$ rpki-client -vvf rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.mft File: c5FNFBChzT-FrR4bClD_P4vWDBA.mft (raw, json) Hash identifier: uJE2t2nbcDUOmC5VBAy0yYP7VA3iS5m2GEc/b9TuGTU= Subject key identifier: AE:AC:0B:87:88:40:6F:DE:49:FE:AC:03:01:97:5E:E4:F7:23:91:1D Authority key identifier: 73:91:4D:14:10:A1:CD:3F:85:AD:1E:1B:0A:50:FF:3F:8B:D6:0C:10 Certificate issuer: /CN=A91366F8/serialNumber=73914D1410A1CD3F85AD1E1B0A50FF3F8BD60C10 Certificate serial: 0334 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c5FNFBChzT-FrR4bClD_P4vWDBA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.mft Manifest number: 0330 Signing time: Fri 25 Apr 2025 00:51:17 +0000 Manifest this update: Fri 25 Apr 2025 00:51:17 +0000 Manifest next update: Fri 02 May 2025 00:51:17 +0000 Files and hashes: 1: c5FNFBChzT-FrR4bClD_P4vWDBA.crl (hash: 1xbY28q+UFHlSGofH/uVfXs5mXyy0O8DDTJLEtvORXY=) 2: 591A8C06BE4D11EC8DADB22CC4F9AE02.roa (hash: Py8gHJNmqLpByr4I29rw6Mm8G9sMV9RnjA0oEGne9CY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.crl rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c5FNFBChzT-FrR4bClD_P4vWDBA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:51:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 820 (0x334) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91366F8, serialNumber=73914D1410A1CD3F85AD1E1B0A50FF3F8BD60C10 Validity Not Before: Apr 25 00:51:17 2025 GMT Not After : May 2 00:51:17 2025 GMT Subject: CN=680adc85-8cf6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:d8:5e:13:23:b2:01:24:7a:b8:cd:cf:77:9c: 2c:57:6b:c8:3f:20:6a:f2:93:41:78:c3:c5:bb:51: ef:04:b4:3e:04:6f:4d:03:c5:75:95:49:18:69:a1: 06:79:eb:cf:af:5b:23:5e:75:e3:6a:19:0b:ae:66: b8:67:05:ab:04:1a:13:b0:a3:cd:96:58:06:13:8c: ab:de:25:00:d7:4b:64:a5:43:41:fa:f2:9e:cd:ef: 45:b1:cd:d1:fb:70:7e:80:ee:2c:42:e0:e8:e0:5b: 4c:b1:dc:38:85:a9:d9:f8:5f:a5:50:9d:1a:96:a8: 88:46:cd:5f:0a:75:68:b1:1d:3d:30:ea:c0:d2:60: a8:6c:ef:0f:52:94:df:b3:84:21:4c:d4:72:25:31: d4:26:2a:90:0d:e2:0a:15:0d:be:b7:1e:d7:0d:27: 71:60:4b:c9:89:55:68:cc:59:bd:c8:e2:5d:80:e9: bd:ca:9c:cd:20:c0:dd:18:4c:00:b3:74:68:b4:98: d6:74:af:55:79:8e:a2:e9:9e:12:b1:e3:e8:0a:6c: 75:4d:d9:4a:a2:03:0b:19:0a:cd:0e:42:fe:87:3d: e1:c4:44:59:8e:6c:8f:64:67:44:76:b7:f5:a9:2c: ef:b1:74:81:d3:53:91:0f:47:49:4e:c4:63:01:63: 6d:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:AC:0B:87:88:40:6F:DE:49:FE:AC:03:01:97:5E:E4:F7:23:91:1D X509v3 Authority Key Identifier: keyid:73:91:4D:14:10:A1:CD:3F:85:AD:1E:1B:0A:50:FF:3F:8B:D6:0C:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c5FNFBChzT-FrR4bClD_P4vWDBA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:f7:0c:b1:21:ac:55:e0:63:36:31:86:1b:92:e2:80:f8:e0: ab:c6:c8:18:3e:77:8d:3e:02:f9:ec:16:aa:1f:ac:57:03:0e: 27:93:e6:1d:9a:2e:4a:32:12:c7:3a:50:82:9a:6c:ec:08:c5: 5b:d7:59:f1:13:1e:50:ee:ec:8e:52:a0:9a:14:36:67:71:b2: 34:5b:44:85:77:8a:34:46:d5:c8:69:31:b2:7c:a0:ed:93:cc: 2e:78:17:11:49:1f:02:90:09:ee:74:e6:4e:ad:9c:aa:26:f7: 92:5e:ab:28:9f:4c:7c:93:db:41:5c:0e:06:58:cd:27:18:e2: a1:95:e5:3b:33:ce:44:c9:3f:08:67:84:2d:c9:c1:88:f2:a3: 04:ab:c0:ab:55:80:86:23:84:96:92:1d:1d:86:24:71:0f:7f: 33:67:f7:93:05:cc:5b:01:9f:76:a2:93:74:66:c2:3f:7e:98: f7:24:c4:90:85:af:19:62:73:f5:22:90:9c:e2:f4:88:72:5e: 89:7e:2d:a3:d2:38:78:eb:08:19:5c:78:d7:c0:89:8b:35:4a: be:a3:1c:9e:90:8d:41:da:4b:77:d9:8c:bd:5a:c8:1a:de:b5: d6:da:ff:2c:59:07:cb:05:b6:b5:87:b7:2e:c3:c8:e9:d2:c8: 07:8f:1f:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzY2RjgxMTAvBgNVBAUTKDczOTE0RDE0MTBBMUNEM0Y4NUFEMUUxQjBBNTBGRjNG OEJENjBDMTAwHhcNMjUwNDI1MDA1MTE3WhcNMjUwNTAyMDA1MTE3WjAYMRYwFAYD VQQDEw02ODBhZGM4NS04Y2Y2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsdheEyOyASR6uM3Pd5wsV2vIPyBq8pNBeMPFu1HvBLQ+BG9NA8V1lUkYaaEG eevPr1sjXnXjahkLrma4ZwWrBBoTsKPNllgGE4yr3iUA10tkpUNB+vKeze9Fsc3R +3B+gO4sQuDo4FtMsdw4hanZ+F+lUJ0alqiIRs1fCnVosR09MOrA0mCobO8PUpTf s4QhTNRyJTHUJiqQDeIKFQ2+tx7XDSdxYEvJiVVozFm9yOJdgOm9ypzNIMDdGEwA s3RotJjWdK9VeY6i6Z4SsePoCmx1TdlKogMLGQrNDkL+hz3hxERZjmyPZGdEdrf1 qSzvsXSB01ORD0dJTsRjAWNt7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK6sC4eI QG/eSf6sAwGXXuT3I5EdMB8GA1UdIwQYMBaAFHORTRQQoc0/ha0eGwpQ/z+L1gwQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjZGOC9BNDI0Mzk3MEJF NEExMUVDQjI3OTU1MkFDNEY5QUUwMi9jNUZORkJDaHpULUZyUjRiQ2xEX1A0dldE QkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2M1Rk5GQkNoelQtRnJSNGJDbERfUDR2V0RCQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NjZGOC9BNDI0Mzk3MEJFNEExMUVDQjI3OTU1MkFDNEY5QUUwMi9jNUZORkJDaHpU LUZyUjRiQ2xEX1A0dldEQkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBY9wyxIaxV4GM2MYYbkuKA+OCrxsgYPneNPgL57BaqH6xXAw4nk+Yd mi5KMhLHOlCCmmzsCMVb11nxEx5Q7uyOUqCaFDZncbI0W0SFd4o0RtXIaTGyfKDt k8wueBcRSR8CkAnudOZOrZyqJveSXqson0x8k9tBXA4GWM0nGOKhleU7M85EyT8I Z4QtycGI8qMEq8CrVYCGI4SWkh0dhiRxD38zZ/eTBcxbAZ92opN0ZsI/fpj3JMSQ ha8ZYnP1IpCc4vSIcl6Jfi2j0jh46wgZXHjXwImLNUq+oxyekI1B2kt32Yy9Wsga 3rXW2v8sWQfLBba1h7cuw8jp0sgHjx+B -----END CERTIFICATE-----Generated at Sat Apr 26 12:58:13 2025 by rpki-client