$ rpki-client -vvf rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.mft File: 5vEsD995brDfK2AuWsQsy4OyLhg.mft (raw, json) Hash identifier: AUx4q0OWxhnt/2DYM5SAdPb+1V9Mqi0L7K9vmlF3lm0= Subject key identifier: FD:AA:7D:93:FB:D4:4D:73:7B:83:7B:92:DD:F8:14:AB:30:DE:86:76 Authority key identifier: E6:F1:2C:0F:DF:79:6E:B0:DF:2B:60:2E:5A:C4:2C:CB:83:B2:2E:18 Certificate issuer: /CN=A914E3B7/serialNumber=E6F12C0FDF796EB0DF2B602E5AC42CCB83B22E18 Certificate serial: 3470 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vEsD995brDfK2AuWsQsy4OyLhg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.mft Manifest number: 346D Signing time: Thu 24 Apr 2025 15:09:44 +0000 Manifest this update: Thu 24 Apr 2025 15:09:43 +0000 Manifest next update: Thu 01 May 2025 15:09:43 +0000 Files and hashes: 1: 5vEsD995brDfK2AuWsQsy4OyLhg.crl (hash: tttRoIiFKzZwERRaKTg/56bccK/Gf1Hf7/oRpQ3KSeA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.crl rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vEsD995brDfK2AuWsQsy4OyLhg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:09:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13424 (0x3470) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E3B7, serialNumber=E6F12C0FDF796EB0DF2B602E5AC42CCB83B22E18 Validity Not Before: Apr 24 15:09:43 2025 GMT Not After : May 1 15:09:43 2025 GMT Subject: CN=680a5438-f231 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:2b:fd:f2:55:73:17:d0:ed:16:11:6e:f7:6b: 8d:fe:82:6d:5c:eb:12:92:2a:f4:42:4b:ed:a4:04: 91:c6:fb:26:bc:ee:d5:cf:e4:3d:ba:22:d0:ba:73: 51:a3:77:88:54:83:2e:a8:05:9d:3a:65:87:fb:2f: 9b:16:82:14:96:4f:fe:6b:96:f6:49:f9:62:85:d6: d0:0f:6f:bb:06:b1:3c:1f:82:a8:ee:13:8d:d6:c1: ce:e7:c6:d0:28:df:99:6b:fe:bb:43:02:f7:ed:8b: f3:f7:45:0a:6d:84:57:68:3e:ef:27:a7:5f:38:76: 4d:5f:90:2e:6a:ee:5c:fc:27:c7:ce:1d:bb:d8:1a: cc:66:eb:f3:09:8b:78:d9:4d:bb:e2:7b:3b:8e:b1: 7c:3e:43:ba:e4:fa:73:cf:ad:88:97:e2:32:5d:c5: d9:bb:99:7f:e7:06:45:68:8b:c8:0e:1c:f5:39:76: 20:6f:53:67:57:2d:58:f3:57:97:c1:cd:63:81:4e: 26:54:8e:c6:b2:c5:bb:8d:72:bf:a2:bd:ea:eb:07: 37:b5:55:16:12:d2:c7:72:89:e8:d5:c8:d1:50:47: 6d:3d:5e:92:cd:04:2f:4f:c4:0f:83:93:92:2f:12: 10:8a:d8:0c:f7:0e:77:70:e2:0c:42:fd:4c:25:6d: c8:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:AA:7D:93:FB:D4:4D:73:7B:83:7B:92:DD:F8:14:AB:30:DE:86:76 X509v3 Authority Key Identifier: keyid:E6:F1:2C:0F:DF:79:6E:B0:DF:2B:60:2E:5A:C4:2C:CB:83:B2:2E:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vEsD995brDfK2AuWsQsy4OyLhg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:3b:9f:b3:c6:f2:f5:aa:63:16:dc:42:40:d3:a0:16:f9:30: 5a:8b:51:0c:20:ef:15:77:bf:83:c2:15:69:c7:bf:9d:13:41: 5e:f2:41:17:5f:29:6e:22:4c:e8:ce:aa:ac:c4:0f:a3:d6:c4: 8c:0a:e0:52:c8:de:71:a9:07:33:a8:30:c3:ae:5e:07:08:ac: f6:b3:39:79:1c:47:90:fa:45:dd:53:e9:2e:4a:d0:c7:14:26: e4:a3:d3:76:c8:89:fb:d5:08:5f:24:b9:87:52:1f:91:9a:e5: 9e:f5:9c:60:03:4e:ff:31:74:bd:72:8d:e3:6e:8f:6e:31:82: c2:94:ce:ec:d1:ce:4d:c0:71:0a:2e:1e:45:60:0e:66:ff:ad: d9:0c:98:86:c2:06:97:1a:9f:b8:3e:30:dc:6a:2c:d7:40:fe: 9b:59:54:8f:25:2e:02:0e:8c:1e:f9:55:2a:88:24:26:ae:2f: 0c:44:7c:88:12:6a:db:63:b5:25:34:d2:4a:a7:e5:19:95:91: 54:98:69:b0:1b:bb:f4:e1:dd:56:e9:21:c2:b8:77:c5:77:66: 23:e7:b0:67:5d:e1:ff:de:a6:72:1f:fc:9e:87:a4:9b:95:80: 99:e8:77:40:88:ba:ba:08:42:1b:f8:26:4f:fe:3a:ea:1e:8b: dd:38:60:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNHAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUzQjcxMTAvBgNVBAUTKEU2RjEyQzBGREY3OTZFQjBERjJCNjAyRTVBQzQyQ0NC ODNCMjJFMTgwHhcNMjUwNDI0MTUwOTQzWhcNMjUwNTAxMTUwOTQzWjAYMRYwFAYD VQQDEw02ODBhNTQzOC1mMjMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAziv98lVzF9DtFhFu92uN/oJtXOsSkir0QkvtpASRxvsmvO7Vz+Q9uiLQunNR o3eIVIMuqAWdOmWH+y+bFoIUlk/+a5b2SflihdbQD2+7BrE8H4Ko7hON1sHO58bQ KN+Za/67QwL37Yvz90UKbYRXaD7vJ6dfOHZNX5Auau5c/CfHzh272BrMZuvzCYt4 2U274ns7jrF8PkO65Ppzz62Il+IyXcXZu5l/5wZFaIvIDhz1OXYgb1NnVy1Y81eX wc1jgU4mVI7GssW7jXK/or3q6wc3tVUWEtLHcono1cjRUEdtPV6SzQQvT8QPg5OS LxIQitgM9w53cOIMQv1MJW3I9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP2qfZP7 1E1ze4N7kt34FKsw3oZ2MB8GA1UdIwQYMBaAFObxLA/feW6w3ytgLlrELMuDsi4Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTNCNy85RkFFODRGQTFE QTQxMUUyQUMyQkFGOUEwOEIwMkNEMi81dkVzRDk5NWJyRGZLMkF1V3NRc3k0T3lM aGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV2RXNEOTk1YnJEZksyQXVXc1FzeTRPeUxoZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTNCNy85RkFFODRGQTFEQTQxMUUyQUMyQkFGOUEwOEIwMkNEMi81dkVzRDk5NWJy RGZLMkF1V3NRc3k0T3lMaGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEO5+zxvL1qmMW3EJA06AW+TBai1EMIO8Vd7+DwhVpx7+dE0Fe8kEX XyluIkzozqqsxA+j1sSMCuBSyN5xqQczqDDDrl4HCKz2szl5HEeQ+kXdU+kuStDH FCbko9N2yIn71QhfJLmHUh+RmuWe9ZxgA07/MXS9co3jbo9uMYLClM7s0c5NwHEK Lh5FYA5m/63ZDJiGwgaXGp+4PjDcaizXQP6bWVSPJS4CDowe+VUqiCQmri8MRHyI EmrbY7UlNNJKp+UZlZFUmGmwG7v04d1W6SHCuHfFd2Yj57BnXeH/3qZyH/yeh6Sb lYCZ6HdAiLq6CEIb+CZP/jrqHovdOGDo -----END CERTIFICATE-----Generated at Sat Apr 26 14:18:57 2025 by rpki-client