$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE1A3/8B9DBBCE689F11EDAD177667C4F9AE02/-5w6kNDNa5K-MWAyXafCbH9OWQA.mft File: -5w6kNDNa5K-MWAyXafCbH9OWQA.mft (raw, json) Hash identifier: TBLTWn92q8WvvV1B5Lwf2ZTWQYHSjHAdJJLOtknm3gI= Subject key identifier: D4:0F:0B:24:AC:47:3A:24:E5:64:88:07:FC:A3:40:12:E0:73:EA:8E Authority key identifier: FB:9C:3A:90:D0:CD:6B:92:BE:31:60:32:5D:A7:C2:6C:7F:4E:59:00 Certificate issuer: /CN=A91DE1A3/serialNumber=FB9C3A90D0CD6B92BE3160325DA7C26C7F4E5900 Certificate serial: 01C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-5w6kNDNa5K-MWAyXafCbH9OWQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE1A3/8B9DBBCE689F11EDAD177667C4F9AE02/-5w6kNDNa5K-MWAyXafCbH9OWQA.mft Manifest number: 01BD Signing time: Sat 05 Apr 2025 02:30:07 +0000 Manifest this update: Sat 05 Apr 2025 02:30:07 +0000 Manifest next update: Sat 12 Apr 2025 02:30:07 +0000 Files and hashes: 1: -5w6kNDNa5K-MWAyXafCbH9OWQA.crl (hash: UG6dpEpKeJuIUsOVlr3zAU9kDEoEoYBEOZ+cZ0u71EI=) 2: F396DA1468A211ED9525A86CC4F9AE02.roa (hash: mfCo7xBHkX9UIyrOsrP0XEhPqQke0cTzgybKkz4msYM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE1A3/8B9DBBCE689F11EDAD177667C4F9AE02/-5w6kNDNa5K-MWAyXafCbH9OWQA.crl rsync://rpki.apnic.net/member_repository/A91DE1A3/8B9DBBCE689F11EDAD177667C4F9AE02/-5w6kNDNa5K-MWAyXafCbH9OWQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-5w6kNDNa5K-MWAyXafCbH9OWQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 02:30:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 448 (0x1c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE1A3 Validity Not Before: Apr 5 02:30:07 2025 GMT Not After : Apr 12 02:30:07 2025 GMT Subject: CN=67f095af-3e43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:07:d9:f6:58:7b:fe:3a:f5:84:f3:23:99:3b: 27:c6:ae:be:2f:71:f1:7d:b6:8f:3e:0d:28:45:19: 22:58:ca:03:06:7a:bc:92:99:0e:bc:62:74:35:0c: f7:15:8a:28:3c:8c:30:88:5d:60:1b:4f:38:9b:f1: bc:1c:6c:53:39:99:c9:ee:c0:71:ac:3b:5c:f7:a7: af:93:ea:e3:88:86:da:7b:4b:50:48:13:3e:05:2d: fa:a8:68:c1:c7:94:b2:57:20:93:f1:46:ee:1b:2a: cc:d2:cb:7d:39:fe:e7:9b:86:6f:62:5b:9f:8c:cf: db:83:ea:2d:0c:ee:7f:aa:21:57:a1:70:f9:74:1c: 2e:e8:46:3f:72:40:41:19:fb:cd:bf:95:27:8d:61: da:22:ec:96:4a:99:fe:e7:36:6b:7d:07:db:eb:08: a3:1f:26:d0:f2:be:25:a8:7a:44:d2:a2:d5:8d:34: 4f:0a:31:14:58:ec:b0:3d:9d:22:58:60:26:dc:3f: 1a:f0:33:bb:f2:30:43:b1:23:99:26:f1:40:8c:65: 67:56:db:78:6f:42:8a:01:d5:b0:fe:b1:36:5e:c0: 02:06:48:d2:29:65:28:69:6d:6c:f8:2d:d9:2d:bd: 15:3b:3a:07:8f:f8:75:c4:d5:8c:28:e3:5c:74:41: 73:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:0F:0B:24:AC:47:3A:24:E5:64:88:07:FC:A3:40:12:E0:73:EA:8E X509v3 Authority Key Identifier: keyid:FB:9C:3A:90:D0:CD:6B:92:BE:31:60:32:5D:A7:C2:6C:7F:4E:59:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE1A3/8B9DBBCE689F11EDAD177667C4F9AE02/-5w6kNDNa5K-MWAyXafCbH9OWQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-5w6kNDNa5K-MWAyXafCbH9OWQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE1A3/8B9DBBCE689F11EDAD177667C4F9AE02/-5w6kNDNa5K-MWAyXafCbH9OWQA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:65:09:85:c0:5a:8c:7a:4e:13:0e:88:42:18:60:57:23:25: 5b:13:0f:5e:06:3d:3f:53:0f:98:f9:92:c4:2f:26:f2:5d:70: 3a:a3:0a:8b:83:87:1c:c8:44:a3:eb:a4:b2:36:37:f6:22:a5: 77:f7:06:d0:76:e6:33:8d:69:bf:8b:0e:e7:79:fb:f5:84:8d: 7c:a8:ea:5d:6f:68:37:a1:1a:13:54:b5:8d:64:50:52:27:cc: 3b:57:11:97:9a:49:00:7f:27:64:41:4e:54:48:8d:09:1e:86: 1f:d7:64:a2:c4:e5:1e:4d:fd:68:89:9c:9f:0f:cf:6c:c9:9c: 8b:a7:02:d4:c0:64:d3:13:04:dd:2f:de:4a:3a:2d:c6:4b:19: 90:9c:a9:13:a9:3f:d5:48:49:6f:97:9b:0c:1b:b6:4b:ac:d0: f3:3d:07:c0:9e:c7:0f:a4:fb:5a:eb:0f:4e:e2:73:d0:93:9a: 81:3c:33:1e:f7:dd:a2:e7:85:ca:6d:ea:48:b9:5c:c9:de:06: ab:d4:02:c6:68:de:bf:2e:09:8e:7b:b9:11:c9:ef:12:90:27: e5:bf:2a:66:92:5b:b4:c9:c2:a8:f3:c9:0b:a0:a6:97:08:ab: 7f:c1:f0:1f:53:0c:4f:24:e8:a2:a8:38:07:17:7c:60:c3:2e: 4b:2c:1b:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REUxQTMxMTAvBgNVBAUTKEZCOUMzQTkwRDBDRDZCOTJCRTMxNjAzMjVEQTdDMjZD N0Y0RTU5MDAwHhcNMjUwNDA1MDIzMDA3WhcNMjUwNDEyMDIzMDA3WjAYMRYwFAYD VQQDEw02N2YwOTVhZi0zZTQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwQfZ9lh7/jr1hPMjmTsnxq6+L3HxfbaPPg0oRRkiWMoDBnq8kpkOvGJ0NQz3 FYooPIwwiF1gG084m/G8HGxTOZnJ7sBxrDtc96evk+rjiIbae0tQSBM+BS36qGjB x5SyVyCT8UbuGyrM0st9Of7nm4ZvYlufjM/bg+otDO5/qiFXoXD5dBwu6EY/ckBB GfvNv5UnjWHaIuyWSpn+5zZrfQfb6wijHybQ8r4lqHpE0qLVjTRPCjEUWOywPZ0i WGAm3D8a8DO78jBDsSOZJvFAjGVnVtt4b0KKAdWw/rE2XsACBkjSKWUoaW1s+C3Z Lb0VOzoHj/h1xNWMKONcdEFzmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNQPCySs Rzok5WSIB/yjQBLgc+qOMB8GA1UdIwQYMBaAFPucOpDQzWuSvjFgMl2nwmx/TlkA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTFBMy84QjlEQkJDRTY4 OUYxMUVEQUQxNzc2NjdDNEY5QUUwMi8tNXc2a05ETmE1Sy1NV0F5WGFmQ2JIOU9X UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy01dzZrTkROYTVLLU1XQXlYYWZDYkg5T1dRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTFBMy84QjlEQkJDRTY4OUYxMUVEQUQxNzc2NjdDNEY5QUUwMi8tNXc2a05ETmE1 Sy1NV0F5WGFmQ2JIOU9XUUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsZQmFwFqMek4TDohCGGBXIyVbEw9eBj0/Uw+Y+ZLELybyXXA6owqL g4ccyESj66SyNjf2IqV39wbQduYzjWm/iw7nefv1hI18qOpdb2g3oRoTVLWNZFBS J8w7VxGXmkkAfydkQU5USI0JHoYf12SixOUeTf1oiZyfD89syZyLpwLUwGTTEwTd L95KOi3GSxmQnKkTqT/VSElvl5sMG7ZLrNDzPQfAnscPpPta6w9O4nPQk5qBPDMe 992i54XKbepIuVzJ3gar1ALGaN6/LgmOe7kRye8SkCflvypmklu0ycKo88kLoKaX CKt/wfAfUwxPJOiiqDgHF3xgwy5LLBtv -----END CERTIFICATE-----Generated at Mon Apr 7 01:50:28 2025 by rpki-client