f5:6c:fe: 0e:4a:7f:82:a1:c3:60:94:3d:0f:89:07:33:39:81: 1b:10:98:03:56:d2:2d:22:b8:d1:12:62:56:dd:de: 3c:be:db:3d:44:42:22:c1:ba:6a:2e:33:bf:2c:50: 3d:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:02:6D:27:1E:2B:C9:3C:0F:9E:26:BC:53:3E:12:4A:BC:AC:46:C9 X509v3 Authority Key Identifier: keyid:E4:22:BF:02:61:40:D2:03:EF:D6:BF:DE:AE:E2:68:AA:8B:04:66:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3174/B131F89CEECD11EC8CF4471EC4F9AE02/5CK_AmFA0gPv1r_eruJoqosEZtU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CK_AmFA0gPv1r_eruJoqosEZtU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3174/B131F89CEECD11EC8CF4471EC4F9AE02/5CK_AmFA0gPv1r_eruJoqosEZtU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:58:a6:fe:6d:c3:1d:fa:9b:41:43:ed:3a:58:ca:2f:57:ad: ad:68:42:c2:5c:1d:86:dc:04:86:02:90:12:0b:97:65:f9:ed: 3a:39:b4:58:69:df:f8:f1:9c:0a:07:eb:f2:77:39:57:10:86: ad:a4:8d:17:f2:fa:e3:8d:7d:3c:31:e2:76:d4:a0:bf:d3:9c: 9c:a2:bc:02:ac:30:ea:60:2d:08:d3:d8:24:ca:30:cb:d1:71: 57:f6:6b:47:31:07:05:20:86:c7:98:5c:d5:d2:1e:f0:da:b6: 57:d8:7a:5c:69:ac:e0:16:eb:e2:b6:78:15:81:20:af:9a:b7: 92:94:66:be:c8:eb:28:4a:21:ff:6f:31:2d:be:3d:b1:7c:25: 87:f8:38:11:c9:72:f9:42:6a:6d:b1:61:99:3b:1a:19:4d:f7: b6:66:98:6c:69:c2:e1:53:6c:4a:0b:ec:91:84:bd:3f:31:17: 20:02:85:91:f4:cf:88:92:93:8a:6d:6e:43:77:24:8b:c9:16: a9:09:d3:48:43:ef:a1:31:d0:a7:f5:4f:bc:ba:46:b2:81:ec: ab:9f:5b:cb:88:54:3f:63:de:e1:6f:b8:29:0d:63:2e:1f:5a: 2a:ab:86:3d:71:b4:ef:3a:3b:e2:01:be:b2:84:2b:19:a3:b9: e2:cb:88:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzMxNzQxMTAvBgNVBAUTKEU0MjJCRjAyNjE0MEQyMDNFRkQ2QkZERUFFRTI2OEFB OEIwNDY2RDUwHhcNMjUwNDE3MDEwNzQ0WhcNMjUwNDI0MDEwNzQ0WjAYMRYwFAYD VQQDEw02ODAwNTQ2MC0wZjg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmk30AtKKJb8NzfexX5SJqlLN/imwvqeV+uXhhpmglGRWLvNd3Wzq+KdiKCBL Qa6PdlFS+/zhwoyvVZGVQrG4Q6UztDCEV9oxjZSRTv+q9AaQqrK894rLUwO7RCT3 pMncNcpUO/9POdBooHdhAB/2+1JaAO+kxkb+vL3YYuY4vIKiAM0E4gxmN0luwCeN eUeUoGRHZCPB5Q8quAgxDAPtgdY2NVyooSu/fZyB8J+jZiSIlUJ1eTecm13GfJbY 3MMEaiKJ9/TZynYR5zcTxhz1bP4OSn+CocNglD0PiQczOYEbEJgDVtItIrjREmJW 3d48vts9REIiwbpqLjO/LFA9lwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF8CbSce K8k8D54mvFM+Ekq8rEbJMB8GA1UdIwQYMBaAFOQivwJhQNID79a/3q7iaKqLBGbV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzE3NC9CMTMxRjg5Q0VF Q0QxMUVDOENGNDQ3MUVDNEY5QUUwMi81Q0tfQW1GQTBnUHYxcl9lcnVKb3Fvc0Va dFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVDS19BbUZBMGdQdjFyX2VydUpvcW9zRVp0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MzE3NC9CMTMxRjg5Q0VFQ0QxMUVDOENGNDQ3MUVDNEY5QUUwMi81Q0tfQW1GQTBn UHYxcl9lcnVKb3Fvc0VadFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtWKb+bcMd+ptBQ+06WMovV62taELCXB2G3ASGApASC5dl+e06ObRY ad/48ZwKB+vydzlXEIatpI0X8vrjjX08MeJ21KC/05ycorwCrDDqYC0I09gkyjDL 0XFX9mtHMQcFIIbHmFzV0h7w2rZX2HpcaazgFuvitngVgSCvmreSlGa+yOsoSiH/ bzEtvj2xfCWH+DgRyXL5QmptsWGZOxoZTfe2ZphsacLhU2xKC+yRhL0/MRcgAoWR 9M+IkpOKbW5DdySLyRapCdNIQ++hMdCn9U+8ukaygeyrn1vLiFQ/Y97hb7gpDWMu H1oqq4Y9cbTvOjviAb6yhCsZo7niy4j4 -----END CERTIFICATE-----Generated at Sat Apr 19 00:53:53 2025 by rpki-client