$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFBE/74223706DAFA11EB82FE3162C4F9AE02/1w5ZS4GhZYwq3fSjJo75zwj5ZQ8.mft File: 1w5ZS4GhZYwq3fSjJo75zwj5ZQ8.mft (raw, json) Hash identifier: l/grBg/dDT4flsDAsTU0R/mi0aeH725DIc+zhdWtnic= Subject key identifier: AC:29:D9:CE:2C:75:62:48:91:5F:28:2C:AA:2A:F0:19:1D:32:87:67 Authority key identifier: D7:0E:59:4B:81:A1:65:8C:2A:DD:F4:A3:26:8E:F9:CF:08:F9:65:0F Certificate issuer: /CN=A91CFFBE/serialNumber=D70E594B81A1658C2ADDF4A3268EF9CF08F9650F Certificate serial: 0563 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1w5ZS4GhZYwq3fSjJo75zwj5ZQ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFBE/74223706DAFA11EB82FE3162C4F9AE02/1w5ZS4GhZYwq3fSjJo75zwj5ZQ8.mft Manifest number: 0560 Signing time: Wed 02 Apr 2025 23:23:25 +0000 Manifest this update: Wed 02 Apr 2025 23:23:24 +0000 Manifest next update: Wed 09 Apr 2025 23:23:24 +0000 Files and hashes: 1: 1w5ZS4GhZYwq3fSjJo75zwj5ZQ8.crl (hash: aAePepOavxy7gyAf6odDZrYZILDDtFdhzZulCYso+74=) 2: 05A2A4008FE811EEACB1296AC4F9AE02.roa (hash: RMAjjR/Z0XXDeykH/h9ZSJTCAkTWDVoYIsC8StPVzYI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFBE/74223706DAFA11EB82FE3162C4F9AE02/1w5ZS4GhZYwq3fSjJo75zwj5ZQ8.crl rsync://rpki.apnic.net/member_repository/A91CFFBE/74223706DAFA11EB82FE3162C4F9AE02/1w5ZS4GhZYwq3fSjJo75zwj5ZQ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1w5ZS4GhZYwq3fSjJo75zwj5ZQ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 23:23:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1379 (0x563) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFBE Validity Not Before: Apr 2 23:23:24 2025 GMT Not After : Apr 9 23:23:24 2025 GMT Subject: CN=67edc6ed-308e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:59:fe:51:c4:4a:e3:db:be:dc:e7:52:ca:bf: f2:3c:91:5e:a5:34:43:fe:ee:9a:41:c4:1d:55:22: 06:67:4f:2d:65:15:37:2d:ae:5a:c6:1c:56:3c:c0: 90:6a:fd:ff:83:3c:57:53:3e:ef:b1:2f:44:5d:8a: c2:c1:77:4a:6b:cf:a6:0b:e6:cd:7b:0f:64:aa:a1: 65:b9:57:24:c2:e5:df:61:29:2f:4d:01:14:d9:d8: c7:7b:0d:7e:22:ec:56:ee:b4:bb:b6:21:37:a9:37: cc:97:fe:cf:0e:4b:00:f3:ea:51:09:21:66:c0:ab: 23:e4:e7:3f:9b:59:61:ef:f5:38:4e:53:22:87:5b: d7:86:55:3d:0e:f3:09:68:c0:23:49:7b:9c:78:52: 2f:08:d1:b0:d0:36:b0:5e:ad:a7:a3:5c:68:da:0a: 3b:eb:a6:76:8d:a1:eb:8c:ea:10:ef:47:e7:a2:1e: 34:00:37:31:e1:5c:57:d1:cd:ff:96:07:60:3b:82: e0:b0:79:65:5e:f5:f1:d7:b3:07:eb:f8:0f:c8:84: dd:18:bf:b2:6a:cc:01:49:d6:e7:7c:29:d5:a2:b1: 7b:f3:bf:4a:98:58:78:d5:62:e0:28:f8:66:1a:9f: e2:b6:a8:96:be:bd:bd:07:23:59:6c:39:58:4a:91: 5f:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:29:D9:CE:2C:75:62:48:91:5F:28:2C:AA:2A:F0:19:1D:32:87:67 X509v3 Authority Key Identifier: keyid:D7:0E:59:4B:81:A1:65:8C:2A:DD:F4:A3:26:8E:F9:CF:08:F9:65:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFBE/74223706DAFA11EB82FE3162C4F9AE02/1w5ZS4GhZYwq3fSjJo75zwj5ZQ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1w5ZS4GhZYwq3fSjJo75zwj5ZQ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFBE/74223706DAFA11EB82FE3162C4F9AE02/1w5ZS4GhZYwq3fSjJo75zwj5ZQ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:0c:40:39:b5:77:29:01:e3:89:d3:89:f7:f3:6e:0b:be:b1: d6:dc:8b:cd:53:1f:42:14:0d:ae:73:e5:a1:9e:a3:2b:7a:b0: 33:ab:2c:02:6c:4e:dd:7f:e8:7a:73:ac:ee:05:40:40:4e:50: d7:fd:4c:fd:fe:8d:b0:96:4b:11:04:1c:45:f0:86:16:8b:36: 69:ac:4a:92:7f:dd:33:ab:6f:a9:11:f2:ce:ca:61:ea:c1:9c: ad:81:44:9b:e7:92:40:9f:c0:3c:cd:b0:60:bb:0c:1b:cc:cd: 6a:32:60:16:e1:04:30:04:a0:34:2e:04:42:d0:6e:3b:47:e6: 41:38:c3:68:ac:5f:2a:69:4e:cf:48:af:cf:1e:eb:63:94:74: 08:25:f4:ea:02:78:b0:cc:1e:75:e6:e0:b8:ce:e0:23:a8:b7: c0:f9:96:83:0b:6a:50:63:d4:13:da:85:77:26:19:57:96:cc: a3:d3:c1:05:42:f9:2a:c1:da:f8:f5:fc:c6:3f:be:61:52:88: e6:65:6f:58:c0:79:f6:f1:4e:e8:28:0d:9f:0f:eb:03:df:91: d1:1f:91:29:c7:80:81:f8:1a:cd:a4:27:a0:ea:e2:cb:64:05: a8:e9:75:3c:90:00:a5:be:80:ef:0f:f2:22:e6:c2:fb:6c:cf: c2:b4:f2:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBWMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGQkUxMTAvBgNVBAUTKEQ3MEU1OTRCODFBMTY1OEMyQURERjRBMzI2OEVGOUNG MDhGOTY1MEYwHhcNMjUwNDAyMjMyMzI0WhcNMjUwNDA5MjMyMzI0WjAYMRYwFAYD VQQDEw02N2VkYzZlZC0zMDhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvln+UcRK49u+3OdSyr/yPJFepTRD/u6aQcQdVSIGZ08tZRU3La5axhxWPMCQ av3/gzxXUz7vsS9EXYrCwXdKa8+mC+bNew9kqqFluVckwuXfYSkvTQEU2djHew1+ IuxW7rS7tiE3qTfMl/7PDksA8+pRCSFmwKsj5Oc/m1lh7/U4TlMih1vXhlU9DvMJ aMAjSXuceFIvCNGw0DawXq2no1xo2go766Z2jaHrjOoQ70fnoh40ADcx4VxX0c3/ lgdgO4LgsHllXvXx17MH6/gPyITdGL+yaswBSdbnfCnVorF7879KmFh41WLgKPhm Gp/itqiWvr29ByNZbDlYSpFfUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKwp2c4s dWJIkV8oLKoq8BkdModnMB8GA1UdIwQYMBaAFNcOWUuBoWWMKt30oyaO+c8I+WUP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZCRS83NDIyMzcwNkRB RkExMUVCODJGRTMxNjJDNEY5QUUwMi8xdzVaUzRHaFpZd3EzZlNqSm83NXp3ajVa UTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzF3NVpTNEdoWll3cTNmU2pKbzc1endqNVpROC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkZCRS83NDIyMzcwNkRBRkExMUVCODJGRTMxNjJDNEY5QUUwMi8xdzVaUzRHaFpZ d3EzZlNqSm83NXp3ajVaUTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+DEA5tXcpAeOJ04n3824LvrHW3IvNUx9CFA2uc+WhnqMrerAzqywC bE7df+h6c6zuBUBATlDX/Uz9/o2wlksRBBxF8IYWizZprEqSf90zq2+pEfLOymHq wZytgUSb55JAn8A8zbBguwwbzM1qMmAW4QQwBKA0LgRC0G47R+ZBOMNorF8qaU7P SK/PHutjlHQIJfTqAniwzB515uC4zuAjqLfA+ZaDC2pQY9QT2oV3JhlXlsyj08EF Qvkqwdr49fzGP75hUojmZW9YwHn28U7oKA2fD+sD35HRH5Epx4CB+BrNpCeg6uLL ZAWo6XU8kAClvoDvD/Ii5sL7bM/CtPLH -----END CERTIFICATE-----Generated at Fri Apr 4 18:36:02 2025 by rpki-client