$ rpki-client -vvf rpki.apnic.net/member_repository/A9159DCD/A00D70062C2411EEAB978F0FC4F9AE02/V5NDbSKpagYTaFEgO7clmE1wsBc.mft File: V5NDbSKpagYTaFEgO7clmE1wsBc.mft (raw, json) Hash identifier: 8YeR/m+Vh0Y3WVpq2b6L86/QMWIwAHg8W3Www2peWE0= Subject key identifier: 0E:A9:A2:76:AE:E2:6B:2F:C0:A6:E4:97:B1:64:66:80:E6:27:3F:88 Authority key identifier: 57:93:43:6D:22:A9:6A:06:13:68:51:20:3B:B7:25:98:4D:70:B0:17 Certificate issuer: /CN=A9159DCD/serialNumber=5793436D22A96A06136851203BB725984D70B017 Certificate serial: 014C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V5NDbSKpagYTaFEgO7clmE1wsBc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159DCD/A00D70062C2411EEAB978F0FC4F9AE02/V5NDbSKpagYTaFEgO7clmE1wsBc.mft Manifest number: 0149 Signing time: Fri 25 Apr 2025 03:21:26 +0000 Manifest this update: Fri 25 Apr 2025 03:21:26 +0000 Manifest next update: Fri 02 May 2025 03:21:26 +0000 Files and hashes: 1: V5NDbSKpagYTaFEgO7clmE1wsBc.crl (hash: 0kU/sWnWb2G5lx8t+6ZobG5braZvYxOfv3YJy6h7VK4=) 2: 29D600062C3311EEBFF69B6CC4F9AE02.roa (hash: q7jOTproZWiG/PibVmdnyADWbCK3ghnPut/xoR7KaRQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159DCD/A00D70062C2411EEAB978F0FC4F9AE02/V5NDbSKpagYTaFEgO7clmE1wsBc.crl rsync://rpki.apnic.net/member_repository/A9159DCD/A00D70062C2411EEAB978F0FC4F9AE02/V5NDbSKpagYTaFEgO7clmE1wsBc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V5NDbSKpagYTaFEgO7clmE1wsBc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 332 (0x14c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159DCD, serialNumber=5793436D22A96A06136851203BB725984D70B017 Validity Not Before: Apr 25 03:21:26 2025 GMT Not After : May 2 03:21:26 2025 GMT Subject: CN=680affb6-de3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:0f:ea:9e:9e:a1:12:19:69:74:8a:34:c1:62: d7:5d:74:75:0c:47:30:bc:f0:58:ba:e8:ef:ba:27: ae:f4:db:f9:09:52:c4:19:ce:eb:f8:6a:15:fd:69: 19:1d:84:90:a5:86:07:92:92:62:b7:eb:ea:02:19: 4a:c6:2e:2f:ba:0d:b3:a6:e6:bf:39:28:47:9b:bf: 09:10:6d:41:c2:5b:d2:cf:d8:f9:2c:f8:6b:f4:fd: a6:f3:16:67:fa:88:1d:98:b1:8e:f2:d8:b1:7e:5a: 43:c9:83:49:2e:40:b9:b0:85:24:8b:aa:12:e4:7e: e1:1c:23:68:1f:73:49:7c:d6:7c:fc:13:fe:70:28: 36:87:6a:f6:8c:eb:fb:2e:95:f5:6e:58:2d:c8:96: 26:d0:c5:c7:28:51:4f:42:2f:95:ec:e0:28:ae:21: 2c:ab:dd:20:1d:58:0b:77:8d:1a:02:37:b9:2f:25: 0c:a2:aa:fe:63:eb:77:cb:38:93:e2:e2:57:ca:85: 61:75:b2:bb:60:6e:ed:62:f4:42:5a:75:a4:80:08: 8c:a7:45:e8:6f:6a:0e:21:f0:1d:3f:01:6d:6c:12: bc:5a:d6:2a:63:35:07:a0:37:cf:7a:b5:fc:4b:1e: ae:73:33:7c:db:8a:62:da:2d:68:28:6c:c4:96:b7: 39:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:A9:A2:76:AE:E2:6B:2F:C0:A6:E4:97:B1:64:66:80:E6:27:3F:88 X509v3 Authority Key Identifier: keyid:57:93:43:6D:22:A9:6A:06:13:68:51:20:3B:B7:25:98:4D:70:B0:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159DCD/A00D70062C2411EEAB978F0FC4F9AE02/V5NDbSKpagYTaFEgO7clmE1wsBc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V5NDbSKpagYTaFEgO7clmE1wsBc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159DCD/A00D70062C2411EEAB978F0FC4F9AE02/V5NDbSKpagYTaFEgO7clmE1wsBc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:c7:9c:43:3d:7a:bd:a8:ee:21:dc:63:97:20:48:a4:1f:d5: a8:96:36:80:29:8e:56:ba:a7:77:d1:0e:47:69:cf:17:1c:97: e0:a9:d1:d1:9d:0f:2a:69:28:7c:8a:28:b6:fa:8e:c1:ae:bc: 5e:06:d0:04:b2:8d:9d:6e:ce:f7:b9:f2:f9:e1:e8:aa:14:b3: bc:39:ae:e0:25:43:38:e2:1a:fd:95:80:31:d5:9a:f3:0a:0b: 08:91:c2:f3:66:26:b3:7b:08:57:31:83:7b:bd:95:9f:fd:b2: 46:08:8a:45:b6:a1:fa:d9:db:c0:a3:35:db:d0:c7:7a:16:79: 55:c6:ac:48:0d:24:81:ad:19:63:e7:a6:13:5c:89:4b:41:87: f2:29:a6:dd:a4:f3:e3:6d:fd:52:8c:38:8c:e8:b3:62:ea:e4: b0:63:46:bf:dd:36:36:17:3a:e5:cf:67:74:7d:8a:43:4d:2c: ab:6d:a4:11:48:b0:3a:a9:ee:aa:4a:e9:f8:49:ea:7a:53:6b: aa:0e:65:4c:ac:93:ba:19:b7:bf:0e:d6:5d:93:3b:1a:f1:36: 0a:46:6f:d4:9c:f2:ad:cc:3e:e3:48:27:d2:0c:db:f2:1b:18: 75:1b:bb:b6:42:67:e1:dc:7b:04:b4:b3:5c:10:50:c0:11:10: c3:b0:9a:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTlEQ0QxMTAvBgNVBAUTKDU3OTM0MzZEMjJBOTZBMDYxMzY4NTEyMDNCQjcyNTk4 NEQ3MEIwMTcwHhcNMjUwNDI1MDMyMTI2WhcNMjUwNTAyMDMyMTI2WjAYMRYwFAYD VQQDEw02ODBhZmZiNi1kZTNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAww/qnp6hEhlpdIo0wWLXXXR1DEcwvPBYuujvuieu9Nv5CVLEGc7r+GoV/WkZ HYSQpYYHkpJit+vqAhlKxi4vug2zpua/OShHm78JEG1BwlvSz9j5LPhr9P2m8xZn +ogdmLGO8tixflpDyYNJLkC5sIUki6oS5H7hHCNoH3NJfNZ8/BP+cCg2h2r2jOv7 LpX1blgtyJYm0MXHKFFPQi+V7OAoriEsq90gHVgLd40aAje5LyUMoqr+Y+t3yziT 4uJXyoVhdbK7YG7tYvRCWnWkgAiMp0Xob2oOIfAdPwFtbBK8WtYqYzUHoDfPerX8 Sx6uczN824pi2i1oKGzElrc5IQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA6ponau 4msvwKbkl7FkZoDmJz+IMB8GA1UdIwQYMBaAFFeTQ20iqWoGE2hRIDu3JZhNcLAX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OURDRC9BMDBENzAwNjJD MjQxMUVFQUI5NzhGMEZDNEY5QUUwMi9WNU5EYlNLcGFnWVRhRkVnTzdjbG1FMXdz QmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Y1TkRiU0twYWdZVGFGRWdPN2NsbUUxd3NCYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OURDRC9BMDBENzAwNjJDMjQxMUVFQUI5NzhGMEZDNEY5QUUwMi9WNU5EYlNLcGFn WVRhRkVnTzdjbG1FMXdzQmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjx5xDPXq9qO4h3GOXIEikH9WoljaAKY5Wuqd30Q5Hac8XHJfgqdHR nQ8qaSh8iii2+o7BrrxeBtAEso2dbs73ufL54eiqFLO8Oa7gJUM44hr9lYAx1Zrz CgsIkcLzZiazewhXMYN7vZWf/bJGCIpFtqH62dvAozXb0Md6FnlVxqxIDSSBrRlj 56YTXIlLQYfyKabdpPPjbf1SjDiM6LNi6uSwY0a/3TY2Fzrlz2d0fYpDTSyrbaQR SLA6qe6qSun4Sep6U2uqDmVMrJO6Gbe/DtZdkzsa8TYKRm/UnPKtzD7jSCfSDNvy Gxh1G7u2Qmfh3HsEtLNcEFDAERDDsJqw -----END CERTIFICATE-----Generated at Sat Apr 26 15:01:56 2025 by rpki-client