$ rpki-client -vvf rpki.apnic.net/member_repository/A9181C93/6D0F640E619711EEA62A3676C4F9AE02/5zsrW0iY5HX_6GmyTTSFzsh90Us.mft File: 5zsrW0iY5HX_6GmyTTSFzsh90Us.mft (raw, json) Hash identifier: 2KFZ7Zksi44cOT0+RnulXlcMAGSeVhs3hFRw9fu2YcY= Subject key identifier: E4:C8:6E:DE:D6:17:7C:F5:2B:62:85:F2:77:9D:03:13:72:9F:18:09 Authority key identifier: E7:3B:2B:5B:48:98:E4:75:FF:E8:69:B2:4D:34:85:CE:C8:7D:D1:4B Certificate issuer: /CN=A9181C93/serialNumber=E73B2B5B4898E475FFE869B24D3485CEC87DD14B Certificate serial: 012B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5zsrW0iY5HX_6GmyTTSFzsh90Us.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9181C93/6D0F640E619711EEA62A3676C4F9AE02/5zsrW0iY5HX_6GmyTTSFzsh90Us.mft Manifest number: 0127 Signing time: Fri 25 Apr 2025 03:44:15 +0000 Manifest this update: Fri 25 Apr 2025 03:44:15 +0000 Manifest next update: Fri 02 May 2025 03:44:15 +0000 Files and hashes: 1: 5zsrW0iY5HX_6GmyTTSFzsh90Us.crl (hash: l3eJItm96UL4iXJon1GbgQxuHejbJev5LVY3RUpHXMU=) 2: A2ED9CA2619D11EE8699DD20C4F9AE02.roa (hash: nKra6kgkDLZMACl29cue2PgvN/WmZ6IhO1y9ruMhiD4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9181C93/6D0F640E619711EEA62A3676C4F9AE02/5zsrW0iY5HX_6GmyTTSFzsh90Us.crl rsync://rpki.apnic.net/member_repository/A9181C93/6D0F640E619711EEA62A3676C4F9AE02/5zsrW0iY5HX_6GmyTTSFzsh90Us.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5zsrW0iY5HX_6GmyTTSFzsh90Us.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:44:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 299 (0x12b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9181C93, serialNumber=E73B2B5B4898E475FFE869B24D3485CEC87DD14B Validity Not Before: Apr 25 03:44:15 2025 GMT Not After : May 2 03:44:15 2025 GMT Subject: CN=680b050f-9571 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fe:e0:ac:83:83:3f:00:03:37:8a:83:83:c7:44: 0e:13:de:a1:4d:bc:27:ec:4a:26:0e:26:58:ef:6f: 23:b4:3c:ae:19:66:fb:4c:94:62:32:bc:1e:f1:9c: 49:d4:45:26:9b:8d:f3:07:ec:83:bf:3d:ef:43:46: c3:82:b1:51:ee:96:37:65:b4:3a:0c:65:2f:84:d4: 85:b8:24:63:e9:5a:df:8f:ca:c8:d6:1e:b1:19:0a: f3:35:e6:14:8f:a2:64:36:e7:c6:ba:9c:d9:a7:a5: 4b:08:bd:cf:38:d4:56:97:68:ae:d2:fe:4d:31:41: 30:4b:41:f9:2a:bd:de:09:71:bc:ce:16:e5:0c:c2: 3d:d9:e9:d5:3a:60:5c:aa:c9:ff:ea:27:ee:07:42: 9d:3b:93:60:e2:2f:4d:0b:0c:f5:38:23:a3:95:7e: 1e:bf:ec:51:d7:cd:da:a6:75:e4:27:81:7c:48:a1: ac:05:16:61:5d:d7:a3:cd:39:cd:c6:f6:90:90:c7: b0:00:c8:8c:d8:c0:a7:0d:6b:36:d0:e1:56:0c:89: 25:36:57:96:f0:c9:d4:99:9e:11:b0:23:e1:c7:e3: 7e:e7:d0:bf:78:63:04:89:65:05:ea:9a:35:3d:6f: fe:a5:9f:71:20:4a:ca:e2:1f:56:02:56:ff:c0:1b: 36:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:C8:6E:DE:D6:17:7C:F5:2B:62:85:F2:77:9D:03:13:72:9F:18:09 X509v3 Authority Key Identifier: keyid:E7:3B:2B:5B:48:98:E4:75:FF:E8:69:B2:4D:34:85:CE:C8:7D:D1:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9181C93/6D0F640E619711EEA62A3676C4F9AE02/5zsrW0iY5HX_6GmyTTSFzsh90Us.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5zsrW0iY5HX_6GmyTTSFzsh90Us.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9181C93/6D0F640E619711EEA62A3676C4F9AE02/5zsrW0iY5HX_6GmyTTSFzsh90Us.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:c3:f6:8b:98:49:be:dd:92:29:ff:fc:d2:d2:4f:b3:15:a3: fa:aa:3f:ac:07:08:2f:45:bd:60:4c:78:4c:b5:b4:7f:8b:7e: 09:c1:5b:64:f1:0b:99:56:6b:95:15:ad:d3:1f:a2:2b:15:8f: 1d:80:f5:7c:7b:3d:7b:52:3c:be:9b:c5:1b:59:19:ff:23:24: 73:7f:2c:78:43:7b:74:da:03:93:57:c5:a9:c0:77:30:98:1a: 40:76:a7:b9:3d:be:3b:7e:de:46:3c:9a:03:2f:29:39:ef:54: 3a:52:86:ed:ac:4f:41:16:b6:08:a5:26:85:b8:34:62:7e:d0: 7d:d1:37:74:07:5b:28:09:8f:23:5f:cf:16:12:f2:b9:e9:4d: 17:2c:ed:23:81:8e:3c:b2:0e:41:8e:12:26:98:d9:c6:73:4e: 55:56:21:f8:fb:e2:c3:85:4b:12:cd:fa:41:74:b8:53:8f:e1: 43:75:25:a0:e6:73:63:38:7a:70:bf:80:c1:f2:57:a2:c9:0d: da:eb:e6:1c:99:24:5b:20:b6:08:ae:0f:e6:5f:8c:09:cc:e0: 50:fd:70:2f:13:c7:98:3f:47:84:16:33:bf:d4:c3:48:09:12: 39:75:aa:12:9b:7c:ea:d9:b0:67:f4:96:f7:28:db:89:70:9c: 8b:ec:be:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODFDOTMxMTAvBgNVBAUTKEU3M0IyQjVCNDg5OEU0NzVGRkU4NjlCMjREMzQ4NUNF Qzg3REQxNEIwHhcNMjUwNDI1MDM0NDE1WhcNMjUwNTAyMDM0NDE1WjAYMRYwFAYD VQQDEw02ODBiMDUwZi05NTcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/uCsg4M/AAM3ioODx0QOE96hTbwn7EomDiZY728jtDyuGWb7TJRiMrwe8ZxJ 1EUmm43zB+yDvz3vQ0bDgrFR7pY3ZbQ6DGUvhNSFuCRj6Vrfj8rI1h6xGQrzNeYU j6JkNufGupzZp6VLCL3PONRWl2iu0v5NMUEwS0H5Kr3eCXG8zhblDMI92enVOmBc qsn/6ifuB0KdO5Ng4i9NCwz1OCOjlX4ev+xR183apnXkJ4F8SKGsBRZhXdejzTnN xvaQkMewAMiM2MCnDWs20OFWDIklNleW8MnUmZ4RsCPhx+N+59C/eGMEiWUF6po1 PW/+pZ9xIErK4h9WAlb/wBs2gwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOTIbt7W F3z1K2KF8nedAxNynxgJMB8GA1UdIwQYMBaAFOc7K1tImOR1/+hpsk00hc7IfdFL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MUM5My82RDBGNjQwRTYx OTcxMUVFQTYyQTM2NzZDNEY5QUUwMi81enNyVzBpWTVIWF82R215VFRTRnpzaDkw VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV6c3JXMGlZNUhYXzZHbXlUVFNGenNoOTBVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MUM5My82RDBGNjQwRTYxOTcxMUVFQTYyQTM2NzZDNEY5QUUwMi81enNyVzBpWTVI WF82R215VFRTRnpzaDkwVXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHw/aLmEm+3ZIp//zS0k+zFaP6qj+sBwgvRb1gTHhMtbR/i34JwVtk 8QuZVmuVFa3TH6IrFY8dgPV8ez17Ujy+m8UbWRn/IyRzfyx4Q3t02gOTV8WpwHcw mBpAdqe5Pb47ft5GPJoDLyk571Q6UobtrE9BFrYIpSaFuDRiftB90Td0B1soCY8j X88WEvK56U0XLO0jgY48sg5BjhImmNnGc05VViH4++LDhUsSzfpBdLhTj+FDdSWg 5nNjOHpwv4DB8leiyQ3a6+YcmSRbILYIrg/mX4wJzOBQ/XAvE8eYP0eEFjO/1MNI CRI5daoSm3zq2bBn9Jb3KNuJcJyL7L51 -----END CERTIFICATE-----Generated at Sat Apr 26 14:21:14 2025 by rpki-client