$ rpki-client -vvf rpki.apnic.net/member_repository/A9180318/B5719DD21D8F11E2B05707EF08B02CD2/5DMXblmum0dk6179BKQ2hWKrXiE.mft File: 5DMXblmum0dk6179BKQ2hWKrXiE.mft (raw, json) Hash identifier: LR/pbKZD4HFiwpxSfNnI+nba7e1efLBJy+ocmnjtMfU= Subject key identifier: A8:D4:55:AD:79:DE:2F:97:29:76:44:AC:23:A5:F6:F7:B9:79:F3:FB Authority key identifier: E4:33:17:6E:59:AE:9B:47:64:EB:5E:FD:04:A4:36:85:62:AB:5E:21 Certificate issuer: /CN=A9180318/serialNumber=E433176E59AE9B4764EB5EFD04A4368562AB5E21 Certificate serial: 3475 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5DMXblmum0dk6179BKQ2hWKrXiE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9180318/B5719DD21D8F11E2B05707EF08B02CD2/5DMXblmum0dk6179BKQ2hWKrXiE.mft Manifest number: 3475 Signing time: Thu 24 Apr 2025 14:39:55 +0000 Manifest this update: Thu 24 Apr 2025 14:39:55 +0000 Manifest next update: Thu 01 May 2025 14:39:55 +0000 Files and hashes: 1: 5DMXblmum0dk6179BKQ2hWKrXiE.crl (hash: fYFh4EI5s6r0qVc/PKE/Mve5HxUFeRGQu2s4GB/znQI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9180318/B5719DD21D8F11E2B05707EF08B02CD2/5DMXblmum0dk6179BKQ2hWKrXiE.crl rsync://rpki.apnic.net/member_repository/A9180318/B5719DD21D8F11E2B05707EF08B02CD2/5DMXblmum0dk6179BKQ2hWKrXiE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5DMXblmum0dk6179BKQ2hWKrXiE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:39:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13429 (0x3475) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9180318, serialNumber=E433176E59AE9B4764EB5EFD04A4368562AB5E21 Validity Not Before: Apr 24 14:39:55 2025 GMT Not After : May 1 14:39:55 2025 GMT Subject: CN=680a4d3b-2b42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:35:38:7e:31:b5:11:80:1d:fb:d9:62:d0:fe: 91:e2:4e:45:e7:6b:0c:b2:73:c0:21:ed:82:1e:b1: 38:47:e3:ac:b9:13:d4:11:74:fb:41:2d:d4:82:23: f8:1a:74:29:a4:97:d0:f2:18:ec:a0:96:df:ec:3d: 5a:2c:f1:f1:d7:b3:a7:63:1c:5d:da:42:bb:30:ad: 0e:d7:8c:c7:56:7e:b6:7c:74:d1:f3:3f:dc:8c:61: 5b:a1:ae:de:64:31:87:b0:04:e9:5d:10:cc:d2:a7: 0d:bc:26:df:db:28:d1:a5:dc:3c:8a:46:03:8b:e8: 33:55:9b:21:bf:43:46:96:55:02:7d:4a:df:15:f8: ac:67:98:72:9b:74:e0:9a:30:3f:18:41:41:1c:16: 50:8a:3c:c6:1c:b9:7b:84:6c:04:3f:63:81:45:49: 1d:54:dd:82:41:3d:12:9b:14:b1:1b:1d:c9:3b:a4: 6c:d0:a9:ed:15:78:14:ae:a8:84:b6:74:4f:18:30: 63:0e:c9:94:24:6f:a1:39:0b:a0:2e:33:f9:2c:5f: 6b:0a:1a:35:f0:94:2c:ab:51:54:85:b3:da:00:86: 7c:14:42:14:92:88:60:a0:a4:9a:db:d3:32:28:c2: 43:e7:02:98:1f:87:4c:dc:5b:5c:3c:eb:ec:64:9b: 9f:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:D4:55:AD:79:DE:2F:97:29:76:44:AC:23:A5:F6:F7:B9:79:F3:FB X509v3 Authority Key Identifier: keyid:E4:33:17:6E:59:AE:9B:47:64:EB:5E:FD:04:A4:36:85:62:AB:5E:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9180318/B5719DD21D8F11E2B05707EF08B02CD2/5DMXblmum0dk6179BKQ2hWKrXiE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5DMXblmum0dk6179BKQ2hWKrXiE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180318/B5719DD21D8F11E2B05707EF08B02CD2/5DMXblmum0dk6179BKQ2hWKrXiE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:1d:21:80:5b:d9:b7:dd:af:0b:60:0e:5c:3f:40:ec:0a:db: 17:1b:6a:7e:c2:2d:60:8b:0f:1b:8a:88:03:ed:59:48:6f:d2: 9d:65:a0:39:43:fa:0c:2c:42:f6:0c:92:1d:7f:89:6b:58:3f: 1b:45:a9:d2:2e:39:7a:4b:4a:40:f7:a7:e4:ee:8c:d0:0b:01: e8:24:eb:85:d4:fb:8e:4a:62:c0:a8:7a:12:bd:b1:93:1e:a4: 61:4b:7b:92:65:e9:d9:49:4e:25:23:25:0f:83:4d:03:b3:bf: 47:7d:9b:45:6f:e7:1f:03:75:9e:ef:7c:01:74:a0:af:41:3a: d0:99:66:d1:85:df:44:73:25:f0:7d:99:62:5c:23:7e:8e:ef: a3:b6:05:36:49:c4:53:1d:5b:24:b5:2f:05:2c:27:26:23:2b: b3:0a:3c:53:17:b5:68:6e:6a:8a:40:14:7b:a4:ec:5a:36:54: 6b:27:e2:a5:5f:88:92:1f:21:ec:f6:4a:0a:1e:0a:c8:92:1f: 49:10:49:2c:72:03:e6:f2:13:b7:f2:d9:56:f8:52:6c:06:92: 43:fc:e2:92:66:c3:64:76:b1:47:d4:06:fc:b6:1f:6a:0d:18: 86:d6:38:85:bf:f0:04:a9:53:c5:5e:e2:3e:7a:5d:43:40:61: 71:5f:8d:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNHUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAzMTgxMTAvBgNVBAUTKEU0MzMxNzZFNTlBRTlCNDc2NEVCNUVGRDA0QTQzNjg1 NjJBQjVFMjEwHhcNMjUwNDI0MTQzOTU1WhcNMjUwNTAxMTQzOTU1WjAYMRYwFAYD VQQDEw02ODBhNGQzYi0yYjQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3TU4fjG1EYAd+9li0P6R4k5F52sMsnPAIe2CHrE4R+OsuRPUEXT7QS3UgiP4 GnQppJfQ8hjsoJbf7D1aLPHx17OnYxxd2kK7MK0O14zHVn62fHTR8z/cjGFboa7e ZDGHsATpXRDM0qcNvCbf2yjRpdw8ikYDi+gzVZshv0NGllUCfUrfFfisZ5hym3Tg mjA/GEFBHBZQijzGHLl7hGwEP2OBRUkdVN2CQT0SmxSxGx3JO6Rs0KntFXgUrqiE tnRPGDBjDsmUJG+hOQugLjP5LF9rCho18JQsq1FUhbPaAIZ8FEIUkohgoKSa29My KMJD5wKYH4dM3FtcPOvsZJufwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKjUVa15 3i+XKXZErCOl9ve5efP7MB8GA1UdIwQYMBaAFOQzF25ZrptHZOte/QSkNoViq14h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDMxOC9CNTcxOUREMjFE OEYxMUUyQjA1NzA3RUYwOEIwMkNEMi81RE1YYmxtdW0wZGs2MTc5QktRMmhXS3JY aUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVETVhibG11bTBkazYxNzlCS1EyaFdLclhpRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDMxOC9CNTcxOUREMjFEOEYxMUUyQjA1NzA3RUYwOEIwMkNEMi81RE1YYmxtdW0w ZGs2MTc5QktRMmhXS3JYaUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLHSGAW9m33a8LYA5cP0DsCtsXG2p+wi1giw8biogD7VlIb9KdZaA5 Q/oMLEL2DJIdf4lrWD8bRanSLjl6S0pA96fk7ozQCwHoJOuF1PuOSmLAqHoSvbGT HqRhS3uSZenZSU4lIyUPg00Ds79HfZtFb+cfA3We73wBdKCvQTrQmWbRhd9EcyXw fZliXCN+ju+jtgU2ScRTHVsktS8FLCcmIyuzCjxTF7VobmqKQBR7pOxaNlRrJ+Kl X4iSHyHs9koKHgrIkh9JEEkscgPm8hO38tlW+FJsBpJD/OKSZsNkdrFH1Ab8th9q DRiG1jiFv/AEqVPFXuI+el1DQGFxX42S -----END CERTIFICATE-----Generated at Sat Apr 26 04:23:48 2025 by rpki-client