$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC1DE/732D69B6277911ED9D48F423C4F9AE02/j5ZyrK2aUfA9SLxDtjOpVzSY494.mft File: j5ZyrK2aUfA9SLxDtjOpVzSY494.mft (raw, json) Hash identifier: wpByInXkeuIoCnkI5LFi6J1XE9f8zfOpmnVwuZZ1zzo= Subject key identifier: AC:B6:49:61:C9:4F:57:4E:21:81:32:71:B7:1E:EE:0F:19:90:3E:58 Authority key identifier: 8F:96:72:AC:AD:9A:51:F0:3D:48:BC:43:B6:33:A9:57:34:98:E3:DE Certificate issuer: /CN=A91FC1DE/serialNumber=8F9672ACAD9A51F03D48BC43B633A9573498E3DE Certificate serial: 0221 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j5ZyrK2aUfA9SLxDtjOpVzSY494.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC1DE/732D69B6277911ED9D48F423C4F9AE02/j5ZyrK2aUfA9SLxDtjOpVzSY494.mft Manifest number: 0220 Signing time: Mon 21 Apr 2025 01:33:55 +0000 Manifest this update: Mon 21 Apr 2025 01:33:55 +0000 Manifest next update: Mon 28 Apr 2025 01:33:55 +0000 Files and hashes: 1: j5ZyrK2aUfA9SLxDtjOpVzSY494.crl (hash: RBzwSCYI3qGRcs7TSH8kpbCln7UBIs0Hy0MaLBdI2XA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC1DE/732D69B6277911ED9D48F423C4F9AE02/j5ZyrK2aUfA9SLxDtjOpVzSY494.crl rsync://rpki.apnic.net/member_repository/A91FC1DE/732D69B6277911ED9D48F423C4F9AE02/j5ZyrK2aUfA9SLxDtjOpVzSY494.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j5ZyrK2aUfA9SLxDtjOpVzSY494.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 01:33:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 545 (0x221) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC1DE, serialNumber=8F9672ACAD9A51F03D48BC43B633A9573498E3DE Validity Not Before: Apr 21 01:33:55 2025 GMT Not After : Apr 28 01:33:55 2025 GMT Subject: CN=6805a083-4d15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:20:54:98:57:93:0c:f8:dd:62:42:7a:92:f9: b8:3d:cd:e9:c7:c0:ed:38:c7:2b:27:71:8f:5d:0d: 9a:34:65:87:09:52:0a:52:40:06:ed:25:a3:fc:9b: 89:ee:75:7d:4e:69:f4:f2:e6:64:13:4c:01:fe:c1: 33:94:29:87:fe:5f:d9:31:b6:37:70:72:73:83:0e: f1:b0:99:7d:3d:f7:b3:66:a7:1c:46:29:6c:af:aa: 8e:54:bf:a2:e5:b9:94:27:e8:2e:87:43:ad:35:0c: 66:70:a4:5f:e8:07:ea:88:b4:f1:3a:94:04:1b:4e: a5:01:68:c7:33:86:5b:06:5a:ad:85:f8:19:8d:6c: 6d:47:ad:d0:fd:b0:05:c5:be:27:fd:bd:df:dc:96: 62:93:cc:e6:05:a8:a8:40:7d:fe:f2:70:52:0a:6d: fe:7f:04:0f:ee:65:c4:d0:a9:3f:57:f9:eb:5c:b2: eb:5d:d3:76:a8:b5:be:18:b3:0f:83:22:15:e4:c3: 83:e2:b1:55:8d:0c:7c:86:d8:7e:64:c2:80:e3:b9: c9:54:a3:c6:8f:79:e8:69:ea:5f:a6:63:18:0a:05: e9:68:42:56:a7:fa:4e:7e:73:84:94:45:2c:dc:6c: 57:a8:f1:5c:59:6a:ef:9b:df:01:60:66:ff:26:6d: d3:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:B6:49:61:C9:4F:57:4E:21:81:32:71:B7:1E:EE:0F:19:90:3E:58 X509v3 Authority Key Identifier: keyid:8F:96:72:AC:AD:9A:51:F0:3D:48:BC:43:B6:33:A9:57:34:98:E3:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC1DE/732D69B6277911ED9D48F423C4F9AE02/j5ZyrK2aUfA9SLxDtjOpVzSY494.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j5ZyrK2aUfA9SLxDtjOpVzSY494.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC1DE/732D69B6277911ED9D48F423C4F9AE02/j5ZyrK2aUfA9SLxDtjOpVzSY494.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:c7:81:20:b4:80:ae:ec:60:6e:67:6d:95:65:28:9d:77:3d: 87:bb:62:7f:88:ad:84:9b:77:ae:f1:4c:65:33:f3:84:33:3c: eb:04:17:4c:21:f4:6e:e3:64:50:2a:3e:f4:52:96:b8:c8:b3: 4d:45:b3:0a:56:7e:76:c1:4e:64:cc:6b:8f:97:26:ea:0f:a3: e4:07:33:7e:ee:3b:f8:fa:18:8b:e6:ff:6c:32:12:fb:6f:34: 85:69:3a:0b:b8:72:dc:12:76:96:85:b7:12:4d:63:ae:52:2e: da:3e:28:00:38:8e:11:c8:53:a6:91:c6:b4:47:51:6c:e1:cf: fb:32:6b:0c:df:23:6e:3d:ce:97:d6:18:1b:9f:b8:cb:36:be: 81:a2:05:50:c2:69:e7:0b:df:09:87:c5:07:01:cd:53:e4:d5: d4:83:07:f1:ae:ee:56:b1:d8:64:af:ed:0f:42:5d:bd:ba:10: 53:fe:4d:29:02:27:6e:10:fd:1f:86:22:20:31:32:ac:e0:da: 7c:d8:96:55:ec:4b:08:6d:92:7f:94:c9:82:05:82:a3:7d:ec: 3a:88:bd:bb:8f:b7:f3:92:2c:58:ae:e5:31:66:43:24:91:d7: 9f:da:61:8b:e4:e4:7e:3f:89:2f:d1:23:84:85:eb:e8:f0:12: 09:5e:87:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkMxREUxMTAvBgNVBAUTKDhGOTY3MkFDQUQ5QTUxRjAzRDQ4QkM0M0I2MzNBOTU3 MzQ5OEUzREUwHhcNMjUwNDIxMDEzMzU1WhcNMjUwNDI4MDEzMzU1WjAYMRYwFAYD VQQDEw02ODA1YTA4My00ZDE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuCBUmFeTDPjdYkJ6kvm4Pc3px8DtOMcrJ3GPXQ2aNGWHCVIKUkAG7SWj/JuJ 7nV9Tmn08uZkE0wB/sEzlCmH/l/ZMbY3cHJzgw7xsJl9PfezZqccRilsr6qOVL+i 5bmUJ+guh0OtNQxmcKRf6AfqiLTxOpQEG06lAWjHM4ZbBlqthfgZjWxtR63Q/bAF xb4n/b3f3JZik8zmBaioQH3+8nBSCm3+fwQP7mXE0Kk/V/nrXLLrXdN2qLW+GLMP gyIV5MOD4rFVjQx8hth+ZMKA47nJVKPGj3noaepfpmMYCgXpaEJWp/pOfnOElEUs 3GxXqPFcWWrvm98BYGb/Jm3TuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKy2SWHJ T1dOIYEycbce7g8ZkD5YMB8GA1UdIwQYMBaAFI+WcqytmlHwPUi8Q7YzqVc0mOPe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzFERS83MzJENjlCNjI3 NzkxMUVEOUQ0OEY0MjNDNEY5QUUwMi9qNVp5cksyYVVmQTlTTHhEdGpPcFZ6U1k0 OTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2o1WnlySzJhVWZBOVNMeER0ak9wVnpTWTQ5NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzFERS83MzJENjlCNjI3NzkxMUVEOUQ0OEY0MjNDNEY5QUUwMi9qNVp5cksyYVVm QTlTTHhEdGpPcFZ6U1k0OTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJx4EgtICu7GBuZ22VZSiddz2Hu2J/iK2Em3eu8UxlM/OEMzzrBBdM IfRu42RQKj70Upa4yLNNRbMKVn52wU5kzGuPlybqD6PkBzN+7jv4+hiL5v9sMhL7 bzSFaToLuHLcEnaWhbcSTWOuUi7aPigAOI4RyFOmkca0R1Fs4c/7MmsM3yNuPc6X 1hgbn7jLNr6BogVQwmnnC98Jh8UHAc1T5NXUgwfxru5Wsdhkr+0PQl29uhBT/k0p AiduEP0fhiIgMTKs4Np82JZV7EsIbZJ/lMmCBYKjfew6iL27j7fzkixYruUxZkMk kdef2mGL5OR+P4kv0SOEhevo8BIJXodG -----END CERTIFICATE-----Generated at Tue Apr 22 06:13:16 2025 by rpki-client