$ rpki-client -vvf rpki.apnic.net/member_repository/A91D604E/91B5C0C0F4ED11E98CBFA013C4F9AE02/5NzsWVobtnOJciNlasY5uVNS3XM.mft File: 5NzsWVobtnOJciNlasY5uVNS3XM.mft (raw, json) Hash identifier: Gvq8LYis0xUO0XhpwuYWjRd7FjOrLGzbskUB3FeigJU= Subject key identifier: C1:69:93:BD:3C:52:E9:2E:BF:7E:2B:D4:0D:D8:78:95:96:6C:79:45 Authority key identifier: E4:DC:EC:59:5A:1B:B6:73:89:72:23:65:6A:C6:39:B9:53:52:DD:73 Certificate issuer: /CN=A91D604E/serialNumber=E4DCEC595A1BB673897223656AC639B95352DD73 Certificate serial: 0C98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NzsWVobtnOJciNlasY5uVNS3XM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D604E/91B5C0C0F4ED11E98CBFA013C4F9AE02/5NzsWVobtnOJciNlasY5uVNS3XM.mft Manifest number: 0C8B Signing time: Mon 14 Apr 2025 18:08:42 +0000 Manifest this update: Mon 14 Apr 2025 18:08:42 +0000 Manifest next update: Mon 21 Apr 2025 18:08:42 +0000 Files and hashes: 1: 5NzsWVobtnOJciNlasY5uVNS3XM.crl (hash: 2JGRgIPlVy42QTc+LokuGPaT+gfHG2vVldpQ3BH13Bs=) 2: D1C40E28183411EF99FD8776C4F9AE02.roa (hash: chBs/iSmoBtAd9EtvA3mnCGyh8XU8yYYJZGBD7EHNow=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D604E/91B5C0C0F4ED11E98CBFA013C4F9AE02/5NzsWVobtnOJciNlasY5uVNS3XM.crl rsync://rpki.apnic.net/member_repository/A91D604E/91B5C0C0F4ED11E98CBFA013C4F9AE02/5NzsWVobtnOJciNlasY5uVNS3XM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NzsWVobtnOJciNlasY5uVNS3XM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 21 Apr 2025 18:08:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3224 (0xc98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D604E, serialNumber=E4DCEC595A1BB673897223656AC639B95352DD73 Validity Not Before: Apr 14 18:08:42 2025 GMT Not After : Apr 21 18:08:42 2025 GMT Subject: CN=67fd4f2a-e0ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:91:d5:45:51:7e:d5:16:ba:3f:a4:77:02:71: 10:9d:83:c1:f0:d5:63:ba:b6:e7:31:2e:4c:55:03: 3a:21:cf:3d:9f:6e:cc:a6:71:51:0b:61:5f:fc:d3: 8c:ce:a0:da:46:c3:b0:04:f1:c8:18:dd:90:55:fc: 07:9e:dd:7b:5f:b6:ac:73:4c:2b:e3:a1:6c:e6:c3: fa:7e:ba:b5:f2:63:52:18:cc:66:98:ef:7b:1a:c8: e3:1f:07:ae:a6:76:f8:7a:df:15:5a:97:7e:2d:13: c1:47:c6:d1:17:2a:e7:d6:2b:05:4f:55:cd:3c:a2: c4:fa:85:5f:6a:fb:6f:c6:8a:50:09:e1:ea:df:0a: 7f:d4:62:5b:d1:d4:81:26:ea:5e:c4:77:1e:0c:21: c9:44:d9:98:18:bc:32:74:a2:46:d0:5e:b0:45:82: e7:e4:1a:a1:d7:8a:3f:fe:48:23:90:d1:7b:8e:ba: 7d:6a:d2:6f:15:fb:fd:dd:b0:af:43:5b:7e:58:54: dd:f1:db:c8:9b:0e:d2:b5:97:1c:3e:97:d1:23:8a: 0c:e8:e9:4f:4d:08:d7:62:2f:ef:c2:b1:e6:a3:7a: d8:89:72:3a:7b:23:a7:c9:2a:61:ad:cb:5c:d3:c0: 39:90:13:c7:9c:3e:29:9c:22:22:7c:0e:39:eb:75: 02:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:69:93:BD:3C:52:E9:2E:BF:7E:2B:D4:0D:D8:78:95:96:6C:79:45 X509v3 Authority Key Identifier: keyid:E4:DC:EC:59:5A:1B:B6:73:89:72:23:65:6A:C6:39:B9:53:52:DD:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D604E/91B5C0C0F4ED11E98CBFA013C4F9AE02/5NzsWVobtnOJciNlasY5uVNS3XM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NzsWVobtnOJciNlasY5uVNS3XM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D604E/91B5C0C0F4ED11E98CBFA013C4F9AE02/5NzsWVobtnOJciNlasY5uVNS3XM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:73:2d:58:23:1a:98:47:e2:d9:ee:ac:71:f9:44:e0:5e:7c: 1d:ad:61:c9:ee:5f:e7:95:c8:e1:da:9f:1f:50:c6:42:2d:aa: 9a:d3:fc:94:6c:29:32:0f:ee:b3:7f:eb:6d:b8:03:c2:5a:e3: 47:d8:53:78:77:7c:0b:ef:7b:ca:47:29:b8:5d:17:2e:e8:37: fe:e2:82:3d:00:64:e9:20:11:5a:c8:f6:b0:13:b2:12:b4:96: 6d:a7:42:f1:ca:ae:ee:51:9e:38:d4:57:a6:d3:5c:40:f4:d6: 82:ea:82:59:9c:b8:94:69:f3:e6:fa:fa:b0:67:9f:f6:5c:05: f4:53:56:6e:7d:b5:1b:89:f2:72:3b:ce:94:90:48:3c:a3:a6: 62:e5:30:84:67:d8:cc:b8:db:e7:7a:e9:a3:65:a8:d5:74:8f: 21:da:60:87:06:4f:02:26:a3:7f:69:9a:2d:7f:fb:f9:39:31: a4:ce:2c:62:b6:f3:47:f1:e5:a6:76:12:f1:ab:f4:ba:65:40: 71:aa:8c:78:20:a5:f3:12:78:10:5a:f1:b4:66:e7:a8:39:8e: e3:b9:b6:22:1c:f7:fc:0d:53:de:e0:6e:ea:13:f5:34:32:45: df:46:cf:ae:8b:3d:2e:68:eb:29:96:ff:8e:ff:be:e2:1c:7c: 1b:78:e8:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDYwNEUxMTAvBgNVBAUTKEU0RENFQzU5NUExQkI2NzM4OTcyMjM2NTZBQzYzOUI5 NTM1MkRENzMwHhcNMjUwNDE0MTgwODQyWhcNMjUwNDIxMTgwODQyWjAYMRYwFAYD VQQDEw02N2ZkNGYyYS1lMGJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv5HVRVF+1Ra6P6R3AnEQnYPB8NVjurbnMS5MVQM6Ic89n27MpnFRC2Ff/NOM zqDaRsOwBPHIGN2QVfwHnt17X7asc0wr46Fs5sP6frq18mNSGMxmmO97GsjjHweu pnb4et8VWpd+LRPBR8bRFyrn1isFT1XNPKLE+oVfavtvxopQCeHq3wp/1GJb0dSB JupexHceDCHJRNmYGLwydKJG0F6wRYLn5Bqh14o//kgjkNF7jrp9atJvFfv93bCv Q1t+WFTd8dvImw7StZccPpfRI4oM6OlPTQjXYi/vwrHmo3rYiXI6eyOnySphrctc 08A5kBPHnD4pnCIifA4563UCowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMFpk708 Uukuv34r1A3YeJWWbHlFMB8GA1UdIwQYMBaAFOTc7FlaG7ZziXIjZWrGOblTUt1z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjA0RS85MUI1QzBDMEY0 RUQxMUU5OENCRkEwMTNDNEY5QUUwMi81TnpzV1ZvYnRuT0pjaU5sYXNZNXVWTlMz WE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVOenNXVm9idG5PSmNpTmxhc1k1dVZOUzNYTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjA0RS85MUI1QzBDMEY0RUQxMUU5OENCRkEwMTNDNEY5QUUwMi81TnpzV1ZvYnRu T0pjaU5sYXNZNXVWTlMzWE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+cy1YIxqYR+LZ7qxx+UTgXnwdrWHJ7l/nlcjh2p8fUMZCLaqa0/yU bCkyD+6zf+ttuAPCWuNH2FN4d3wL73vKRym4XRcu6Df+4oI9AGTpIBFayPawE7IS tJZtp0Lxyq7uUZ441Fem01xA9NaC6oJZnLiUafPm+vqwZ5/2XAX0U1ZufbUbifJy O86UkEg8o6Zi5TCEZ9jMuNvneumjZajVdI8h2mCHBk8CJqN/aZotf/v5OTGkzixi tvNH8eWmdhLxq/S6ZUBxqox4IKXzEngQWvG0ZueoOY7jubYiHPf8DVPe4G7qE/U0 MkXfRs+uiz0uaOsplv+O/77iHHwbeOgx -----END CERTIFICATE-----Generated at Wed Apr 16 17:16:38 2025 by rpki-client