$ rpki-client -vvf rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/5cOmhsg97m0zv-xUHqy0pKCJknk.mft File: 5cOmhsg97m0zv-xUHqy0pKCJknk.mft (raw, json) Hash identifier: MJlwgIhxzMxxA+xcmClDNmzT4pXr0paZLWJudOr8bgY= Subject key identifier: 43:17:97:74:64:7F:35:19:45:5C:D7:6F:8F:0F:C4:3C:3E:8B:4E:A9 Authority key identifier: E5:C3:A6:86:C8:3D:EE:6D:33:BF:EC:54:1E:AC:B4:A4:A0:89:92:79 Certificate issuer: /CN=A9153AA6/serialNumber=E5C3A686C83DEE6D33BFEC541EACB4A4A0899279 Certificate serial: 16BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5cOmhsg97m0zv-xUHqy0pKCJknk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/5cOmhsg97m0zv-xUHqy0pKCJknk.mft Manifest number: 16B2 Signing time: Thu 24 Apr 2025 16:41:19 +0000 Manifest this update: Thu 24 Apr 2025 16:41:18 +0000 Manifest next update: Thu 01 May 2025 16:41:18 +0000 Files and hashes: 1: 5cOmhsg97m0zv-xUHqy0pKCJknk.crl (hash: 9+Ytf4hhYi/JJaEr6WsIPZKQvLBL0P67wNw2kCYsOIE=) 2: 99C6F94CF52511E7948D5A0BC4F9AE02.roa (hash: vVPzJlO8vaF4Vh+BV9iHSW1TnZ35r0+ZhJx7At1qJd0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/5cOmhsg97m0zv-xUHqy0pKCJknk.crl rsync://rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/5cOmhsg97m0zv-xUHqy0pKCJknk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5cOmhsg97m0zv-xUHqy0pKCJknk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:41:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5819 (0x16bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153AA6, serialNumber=E5C3A686C83DEE6D33BFEC541EACB4A4A0899279 Validity Not Before: Apr 24 16:41:18 2025 GMT Not After : May 1 16:41:18 2025 GMT Subject: CN=680a69ae-7a03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:2f:88:58:0b:f7:f8:3f:64:4d:f9:55:67:24: 39:15:83:94:a0:dc:9b:7b:c1:40:1f:c1:d9:0d:15: ff:b5:52:5c:5e:1e:c5:c9:ba:dc:4d:a0:2a:d3:c6: e5:9e:0c:99:ce:09:6c:76:f3:a3:c5:e7:22:8a:4c: 5c:89:89:7a:bd:8b:48:ae:28:26:06:4f:fa:c8:36: 0a:6c:1d:99:14:88:05:78:87:ce:08:5a:9d:3f:cb: 03:96:41:49:4d:33:5e:37:80:d8:3c:fa:4c:1e:a7: 03:a4:90:5a:3b:37:73:b7:90:8d:3a:9d:03:c3:73: b2:8c:f5:b8:ab:19:12:d4:f0:b6:b9:a1:3e:f9:9e: 95:f7:46:01:90:d9:8b:94:94:3e:fb:98:3b:db:aa: c7:01:13:dd:be:1a:ed:8f:b8:69:85:07:98:a8:d3: 81:fd:5e:64:6c:c2:f6:00:18:93:31:88:b3:74:c4: e3:9e:7c:d7:b4:d3:5f:3b:7b:b5:9a:1a:db:a7:66: 1d:40:30:aa:f5:a4:29:0a:ac:f4:a5:8f:9e:54:3b: a9:68:ab:3b:0a:82:a5:5f:b1:8b:c7:cc:4a:ce:15: b2:46:3a:63:51:bb:3b:f8:fd:35:3e:35:7c:6c:16: 82:b6:9d:6b:54:4b:f7:57:ab:70:3a:38:41:15:3c: 23:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:17:97:74:64:7F:35:19:45:5C:D7:6F:8F:0F:C4:3C:3E:8B:4E:A9 X509v3 Authority Key Identifier: keyid:E5:C3:A6:86:C8:3D:EE:6D:33:BF:EC:54:1E:AC:B4:A4:A0:89:92:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/5cOmhsg97m0zv-xUHqy0pKCJknk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5cOmhsg97m0zv-xUHqy0pKCJknk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/5cOmhsg97m0zv-xUHqy0pKCJknk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:7c:36:6c:2a:82:64:69:90:6a:24:d0:11:30:38:bc:a1:ba: aa:69:6e:cd:21:3f:80:0a:28:ef:54:c7:ae:43:6f:f7:75:ac: 3b:8e:80:20:64:83:17:fa:d6:3c:bc:0c:54:90:97:84:ba:b6: 17:82:6d:59:53:0d:c7:75:7e:af:43:8a:9a:6b:ea:45:3a:06: 25:75:db:a7:3b:2e:be:60:fc:21:e1:73:f6:33:1a:a8:4a:4f: b7:03:a8:bd:55:94:f1:e8:58:ea:ad:1e:e4:95:70:e5:28:42: fb:f7:ef:28:a0:6e:d2:e7:c7:45:d4:0e:55:68:6e:ab:f4:ec: 4a:a5:ac:06:f9:43:7b:42:d7:4b:c2:e6:b3:28:23:b0:03:c3: b1:75:6b:c7:31:ff:0f:e0:d8:ef:25:67:d5:f1:04:f6:69:94: 9a:51:0c:7a:eb:b2:d1:22:69:70:5f:77:15:c3:3d:b4:cf:e7: 39:4d:f5:28:bc:fa:68:38:f9:c8:3d:db:e5:f0:23:78:15:ca: c5:07:37:80:87:1b:57:6f:6f:91:25:00:e1:4d:18:4f:28:f3: 1e:71:e7:ec:0e:a5:11:c1:eb:d4:65:12:7d:c9:a0:ee:98:23: 5c:46:93:18:ac:91:14:a8:62:74:ea:ac:eb:54:d5:37:da:0d: 2d:e0:44:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFrswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNBQTYxMTAvBgNVBAUTKEU1QzNBNjg2QzgzREVFNkQzM0JGRUM1NDFFQUNCNEE0 QTA4OTkyNzkwHhcNMjUwNDI0MTY0MTE4WhcNMjUwNTAxMTY0MTE4WjAYMRYwFAYD VQQDEw02ODBhNjlhZS03YTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqC+IWAv3+D9kTflVZyQ5FYOUoNybe8FAH8HZDRX/tVJcXh7FybrcTaAq08bl ngyZzglsdvOjxeciikxciYl6vYtIrigmBk/6yDYKbB2ZFIgFeIfOCFqdP8sDlkFJ TTNeN4DYPPpMHqcDpJBaOzdzt5CNOp0Dw3OyjPW4qxkS1PC2uaE++Z6V90YBkNmL lJQ++5g726rHARPdvhrtj7hphQeYqNOB/V5kbML2ABiTMYizdMTjnnzXtNNfO3u1 mhrbp2YdQDCq9aQpCqz0pY+eVDupaKs7CoKlX7GLx8xKzhWyRjpjUbs7+P01PjV8 bBaCtp1rVEv3V6twOjhBFTwjrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEMXl3Rk fzUZRVzXb48PxDw+i06pMB8GA1UdIwQYMBaAFOXDpobIPe5tM7/sVB6stKSgiZJ5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0FBNi85QzNEODdFNkY1 MjQxMUU3OTY0NEIwMDlDNEY5QUUwMi81Y09taHNnOTdtMHp2LXhVSHF5MHBLQ0pr bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVjT21oc2c5N20wenYteFVIcXkwcEtDSmtuay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0FBNi85QzNEODdFNkY1MjQxMUU3OTY0NEIwMDlDNEY5QUUwMi81Y09taHNnOTdt MHp2LXhVSHF5MHBLQ0prbmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEfDZsKoJkaZBqJNARMDi8obqqaW7NIT+ACijvVMeuQ2/3daw7joAg ZIMX+tY8vAxUkJeEurYXgm1ZUw3HdX6vQ4qaa+pFOgYlddunOy6+YPwh4XP2Mxqo Sk+3A6i9VZTx6FjqrR7klXDlKEL79+8ooG7S58dF1A5VaG6r9OxKpawG+UN7QtdL wuazKCOwA8OxdWvHMf8P4NjvJWfV8QT2aZSaUQx667LRImlwX3cVwz20z+c5TfUo vPpoOPnIPdvl8CN4FcrFBzeAhxtXb2+RJQDhTRhPKPMecefsDqURwevUZRJ9yaDu mCNcRpMYrJEUqGJ06qzrVNU32g0t4ETm -----END CERTIFICATE-----Generated at Sat Apr 26 04:36:57 2025 by rpki-client