$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft File: 5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft (raw, json) Hash identifier: 9k7b3Z2tj/t4X3RXZ4uLTOmoxjl7RGS9mwmnAbiXCoM= Subject key identifier: EC:30:8C:1A:40:9D:40:82:63:15:06:5F:D9:B4:A6:80:F2:5C:66:C2 Authority key identifier: E5:B1:CE:1D:45:39:18:19:5B:EB:5C:D9:0F:6D:87:9E:FE:99:10:A2 Certificate issuer: /CN=A91DE5E8/serialNumber=E5B1CE1D453918195BEB5CD90F6D879EFE9910A2 Certificate serial: 019D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bHOHUU5GBlb61zZD22Hnv6ZEKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft Manifest number: 0197 Signing time: Thu 03 Apr 2025 02:45:25 +0000 Manifest this update: Thu 03 Apr 2025 02:45:25 +0000 Manifest next update: Thu 10 Apr 2025 02:45:25 +0000 Files and hashes: 1: 5bHOHUU5GBlb61zZD22Hnv6ZEKI.crl (hash: 9E4MMYlz11k3fPQ54w75UrzLqHPXN82NX0IMQyqfufQ=) 2: 785B44D6F2AF11EF97443030C4F9AE02.roa (hash: 3X8JQRJ56NXF/A25OQxe1Q8xkJiOt4/FMaPtZ+BwKik=) 3: B264EB66A30911ED99A82087C4F9AE02.roa (hash: tZEzhiKfHDteKh17cCbwci/tZYnVymPaW90yd5ZJ1q4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.crl rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bHOHUU5GBlb61zZD22Hnv6ZEKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 02:45:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 413 (0x19d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE5E8 Validity Not Before: Apr 3 02:45:25 2025 GMT Not After : Apr 10 02:45:25 2025 GMT Subject: CN=67edf645-ac5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:11:dc:d6:9c:81:2e:60:90:e1:da:9f:ed:6a: 41:77:f5:d2:17:b8:3d:a3:89:3d:ab:de:af:55:a2: 12:1c:5b:94:7b:9e:c9:14:91:8f:a8:7c:b6:6a:6b: 99:28:4c:f3:7a:ec:bf:55:a3:bb:ed:6e:23:a6:36: b8:ac:8f:39:03:96:cf:d0:b5:57:1a:c9:98:ca:c6: 99:5a:d4:24:85:4b:f3:49:94:10:8d:29:6e:de:9c: a2:03:92:e3:2c:32:dd:aa:c9:96:a2:80:32:31:06: df:d4:2f:c4:cc:a9:79:a0:f0:ff:39:b3:5f:8d:a3: 17:53:80:64:72:19:11:65:8a:d6:c9:96:ce:37:9c: a6:82:fd:17:9a:a3:f9:4d:8d:f4:2b:08:65:be:a9: b6:b7:8b:b2:52:dc:62:b3:81:0e:94:e7:c8:ef:21: 0d:09:fa:92:50:66:cc:a4:0c:34:27:80:5b:db:a6: 49:f6:e7:04:82:fd:f6:c1:86:d6:03:5c:4f:6a:0c: 1b:f7:3d:0e:cd:19:83:73:d9:72:1f:0a:cd:5f:9e: d7:46:5d:67:c2:59:32:e0:26:0c:ec:71:7d:fa:51: e3:da:55:ef:89:2b:38:40:7a:6d:0f:4f:ec:76:04: dd:c2:f0:27:f2:8e:f6:93:da:87:23:ec:ec:3e:0a: 85:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:30:8C:1A:40:9D:40:82:63:15:06:5F:D9:B4:A6:80:F2:5C:66:C2 X509v3 Authority Key Identifier: keyid:E5:B1:CE:1D:45:39:18:19:5B:EB:5C:D9:0F:6D:87:9E:FE:99:10:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bHOHUU5GBlb61zZD22Hnv6ZEKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:75:e1:87:c2:19:3c:41:18:43:51:4e:db:3f:58:60:f2:00: 9d:bd:0e:84:45:25:94:9f:10:21:eb:c9:ea:6f:c6:2f:43:9b: 0e:d3:26:e7:0a:80:e2:38:d2:a1:c4:13:a1:79:f8:a1:8f:a8: f9:50:d2:62:e7:52:9b:7e:58:7a:d7:5c:51:4f:b3:82:9f:84: 9b:44:f3:b4:0c:82:b1:da:97:13:b9:bf:e1:7e:85:2e:f6:68: cf:67:4e:25:3c:cd:81:ec:98:07:f0:e4:58:86:e1:a2:b3:2b: 41:5a:e1:31:ef:61:81:b6:08:70:04:fe:cf:90:4a:f8:af:71: 82:82:ce:13:1d:f0:fb:49:8d:46:ce:a1:01:70:3d:85:cf:11: 8f:38:a3:f8:2f:de:9e:4e:e8:26:3e:36:0b:b4:98:ba:56:7b: d2:f7:01:af:85:78:22:2e:f2:f2:41:e2:67:31:37:aa:84:10: 5c:f7:4b:c2:85:00:50:03:38:c7:71:1b:1e:6c:43:e8:e3:8e: 7a:65:e0:48:24:0b:67:7b:75:62:3e:b3:4e:79:8f:b6:ea:bf: 16:b9:71:ae:80:04:1a:c4:83:55:76:f4:c4:e0:7c:f7:ee:42: d2:ba:61:a8:e2:96:28:82:8c:d9:31:9e:4f:b1:e0:3b:22:fa: a1:81:7b:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU1RTgxMTAvBgNVBAUTKEU1QjFDRTFENDUzOTE4MTk1QkVCNUNEOTBGNkQ4NzlF RkU5OTEwQTIwHhcNMjUwNDAzMDI0NTI1WhcNMjUwNDEwMDI0NTI1WjAYMRYwFAYD VQQDEw02N2VkZjY0NS1hYzVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5BHc1pyBLmCQ4dqf7WpBd/XSF7g9o4k9q96vVaISHFuUe57JFJGPqHy2amuZ KEzzeuy/VaO77W4jpja4rI85A5bP0LVXGsmYysaZWtQkhUvzSZQQjSlu3pyiA5Lj LDLdqsmWooAyMQbf1C/EzKl5oPD/ObNfjaMXU4BkchkRZYrWyZbON5ymgv0XmqP5 TY30Kwhlvqm2t4uyUtxis4EOlOfI7yENCfqSUGbMpAw0J4Bb26ZJ9ucEgv32wYbW A1xPagwb9z0OzRmDc9lyHwrNX57XRl1nwlky4CYM7HF9+lHj2lXviSs4QHptD0/s dgTdwvAn8o72k9qHI+zsPgqFwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOwwjBpA nUCCYxUGX9m0poDyXGbCMB8GA1UdIwQYMBaAFOWxzh1FORgZW+tc2Q9th57+mRCi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTVFOC9FOUUxQkYyOEEz MDUxMUVEQUMxNEVFNkNDNEY5QUUwMi81YkhPSFVVNUdCbGI2MXpaRDIySG52NlpF S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzViSE9IVVU1R0JsYjYxelpEMjJIbnY2WkVLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTVFOC9FOUUxQkYyOEEzMDUxMUVEQUMxNEVFNkNDNEY5QUUwMi81YkhPSFVVNUdC bGI2MXpaRDIySG52NlpFS0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYdeGHwhk8QRhDUU7bP1hg8gCdvQ6ERSWUnxAh68nqb8YvQ5sO0ybn CoDiONKhxBOhefihj6j5UNJi51Kbflh611xRT7OCn4SbRPO0DIKx2pcTub/hfoUu 9mjPZ04lPM2B7JgH8ORYhuGisytBWuEx72GBtghwBP7PkEr4r3GCgs4THfD7SY1G zqEBcD2FzxGPOKP4L96eTugmPjYLtJi6VnvS9wGvhXgiLvLyQeJnMTeqhBBc90vC hQBQAzjHcRsebEPo4456ZeBIJAtne3ViPrNOeY+26r8WuXGugAQaxINVdvTE4Hz3 7kLSumGo4pYogozZMZ5PseA7IvqhgXv7 -----END CERTIFICATE-----Generated at Fri Apr 4 22:10:36 2025 by rpki-client