$ rpki-client -vvf rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft File: 5S3osZGTOKPiVWZOiASKVpihINA.mft (raw, json) Hash identifier: rXSxIjaUBtJ1g2Bq7JhndBf+3h0bysqI2nMJEhtY6gA= Subject key identifier: 48:4E:77:68:47:92:F2:68:00:03:40:4E:39:11:30:F9:97:F6:38:AE Authority key identifier: E5:2D:E8:B1:91:93:38:A3:E2:55:66:4E:88:04:8A:56:98:A1:20:D0 Certificate issuer: /CN=A9160701/serialNumber=E52DE8B1919338A3E255664E88048A5698A120D0 Certificate serial: 0B63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S3osZGTOKPiVWZOiASKVpihINA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft Manifest number: 0B59 Signing time: Thu 24 Apr 2025 19:00:13 +0000 Manifest this update: Thu 24 Apr 2025 19:00:13 +0000 Manifest next update: Thu 01 May 2025 19:00:13 +0000 Files and hashes: 1: 5S3osZGTOKPiVWZOiASKVpihINA.crl (hash: r7wLT/WsFrTU8ErXJaU80eya58FamZ6PxrLV177gMeE=) 2: 6DCC06C231BC11EA9AACCA4BC4F9AE02.roa (hash: 3rmLILbAM/KMJx9b9ZtmiW/UU8JiAcyOhmtpDcFmRPg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.crl rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S3osZGTOKPiVWZOiASKVpihINA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2915 (0xb63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160701, serialNumber=E52DE8B1919338A3E255664E88048A5698A120D0 Validity Not Before: Apr 24 19:00:13 2025 GMT Not After : May 1 19:00:13 2025 GMT Subject: CN=680a8a3d-e2e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a7:cd:91:57:6d:48:27:9e:b0:2c:cc:5d:c1: 31:55:b1:ba:8b:29:08:c6:21:b7:82:5d:2e:57:55: 4e:a0:9c:1a:03:5b:ff:bc:18:04:9d:e6:d2:2f:34: 78:81:5e:f1:0e:7c:6c:1f:4f:d9:26:1b:4a:ce:46: 42:22:26:1f:d2:70:34:df:72:8a:e5:4b:09:04:83: 7f:ea:06:3e:22:36:e6:f1:b9:98:b6:c3:cc:78:2b: b7:29:8d:40:c0:04:97:2e:a0:9a:c7:52:30:64:57: 0b:c2:bf:fc:09:31:78:4a:5f:7f:d3:51:b6:87:7f: 57:b2:c8:ae:af:bf:09:cf:e6:fb:20:f5:fd:5a:df: 07:fb:1f:01:2f:7e:a7:a6:b6:96:48:9b:9d:f9:05: d8:b0:b1:fa:12:12:a1:88:c9:00:e9:36:74:0c:ab: da:5b:b1:be:bf:90:02:ab:0d:88:8a:eb:be:ad:e9: 53:15:44:f8:16:08:dd:54:ec:d0:47:58:5b:0e:35: f2:1d:3d:db:e0:5f:10:f8:61:e6:50:b8:1d:e9:40: 6e:ad:88:3f:3a:bd:e8:f0:94:a1:40:8d:9f:ed:ab: 69:bf:0e:a9:e0:b9:ca:20:cc:11:9e:28:80:56:0e: 29:cb:40:3f:d4:55:74:2f:ae:77:09:32:04:da:03: a2:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:4E:77:68:47:92:F2:68:00:03:40:4E:39:11:30:F9:97:F6:38:AE X509v3 Authority Key Identifier: keyid:E5:2D:E8:B1:91:93:38:A3:E2:55:66:4E:88:04:8A:56:98:A1:20:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S3osZGTOKPiVWZOiASKVpihINA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:5e:53:60:1e:4f:36:3d:31:3c:99:d2:01:47:67:38:5e:27: 73:d3:f2:c2:2e:f1:d2:72:8e:ae:11:49:68:f2:8c:69:0b:d2: 12:fa:ee:0a:06:3f:e8:07:c0:aa:eb:8b:d3:b9:12:73:51:b2: 49:06:48:6d:eb:1b:dd:ef:56:b5:5c:48:28:89:e3:8a:3c:79: 5e:fb:ec:7f:03:43:53:9b:39:4c:81:1a:8a:25:c9:3d:cd:22: aa:8a:2f:2f:ab:dc:fb:d0:29:b1:0a:5c:2f:af:f8:b5:f1:12: 9d:a6:11:c0:1d:fc:22:68:7b:e2:50:36:85:00:28:bb:6c:85: 6a:80:f6:b2:61:9d:01:d8:14:1b:8f:b8:47:d3:cc:a1:a8:ee: 7b:92:b6:a9:53:9c:2e:7b:e7:2d:a5:f3:26:8d:82:5f:4d:9f: e1:1c:db:10:97:1a:f5:e9:ce:06:8b:3f:12:71:1e:32:46:9f: c5:5b:2c:c8:13:fa:dc:39:e3:28:f4:e3:24:e4:4f:df:2f:8e: 71:ce:f7:2f:ed:92:34:93:19:b6:f9:8f:f9:57:52:f8:f3:d0: c8:93:c0:33:b0:9b:23:af:72:19:5d:5f:ae:e5:e5:ee:4e:eb: c9:36:a8:ad:f5:13:87:23:38:69:b1:23:06:81:b1:3a:f5:c7: d7:42:e2:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC2MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA3MDExMTAvBgNVBAUTKEU1MkRFOEIxOTE5MzM4QTNFMjU1NjY0RTg4MDQ4QTU2 OThBMTIwRDAwHhcNMjUwNDI0MTkwMDEzWhcNMjUwNTAxMTkwMDEzWjAYMRYwFAYD VQQDEw02ODBhOGEzZC1lMmU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwqfNkVdtSCeesCzMXcExVbG6iykIxiG3gl0uV1VOoJwaA1v/vBgEnebSLzR4 gV7xDnxsH0/ZJhtKzkZCIiYf0nA033KK5UsJBIN/6gY+Ijbm8bmYtsPMeCu3KY1A wASXLqCax1IwZFcLwr/8CTF4Sl9/01G2h39Xssiur78Jz+b7IPX9Wt8H+x8BL36n praWSJud+QXYsLH6EhKhiMkA6TZ0DKvaW7G+v5ACqw2Iiuu+relTFUT4FgjdVOzQ R1hbDjXyHT3b4F8Q+GHmULgd6UBurYg/Or3o8JShQI2f7atpvw6p4LnKIMwRniiA Vg4py0A/1FV0L653CTIE2gOixwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEhOd2hH kvJoAANATjkRMPmX9jiuMB8GA1UdIwQYMBaAFOUt6LGRkzij4lVmTogEilaYoSDQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDcwMS81NDAwQzQxODMw MzAxMUVBQTcyRjM2N0FDNEY5QUUwMi81UzNvc1pHVE9LUGlWV1pPaUFTS1ZwaWhJ TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVTM29zWkdUT0tQaVZXWk9pQVNLVnBpaElOQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDcwMS81NDAwQzQxODMwMzAxMUVBQTcyRjM2N0FDNEY5QUUwMi81UzNvc1pHVE9L UGlWV1pPaUFTS1ZwaWhJTkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEXlNgHk82PTE8mdIBR2c4Xidz0/LCLvHSco6uEUlo8oxpC9IS+u4K Bj/oB8Cq64vTuRJzUbJJBkht6xvd71a1XEgoieOKPHle++x/A0NTmzlMgRqKJck9 zSKqii8vq9z70CmxClwvr/i18RKdphHAHfwiaHviUDaFACi7bIVqgPayYZ0B2BQb j7hH08yhqO57krapU5wue+ctpfMmjYJfTZ/hHNsQlxr16c4Giz8ScR4yRp/FWyzI E/rcOeMo9OMk5E/fL45xzvcv7ZI0kxm2+Y/5V1L489DIk8AzsJsjr3IZXV+u5eXu TuvJNqit9ROHIzhpsSMGgbE69cfXQuK+ -----END CERTIFICATE-----Generated at Sat Apr 26 12:20:03 2025 by rpki-client