$ rpki-client -vvf rpki.apnic.net/member_repository/A917B633/D9165EBA86D911EF8B8BEB1FC4F9AE02/5g4hQdcdufyJ-r-1_a0Dct-jN9A.mft File: 5g4hQdcdufyJ-r-1_a0Dct-jN9A.mft (raw, json) Hash identifier: KGbdH8PX1nfV+aIkoPgvzG8qn4ioopt10mE6xyGtDUg= Subject key identifier: 6E:9E:DF:5D:8A:FC:F0:47:6E:9B:07:97:02:72:B7:6F:2D:9B:B2:2B Authority key identifier: E6:0E:21:41:D7:1D:B9:FC:89:FA:BF:B5:FD:AD:03:72:DF:A3:37:D0 Certificate issuer: /CN=A917B633/serialNumber=E60E2141D71DB9FC89FABFB5FDAD0372DFA337D0 Certificate serial: 67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5g4hQdcdufyJ-r-1_a0Dct-jN9A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B633/D9165EBA86D911EF8B8BEB1FC4F9AE02/5g4hQdcdufyJ-r-1_a0Dct-jN9A.mft Manifest number: 67 Signing time: Fri 25 Apr 2025 05:56:52 +0000 Manifest this update: Fri 25 Apr 2025 05:56:51 +0000 Manifest next update: Fri 02 May 2025 05:56:51 +0000 Files and hashes: 1: 5g4hQdcdufyJ-r-1_a0Dct-jN9A.crl (hash: SxAZN1jZUxecUsiLtLeSH1bFp73678SX9fl/kyhRrfg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B633/D9165EBA86D911EF8B8BEB1FC4F9AE02/5g4hQdcdufyJ-r-1_a0Dct-jN9A.crl rsync://rpki.apnic.net/member_repository/A917B633/D9165EBA86D911EF8B8BEB1FC4F9AE02/5g4hQdcdufyJ-r-1_a0Dct-jN9A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5g4hQdcdufyJ-r-1_a0Dct-jN9A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:56:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 103 (0x67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B633, serialNumber=E60E2141D71DB9FC89FABFB5FDAD0372DFA337D0 Validity Not Before: Apr 25 05:56:51 2025 GMT Not After : May 2 05:56:51 2025 GMT Subject: CN=680b2424-762a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:62:1f:ab:fc:4c:f3:f2:0c:04:6a:d9:3d:49: 51:f2:4e:b6:89:bc:eb:ba:40:7c:43:68:7f:f4:09: e3:cb:bb:c9:06:64:0b:c9:75:4d:f5:de:4b:d7:0e: 27:c1:3b:5b:84:45:25:a8:5c:ab:6c:57:52:be:83: ab:5d:0c:1d:0f:27:0b:36:1d:0b:82:66:66:b6:72: c9:74:63:7d:dc:9b:40:95:e3:7d:b9:c8:12:f7:47: 90:51:c3:57:83:c4:63:6a:1f:b0:34:fe:b9:dd:b3: 53:dc:40:10:35:70:a8:fb:b6:99:1b:6d:21:c1:6e: 6b:92:ca:fa:3d:67:b8:32:3f:50:a4:8d:6f:a7:4a: 4c:32:e1:1d:65:5c:8a:34:24:e9:55:d0:fb:0a:62: 5c:bf:7a:af:fe:f7:56:ec:37:87:4d:a4:79:b0:94: 5c:64:db:94:90:77:4f:a1:6e:2c:07:1f:7b:62:86: a8:26:1e:c0:ec:0d:ef:5c:4a:40:35:4c:d2:e8:ad: 9e:02:25:ec:8f:f4:f4:3c:0a:7e:15:66:2c:39:c4: 43:57:a6:fb:2b:12:c0:38:b1:1d:3d:75:b2:b5:8e: 65:6b:ec:4d:6b:0a:e0:74:bf:0a:59:47:7c:11:33: 74:4a:79:ba:44:00:59:02:a6:00:79:1b:f7:39:75: 3a:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:9E:DF:5D:8A:FC:F0:47:6E:9B:07:97:02:72:B7:6F:2D:9B:B2:2B X509v3 Authority Key Identifier: keyid:E6:0E:21:41:D7:1D:B9:FC:89:FA:BF:B5:FD:AD:03:72:DF:A3:37:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B633/D9165EBA86D911EF8B8BEB1FC4F9AE02/5g4hQdcdufyJ-r-1_a0Dct-jN9A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5g4hQdcdufyJ-r-1_a0Dct-jN9A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B633/D9165EBA86D911EF8B8BEB1FC4F9AE02/5g4hQdcdufyJ-r-1_a0Dct-jN9A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:2e:e1:e7:1c:ed:c8:47:b4:04:90:58:fd:3f:c8:f1:e6:8b: 2e:57:e7:28:d8:ac:97:8b:1e:a3:56:85:1e:96:16:df:d2:8e: 5f:9a:e8:17:d6:c2:34:a1:9f:87:b3:d0:21:9d:1e:33:82:64: 92:c3:34:e5:e3:ab:c1:9a:fc:ff:15:f7:9c:e4:e2:4d:fa:57: 04:a1:3e:49:f2:fe:20:9d:22:26:7b:ad:26:be:43:bf:6f:fe: b5:7c:fb:a2:b0:f0:fd:03:05:32:09:3b:75:0d:39:cd:68:3f: ba:b8:a9:42:de:a9:cc:5d:9b:58:72:0a:58:cf:c5:39:21:f4: 37:89:29:08:51:e3:c1:9a:b2:d4:27:90:85:ee:f5:90:85:db: f5:16:9e:8c:53:aa:03:27:22:ed:39:d1:ba:21:2b:f8:05:0e: 56:db:ad:c4:c6:60:8e:05:ba:78:d7:a7:f1:b2:17:10:04:85: dd:06:f2:1b:69:8e:80:28:b1:45:79:b8:15:0e:b3:b2:da:92: c2:7d:e3:c1:93:47:18:02:91:7d:82:03:ff:9b:8b:a2:7f:a9: 36:f2:88:18:9c:70:ab:6c:50:fb:2b:5e:3f:6c:f8:31:09:1f: dd:14:cf:19:37:e5:a3:28:78:d7:aa:25:74:74:68:19:66:ce: ad:70:5e:05 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QjYzMzExMC8GA1UEBRMoRTYwRTIxNDFENzFEQjlGQzg5RkFCRkI1RkRBRDAzNzJE RkEzMzdEMDAeFw0yNTA0MjUwNTU2NTFaFw0yNTA1MDIwNTU2NTFaMBgxFjAUBgNV BAMTDTY4MGIyNDI0LTc2MmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQChYh+r/Ezz8gwEatk9SVHyTraJvOu6QHxDaH/0CePLu8kGZAvJdU313kvXDifB O1uERSWoXKtsV1K+g6tdDB0PJws2HQuCZma2csl0Y33cm0CV4325yBL3R5BRw1eD xGNqH7A0/rnds1PcQBA1cKj7tpkbbSHBbmuSyvo9Z7gyP1CkjW+nSkwy4R1lXIo0 JOlV0PsKYly/eq/+91bsN4dNpHmwlFxk25SQd0+hbiwHH3tihqgmHsDsDe9cSkA1 TNLorZ4CJeyP9PQ8Cn4VZiw5xENXpvsrEsA4sR09dbK1jmVr7E1rCuB0vwpZR3wR M3RKebpEAFkCpgB5G/c5dToPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUbp7fXYr8 8EdumweXAnK3by2bsiswHwYDVR0jBBgwFoAU5g4hQdcdufyJ+r+1/a0Dct+jN9Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdCNjMzL0Q5MTY1RUJBODZE OTExRUY4QjhCRUIxRkM0RjlBRTAyLzVnNGhRZGNkdWZ5Si1yLTFfYTBEY3Qtak45 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNWc0aFFkY2R1ZnlKLXItMV9hMERjdC1qTjlBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdC NjMzL0Q5MTY1RUJBODZEOTExRUY4QjhCRUIxRkM0RjlBRTAyLzVnNGhRZGNkdWZ5 Si1yLTFfYTBEY3Qtak45QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAG4u4ecc7chHtASQWP0/yPHmiy5X5yjYrJeLHqNWhR6WFt/Sjl+a6BfW wjShn4ez0CGdHjOCZJLDNOXjq8Ga/P8V95zk4k36VwShPkny/iCdIiZ7rSa+Q79v /rV8+6Kw8P0DBTIJO3UNOc1oP7q4qULeqcxdm1hyCljPxTkh9DeJKQhR48GastQn kIXu9ZCF2/UWnoxTqgMnIu050bohK/gFDlbbrcTGYI4FunjXp/GyFxAEhd0G8htp joAosUV5uBUOs7LaksJ948GTRxgCkX2CA/+bi6J/qTbyiBiccKtsUPsrXj9s+DEJ H90Uzxk35aMoeNeqJXR0aBlmzq1wXgU= -----END CERTIFICATE-----Generated at Sat Apr 26 04:29:58 2025 by rpki-client