$ rpki-client -vvf rpki.apnic.net/member_repository/A91D41AC/2445BCE2E93F11EF8DF1E035C4F9AE02/v5hojpiwHoTXNm9nhkzo8-u9Q3c.mft File: v5hojpiwHoTXNm9nhkzo8-u9Q3c.mft (raw, json) Hash identifier: Cn+/dGYOCqj73z/S412uVeBQCqtYuHFPHOD0+kzRgZk= Subject key identifier: 2B:6E:BA:F3:9D:F3:B9:1A:40:85:30:C7:87:14:9E:06:E6:59:C0:41 Authority key identifier: BF:98:68:8E:98:B0:1E:84:D7:36:6F:67:86:4C:E8:F3:EB:BD:43:77 Certificate issuer: /CN=A91D41AC/serialNumber=BF98688E98B01E84D7366F67864CE8F3EBBD4377 Certificate serial: 33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v5hojpiwHoTXNm9nhkzo8-u9Q3c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D41AC/2445BCE2E93F11EF8DF1E035C4F9AE02/v5hojpiwHoTXNm9nhkzo8-u9Q3c.mft Manifest number: 28 Signing time: Thu 03 Apr 2025 07:08:57 +0000 Manifest this update: Thu 03 Apr 2025 07:08:56 +0000 Manifest next update: Thu 10 Apr 2025 07:08:56 +0000 Files and hashes: 1: v5hojpiwHoTXNm9nhkzo8-u9Q3c.crl (hash: dYeWGCYGe7e2lWCyTjnrE8DSRkBxQiXRX5QWCmkArSc=) 2: 46602E62E99D11EFB8E6881DC4F9AE02.roa (hash: N2mU+Nf+OkWsydJNTigowac6C/kadZEo42ZXOPhaxXU=) 3: 465DA74CEE4C11EFBBD5275FC4F9AE02.roa (hash: SPPv4eq5g0hLSyvOMf5eiY3618RcXXiv7J3/H4BO4L4=) 4: 685B8598EE5711EFB6D57660C4F9AE02.roa (hash: 2ByPgzEPC85mGN14iqcQMrmFSzyBoiAoV4LILjdSwYs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D41AC/2445BCE2E93F11EF8DF1E035C4F9AE02/v5hojpiwHoTXNm9nhkzo8-u9Q3c.crl rsync://rpki.apnic.net/member_repository/A91D41AC/2445BCE2E93F11EF8DF1E035C4F9AE02/v5hojpiwHoTXNm9nhkzo8-u9Q3c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v5hojpiwHoTXNm9nhkzo8-u9Q3c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 07:08:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51 (0x33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D41AC Validity Not Before: Apr 3 07:08:56 2025 GMT Not After : Apr 10 07:08:56 2025 GMT Subject: CN=67ee3409-fea4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:03:c0:be:45:be:a3:b3:7b:50:2d:ed:88:76: 10:a7:28:07:13:c6:e7:ad:80:9e:b8:ec:63:f8:8e: d3:36:57:62:6d:3d:a2:c7:69:9f:a9:0a:23:eb:14: 64:c7:f3:ef:14:1b:77:84:05:72:38:6a:b9:b3:8b: ec:92:f8:81:62:9f:a7:94:96:da:73:8d:ad:ec:cf: a9:20:ce:a4:db:5e:c6:32:5f:5e:d3:6a:99:8c:c5: da:4d:fd:15:96:c4:62:78:a2:d7:ac:8a:27:a7:d5: c3:55:63:5f:5d:28:35:85:1b:f0:66:66:3c:75:c4: 0b:c6:96:27:c0:e7:96:a2:82:de:92:6f:c1:e4:c2: d7:c1:23:49:7f:67:3e:8a:c2:33:69:96:63:53:9f: 52:07:3e:32:78:75:5a:a0:4b:dd:1a:65:ce:a3:57: 38:9f:54:0a:ff:d7:0e:1e:cc:38:87:36:a4:14:92: ec:d2:9d:1c:cb:b9:d1:90:4d:f1:22:93:a6:e5:83: 82:d7:45:bd:a7:4b:01:e6:e4:cc:7c:bf:b2:47:7b: fd:fb:8c:7d:32:8b:c0:41:89:31:dc:f8:10:98:c7: 84:22:aa:28:af:f4:44:26:9c:af:d2:32:3b:14:93: 8a:f0:2d:63:7c:34:de:ba:88:55:81:7a:fd:35:55: 4a:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:6E:BA:F3:9D:F3:B9:1A:40:85:30:C7:87:14:9E:06:E6:59:C0:41 X509v3 Authority Key Identifier: keyid:BF:98:68:8E:98:B0:1E:84:D7:36:6F:67:86:4C:E8:F3:EB:BD:43:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D41AC/2445BCE2E93F11EF8DF1E035C4F9AE02/v5hojpiwHoTXNm9nhkzo8-u9Q3c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v5hojpiwHoTXNm9nhkzo8-u9Q3c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D41AC/2445BCE2E93F11EF8DF1E035C4F9AE02/v5hojpiwHoTXNm9nhkzo8-u9Q3c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:2c:0a:a5:2d:ed:c1:da:85:43:8c:ad:4a:b9:1e:da:2a:ef: 5b:22:0f:07:9c:87:27:e3:a1:ba:6f:e2:f8:f0:1c:8c:8c:d1: 02:80:cc:c4:c9:9a:9f:36:f0:07:56:12:e7:56:27:b5:26:8c: 98:9b:b2:e4:f1:8a:89:52:79:47:eb:16:98:e0:95:f9:48:31: 40:2e:c9:42:e1:13:ae:8d:d9:3e:a2:22:95:6b:e3:22:f2:5a: 2d:22:b5:cc:d3:67:63:20:09:55:35:73:fd:ec:a1:32:97:3b: cf:2f:7d:da:d0:11:7e:bc:36:b6:ef:b2:12:c0:33:a9:a5:ef: 63:26:6a:5d:8f:ca:a6:cb:3a:24:a1:ef:9d:f3:56:4f:29:4a: 3b:48:ec:de:66:25:6c:84:a7:cb:d6:43:3f:90:81:d5:31:19: 5e:d8:3a:68:3f:2e:66:7c:b1:25:39:b1:90:e0:3d:c4:af:b2: 5e:49:57:f8:83:e5:5d:1e:a7:85:89:ac:06:8b:dd:7c:71:40: 85:20:7c:da:32:c2:94:b9:53:5a:eb:4d:1c:ca:cf:a4:0b:b7: 88:df:99:a7:a6:a6:3b:5a:e0:ca:66:b0:f5:43:db:53:c9:25: ba:7c:b7:4d:19:ad:99:03:c0:c0:47:a5:b0:cd:89:0b:c4:9b: 3f:13:79:6d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NDFBQzExMC8GA1UEBRMoQkY5ODY4OEU5OEIwMUU4NEQ3MzY2RjY3ODY0Q0U4RjNF QkJENDM3NzAeFw0yNTA0MDMwNzA4NTZaFw0yNTA0MTAwNzA4NTZaMBgxFjAUBgNV BAMTDTY3ZWUzNDA5LWZlYTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8A8C+Rb6js3tQLe2IdhCnKAcTxuetgJ647GP4jtM2V2JtPaLHaZ+pCiPrFGTH 8+8UG3eEBXI4armzi+yS+IFin6eUltpzja3sz6kgzqTbXsYyX17TapmMxdpN/RWW xGJ4otesiien1cNVY19dKDWFG/BmZjx1xAvGlifA55aigt6Sb8HkwtfBI0l/Zz6K wjNplmNTn1IHPjJ4dVqgS90aZc6jVzifVAr/1w4ezDiHNqQUkuzSnRzLudGQTfEi k6blg4LXRb2nSwHm5Mx8v7JHe/37jH0yi8BBiTHc+BCYx4Qiqiiv9EQmnK/SMjsU k4rwLWN8NN66iFWBev01VUqPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUK266853z uRpAhTDHhxSeBuZZwEEwHwYDVR0jBBgwFoAUv5hojpiwHoTXNm9nhkzo8+u9Q3cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ0MUFDLzI0NDVCQ0UyRTkz RjExRUY4REYxRTAzNUM0RjlBRTAyL3Y1aG9qcGl3SG9UWE5tOW5oa3pvOC11OVEz Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdjVob2pwaXdIb1RYTm05bmhrem84LXU5UTNjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ0 MUFDLzI0NDVCQ0UyRTkzRjExRUY4REYxRTAzNUM0RjlBRTAyL3Y1aG9qcGl3SG9U WE5tOW5oa3pvOC11OVEzYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALMsCqUt7cHahUOMrUq5Htoq71siDwechyfjobpv4vjwHIyM0QKAzMTJ mp828AdWEudWJ7UmjJibsuTxiolSeUfrFpjglflIMUAuyULhE66N2T6iIpVr4yLy Wi0itczTZ2MgCVU1c/3soTKXO88vfdrQEX68NrbvshLAM6ml72Mmal2PyqbLOiSh 753zVk8pSjtI7N5mJWyEp8vWQz+QgdUxGV7YOmg/LmZ8sSU5sZDgPcSvsl5JV/iD 5V0ep4WJrAaL3XxxQIUgfNoywpS5U1rrTRzKz6QLt4jfmaempjta4MpmsPVD21PJ Jbp8t00ZrZkDwMBHpbDNiQvEmz8TeW0= -----END CERTIFICATE-----Generated at Fri Apr 4 21:52:06 2025 by rpki-client