$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft File: 5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft (raw, json) Hash identifier: efiru3v+2a6/taOHS9rtDunPCzLs+Z1lVgXqhHupqV4= Subject key identifier: 20:83:F5:F8:E9:8B:CA:92:1F:1A:60:A2:B9:3B:9F:65:96:FE:67:9C Authority key identifier: E4:5F:61:EF:BC:B2:E7:B1:E4:14:B2:CB:DC:34:50:F7:F8:46:18:9D Certificate issuer: /CN=A91E4ED1/serialNumber=E45F61EFBCB2E7B1E414B2CBDC3450F7F846189D Certificate serial: 0C07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5F9h77yy57HkFLLL3DRQ9_hGGJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft Manifest number: 0C05 Signing time: Thu 10 Apr 2025 18:35:16 +0000 Manifest this update: Thu 10 Apr 2025 18:35:15 +0000 Manifest next update: Thu 17 Apr 2025 18:35:15 +0000 Files and hashes: 1: 5F9h77yy57HkFLLL3DRQ9_hGGJ0.crl (hash: TLNiJ4/ttK7Mx9uiEdk2Pbajahs2+esHI8ldzgyDX9I=) 2: D77C5AC003E611F0A9F5535FC4F9AE02.roa (hash: C3dI3f47oUkTpODJD7lPzsLlPec49Cck1X3kjiuVXDM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.crl rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5F9h77yy57HkFLLL3DRQ9_hGGJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 18:35:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3079 (0xc07) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4ED1, serialNumber=E45F61EFBCB2E7B1E414B2CBDC3450F7F846189D Validity Not Before: Apr 10 18:35:15 2025 GMT Not After : Apr 17 18:35:15 2025 GMT Subject: CN=67f80f64-cacc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:55:cf:d6:ef:93:a9:29:7f:c1:74:79:d9:8f: 81:67:8e:d3:c4:37:c4:bc:07:70:c3:ed:65:7b:26: a6:09:23:0e:6a:e5:25:89:ca:ff:87:1f:ce:5e:d6: 39:42:b5:f8:7d:19:0a:97:55:f4:bc:c1:9e:a6:9c: 3f:a9:f6:a5:f5:09:c0:b7:19:f6:cf:fa:09:9d:a1: 4d:a0:ba:39:3b:1d:00:07:56:27:ad:df:c3:27:b5: b6:49:10:c7:e5:9a:81:87:f7:da:67:7d:47:95:6f: b3:29:5f:a8:bb:63:66:16:5a:a2:9e:35:3b:3d:1e: e5:bf:7a:c2:3e:69:c8:64:c6:75:e4:e7:f7:f2:c9: cb:12:9d:f6:d5:96:d3:ef:05:d8:59:4b:39:81:3c: f8:8f:d7:29:b9:94:5b:ea:2d:04:bb:76:a4:54:cf: 10:60:01:eb:7f:6b:35:e4:14:e9:0f:47:45:c8:3b: 8d:83:e9:2d:85:04:c8:6d:ae:d6:fc:74:98:7a:ea: 80:ad:e3:60:7e:5e:fd:09:92:14:be:5f:53:10:10: 21:75:ee:f8:d3:ff:74:bb:59:1f:de:0d:3c:79:65: 88:40:bd:b7:75:0b:26:16:25:4d:37:1d:13:62:a9: 4a:e9:c0:b8:6c:6e:9e:1c:6e:24:30:01:b2:61:07: 5a:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:83:F5:F8:E9:8B:CA:92:1F:1A:60:A2:B9:3B:9F:65:96:FE:67:9C X509v3 Authority Key Identifier: keyid:E4:5F:61:EF:BC:B2:E7:B1:E4:14:B2:CB:DC:34:50:F7:F8:46:18:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5F9h77yy57HkFLLL3DRQ9_hGGJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:72:86:c7:92:73:2b:e6:a7:c7:93:5d:c4:34:0a:e5:6b:ae: 8c:b3:2d:ae:0b:f6:a2:c2:d0:39:0d:bf:89:9f:71:f8:5a:4f: 2f:09:30:8d:8c:21:49:57:89:2d:c1:6b:fc:f3:e0:57:c0:6b: d9:41:11:ba:19:1b:95:d9:17:3a:c3:b0:a4:8f:80:09:03:90: 68:3d:e4:12:9b:08:ca:7d:2c:08:74:ae:d3:d0:20:a7:ed:d8: eb:c1:76:0b:d9:4f:51:b6:23:4f:7a:b3:b2:cf:6b:88:2e:ca: d4:44:18:21:d5:be:2b:8a:48:31:ef:48:f9:31:db:3a:e4:1b: ff:91:83:ee:d7:42:01:fe:fb:7b:47:00:0d:7f:a8:11:d5:55: d8:4e:a4:1c:df:42:41:3d:96:03:f8:53:de:f4:f6:d7:7b:d0: 05:26:8d:75:eb:ea:8e:72:38:1d:bc:0f:9c:71:30:3f:88:db: 30:8c:0b:6a:f7:01:93:7e:84:44:20:35:02:8e:56:3e:89:6e: b2:f8:b0:9b:7b:0d:5a:a2:88:da:83:25:68:f4:66:d2:21:40: 36:f4:8e:2d:26:03:56:1c:fd:2c:f2:d0:c8:21:6d:af:23:2d: 24:15:8d:c3:66:e3:f2:a9:1e:e6:b8:a5:a7:1c:58:f2:42:9b: 85:9f:13:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDAcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRFRDExMTAvBgNVBAUTKEU0NUY2MUVGQkNCMkU3QjFFNDE0QjJDQkRDMzQ1MEY3 Rjg0NjE4OUQwHhcNMjUwNDEwMTgzNTE1WhcNMjUwNDE3MTgzNTE1WjAYMRYwFAYD VQQDEw02N2Y4MGY2NC1jYWNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+lXP1u+TqSl/wXR52Y+BZ47TxDfEvAdww+1leyamCSMOauUlicr/hx/OXtY5 QrX4fRkKl1X0vMGeppw/qfal9QnAtxn2z/oJnaFNoLo5Ox0AB1Ynrd/DJ7W2SRDH 5ZqBh/faZ31HlW+zKV+ou2NmFlqinjU7PR7lv3rCPmnIZMZ15Of38snLEp321ZbT 7wXYWUs5gTz4j9cpuZRb6i0Eu3akVM8QYAHrf2s15BTpD0dFyDuNg+kthQTIba7W /HSYeuqAreNgfl79CZIUvl9TEBAhde740/90u1kf3g08eWWIQL23dQsmFiVNNx0T YqlK6cC4bG6eHG4kMAGyYQda/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCCD9fjp i8qSHxpgork7n2WW/mecMB8GA1UdIwQYMBaAFORfYe+8suex5BSyy9w0UPf4Rhid MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEVEMS81RkRENzhCMjBC NjQxMUVBOTA5MjMwNjZDNEY5QUUwMi81RjloNzd5eTU3SGtGTExMM0RSUTlfaEdH SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVGOWg3N3l5NTdIa0ZMTEwzRFJROV9oR0dKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEVEMS81RkRENzhCMjBCNjQxMUVBOTA5MjMwNjZDNEY5QUUwMi81RjloNzd5eTU3 SGtGTExMM0RSUTlfaEdHSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAicobHknMr5qfHk13ENArla66Msy2uC/aiwtA5Db+Jn3H4Wk8vCTCN jCFJV4ktwWv88+BXwGvZQRG6GRuV2Rc6w7Ckj4AJA5BoPeQSmwjKfSwIdK7T0CCn 7djrwXYL2U9RtiNPerOyz2uILsrURBgh1b4rikgx70j5Mds65Bv/kYPu10IB/vt7 RwANf6gR1VXYTqQc30JBPZYD+FPe9PbXe9AFJo116+qOcjgdvA+ccTA/iNswjAtq 9wGTfoREIDUCjlY+iW6y+LCbew1aoojagyVo9GbSIUA29I4tJgNWHP0s8tDIIW2v Iy0kFY3DZuPyqR7muKWnHFjyQpuFnxP9 -----END CERTIFICATE-----Generated at Sat Apr 12 19:14:37 2025 by rpki-client