$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9CA8/2932C588E4FD11EFAC1CE67FC4F9AE02/5JdLhBatO5ndEfOwQFbwx5m3ocs.mft File: 5JdLhBatO5ndEfOwQFbwx5m3ocs.mft (raw, json) Hash identifier: vFOfvQWPHyQawg9y3MaCeF82Z8ySJn8XB7KkBv8p6r4= Subject key identifier: 98:DD:1D:81:8A:56:CB:7F:BA:42:2D:2E:0D:84:C9:7B:39:62:F0:0C Authority key identifier: E4:97:4B:84:16:AD:3B:99:DD:11:F3:B0:40:56:F0:C7:99:B7:A1:CB Certificate issuer: /CN=A91D9CA8/serialNumber=E4974B8416AD3B99DD11F3B04056F0C799B7A1CB Certificate serial: 1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5JdLhBatO5ndEfOwQFbwx5m3ocs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9CA8/2932C588E4FD11EFAC1CE67FC4F9AE02/5JdLhBatO5ndEfOwQFbwx5m3ocs.mft Manifest number: 1E Signing time: Thu 03 Apr 2025 07:07:34 +0000 Manifest this update: Thu 03 Apr 2025 07:07:33 +0000 Manifest next update: Thu 10 Apr 2025 07:07:33 +0000 Files and hashes: 1: 5JdLhBatO5ndEfOwQFbwx5m3ocs.crl (hash: MTp50rbbf8B/DWL1V8KBCyH7TViJ+qXdW05OsxWHgnU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9CA8/2932C588E4FD11EFAC1CE67FC4F9AE02/5JdLhBatO5ndEfOwQFbwx5m3ocs.crl rsync://rpki.apnic.net/member_repository/A91D9CA8/2932C588E4FD11EFAC1CE67FC4F9AE02/5JdLhBatO5ndEfOwQFbwx5m3ocs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5JdLhBatO5ndEfOwQFbwx5m3ocs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 07:07:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30 (0x1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9CA8 Validity Not Before: Apr 3 07:07:33 2025 GMT Not After : Apr 10 07:07:33 2025 GMT Subject: CN=67ee33b5-711b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:e3:f7:2f:7b:fa:a4:4d:d5:8f:81:41:12:4c: 2c:cc:52:2d:8a:a9:72:1b:e3:da:cb:53:cb:f5:c4: f8:30:79:0a:85:6a:38:5d:64:91:ac:f0:98:85:57: 3d:8d:6b:ab:e0:c8:9e:28:9c:67:f2:cf:36:82:d9: c6:42:2a:fd:f9:92:9e:93:45:c5:84:35:e7:69:8d: e5:86:6f:b2:4a:30:df:5c:9a:7b:a6:97:a3:c4:a5: 49:16:59:88:e6:a1:ea:2e:38:c7:4e:38:38:9d:cb: 31:2f:67:d9:aa:cd:66:18:13:4d:94:4c:8f:d0:11: d8:ac:66:f2:d9:f7:83:a9:08:eb:9b:e0:1a:69:83: 73:cc:ad:fe:4f:67:de:7f:1b:b4:cc:aa:ac:4c:42: 56:22:ac:87:50:69:ce:2d:a2:6c:60:fb:f6:e0:d1: 48:5b:7c:1a:ad:bb:64:00:c6:af:31:54:a7:39:f8: ab:22:42:59:c8:71:06:b6:d9:bb:14:ed:c6:0d:ab: f0:76:de:49:2e:df:af:0f:13:a7:75:75:e1:b1:61: 2d:ed:6c:0b:a6:fd:2c:61:3c:c7:45:6d:b0:a1:af: fc:3b:1b:df:94:bd:17:2b:d3:91:da:37:7c:f9:dd: 50:c6:04:bf:cb:10:2f:f9:39:33:78:62:d6:4c:bb: 57:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:DD:1D:81:8A:56:CB:7F:BA:42:2D:2E:0D:84:C9:7B:39:62:F0:0C X509v3 Authority Key Identifier: keyid:E4:97:4B:84:16:AD:3B:99:DD:11:F3:B0:40:56:F0:C7:99:B7:A1:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/2932C588E4FD11EFAC1CE67FC4F9AE02/5JdLhBatO5ndEfOwQFbwx5m3ocs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5JdLhBatO5ndEfOwQFbwx5m3ocs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/2932C588E4FD11EFAC1CE67FC4F9AE02/5JdLhBatO5ndEfOwQFbwx5m3ocs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:26:9b:62:6e:cb:40:28:64:10:c3:f1:39:df:96:89:c2:b2: c7:be:70:60:f0:80:d7:89:a3:db:25:19:e2:e1:12:40:7b:25: fb:ec:32:28:e2:04:4a:d8:42:9c:e4:52:7a:bc:fe:46:e4:d0: fe:b9:5f:72:93:b7:6c:e1:70:bd:74:87:4d:53:8b:5e:46:e0: 04:30:0a:c7:8e:7c:be:96:b6:13:ee:f3:79:3f:96:0c:0d:18: da:91:55:26:c8:47:8d:7f:88:8f:5b:da:3c:4c:4e:67:e7:4c: 50:62:a0:7f:4b:5a:7c:ff:68:ae:5d:20:86:5f:36:e3:d4:ca: 3f:38:d0:48:bf:e3:6a:83:e7:de:ba:c6:2b:ea:44:75:d1:f6: 30:e3:77:85:7f:9c:44:3b:72:bc:1f:89:b3:fd:7c:aa:78:46: a9:92:8a:1c:52:26:90:bc:46:a9:be:25:23:34:97:71:91:07: 79:18:e8:ca:1e:ee:72:ed:3b:f2:80:53:96:92:82:3d:a4:1e: 5e:b4:56:51:c6:8a:d8:a6:c1:90:93:cf:65:49:96:f8:d3:ce: 7a:28:d2:3d:cb:da:7d:28:69:45:e7:13:bd:26:8c:03:23:09: 4a:f4:a1:86:97:a5:0e:f0:51:d1:8a:a6:5f:55:d0:cc:fa:73: 7e:1f:b7:ae -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE OUNBODExMC8GA1UEBRMoRTQ5NzRCODQxNkFEM0I5OUREMTFGM0IwNDA1NkYwQzc5 OUI3QTFDQjAeFw0yNTA0MDMwNzA3MzNaFw0yNTA0MTAwNzA3MzNaMBgxFjAUBgNV BAMTDTY3ZWUzM2I1LTcxMWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC54/cve/qkTdWPgUESTCzMUi2KqXIb49rLU8v1xPgweQqFajhdZJGs8JiFVz2N a6vgyJ4onGfyzzaC2cZCKv35kp6TRcWENedpjeWGb7JKMN9cmnuml6PEpUkWWYjm oeouOMdOODidyzEvZ9mqzWYYE02UTI/QEdisZvLZ94OpCOub4Bppg3PMrf5PZ95/ G7TMqqxMQlYirIdQac4tomxg+/bg0UhbfBqtu2QAxq8xVKc5+KsiQlnIcQa22bsU 7cYNq/B23kku368PE6d1deGxYS3tbAum/SxhPMdFbbChr/w7G9+UvRcr05HaN3z5 3VDGBL/LEC/5OTN4YtZMu1cbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUmN0dgYpW y3+6Qi0uDYTJezli8AwwHwYDVR0jBBgwFoAU5JdLhBatO5ndEfOwQFbwx5m3ocsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5Q0E4LzI5MzJDNTg4RTRG RDExRUZBQzFDRTY3RkM0RjlBRTAyLzVKZExoQmF0TzVuZEVmT3dRRmJ3eDVtM29j cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNUpkTGhCYXRPNW5kRWZPd1FGYnd4NW0zb2NzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5 Q0E4LzI5MzJDNTg4RTRGRDExRUZBQzFDRTY3RkM0RjlBRTAyLzVKZExoQmF0TzVu ZEVmT3dRRmJ3eDVtM29jcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACcmm2Juy0AoZBDD8TnflonCsse+cGDwgNeJo9slGeLhEkB7JfvsMiji BErYQpzkUnq8/kbk0P65X3KTt2zhcL10h01Ti15G4AQwCseOfL6WthPu83k/lgwN GNqRVSbIR41/iI9b2jxMTmfnTFBioH9LWnz/aK5dIIZfNuPUyj840Ei/42qD5966 xivqRHXR9jDjd4V/nEQ7crwfibP9fKp4RqmSihxSJpC8Rqm+JSM0l3GRB3kY6Moe 7nLtO/KAU5aSgj2kHl60VlHGitimwZCTz2VJlvjTznoo0j3L2n0oaUXnE70mjAMj CUr0oYaXpQ7wUdGKpl9V0Mz6c34ft64= -----END CERTIFICATE-----Generated at Fri Apr 4 21:55:37 2025 by rpki-client