$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2646/D2037D127BEC11EAA9A6C725C4F9AE02/r5ACm-EBySLPz0vRRdevHcZA5eA.mft File: r5ACm-EBySLPz0vRRdevHcZA5eA.mft (raw, json) Hash identifier: hsKRJfQf/890mdiUV5pQp+jUmsxiZ1rtKc0mkU4Izqw= Subject key identifier: 02:43:66:73:29:6B:99:50:AA:63:87:E0:3B:D8:7C:14:B9:FE:CE:4F Authority key identifier: AF:90:02:9B:E1:01:C9:22:CF:CF:4B:D1:45:D7:AF:1D:C6:40:E5:E0 Certificate issuer: /CN=A91D2646/serialNumber=AF90029BE101C922CFCF4BD145D7AF1DC640E5E0 Certificate serial: 09D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r5ACm-EBySLPz0vRRdevHcZA5eA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2646/D2037D127BEC11EAA9A6C725C4F9AE02/r5ACm-EBySLPz0vRRdevHcZA5eA.mft Manifest number: 09CC Signing time: Tue 08 Apr 2025 19:49:26 +0000 Manifest this update: Tue 08 Apr 2025 19:49:25 +0000 Manifest next update: Tue 15 Apr 2025 19:49:25 +0000 Files and hashes: 1: r5ACm-EBySLPz0vRRdevHcZA5eA.crl (hash: qMzwqRuIKjUB4umA22S/H6uZlEnT+U8u2UODDXpKhdI=) 2: EE675FC27BED11EABD4A3A27C4F9AE02.roa (hash: AgjaL53ax01ov0J7/NtNC0271FAg3f2kxQ+XWNRqNo8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2646/D2037D127BEC11EAA9A6C725C4F9AE02/r5ACm-EBySLPz0vRRdevHcZA5eA.crl rsync://rpki.apnic.net/member_repository/A91D2646/D2037D127BEC11EAA9A6C725C4F9AE02/r5ACm-EBySLPz0vRRdevHcZA5eA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r5ACm-EBySLPz0vRRdevHcZA5eA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 19:49:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2517 (0x9d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2646 Validity Not Before: Apr 8 19:49:25 2025 GMT Not After : Apr 15 19:49:25 2025 GMT Subject: CN=67f57dc5-a599 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:8a:ef:da:4d:49:d3:fa:a0:92:2f:d5:db:ec: 76:2f:3c:7d:7a:7d:8d:f4:86:e8:c5:78:c2:67:89: 6b:97:99:17:a5:1f:25:e8:40:0b:a1:73:10:43:73: e5:65:f9:12:ce:d2:d1:6e:8c:5c:a3:cd:3a:f5:b3: 6a:81:e4:10:85:7b:97:fb:52:a3:70:63:7c:40:38: fb:23:55:6f:90:1d:05:62:65:90:28:5d:37:b4:f1: 9e:1e:d0:76:12:f6:92:41:a1:0c:8a:3c:d4:10:85: d1:15:e1:5e:44:5a:ec:df:e5:94:62:64:98:94:9f: bf:00:b2:33:ed:a6:4c:18:d4:e0:b2:c3:ac:0b:71: ec:7d:0a:f8:43:f5:f1:e2:59:47:e6:07:fd:44:8f: ff:9b:6e:1a:71:76:ef:f8:de:15:a4:e4:8f:2e:5d: 38:bc:13:91:78:6f:70:1a:2e:29:16:63:44:4e:14: c4:76:74:8e:7b:c4:62:32:fd:ef:64:d2:94:d2:76: 50:bc:06:67:05:20:2e:d3:b7:8a:70:2f:e2:b1:99: ab:34:f8:9a:8b:03:0b:7b:02:81:24:e0:aa:81:0e: 23:33:5f:2b:22:fb:dd:6f:f2:16:8d:06:15:17:8c: 8a:d2:e4:a8:f0:b3:4f:28:f7:0a:8b:d9:e2:e0:8f: ae:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:43:66:73:29:6B:99:50:AA:63:87:E0:3B:D8:7C:14:B9:FE:CE:4F X509v3 Authority Key Identifier: keyid:AF:90:02:9B:E1:01:C9:22:CF:CF:4B:D1:45:D7:AF:1D:C6:40:E5:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2646/D2037D127BEC11EAA9A6C725C4F9AE02/r5ACm-EBySLPz0vRRdevHcZA5eA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r5ACm-EBySLPz0vRRdevHcZA5eA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2646/D2037D127BEC11EAA9A6C725C4F9AE02/r5ACm-EBySLPz0vRRdevHcZA5eA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:90:21:59:1d:e9:8b:d6:16:72:39:4a:06:a9:09:fc:fe:aa: c4:70:a2:6e:24:51:a5:3e:20:47:8e:48:6d:0d:60:ad:71:88: 2d:b2:17:5a:db:1c:cc:9f:9c:e2:29:b6:a1:a9:f2:c3:96:56: 5b:dc:42:59:67:8b:c7:36:67:98:d7:6e:c7:b6:e6:39:3c:8c: 2a:54:c0:bb:7e:86:7f:30:27:83:2a:41:32:74:80:0f:19:52: 7e:f1:1a:39:b0:3c:d8:64:3f:cd:a0:86:c7:ce:41:e8:3f:40: 6d:bf:74:6b:d6:56:b8:b3:1e:5d:23:62:c9:3b:61:98:3c:c8: 95:95:7b:a1:32:5d:ee:f2:07:43:c9:63:c6:3c:9a:d4:55:ca: 70:a9:7c:75:80:c9:a7:43:2d:3f:1e:5b:c5:e8:6e:b1:d6:93: 5f:cd:3e:d6:80:f3:3d:5a:81:e1:25:76:fa:ba:1d:80:bf:18: f6:ca:d4:0b:f4:eb:1c:57:d8:68:a2:7a:13:55:92:61:72:4d: f6:51:fc:3e:0c:83:74:42:10:6f:fe:55:7d:32:53:f4:56:65: 60:61:60:05:3d:9e:43:c0:7b:6e:8b:b4:7c:78:3a:77:35:7d: 5d:c1:99:0b:96:8c:98:d1:2e:66:46:be:7f:f5:fe:39:be:e9: 22:68:dd:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCdUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI2NDYxMTAvBgNVBAUTKEFGOTAwMjlCRTEwMUM5MjJDRkNGNEJEMTQ1RDdBRjFE QzY0MEU1RTAwHhcNMjUwNDA4MTk0OTI1WhcNMjUwNDE1MTk0OTI1WjAYMRYwFAYD VQQDEw02N2Y1N2RjNS1hNTk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Yrv2k1J0/qgki/V2+x2Lzx9en2N9IboxXjCZ4lrl5kXpR8l6EALoXMQQ3Pl ZfkSztLRboxco8069bNqgeQQhXuX+1KjcGN8QDj7I1VvkB0FYmWQKF03tPGeHtB2 EvaSQaEMijzUEIXRFeFeRFrs3+WUYmSYlJ+/ALIz7aZMGNTgssOsC3HsfQr4Q/Xx 4llH5gf9RI//m24acXbv+N4VpOSPLl04vBOReG9wGi4pFmNEThTEdnSOe8RiMv3v ZNKU0nZQvAZnBSAu07eKcC/isZmrNPiaiwMLewKBJOCqgQ4jM18rIvvdb/IWjQYV F4yK0uSo8LNPKPcKi9ni4I+ukwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAJDZnMp a5lQqmOH4DvYfBS5/s5PMB8GA1UdIwQYMBaAFK+QApvhAckiz89L0UXXrx3GQOXg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjY0Ni9EMjAzN0QxMjdC RUMxMUVBQTlBNkM3MjVDNEY5QUUwMi9yNUFDbS1FQnlTTFB6MHZSUmRldkhjWkE1 ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3I1QUNtLUVCeVNMUHowdlJSZGV2SGNaQTVlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjY0Ni9EMjAzN0QxMjdCRUMxMUVBQTlBNkM3MjVDNEY5QUUwMi9yNUFDbS1FQnlT TFB6MHZSUmRldkhjWkE1ZUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTkCFZHemL1hZyOUoGqQn8/qrEcKJuJFGlPiBHjkhtDWCtcYgtshda 2xzMn5ziKbahqfLDllZb3EJZZ4vHNmeY127HtuY5PIwqVMC7foZ/MCeDKkEydIAP GVJ+8Ro5sDzYZD/NoIbHzkHoP0Btv3Rr1la4sx5dI2LJO2GYPMiVlXuhMl3u8gdD yWPGPJrUVcpwqXx1gMmnQy0/HlvF6G6x1pNfzT7WgPM9WoHhJXb6uh2Avxj2ytQL 9OscV9hoonoTVZJhck32Ufw+DIN0QhBv/lV9MlP0VmVgYWAFPZ5DwHtui7R8eDp3 NX1dwZkLloyY0S5mRr5/9f45vukiaN3v -----END CERTIFICATE-----Generated at Wed Apr 9 05:34:49 2025 by rpki-client