$ rpki-client -vvf rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft File: 5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft (raw, json) Hash identifier: bprTffkwJlGMx1eWNtXATxnpqm5S9NxLyZZU0IYvBx4= Subject key identifier: D5:9C:D4:96:82:3A:42:95:C1:6F:8E:D9:82:4C:EA:FC:72:08:84:D7 Authority key identifier: E4:7B:F7:02:54:53:26:97:D2:0D:0D:31:10:F6:25:37:0D:65:FA:83 Certificate issuer: /CN=A91B59E5/serialNumber=E47BF70254532697D20D0D3110F625370D65FA83 Certificate serial: 01AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft Manifest number: 017E Signing time: Sat 05 Apr 2025 03:51:12 +0000 Manifest this update: Sat 05 Apr 2025 03:51:11 +0000 Manifest next update: Sat 12 Apr 2025 03:51:11 +0000 Files and hashes: 1: 5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.crl (hash: FXwZw5YzPivgF6vxyx3kIv3L0KJfNNCdOAEyToYGkbI=) 2: D0104354BCED11EF9C3A7983C4F9AE02.roa (hash: 4Ah6T7xaUSGUhVoEQJzj4OxmJ0pIH3pkVlB9pwmr0jI=) 3: 9EEE3C44D94F11EF916BCF23C4F9AE02.roa (hash: JTgCQ/a/n5QlsjMCTHDArlAgGVjedlWxdAR2U4v5LnA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.crl rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 03:51:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 427 (0x1ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B59E5 Validity Not Before: Apr 5 03:51:11 2025 GMT Not After : Apr 12 03:51:11 2025 GMT Subject: CN=67f0a8b0-7509 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f0:c0:e0:2d:a6:2b:c4:f3:52:ce:51:02:cb: a5:ac:57:63:63:62:30:99:33:47:23:5d:16:e0:b0: 2d:dc:a9:1c:7b:81:b5:6c:fa:3f:fb:19:15:5e:19: 1e:b8:cd:40:84:cb:bf:95:4d:8e:c4:3c:23:85:83: 4f:8f:fd:aa:14:10:c8:a1:42:f4:c6:6d:a9:12:57: 2f:2f:90:87:f5:82:4f:47:3e:fc:9a:b4:ce:55:0c: e1:00:fb:03:dd:8a:1e:07:08:e5:1d:83:16:8a:ce: 50:f7:3e:45:c3:19:a5:f9:f4:64:c4:9a:e3:6c:50: 49:d8:f1:8e:b5:fd:90:b3:b1:75:ce:15:69:3b:d2: 5f:e1:05:40:4b:86:a3:12:a4:d9:35:74:a5:b2:ff: cc:ea:22:c8:86:a7:41:05:e8:64:7c:83:22:a7:f6: 4d:a3:ad:cf:09:9b:c6:40:b3:ff:61:a4:cb:1c:af: bf:6a:f2:1e:37:0d:95:e2:67:8b:76:24:cc:fb:28: 6d:59:d7:78:5e:3a:c2:1a:6f:1f:de:0d:7d:2f:e6: 94:6f:ed:8f:56:d5:34:ab:f3:12:ac:9d:2e:50:57: e6:da:b9:89:82:e8:c1:9d:89:de:fa:fa:04:eb:91: bd:50:8f:da:2e:de:32:98:30:4f:02:c8:9f:3b:82: 20:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:9C:D4:96:82:3A:42:95:C1:6F:8E:D9:82:4C:EA:FC:72:08:84:D7 X509v3 Authority Key Identifier: keyid:E4:7B:F7:02:54:53:26:97:D2:0D:0D:31:10:F6:25:37:0D:65:FA:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:f4:ef:25:ab:a9:52:fb:c0:6d:82:21:63:c2:7f:22:40:56: 91:db:96:7c:b0:0c:f1:68:e0:a3:ef:a1:65:bb:4f:6f:83:2e: 1f:00:c7:a3:eb:04:7d:02:c3:b9:89:47:8b:93:1c:99:b1:55: 95:c0:7e:75:2d:22:7f:8f:b2:c2:c4:7b:58:0d:05:0e:ba:86: 27:e5:c6:39:16:c1:02:0a:d7:ec:f5:80:57:f8:a5:b6:2d:dd: d5:3f:e1:48:0c:6d:7f:41:f1:78:bf:31:5a:5b:80:43:72:d8: f5:c8:7f:40:cf:c7:6b:c7:c2:b5:ce:4f:40:8a:37:8a:a3:ec: 20:11:02:41:07:6d:72:78:97:8f:dd:8c:74:6a:60:c0:40:03: 62:f9:37:d2:ea:bb:ca:37:5e:dd:33:d7:7c:d7:00:a1:78:be: 77:d5:0c:55:97:14:e0:99:a3:3a:4f:7a:1d:cf:8c:53:6d:27: 8c:70:a9:d2:16:c2:0d:b1:06:cd:71:0a:d2:04:5b:c8:77:c6: 00:e2:0a:73:bd:79:23:e8:78:71:03:64:c1:f2:0b:d1:fe:09: a5:15:7e:27:a7:4c:d3:83:e7:f0:d9:ea:dc:68:ec:da:dc:f3: 07:71:80:25:47:e4:6b:6c:45:9f:57:5d:c6:4a:87:9c:8d:2b: de:a8:54:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU5RTUxMTAvBgNVBAUTKEU0N0JGNzAyNTQ1MzI2OTdEMjBEMEQzMTEwRjYyNTM3 MEQ2NUZBODMwHhcNMjUwNDA1MDM1MTExWhcNMjUwNDEyMDM1MTExWjAYMRYwFAYD VQQDEw02N2YwYThiMC03NTA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwfDA4C2mK8TzUs5RAsulrFdjY2IwmTNHI10W4LAt3Kkce4G1bPo/+xkVXhke uM1AhMu/lU2OxDwjhYNPj/2qFBDIoUL0xm2pElcvL5CH9YJPRz78mrTOVQzhAPsD 3YoeBwjlHYMWis5Q9z5Fwxml+fRkxJrjbFBJ2PGOtf2Qs7F1zhVpO9Jf4QVAS4aj EqTZNXSlsv/M6iLIhqdBBehkfIMip/ZNo63PCZvGQLP/YaTLHK+/avIeNw2V4meL diTM+yhtWdd4XjrCGm8f3g19L+aUb+2PVtU0q/MSrJ0uUFfm2rmJgujBnYne+voE 65G9UI/aLt4ymDBPAsifO4IgBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNWc1JaC OkKVwW+O2YJM6vxyCITXMB8GA1UdIwQYMBaAFOR79wJUUyaX0g0NMRD2JTcNZfqD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTlFNS9ERDlGMUY3QzND MDExMUVFOTFDQkUxNTdDNEY5QUUwMi81SHYzQWxSVEpwZlNEUTB4RVBZbE53MWwt b00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVIdjNBbFJUSnBmU0RRMHhFUFlsTncxbC1vTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTlFNS9ERDlGMUY3QzNDMDExMUVFOTFDQkUxNTdDNEY5QUUwMi81SHYzQWxSVEpw ZlNEUTB4RVBZbE53MWwtb00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBU9O8lq6lS+8BtgiFjwn8iQFaR25Z8sAzxaOCj76Flu09vgy4fAMej 6wR9AsO5iUeLkxyZsVWVwH51LSJ/j7LCxHtYDQUOuoYn5cY5FsECCtfs9YBX+KW2 Ld3VP+FIDG1/QfF4vzFaW4BDctj1yH9Az8drx8K1zk9AijeKo+wgEQJBB21yeJeP 3Yx0amDAQANi+TfS6rvKN17dM9d81wCheL531QxVlxTgmaM6T3odz4xTbSeMcKnS FsINsQbNcQrSBFvId8YA4gpzvXkj6HhxA2TB8gvR/gmlFX4np0zTg+fw2ercaOza 3PMHcYAlR+RrbEWfV13GSoecjSveqFQf -----END CERTIFICATE-----Generated at Sat Apr 5 16:04:19 2025 by rpki-client