$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.mft File: 7XLHFrwK9Z1DBjI_uqR0vUtN5xw.mft (raw, json) Hash identifier: rFNQugk7bmf9LdBzMm9MWAcS7N/pSd2IWLAetrke4ZQ= Subject key identifier: 4F:7F:5B:C0:96:C3:0D:72:C2:38:98:66:CE:FA:56:AA:4E:2D:04:EA Authority key identifier: ED:72:C7:16:BC:0A:F5:9D:43:06:32:3F:BA:A4:74:BD:4B:4D:E7:1C Certificate issuer: /CN=A91BAA24/serialNumber=ED72C716BC0AF59D4306323FBAA474BD4B4DE71C Certificate serial: 05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.mft Manifest number: 04 Signing time: Sun 11 May 2025 06:55:07 +0000 Manifest this update: Sun 11 May 2025 06:55:07 +0000 Manifest next update: Sun 18 May 2025 06:55:07 +0000 Files and hashes: 1: 7XLHFrwK9Z1DBjI_uqR0vUtN5xw.crl (hash: hBv7wl1n2Ox3AocR/ZFDyO0EdC+nB2t+Fe2lm8CA3+s=) 2: 28C2D6002BCB11F0A99C1E60C4F9AE02.roa (hash: 3eRh0WSm3ML8fWWz0uqzCk5In0Q1rchUgCmcr9wy07U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.crl rsync://rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAA24, serialNumber=ED72C716BC0AF59D4306323FBAA474BD4B4DE71C Validity Not Before: May 11 06:55:07 2025 GMT Not After : May 18 06:55:07 2025 GMT Subject: CN=682049cb-5d95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:6f:9e:13:47:01:30:ee:75:a2:65:1a:68:98: 0e:ec:63:7f:14:9e:de:30:40:23:1f:ad:f0:45:75: b2:27:1b:0a:3a:c7:28:90:73:cb:92:e1:71:ec:5f: 32:29:be:ca:19:82:ba:fc:58:90:8f:24:b3:e4:88: 6d:ac:54:e6:6b:a2:1d:d3:fb:17:76:a2:d5:80:75: cc:a3:9e:b6:cb:98:04:6e:1f:ca:f7:cc:96:1f:40: 9e:44:94:1d:d5:8d:6f:b5:a2:2d:02:d8:dc:ea:f9: ac:a1:e3:03:8d:7c:1e:24:91:a8:a3:bb:3b:f5:40: c2:2f:03:16:4a:e1:9e:5d:5f:4b:7b:b0:8d:3e:3d: e0:1d:8d:30:57:62:e8:c3:e7:70:33:75:39:4a:73: 76:5c:17:e5:cc:23:95:63:3f:8a:ad:dd:8b:4f:6b: da:7b:fd:a3:88:f3:3a:5e:41:40:cd:d1:d9:fe:33: ed:68:2d:97:ed:bc:68:84:50:66:88:05:8f:2e:38: 4e:39:8e:88:bc:c1:10:95:7d:22:b7:87:95:4c:e3: aa:ca:f6:40:51:b2:0a:97:5f:36:59:9a:81:63:e0: 55:65:d1:ca:86:1d:88:eb:ba:79:6f:f5:de:20:52: 77:b4:9b:40:f6:29:d2:67:12:5d:eb:f2:df:6a:b0: c1:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:7F:5B:C0:96:C3:0D:72:C2:38:98:66:CE:FA:56:AA:4E:2D:04:EA X509v3 Authority Key Identifier: keyid:ED:72:C7:16:BC:0A:F5:9D:43:06:32:3F:BA:A4:74:BD:4B:4D:E7:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:0f:d8:80:75:23:91:48:1c:bb:60:0b:38:84:fa:b3:28:dc: d5:35:ba:6a:f1:38:95:77:39:0b:cf:19:24:6c:c0:f1:ed:7c: ad:8b:c2:86:97:83:f3:c4:9e:84:db:05:1b:e9:5d:26:ce:0f: ab:4d:30:3a:92:1e:0b:aa:de:92:77:7d:bb:5e:37:80:53:78: bd:68:2d:82:94:9b:47:46:ca:fd:71:3f:c6:73:a9:5e:e7:72: 76:f7:b3:08:63:05:29:12:d3:86:d6:64:38:7f:56:4e:bd:8e: 6c:98:dc:53:44:55:60:5a:14:cd:87:ff:3d:f4:3e:e8:0a:cb: b5:52:51:dc:bc:a7:75:0c:82:a1:89:c8:1e:f5:ac:d5:a0:1b: d7:9e:76:2a:34:be:0c:ba:5f:1d:97:cd:38:53:b3:e8:19:e3: d3:b6:b1:67:42:46:ea:37:f5:91:8c:d1:ba:80:6e:6c:a0:39: fa:2c:60:c3:af:12:9f:f0:11:d5:2c:83:0b:cc:30:dd:8d:57: 90:c0:62:ab:0d:bc:7b:52:e5:d1:7a:73:c1:7c:5f:bd:0d:54: 44:e9:a5:83:72:32:ae:3f:7f:06:fb:8b:33:eb:28:de:34:dc: 9c:7f:82:16:9a:b1:2d:a7:93:75:5d:50:74:4e:e7:7e:72:05: 09:ff:a9:16 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QUEyNDExMC8GA1UEBRMoRUQ3MkM3MTZCQzBBRjU5RDQzMDYzMjNGQkFBNDc0QkQ0 QjRERTcxQzAeFw0yNTA1MTEwNjU1MDdaFw0yNTA1MTgwNjU1MDdaMBgxFjAUBgNV BAMTDTY4MjA0OWNiLTVkOTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCwb54TRwEw7nWiZRpomA7sY38Unt4wQCMfrfBFdbInGwo6xyiQc8uS4XHsXzIp vsoZgrr8WJCPJLPkiG2sVOZroh3T+xd2otWAdcyjnrbLmARuH8r3zJYfQJ5ElB3V jW+1oi0C2Nzq+ayh4wONfB4kkaijuzv1QMIvAxZK4Z5dX0t7sI0+PeAdjTBXYujD 53AzdTlKc3ZcF+XMI5VjP4qt3YtPa9p7/aOI8zpeQUDN0dn+M+1oLZftvGiEUGaI BY8uOE45joi8wRCVfSK3h5VM46rK9kBRsgqXXzZZmoFj4FVl0cqGHYjrunlv9d4g Une0m0D2KdJnEl3r8t9qsMH/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUT39bwJbD DXLCOJhmzvpWqk4tBOowHwYDVR0jBBgwFoAU7XLHFrwK9Z1DBjI/uqR0vUtN5xww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJBQTI0LzE3MzlDMzVBMkJD OTExRjBCOEJFM0YzQkM0RjlBRTAyLzdYTEhGcndLOVoxREJqSV91cVIwdlV0TjV4 dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvN1hMSEZyd0s5WjFEQmpJX3VxUjB2VXRONXh3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJB QTI0LzE3MzlDMzVBMkJDOTExRjBCOEJFM0YzQkM0RjlBRTAyLzdYTEhGcndLOVox REJqSV91cVIwdlV0TjV4dy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJUP2IB1I5FIHLtgCziE+rMo3NU1umrxOJV3OQvPGSRswPHtfK2LwoaX g/PEnoTbBRvpXSbOD6tNMDqSHguq3pJ3fbteN4BTeL1oLYKUm0dGyv1xP8ZzqV7n cnb3swhjBSkS04bWZDh/Vk69jmyY3FNEVWBaFM2H/z30PugKy7VSUdy8p3UMgqGJ yB71rNWgG9eedio0vgy6Xx2XzThTs+gZ49O2sWdCRuo39ZGM0bqAbmygOfosYMOv Ep/wEdUsgwvMMN2NV5DAYqsNvHtS5dF6c8F8X70NVETppYNyMq4/fwb7izPrKN40 3Jx/ghaasS2nk3VdUHRO535yBQn/qRY= -----END CERTIFICATE-----Generated at Sun May 11 12:23:24 2025 by rpki-client