$ rpki-client -vvf rpki.apnic.net/member_repository/A9140BA4/47E9268668ED11E890E39549C4F9AE02/5muokllQFHlLtkUdFCgchAAgYgM.mft File: 5muokllQFHlLtkUdFCgchAAgYgM.mft (raw, json) Hash identifier: 9DNuGDHFtHNhvCH7P0ggF8olUM3asDZU5zNgAsFdBks= Subject key identifier: BE:4A:70:93:C6:58:29:BD:B1:D0:09:34:02:66:51:A8:0F:3D:97:75 Authority key identifier: E6:6B:A8:92:59:50:14:79:4B:B6:45:1D:14:28:1C:84:00:20:62:03 Certificate issuer: /CN=A9140BA4/serialNumber=E66BA892595014794BB6451D14281C8400206203 Certificate serial: 145B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5muokllQFHlLtkUdFCgchAAgYgM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140BA4/47E9268668ED11E890E39549C4F9AE02/5muokllQFHlLtkUdFCgchAAgYgM.mft Manifest number: 1459 Signing time: Thu 24 Apr 2025 16:55:07 +0000 Manifest this update: Thu 24 Apr 2025 16:55:06 +0000 Manifest next update: Thu 01 May 2025 16:55:06 +0000 Files and hashes: 1: 5muokllQFHlLtkUdFCgchAAgYgM.crl (hash: 8pVMkn66GhD5o78BdzAvO/jFM1Lnz/qHHwt8tP8Imr0=) 2: 3FF298D41AFF11EFB20C2648C4F9AE02.roa (hash: h/4RQkDOLBBPlrQUpebdiQb7wWMHpGVL3kG7tSUKXbM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140BA4/47E9268668ED11E890E39549C4F9AE02/5muokllQFHlLtkUdFCgchAAgYgM.crl rsync://rpki.apnic.net/member_repository/A9140BA4/47E9268668ED11E890E39549C4F9AE02/5muokllQFHlLtkUdFCgchAAgYgM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5muokllQFHlLtkUdFCgchAAgYgM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:55:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5211 (0x145b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140BA4, serialNumber=E66BA892595014794BB6451D14281C8400206203 Validity Not Before: Apr 24 16:55:06 2025 GMT Not After : May 1 16:55:06 2025 GMT Subject: CN=680a6cea-0ba6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:0a:0d:a1:dd:60:5b:a4:67:8e:d7:de:53:80: 9a:09:b1:df:63:5e:ae:21:7e:db:d8:56:26:ad:98: 98:fb:a5:3f:03:b4:8a:3a:b0:7e:d1:23:15:7d:57: dc:8a:4d:0e:8c:be:fe:7f:44:3b:a3:9b:92:a5:b3: 89:63:34:05:43:73:a2:39:8c:6b:40:91:17:96:4e: e0:19:cf:32:9e:66:08:eb:b5:16:46:7a:bc:b5:0b: 0e:89:7d:a7:b5:8a:66:9d:7e:83:a0:c0:91:43:67: c9:92:2b:f6:07:85:a8:47:c1:07:16:80:8e:9e:af: a8:be:97:c0:8e:52:d8:93:e4:f4:43:7e:a6:55:b8: f5:f6:d6:82:78:91:27:e6:ba:e6:6e:c4:f3:c3:e2: 65:16:f5:48:5f:56:e8:c7:e6:b7:e8:bc:77:dd:6b: 8f:77:1d:16:b4:1e:1c:68:bd:5e:d4:9e:94:80:d6: 53:8a:50:52:64:ce:d2:b4:9b:3f:73:91:eb:88:f9: a5:10:89:8e:ee:39:c9:b9:c0:2b:95:98:88:d2:49: 9e:cf:e0:cb:13:de:64:c2:2d:aa:c6:c3:19:04:1b: 08:99:7e:c1:78:92:7d:a1:e4:1b:39:dd:8c:5b:d6: 1d:a8:af:7f:ce:65:2e:f1:06:07:37:2a:be:4a:e4: 4c:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:4A:70:93:C6:58:29:BD:B1:D0:09:34:02:66:51:A8:0F:3D:97:75 X509v3 Authority Key Identifier: keyid:E6:6B:A8:92:59:50:14:79:4B:B6:45:1D:14:28:1C:84:00:20:62:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140BA4/47E9268668ED11E890E39549C4F9AE02/5muokllQFHlLtkUdFCgchAAgYgM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5muokllQFHlLtkUdFCgchAAgYgM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140BA4/47E9268668ED11E890E39549C4F9AE02/5muokllQFHlLtkUdFCgchAAgYgM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:93:7b:1e:d5:9c:24:4a:eb:f0:4e:b0:33:ce:38:f1:48:a1: af:5a:49:b0:f5:fd:f8:f4:f1:9b:0d:50:07:44:a0:2f:f4:05: 37:79:85:e6:30:3b:4a:d2:27:14:d2:b1:bd:ac:fe:b7:ce:80: b6:ac:29:3f:4b:02:34:21:f3:a7:b9:1a:41:81:cf:da:23:ae: a9:da:d9:d7:fb:59:7e:fe:86:65:b1:c8:df:a8:3a:8a:c4:6a: 1b:13:2b:a3:88:d6:db:9c:f8:67:30:87:2d:8d:8c:3a:ed:16: 91:06:f5:b3:4d:1a:64:d0:46:6f:d3:61:bc:c5:7d:de:63:a2: f1:cc:75:75:4c:60:7e:a4:25:11:29:11:23:b4:08:10:3e:6e: ab:09:f9:23:86:00:8b:e7:ed:a2:90:f4:56:fe:3c:95:1e:23: e2:ee:cc:e4:8d:ca:34:46:73:e5:66:97:c0:c2:75:53:cf:a7: b2:41:e0:df:8d:da:3c:d9:be:22:cc:7d:b8:4e:2c:3c:ce:cb: 26:d6:74:14:f9:d8:5f:c5:92:99:14:a8:31:0b:09:65:d8:e8: fa:2a:e2:e1:6a:5e:29:32:0a:00:10:22:49:56:a7:3f:72:75: 23:b3:b3:eb:1e:b6:34:85:ce:8a:75:e5:5d:61:43:b8:01:30: f4:5f:71:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFFswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBCQTQxMTAvBgNVBAUTKEU2NkJBODkyNTk1MDE0Nzk0QkI2NDUxRDE0MjgxQzg0 MDAyMDYyMDMwHhcNMjUwNDI0MTY1NTA2WhcNMjUwNTAxMTY1NTA2WjAYMRYwFAYD VQQDEw02ODBhNmNlYS0wYmE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAswoNod1gW6RnjtfeU4CaCbHfY16uIX7b2FYmrZiY+6U/A7SKOrB+0SMVfVfc ik0OjL7+f0Q7o5uSpbOJYzQFQ3OiOYxrQJEXlk7gGc8ynmYI67UWRnq8tQsOiX2n tYpmnX6DoMCRQ2fJkiv2B4WoR8EHFoCOnq+ovpfAjlLYk+T0Q36mVbj19taCeJEn 5rrmbsTzw+JlFvVIX1box+a36Lx33WuPdx0WtB4caL1e1J6UgNZTilBSZM7StJs/ c5HriPmlEImO7jnJucArlZiI0kmez+DLE95kwi2qxsMZBBsImX7BeJJ9oeQbOd2M W9YdqK9/zmUu8QYHNyq+SuRMbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL5KcJPG WCm9sdAJNAJmUagPPZd1MB8GA1UdIwQYMBaAFOZrqJJZUBR5S7ZFHRQoHIQAIGID MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEJBNC80N0U5MjY4NjY4 RUQxMUU4OTBFMzk1NDlDNEY5QUUwMi81bXVva2xsUUZIbEx0a1VkRkNnY2hBQWdZ Z00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVtdW9rbGxRRkhsTHRrVWRGQ2djaEFBZ1lnTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEJBNC80N0U5MjY4NjY4RUQxMUU4OTBFMzk1NDlDNEY5QUUwMi81bXVva2xsUUZI bEx0a1VkRkNnY2hBQWdZZ00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIk3se1ZwkSuvwTrAzzjjxSKGvWkmw9f349PGbDVAHRKAv9AU3eYXm MDtK0icU0rG9rP63zoC2rCk/SwI0IfOnuRpBgc/aI66p2tnX+1l+/oZlscjfqDqK xGobEyujiNbbnPhnMIctjYw67RaRBvWzTRpk0EZv02G8xX3eY6LxzHV1TGB+pCUR KREjtAgQPm6rCfkjhgCL5+2ikPRW/jyVHiPi7szkjco0RnPlZpfAwnVTz6eyQeDf jdo82b4izH24Tiw8zssm1nQU+dhfxZKZFKgxCwll2Oj6KuLhal4pMgoAECJJVqc/ cnUjs7PrHrY0hc6KdeVdYUO4ATD0X3Fc -----END CERTIFICATE-----Generated at Sat Apr 26 03:51:28 2025 by rpki-client