$ rpki-client -vvf rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/5nG8sr6VpsiFJxIdiBXovPGKoeI.mft File: 5nG8sr6VpsiFJxIdiBXovPGKoeI.mft (raw, json) Hash identifier: B3cV36clPu42xgEcrJ43sB7WDKXEhaD6bF80Gg1LIos= Subject key identifier: 67:11:11:FB:0B:06:82:72:D2:0C:E8:37:75:9C:6D:16:B3:C4:34:33 Authority key identifier: E6:71:BC:B2:BE:95:A6:C8:85:27:12:1D:88:15:E8:BC:F1:8A:A1:E2 Certificate issuer: /CN=A9124926/serialNumber=E671BCB2BE95A6C88527121D8815E8BCF18AA1E2 Certificate serial: 09B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5nG8sr6VpsiFJxIdiBXovPGKoeI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/5nG8sr6VpsiFJxIdiBXovPGKoeI.mft Manifest number: 09AF Signing time: Thu 24 Apr 2025 19:54:04 +0000 Manifest this update: Thu 24 Apr 2025 19:54:04 +0000 Manifest next update: Thu 01 May 2025 19:54:04 +0000 Files and hashes: 1: 5nG8sr6VpsiFJxIdiBXovPGKoeI.crl (hash: suiKqVT2SBZvYxrNO+jm3nxNOZmj3/gAE++uvp0eb7Y=) 2: 209BA8B682DF11EAABBC5018C4F9AE02.roa (hash: 8aW0SKFCuzpKiRgqZbEn9MAhCjT3ayoMsYjGk6vj7OA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/5nG8sr6VpsiFJxIdiBXovPGKoeI.crl rsync://rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/5nG8sr6VpsiFJxIdiBXovPGKoeI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5nG8sr6VpsiFJxIdiBXovPGKoeI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:54:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2487 (0x9b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9124926, serialNumber=E671BCB2BE95A6C88527121D8815E8BCF18AA1E2 Validity Not Before: Apr 24 19:54:04 2025 GMT Not After : May 1 19:54:04 2025 GMT Subject: CN=680a96dc-2e80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:0c:ac:d4:09:6e:8e:00:e1:30:3c:60:51:73: e6:d0:5f:7d:d1:f0:30:ed:8d:22:fa:39:56:11:5f: 9a:49:d8:17:a1:09:52:39:a8:2f:68:4e:03:25:a7: fb:b3:b0:c0:2b:0f:27:90:e9:f0:8c:60:7f:cf:50: 0f:eb:7a:e5:aa:1b:8f:d8:2d:aa:24:5e:10:f3:f0: c8:c2:2f:6b:fa:16:ac:8a:62:3a:89:88:59:37:c2: c0:f9:2b:4c:3e:4e:c8:1a:1d:fc:6d:89:60:db:bc: d0:03:33:2d:dc:e3:ed:24:bc:9a:fc:c5:84:e0:c1: 11:9d:d6:d8:ab:f0:6a:9f:20:09:03:d2:02:4a:1b: 4b:61:2f:b0:58:92:8b:0f:75:2e:39:57:7a:86:2b: 32:33:a5:35:c7:47:09:f0:11:f1:de:25:a2:e3:86: c4:55:94:e8:b0:cd:58:17:3b:e1:73:b6:30:4a:9e: 4c:e3:39:14:72:c0:18:62:c5:37:16:04:f5:d0:43: 09:0c:4a:df:b2:c6:a7:25:35:f8:f0:1b:af:de:73: 3b:b6:60:1e:3e:5a:76:0b:35:99:24:8f:6e:98:a4: 97:49:73:9d:ae:43:55:f1:c5:1c:18:66:17:13:ad: 1e:51:0d:b9:4f:51:95:b0:23:dd:bc:a2:77:24:b3: 74:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:11:11:FB:0B:06:82:72:D2:0C:E8:37:75:9C:6D:16:B3:C4:34:33 X509v3 Authority Key Identifier: keyid:E6:71:BC:B2:BE:95:A6:C8:85:27:12:1D:88:15:E8:BC:F1:8A:A1:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/5nG8sr6VpsiFJxIdiBXovPGKoeI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5nG8sr6VpsiFJxIdiBXovPGKoeI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/5nG8sr6VpsiFJxIdiBXovPGKoeI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:0b:f0:3c:85:f7:12:9a:d0:48:88:da:02:bb:fb:a3:1e:db: e1:45:37:fd:52:e4:f9:f6:30:8e:99:78:2a:5c:2f:11:db:7a: 3c:c8:c2:8a:71:16:9a:f8:7f:3b:dd:31:51:83:dd:05:26:98: 4f:f8:f5:49:98:bc:cf:19:63:9f:b2:e8:73:2a:c9:bd:32:00: f9:43:56:4b:65:71:7f:5d:1c:24:79:47:1f:93:28:3d:32:fa: f1:e4:41:7e:ea:94:78:76:65:6b:9e:ad:63:1e:d5:7c:b9:c0: d6:2d:53:54:21:f7:01:71:ce:4f:eb:9c:cc:08:aa:84:99:05: 17:9d:64:38:13:a6:fd:92:a9:e3:af:f9:6e:55:60:a9:0d:91: 42:48:d3:30:1e:03:d7:19:0e:55:55:a6:a7:be:04:93:fa:83: 5e:f9:6a:c1:d5:4e:67:17:1e:f3:64:18:9b:0f:7a:64:ec:41: 03:61:a7:b8:5f:5c:ea:c9:53:ee:f1:c5:a4:48:4b:7f:b0:9a: 89:5f:3c:ed:56:3e:db:14:af:ce:b7:78:35:ac:0a:a1:44:16: fc:42:22:51:fa:de:70:30:d6:73:a4:f5:c3:78:71:b2:99:b7: 7c:5e:db:a9:85:5e:9c:c5:49:26:64:70:75:67:e5:b5:55:14: c6:61:19:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCbcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQ5MjYxMTAvBgNVBAUTKEU2NzFCQ0IyQkU5NUE2Qzg4NTI3MTIxRDg4MTVFOEJD RjE4QUExRTIwHhcNMjUwNDI0MTk1NDA0WhcNMjUwNTAxMTk1NDA0WjAYMRYwFAYD VQQDEw02ODBhOTZkYy0yZTgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqAys1AlujgDhMDxgUXPm0F990fAw7Y0i+jlWEV+aSdgXoQlSOagvaE4DJaf7 s7DAKw8nkOnwjGB/z1AP63rlqhuP2C2qJF4Q8/DIwi9r+hasimI6iYhZN8LA+StM Pk7IGh38bYlg27zQAzMt3OPtJLya/MWE4MERndbYq/BqnyAJA9ICShtLYS+wWJKL D3UuOVd6hisyM6U1x0cJ8BHx3iWi44bEVZTosM1YFzvhc7YwSp5M4zkUcsAYYsU3 FgT10EMJDErfssanJTX48Buv3nM7tmAePlp2CzWZJI9umKSXSXOdrkNV8cUcGGYX E60eUQ25T1GVsCPdvKJ3JLN0SwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGcREfsL BoJy0gzoN3WcbRazxDQzMB8GA1UdIwQYMBaAFOZxvLK+labIhScSHYgV6LzxiqHi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDkyNi9CMzg1NzhDNDgy RDkxMUVBQjlGQ0QyODVDNEY5QUUwMi81bkc4c3I2VnBzaUZKeElkaUJYb3ZQR0tv ZUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVuRzhzcjZWcHNpRkp4SWRpQlhvdlBHS29lSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NDkyNi9CMzg1NzhDNDgyRDkxMUVBQjlGQ0QyODVDNEY5QUUwMi81bkc4c3I2VnBz aUZKeElkaUJYb3ZQR0tvZUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuC/A8hfcSmtBIiNoCu/ujHtvhRTf9UuT59jCOmXgqXC8R23o8yMKK cRaa+H873TFRg90FJphP+PVJmLzPGWOfsuhzKsm9MgD5Q1ZLZXF/XRwkeUcfkyg9 Mvrx5EF+6pR4dmVrnq1jHtV8ucDWLVNUIfcBcc5P65zMCKqEmQUXnWQ4E6b9kqnj r/luVWCpDZFCSNMwHgPXGQ5VVaanvgST+oNe+WrB1U5nFx7zZBibD3pk7EEDYae4 X1zqyVPu8cWkSEt/sJqJXzztVj7bFK/Ot3g1rAqhRBb8QiJR+t5wMNZzpPXDeHGy mbd8XtuphV6cxUkmZHB1Z+W1VRTGYRnE -----END CERTIFICATE-----Generated at Sat Apr 26 13:06:23 2025 by rpki-client