$ rpki-client -vvf rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft File: 5esYDNbcUWxm01KwR7npxaUCcOM.mft (raw, json) Hash identifier: 4KQ2eXnysbTGgwwNgMqn+IfkCHmtqUt5B5eYaemvbNE= Subject key identifier: 97:D8:21:62:68:E0:7B:10:36:A7:72:BC:AD:A3:F4:5A:60:1C:8A:18 Authority key identifier: E5:EB:18:0C:D6:DC:51:6C:66:D3:52:B0:47:B9:E9:C5:A5:02:70:E3 Certificate issuer: /CN=A91ABFD9/serialNumber=E5EB180CD6DC516C66D352B047B9E9C5A50270E3 Certificate serial: 0898 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft Manifest number: 087C Signing time: Wed 12 Mar 2025 20:20:02 +0000 Manifest this update: Wed 12 Mar 2025 20:20:01 +0000 Manifest next update: Wed 19 Mar 2025 20:20:01 +0000 Files and hashes: 1: 5esYDNbcUWxm01KwR7npxaUCcOM.crl (hash: aK15aOn0HiFCC3pYHbFAHVd0GrDDlfZ8X9dIixbuN1Y=) 2: E2E21364C4F811EAB8D31113C4F9AE02.roa (hash: KT6K45U/vV1zQkhhfiaxr9a9XeTKLIwG0eEDcyR3ERI=) 3: F1A54AC47A5611EB876D281FC4F9AE02.roa (hash: LbbFjEbhHg5fzKZNW2jokQ6UuaIS/rDPKgFU2q0pJeg=) 4: 36945EC2232711EBA0F14F17C4F9AE02.roa (hash: Gzcr6RaAc7WjlspRH4slQcyVh4i/nmyVkR/RXd4O0KM=) 5: 6AE50E1C21E011EBBF36CD21C4F9AE02.roa (hash: Lg2iSZUiBgCc3+l3q9JExUq+jxWe1fvszct9oy4Ys3k=) 6: E22ECDEAC4F811EAB8D31113C4F9AE02.roa (hash: tlDd7aRrzNeu6uslbfPluCcOk663EDpRsH8KL9nqlD4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.crl rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 20:20:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2200 (0x898) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ABFD9 Validity Not Before: Mar 12 20:20:01 2025 GMT Not After : Mar 19 20:20:01 2025 GMT Subject: CN=67d1ec72-6f85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:5a:56:51:aa:4a:1b:79:1a:26:aa:4d:05:9d: f8:58:00:4c:16:77:6a:34:9a:ef:71:fa:52:99:bf: 76:eb:af:08:f8:3e:e0:ac:0a:b2:86:75:16:b2:b1: e9:ab:7f:c3:05:5f:9f:d3:1e:f2:77:b0:24:6c:73: c9:c3:d6:1c:b0:20:0b:ff:f4:61:6b:2a:e5:bc:73: c7:31:76:d6:4b:6b:de:24:06:eb:27:2c:62:58:cd: 69:17:78:26:f7:e4:e5:86:26:fd:28:8d:be:92:ac: a9:c1:5c:9a:3f:6f:00:c6:50:53:77:6f:92:d0:2e: 6f:35:34:0e:e8:37:4a:93:0e:00:c0:d6:29:fd:b3: 17:f0:5c:8e:3b:15:4f:84:74:f9:9b:cc:52:d5:0e: 34:8e:e1:1b:dd:9c:39:0a:90:af:58:a4:75:44:65: 28:91:fa:e1:02:7f:fa:2f:9a:78:d5:3e:4c:d9:ff: f0:7d:3f:59:5e:7a:42:75:e8:84:6e:51:d4:7b:03: df:8d:ce:6d:01:26:46:e9:0d:53:a1:93:02:be:56: 79:25:ed:46:17:8a:7c:db:1b:50:b8:03:ca:21:b1: 2b:30:14:52:d5:5a:ce:35:b6:4f:ee:f9:72:b6:98: 96:8e:54:d3:2f:64:f0:90:8d:66:b0:ac:9c:ce:4e: 5c:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:D8:21:62:68:E0:7B:10:36:A7:72:BC:AD:A3:F4:5A:60:1C:8A:18 X509v3 Authority Key Identifier: keyid:E5:EB:18:0C:D6:DC:51:6C:66:D3:52:B0:47:B9:E9:C5:A5:02:70:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:2a:0d:ef:9f:c2:35:ac:ee:b7:f1:06:ea:79:4c:d8:b8:43: 8d:d7:6c:c7:93:bd:26:7e:fc:53:d0:0c:43:a7:38:c7:e5:c5: 87:9e:97:4e:fc:b6:12:4a:d4:3d:da:2d:88:9c:e0:cf:59:b5: 24:70:3a:55:6d:5f:9b:5d:59:57:92:48:c2:b9:40:12:ed:54: 3d:0a:b4:0d:5a:2c:55:d6:1c:c9:d6:a7:e3:48:df:fc:9d:96: 77:69:a7:be:19:1c:1c:70:a5:29:32:05:81:13:60:5b:08:0c: 7e:bd:df:2e:49:1e:54:2e:14:dc:13:97:41:6d:e4:be:df:8d: 27:2d:11:f4:28:52:cd:99:e8:14:b6:88:4e:6f:a2:e5:dc:b2: db:e5:9f:0e:28:84:db:2a:2c:5d:df:e3:e7:82:ec:c2:37:73: ac:a0:d7:f7:b3:9d:c6:95:f8:6a:08:9c:19:02:62:f5:e9:7d: 9a:bf:4e:77:29:95:88:62:09:cc:28:1e:7a:f5:60:98:33:57: 6d:11:d9:a6:3d:5a:6a:2f:49:b0:6e:ca:31:48:85:20:d3:f5: 1c:e5:30:15:fc:8a:c5:c9:ec:da:da:48:4a:2a:1e:d4:30:ff: 54:8d:fb:87:f5:24:db:90:a5:43:9c:e7:0c:74:9d:72:64:63: 63:2f:e7:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUJGRDkxMTAvBgNVBAUTKEU1RUIxODBDRDZEQzUxNkM2NkQzNTJCMDQ3QjlFOUM1 QTUwMjcwRTMwHhcNMjUwMzEyMjAyMDAxWhcNMjUwMzE5MjAyMDAxWjAYMRYwFAYD VQQDEw02N2QxZWM3Mi02Zjg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvFpWUapKG3kaJqpNBZ34WABMFndqNJrvcfpSmb92668I+D7grAqyhnUWsrHp q3/DBV+f0x7yd7AkbHPJw9YcsCAL//RhayrlvHPHMXbWS2veJAbrJyxiWM1pF3gm 9+Tlhib9KI2+kqypwVyaP28AxlBTd2+S0C5vNTQO6DdKkw4AwNYp/bMX8FyOOxVP hHT5m8xS1Q40juEb3Zw5CpCvWKR1RGUokfrhAn/6L5p41T5M2f/wfT9ZXnpCdeiE blHUewPfjc5tASZG6Q1ToZMCvlZ5Je1GF4p82xtQuAPKIbErMBRS1VrONbZP7vly tpiWjlTTL2TwkI1msKyczk5coQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJfYIWJo 4HsQNqdyvK2j9FpgHIoYMB8GA1UdIwQYMBaAFOXrGAzW3FFsZtNSsEe56cWlAnDj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQkZEOS80QUU4MDQxRUI5 RDcxMUVBOUNGNTFFNUZDNEY5QUUwMi81ZXNZRE5iY1VXeG0wMUt3UjducHhhVUNj T00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVlc1lETmJjVVd4bTAxS3dSN25weGFVQ2NPTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QkZEOS80QUU4MDQxRUI5RDcxMUVBOUNGNTFFNUZDNEY5QUUwMi81ZXNZRE5iY1VX eG0wMUt3UjducHhhVUNjT00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmKg3vn8I1rO638QbqeUzYuEON12zHk70mfvxT0AxDpzjH5cWHnpdO /LYSStQ92i2InODPWbUkcDpVbV+bXVlXkkjCuUAS7VQ9CrQNWixV1hzJ1qfjSN/8 nZZ3aae+GRwccKUpMgWBE2BbCAx+vd8uSR5ULhTcE5dBbeS+340nLRH0KFLNmegU tohOb6Ll3LLb5Z8OKITbKixd3+PnguzCN3OsoNf3s53GlfhqCJwZAmL16X2av053 KZWIYgnMKB569WCYM1dtEdmmPVpqL0mwbsoxSIUg0/Uc5TAV/IrFyeza2khKKh7U MP9UjfuH9STbkKVDnOcMdJ1yZGNjL+dQ -----END CERTIFICATE-----Generated at Thu Mar 13 21:31:10 2025 by rpki-client