$ rpki-client -vvf rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.mft File: c5FNFBChzT-FrR4bClD_P4vWDBA.mft (raw, json) Hash identifier: L97UDdyJhRq0KPITUfGETo6ug2XLpzLM7n5Bso3f8yc= Subject key identifier: 67:EB:2E:08:26:7A:6B:1E:01:9C:24:76:B7:E6:B7:81:E5:15:A8:B0 Authority key identifier: 73:91:4D:14:10:A1:CD:3F:85:AD:1E:1B:0A:50:FF:3F:8B:D6:0C:10 Certificate issuer: /CN=A91366F8/serialNumber=73914D1410A1CD3F85AD1E1B0A50FF3F8BD60C10 Certificate serial: 0335 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c5FNFBChzT-FrR4bClD_P4vWDBA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.mft Manifest number: 0331 Signing time: Sun 27 Apr 2025 00:43:47 +0000 Manifest this update: Sun 27 Apr 2025 00:43:45 +0000 Manifest next update: Sun 04 May 2025 00:43:45 +0000 Files and hashes: 1: c5FNFBChzT-FrR4bClD_P4vWDBA.crl (hash: d/IJo0FPfMfBTvOolZJ16oi12d12PG2aS0jZOggVB3U=) 2: 591A8C06BE4D11EC8DADB22CC4F9AE02.roa (hash: Py8gHJNmqLpByr4I29rw6Mm8G9sMV9RnjA0oEGne9CY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.crl rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c5FNFBChzT-FrR4bClD_P4vWDBA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 00:43:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 821 (0x335) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91366F8, serialNumber=73914D1410A1CD3F85AD1E1B0A50FF3F8BD60C10 Validity Not Before: Apr 27 00:43:45 2025 GMT Not After : May 4 00:43:45 2025 GMT Subject: CN=680d7dc1-abd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:89:fc:9c:a5:4b:2f:93:77:a2:92:72:a6:86: c7:ad:d2:20:be:54:49:99:e6:6e:95:bc:e4:4e:61: e3:77:f1:5a:dd:18:37:9e:1a:64:06:37:e9:4b:0c: e8:a5:3c:64:5f:fa:98:3c:f5:93:ab:d7:5b:38:6d: b8:a8:ee:37:7f:3d:30:36:df:ab:67:d1:98:d9:ea: b6:0c:15:08:0a:7a:5a:29:da:a4:0b:09:2d:2e:f3: 43:07:e6:55:da:69:22:b0:27:af:5f:c1:01:9c:75: b5:b2:2e:dc:a8:bc:9c:06:d6:d4:9e:d8:2e:62:89: 07:63:30:27:18:df:cd:0e:e6:86:ec:ae:c0:6a:b3: e5:31:fd:1b:3b:14:b2:9a:40:c9:b2:1b:0e:bf:37: 16:ca:a7:84:17:7a:6d:b3:3c:0f:14:5f:69:e9:e8: 0f:72:cc:2c:6f:01:7e:c3:0b:14:31:8d:bf:30:48: 05:7c:5b:6b:0d:d6:c3:d6:d3:7d:c4:55:78:2f:52: 41:32:df:ad:2f:c7:11:9e:a1:ea:fb:04:0c:00:9f: ec:b4:63:bb:a9:2d:09:9b:83:01:f0:23:5b:c5:ff: e3:1e:53:91:b4:32:39:b1:2d:55:ed:7d:32:8b:7d: af:bb:08:1c:fc:af:c1:3a:94:22:94:c2:fc:9c:e6: 17:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:EB:2E:08:26:7A:6B:1E:01:9C:24:76:B7:E6:B7:81:E5:15:A8:B0 X509v3 Authority Key Identifier: keyid:73:91:4D:14:10:A1:CD:3F:85:AD:1E:1B:0A:50:FF:3F:8B:D6:0C:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c5FNFBChzT-FrR4bClD_P4vWDBA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:54:90:5c:73:12:8f:f1:81:e8:d5:ee:fb:a5:8e:b9:b6:70: b6:37:e2:f4:a9:b9:64:3b:db:e5:96:d3:f5:05:20:81:41:fc: c0:7d:eb:99:ec:b4:8b:02:20:11:e2:5d:71:96:85:33:0f:33: 28:eb:d5:e8:5d:a7:68:e0:59:ad:c7:7f:9a:5a:b3:84:9a:3c: 58:48:71:ae:af:6f:73:24:4d:da:4c:44:e4:53:97:05:45:b6: c3:9c:c6:a3:8f:d0:4a:67:3d:03:c7:8b:d2:67:4e:e9:a8:d6: ba:96:b8:a8:e4:d1:bc:64:da:79:39:4e:6b:6c:04:30:95:92: 21:36:8b:f4:de:0d:48:da:ed:fa:4f:ec:2c:b1:18:f8:9d:96: 55:3d:19:d5:55:19:89:e2:a4:18:c2:ff:ef:2c:be:e1:dd:d0: 42:f1:25:86:a2:bd:85:50:5f:d9:7b:67:c9:e8:11:79:ac:92: 57:5d:0a:df:5f:06:04:c4:aa:e3:d6:15:f1:d1:0a:c2:03:47: f9:db:9d:78:66:e0:9a:ac:d8:4e:10:c1:0b:66:e9:67:ba:5e: 2b:be:0c:8d:d2:3e:76:c1:75:e2:5e:6e:3c:1d:dd:d1:32:27: bd:eb:fb:b3:09:b0:eb:ba:06:82:21:f4:f0:39:42:05:8a:75: 48:6d:04:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzY2RjgxMTAvBgNVBAUTKDczOTE0RDE0MTBBMUNEM0Y4NUFEMUUxQjBBNTBGRjNG OEJENjBDMTAwHhcNMjUwNDI3MDA0MzQ1WhcNMjUwNTA0MDA0MzQ1WjAYMRYwFAYD VQQDEw02ODBkN2RjMS1hYmQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyIn8nKVLL5N3opJypobHrdIgvlRJmeZulbzkTmHjd/Fa3Rg3nhpkBjfpSwzo pTxkX/qYPPWTq9dbOG24qO43fz0wNt+rZ9GY2eq2DBUICnpaKdqkCwktLvNDB+ZV 2mkisCevX8EBnHW1si7cqLycBtbUntguYokHYzAnGN/NDuaG7K7AarPlMf0bOxSy mkDJshsOvzcWyqeEF3ptszwPFF9p6egPcswsbwF+wwsUMY2/MEgFfFtrDdbD1tN9 xFV4L1JBMt+tL8cRnqHq+wQMAJ/stGO7qS0Jm4MB8CNbxf/jHlORtDI5sS1V7X0y i32vuwgc/K/BOpQilML8nOYXbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGfrLggm emseAZwkdrfmt4HlFaiwMB8GA1UdIwQYMBaAFHORTRQQoc0/ha0eGwpQ/z+L1gwQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjZGOC9BNDI0Mzk3MEJF NEExMUVDQjI3OTU1MkFDNEY5QUUwMi9jNUZORkJDaHpULUZyUjRiQ2xEX1A0dldE QkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2M1Rk5GQkNoelQtRnJSNGJDbERfUDR2V0RCQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NjZGOC9BNDI0Mzk3MEJFNEExMUVDQjI3OTU1MkFDNEY5QUUwMi9jNUZORkJDaHpU LUZyUjRiQ2xEX1A0dldEQkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiVJBccxKP8YHo1e77pY65tnC2N+L0qblkO9vlltP1BSCBQfzAfeuZ 7LSLAiAR4l1xloUzDzMo69XoXado4Fmtx3+aWrOEmjxYSHGur29zJE3aTETkU5cF RbbDnMajj9BKZz0Dx4vSZ07pqNa6lrio5NG8ZNp5OU5rbAQwlZIhNov03g1I2u36 T+wssRj4nZZVPRnVVRmJ4qQYwv/vLL7h3dBC8SWGor2FUF/Ze2fJ6BF5rJJXXQrf XwYExKrj1hXx0QrCA0f52514ZuCarNhOEMELZulnul4rvgyN0j52wXXiXm48Hd3R Mie96/uzCbDrugaCIfTwOUIFinVIbQS8 -----END CERTIFICATE-----Generated at Mon Apr 28 03:24:48 2025 by rpki-client