$ rpki-client -vvf rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.mft File: ka7pYNxB_5jtGzcjNDFzk4Em3J8.mft (raw, json) Hash identifier: hyHQX5CQjJWyRy7iYsvxb4fxND7qX0Em8WySCe25bYM= Subject key identifier: 65:52:FA:35:2D:E8:8F:D7:81:C2:DE:9A:D9:8A:59:C8:A7:D7:3E:7C Authority key identifier: 91:AE:E9:60:DC:41:FF:98:ED:1B:37:23:34:31:73:93:81:26:DC:9F Certificate issuer: /CN=A91128B5/serialNumber=91AEE960DC41FF98ED1B3723343173938126DC9F Certificate serial: 05C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ka7pYNxB_5jtGzcjNDFzk4Em3J8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.mft Manifest number: 05C5 Signing time: Thu 24 Apr 2025 22:50:35 +0000 Manifest this update: Thu 24 Apr 2025 22:50:35 +0000 Manifest next update: Thu 01 May 2025 22:50:35 +0000 Files and hashes: 1: ka7pYNxB_5jtGzcjNDFzk4Em3J8.crl (hash: NjIIHP1QMwQcV8MRMBR31LXQSOn/b19nk6MctFbnRoI=) 2: 74BDB7D0B96C11EB956C1D2DC4F9AE02.roa (hash: GcFR8h/iT3o9szKNg9QC0T/IhGSts82BlmqYJleuoFI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.crl rsync://rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ka7pYNxB_5jtGzcjNDFzk4Em3J8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:50:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1481 (0x5c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91128B5, serialNumber=91AEE960DC41FF98ED1B3723343173938126DC9F Validity Not Before: Apr 24 22:50:35 2025 GMT Not After : May 1 22:50:35 2025 GMT Subject: CN=680ac03b-a139 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:31:35:be:c8:ce:60:a5:0f:ee:5e:d6:fe:77: ba:24:25:68:52:5b:28:36:c7:84:8d:54:2e:82:1c: 16:71:fa:db:78:8c:d2:f2:84:75:90:3e:c7:4a:3b: e5:54:72:40:bc:49:5c:81:d6:54:ca:75:87:29:d8: fc:bb:09:2b:a5:20:00:b7:a4:0c:3f:d7:c3:a0:b3: de:ea:3e:5e:36:1d:d0:65:cf:ab:e4:0d:0d:e3:24: 05:1b:17:7b:c9:8a:0b:e7:e1:e3:ea:3b:86:25:d2: 7d:01:48:23:d2:ef:75:c8:13:9f:d6:21:90:76:61: fd:48:7c:0d:a0:c6:7d:ce:1e:11:0a:dd:55:c1:f5: 97:b1:47:e8:76:0b:19:19:9d:74:76:ee:37:02:5a: 59:26:f5:a1:9e:b8:92:19:dc:0f:cd:ce:a9:dc:65: 92:6e:55:97:ce:4a:24:3f:dd:20:b7:0c:08:23:48: 31:35:8e:ad:14:bd:d4:2e:03:74:d7:9d:a1:87:30: 4d:86:f0:82:cb:25:bc:8d:70:5a:17:87:59:3a:2a: 06:5c:cb:0c:0b:c9:b6:dd:7b:98:f8:52:0d:9c:dc: f7:6b:15:83:f8:8b:23:fe:5f:1f:16:1a:4a:5e:4d: d7:b9:7c:c3:24:e6:8e:7f:7b:4e:be:21:1b:91:20: 3e:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:52:FA:35:2D:E8:8F:D7:81:C2:DE:9A:D9:8A:59:C8:A7:D7:3E:7C X509v3 Authority Key Identifier: keyid:91:AE:E9:60:DC:41:FF:98:ED:1B:37:23:34:31:73:93:81:26:DC:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ka7pYNxB_5jtGzcjNDFzk4Em3J8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:db:07:49:58:0c:8e:a2:ba:33:fd:d4:fa:25:4f:82:5c:fa: 6d:5e:2f:46:9e:dc:e7:74:83:70:6b:86:a6:9f:3d:9b:9a:f4: 20:dd:44:18:8e:b5:04:5a:98:d8:5b:5e:d6:e1:41:c6:83:b3: 7c:fc:76:86:0e:bc:30:39:61:82:3d:32:b0:b9:82:0a:8d:d7: 22:9a:e9:f4:06:6b:36:85:67:88:e6:1f:37:53:f6:5e:75:e6: 4f:08:78:c8:8e:37:0b:53:cf:19:60:39:01:a4:1a:7a:74:bc: 1d:3c:d7:80:e1:f4:e1:39:2c:f5:e3:fe:a3:a9:8b:f1:4b:99: 2c:69:22:49:ff:f9:ef:c4:d1:c6:42:4c:66:58:38:80:fb:60: 37:31:f5:fd:7e:82:57:59:00:2d:bf:44:6d:b1:f0:60:05:39: 5f:c1:3b:11:f1:79:f3:b1:c2:c0:1c:52:b9:8c:7a:61:4e:cf: 7b:b3:76:24:8f:fe:9d:70:6d:97:a7:03:50:7a:a8:7e:71:5a: 85:7d:96:a5:fc:bf:9b:7a:49:27:b4:54:93:2d:13:a5:4a:d2: 9d:65:6a:17:11:33:61:db:13:99:9e:89:0c:40:3d:58:05:1c: 21:4b:7c:27:c9:ec:a6:6f:03:9e:0e:71:4e:42:99:6c:42:40: ac:fc:46:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBckwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI4QjUxMTAvBgNVBAUTKDkxQUVFOTYwREM0MUZGOThFRDFCMzcyMzM0MzE3Mzkz ODEyNkRDOUYwHhcNMjUwNDI0MjI1MDM1WhcNMjUwNTAxMjI1MDM1WjAYMRYwFAYD VQQDEw02ODBhYzAzYi1hMTM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6DE1vsjOYKUP7l7W/ne6JCVoUlsoNseEjVQughwWcfrbeIzS8oR1kD7HSjvl VHJAvElcgdZUynWHKdj8uwkrpSAAt6QMP9fDoLPe6j5eNh3QZc+r5A0N4yQFGxd7 yYoL5+Hj6juGJdJ9AUgj0u91yBOf1iGQdmH9SHwNoMZ9zh4RCt1VwfWXsUfodgsZ GZ10du43AlpZJvWhnriSGdwPzc6p3GWSblWXzkokP90gtwwII0gxNY6tFL3ULgN0 152hhzBNhvCCyyW8jXBaF4dZOioGXMsMC8m23XuY+FINnNz3axWD+Isj/l8fFhpK Xk3XuXzDJOaOf3tOviEbkSA+iwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGVS+jUt 6I/XgcLemtmKWcin1z58MB8GA1UdIwQYMBaAFJGu6WDcQf+Y7Rs3IzQxc5OBJtyf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjhCNS8zRUJDRDFEQUI5 NkIxMUVCQjE2RUVGMkNDNEY5QUUwMi9rYTdwWU54Ql81anRHemNqTkRGems0RW0z SjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2thN3BZTnhCXzVqdEd6Y2pOREZ6azRFbTNKOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjhCNS8zRUJDRDFEQUI5NkIxMUVCQjE2RUVGMkNDNEY5QUUwMi9rYTdwWU54Ql81 anRHemNqTkRGems0RW0zSjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAs2wdJWAyOoroz/dT6JU+CXPptXi9GntzndINwa4amnz2bmvQg3UQY jrUEWpjYW17W4UHGg7N8/HaGDrwwOWGCPTKwuYIKjdcimun0Bms2hWeI5h83U/Ze deZPCHjIjjcLU88ZYDkBpBp6dLwdPNeA4fThOSz14/6jqYvxS5ksaSJJ//nvxNHG QkxmWDiA+2A3MfX9foJXWQAtv0RtsfBgBTlfwTsR8XnzscLAHFK5jHphTs97s3Yk j/6dcG2XpwNQeqh+cVqFfZal/L+bekkntFSTLROlStKdZWoXETNh2xOZnokMQD1Y BRwhS3wnyeymbwOeDnFOQplsQkCs/EY9 -----END CERTIFICATE-----Generated at Sat Apr 26 15:18:30 2025 by rpki-client