$ rpki-client -vvf rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft File: D5BpKh7v5_ChrGi14awJ9wJpccw.mft (raw, json) Hash identifier: jlsu1yliu4BCBl9CSJhDIvbg1fA4+iLdjVGTT+8NGt0= Subject key identifier: FF:91:B9:69:C1:0D:8C:24:50:C7:CA:F0:BE:08:EA:67:79:BA:FC:C2 Authority key identifier: 0F:90:69:2A:1E:EF:E7:F0:A1:AC:68:B5:E1:AC:09:F7:02:69:71:CC Certificate issuer: /CN=A91185B8/serialNumber=0F90692A1EEFE7F0A1AC68B5E1AC09F7026971CC Certificate serial: 0191 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D5BpKh7v5_ChrGi14awJ9wJpccw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft Manifest number: 0191 Signing time: Fri 25 Apr 2025 02:38:47 +0000 Manifest this update: Fri 25 Apr 2025 02:38:46 +0000 Manifest next update: Fri 02 May 2025 02:38:46 +0000 Files and hashes: 1: D5BpKh7v5_ChrGi14awJ9wJpccw.crl (hash: UBzZgomxre7mxEv41Osa+0Fs0OpP5G8R3JNiD5gltAY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.crl rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D5BpKh7v5_ChrGi14awJ9wJpccw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:38:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 401 (0x191) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91185B8, serialNumber=0F90692A1EEFE7F0A1AC68B5E1AC09F7026971CC Validity Not Before: Apr 25 02:38:46 2025 GMT Not After : May 2 02:38:46 2025 GMT Subject: CN=680af5b7-8805 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:76:08:00:c1:17:a8:81:35:0f:2c:a2:93:1f: f2:6a:39:38:e5:c0:a5:7c:1d:ff:cc:45:70:76:88: 19:33:9a:57:cd:47:2d:26:26:9f:36:2a:9b:fe:d8: 0f:fc:fd:ee:ae:27:95:31:11:f2:79:6e:0a:62:e4: d1:a9:fe:02:b9:4a:9c:c7:b4:e8:8d:7b:86:a1:89: 34:60:9e:5d:1e:e7:da:45:d6:70:05:bc:03:c9:86: 0d:19:78:71:54:0f:33:5a:73:c8:91:70:66:f2:78: 9e:bd:4b:d1:9c:be:68:93:59:cf:e8:33:86:00:01: 6b:48:3f:9a:dd:26:bf:91:db:aa:a1:58:3f:56:28: f3:3c:e9:05:77:36:49:f7:65:4f:5c:c8:2a:f6:d2: 08:9a:11:0d:1e:60:e4:67:ca:6d:ba:bc:ea:ca:7d: 3c:5e:fc:19:a6:d5:b5:97:24:b2:3a:2c:82:29:e9: 89:b8:06:d7:26:60:6c:0f:3f:6b:27:bb:15:a8:01: 11:34:43:e7:3b:bd:fa:58:4a:9d:e2:30:0d:0c:27: 81:cf:a9:74:31:c8:50:a1:e8:6a:e7:b8:76:e5:c0: 91:0b:81:c6:56:ff:2b:b5:03:de:a5:b8:c7:bd:ee: 7c:ae:82:29:d5:60:3b:4c:83:70:5f:f8:03:a7:08: c7:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:91:B9:69:C1:0D:8C:24:50:C7:CA:F0:BE:08:EA:67:79:BA:FC:C2 X509v3 Authority Key Identifier: keyid:0F:90:69:2A:1E:EF:E7:F0:A1:AC:68:B5:E1:AC:09:F7:02:69:71:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D5BpKh7v5_ChrGi14awJ9wJpccw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:43:6f:5b:49:39:29:e8:a2:68:4a:7c:55:20:02:5f:12:1b: 10:c5:6d:55:aa:2e:aa:0f:3e:a1:5b:45:93:cd:14:fc:9a:6e: 9e:14:ba:2d:ab:5d:19:46:8b:8b:dd:26:40:db:0b:c8:55:00: 00:81:4e:98:ef:f7:52:85:f2:51:8a:39:0d:44:62:f8:01:61: 05:62:7f:5d:84:cb:e6:ae:8a:7b:b8:c2:92:47:fd:12:1e:e3: 18:e8:af:36:40:be:90:7a:6f:bf:f0:c0:32:f0:da:99:88:37: 74:c0:61:22:b0:d5:e5:48:b3:2b:b8:14:36:98:0d:e3:99:af: 86:e6:3d:f8:a7:4f:7b:50:fa:0e:e7:14:70:cf:3e:d9:5a:bb: f9:9a:f3:17:18:1e:0f:66:5e:2f:88:f9:b9:14:94:08:1e:39: 41:5b:8f:4a:1d:83:e0:89:80:0f:fc:f8:95:11:01:1f:e0:3b: 7d:39:fe:72:44:9e:2e:ed:d3:b3:53:40:b2:51:f8:82:a2:b3: fb:04:7b:08:55:db:bb:94:5e:6a:08:9a:57:17:69:85:d7:54: da:5d:f7:60:7b:8e:25:be:0a:94:26:8e:d7:d2:ab:6e:98:51: 2c:e7:5d:4b:e6:1e:9e:41:7e:66:46:49:bf:41:5a:3c:2d:89: 6b:90:2b:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg1QjgxMTAvBgNVBAUTKDBGOTA2OTJBMUVFRkU3RjBBMUFDNjhCNUUxQUMwOUY3 MDI2OTcxQ0MwHhcNMjUwNDI1MDIzODQ2WhcNMjUwNTAyMDIzODQ2WjAYMRYwFAYD VQQDEw02ODBhZjViNy04ODA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv3YIAMEXqIE1Dyyikx/yajk45cClfB3/zEVwdogZM5pXzUctJiafNiqb/tgP /P3urieVMRHyeW4KYuTRqf4CuUqcx7TojXuGoYk0YJ5dHufaRdZwBbwDyYYNGXhx VA8zWnPIkXBm8nievUvRnL5ok1nP6DOGAAFrSD+a3Sa/kduqoVg/VijzPOkFdzZJ 92VPXMgq9tIImhENHmDkZ8pturzqyn08XvwZptW1lySyOiyCKemJuAbXJmBsDz9r J7sVqAERNEPnO736WEqd4jANDCeBz6l0MchQoehq57h25cCRC4HGVv8rtQPepbjH ve58roIp1WA7TINwX/gDpwjHkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP+RuWnB DYwkUMfK8L4I6md5uvzCMB8GA1UdIwQYMBaAFA+QaSoe7+fwoaxoteGsCfcCaXHM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODVCOC9DRkEzNDA5QUJF MzExMUVEQjRGRjdEMzRDNEY5QUUwMi9ENUJwS2g3djVfQ2hyR2kxNGF3Sjl3SnBj Y3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0Q1QnBLaDd2NV9DaHJHaTE0YXdKOXdKcGNjdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODVCOC9DRkEzNDA5QUJFMzExMUVEQjRGRjdEMzRDNEY5QUUwMi9ENUJwS2g3djVf Q2hyR2kxNGF3Sjl3SnBjY3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqQ29bSTkp6KJoSnxVIAJfEhsQxW1Vqi6qDz6hW0WTzRT8mm6eFLot q10ZRouL3SZA2wvIVQAAgU6Y7/dShfJRijkNRGL4AWEFYn9dhMvmrop7uMKSR/0S HuMY6K82QL6Qem+/8MAy8NqZiDd0wGEisNXlSLMruBQ2mA3jma+G5j34p097UPoO 5xRwzz7ZWrv5mvMXGB4PZl4viPm5FJQIHjlBW49KHYPgiYAP/PiVEQEf4Dt9Of5y RJ4u7dOzU0CyUfiCorP7BHsIVdu7lF5qCJpXF2mF11TaXfdge44lvgqUJo7X0qtu mFEs511L5h6eQX5mRkm/QVo8LYlrkCt8 -----END CERTIFICATE-----Generated at Sat Apr 26 12:39:57 2025 by rpki-client