$ rpki-client -vvf rpki.apnic.net/member_repository/A9191769/D26DDDB077BE11EF9F2A4547C4F9AE02/_5I0f11UaIEf0lOki_xp_lcKpFA.mft File: _5I0f11UaIEf0lOki_xp_lcKpFA.mft (raw, json) Hash identifier: r5r7f/nFh9FR1nKbaMymzcCppfOjydfCWGVPbZCu33E= Subject key identifier: 42:E5:22:25:45:E7:F0:7E:D9:9E:00:20:BF:67:AD:EE:4E:D2:0C:77 Authority key identifier: FF:92:34:7F:5D:54:68:81:1F:D2:53:A4:8B:FC:69:FE:57:0A:A4:50 Certificate issuer: /CN=A9191769/serialNumber=FF92347F5D5468811FD253A48BFC69FE570AA450 Certificate serial: 72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_5I0f11UaIEf0lOki_xp_lcKpFA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191769/D26DDDB077BE11EF9F2A4547C4F9AE02/_5I0f11UaIEf0lOki_xp_lcKpFA.mft Manifest number: 71 Signing time: Fri 25 Apr 2025 05:49:51 +0000 Manifest this update: Fri 25 Apr 2025 05:49:50 +0000 Manifest next update: Fri 02 May 2025 05:49:50 +0000 Files and hashes: 1: _5I0f11UaIEf0lOki_xp_lcKpFA.crl (hash: SuRm/CqMvxv6r4QICr2+Qw8ig0wmTcPP/95ucQjdIIY=) 2: 4D36C07677C311EF84D38A3BC4F9AE02.roa (hash: 6DTPGl0cK90vpMXpajrInMal5HqM8aVrjHYhHLus/gk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191769/D26DDDB077BE11EF9F2A4547C4F9AE02/_5I0f11UaIEf0lOki_xp_lcKpFA.crl rsync://rpki.apnic.net/member_repository/A9191769/D26DDDB077BE11EF9F2A4547C4F9AE02/_5I0f11UaIEf0lOki_xp_lcKpFA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_5I0f11UaIEf0lOki_xp_lcKpFA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 114 (0x72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191769, serialNumber=FF92347F5D5468811FD253A48BFC69FE570AA450 Validity Not Before: Apr 25 05:49:50 2025 GMT Not After : May 2 05:49:50 2025 GMT Subject: CN=680b227e-ee35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:91:99:df:8b:a8:08:0b:a0:ca:4b:b9:2c:05: ef:fb:99:47:fc:25:26:26:eb:35:e6:40:6a:9e:a8: 6b:09:93:00:da:e7:5c:27:2f:d5:6c:fb:c7:17:a1: 4e:b8:7f:8e:91:28:95:56:16:93:cb:bf:03:4a:88: cc:35:11:6b:e5:97:d0:6f:c6:e8:d4:17:dd:d3:4c: 7a:1f:28:ed:07:e4:b1:ba:45:ee:6a:6f:fc:bf:b5: c0:5b:35:09:0a:aa:56:5b:2e:ff:1d:58:71:be:53: 4d:41:0d:49:88:bd:65:cb:b8:a4:6a:4b:46:4d:22: 43:2d:a9:18:bf:07:20:66:ae:18:c2:96:9f:a0:ae: e6:70:05:79:50:07:aa:b2:77:f5:13:d8:35:43:c2: ba:97:18:6c:ed:e2:7d:9b:52:a9:54:f1:ba:a5:17: bb:61:56:69:5d:59:58:96:a5:f4:b0:ab:62:ab:50: 92:d8:5e:04:05:77:4b:40:9b:5d:94:ed:2d:f5:e0: d0:c9:27:ab:2e:21:25:48:16:60:66:74:e8:01:38: b1:20:ae:24:43:34:a6:8d:76:5f:3a:15:f0:22:e1: 46:0a:36:7b:dd:c1:90:7e:f7:d1:9f:3b:b1:e9:b4: 25:53:04:63:6b:b7:4e:7c:6e:74:40:b2:a3:cb:0a: c9:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:E5:22:25:45:E7:F0:7E:D9:9E:00:20:BF:67:AD:EE:4E:D2:0C:77 X509v3 Authority Key Identifier: keyid:FF:92:34:7F:5D:54:68:81:1F:D2:53:A4:8B:FC:69:FE:57:0A:A4:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191769/D26DDDB077BE11EF9F2A4547C4F9AE02/_5I0f11UaIEf0lOki_xp_lcKpFA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_5I0f11UaIEf0lOki_xp_lcKpFA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191769/D26DDDB077BE11EF9F2A4547C4F9AE02/_5I0f11UaIEf0lOki_xp_lcKpFA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:52:ce:85:e9:a1:47:39:a1:bd:61:80:49:b1:fd:f3:fc:e4: 9a:b2:46:82:fd:b4:3f:fb:a3:6a:d0:2d:b1:fb:67:27:63:39: 1e:d7:8f:cf:0a:79:60:40:0d:9e:08:cb:a0:5d:f0:f5:6b:b5: 74:c4:db:f0:8f:e0:ee:c7:50:dd:46:11:fe:5f:ca:55:7d:1d: e0:99:32:a2:fd:17:e4:1a:b7:53:87:14:ff:12:91:27:3d:ad: ba:46:c4:11:18:94:db:0e:b5:2d:94:05:f4:92:32:97:d9:a0: ca:db:87:24:07:04:5b:b5:e5:16:80:d2:4a:ae:d9:ec:95:b5: 49:16:ad:a1:f1:86:a8:61:fc:f4:44:58:69:05:89:05:f0:1e: 2e:7f:a1:47:72:7a:14:b6:35:06:82:d2:5d:be:f7:e4:8f:92: 5b:cd:a8:23:21:79:37:ca:0b:53:81:20:fb:85:18:61:0c:cf: a3:89:27:af:70:d9:ed:44:16:25:77:69:06:64:ba:b2:5f:5a: dd:e2:7d:f4:9c:7e:bf:5c:60:90:5a:4e:55:cb:83:9a:3f:cb: cb:44:18:e8:e3:87:92:90:73:c5:ba:c5:60:46:ac:4c:e4:20: ce:d7:d4:de:1d:87:1e:20:7d:bc:c3:88:47:c1:0b:0a:7e:1d: b4:04:8d:87 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 MTc2OTExMC8GA1UEBRMoRkY5MjM0N0Y1RDU0Njg4MTFGRDI1M0E0OEJGQzY5RkU1 NzBBQTQ1MDAeFw0yNTA0MjUwNTQ5NTBaFw0yNTA1MDIwNTQ5NTBaMBgxFjAUBgNV BAMTDTY4MGIyMjdlLWVlMzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCrkZnfi6gIC6DKS7ksBe/7mUf8JSYm6zXmQGqeqGsJkwDa51wnL9Vs+8cXoU64 f46RKJVWFpPLvwNKiMw1EWvll9BvxujUF93TTHofKO0H5LG6Re5qb/y/tcBbNQkK qlZbLv8dWHG+U01BDUmIvWXLuKRqS0ZNIkMtqRi/ByBmrhjClp+gruZwBXlQB6qy d/UT2DVDwrqXGGzt4n2bUqlU8bqlF7thVmldWViWpfSwq2KrUJLYXgQFd0tAm12U 7S314NDJJ6suISVIFmBmdOgBOLEgriRDNKaNdl86FfAi4UYKNnvdwZB+99GfO7Hp tCVTBGNrt058bnRAsqPLCslBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUQuUiJUXn 8H7ZngAgv2et7k7SDHcwHwYDVR0jBBgwFoAU/5I0f11UaIEf0lOki/xp/lcKpFAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkxNzY5L0QyNkREREIwNzdC RTExRUY5RjJBNDU0N0M0RjlBRTAyL181STBmMTFVYUlFZjBsT2tpX3hwX2xjS3BG QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvXzVJMGYxMVVhSUVmMGxPa2lfeHBfbGNLcEZBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkx NzY5L0QyNkREREIwNzdCRTExRUY5RjJBNDU0N0M0RjlBRTAyL181STBmMTFVYUlF ZjBsT2tpX3hwX2xjS3BGQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMNSzoXpoUc5ob1hgEmx/fP85JqyRoL9tD/7o2rQLbH7ZydjOR7Xj88K eWBADZ4Iy6Bd8PVrtXTE2/CP4O7HUN1GEf5fylV9HeCZMqL9F+Qat1OHFP8SkSc9 rbpGxBEYlNsOtS2UBfSSMpfZoMrbhyQHBFu15RaA0kqu2eyVtUkWraHxhqhh/PRE WGkFiQXwHi5/oUdyehS2NQaC0l2+9+SPklvNqCMheTfKC1OBIPuFGGEMz6OJJ69w 2e1EFiV3aQZkurJfWt3iffScfr9cYJBaTlXLg5o/y8tEGOjjh5KQc8W6xWBGrEzk IM7X1N4dhx4gfbzDiEfBCwp+HbQEjYc= -----END CERTIFICATE-----Generated at Sat Apr 26 05:06:11 2025 by rpki-client