$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.mft File: 5QyyUL-tCGPoXCkC6gIZ1TzAgS4.mft (raw, json) Hash identifier: YQCfjOsDHDxq/ilAi9XPbv5DW7ipX5naCWN75dbd4tI= Subject key identifier: DB:D1:F1:33:93:40:AE:A7:6C:DD:E0:FF:BC:93:6E:D2:00:4D:29:E2 Authority key identifier: E5:0C:B2:50:BF:AD:08:63:E8:5C:29:02:EA:02:19:D5:3C:C0:81:2E Certificate issuer: /CN=A91A7169/serialNumber=E50CB250BFAD0863E85C2902EA0219D53CC0812E Certificate serial: DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.mft Manifest number: D4 Signing time: Fri 25 Apr 2025 04:46:33 +0000 Manifest this update: Fri 25 Apr 2025 04:46:32 +0000 Manifest next update: Fri 02 May 2025 04:46:32 +0000 Files and hashes: 1: 5QyyUL-tCGPoXCkC6gIZ1TzAgS4.crl (hash: OkqQzvIVeqP/dU2DKYiK7Bgyqrsm5CDi/JIXejeB3f8=) 2: 6C8EAC7A195F11F08408FA45C4F9AE02.roa (hash: PVyptvEA9oDmZ+16c45INtfKH4dLidk+Ve918aGMKUo=) 3: C27C0758916B11EF81BBB521C4F9AE02.roa (hash: 0diVW8dy9wFSEzk96glJFk8zdqR8H6Y/olMf4xxS0Yk=) 4: 6D3C9D30195F11F08408FA45C4F9AE02.roa (hash: u21rWUof2U1PBXjuSU7vsXrJ/r/iU3pUFhpXLQAZEN0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.crl rsync://rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:46:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7169, serialNumber=E50CB250BFAD0863E85C2902EA0219D53CC0812E Validity Not Before: Apr 25 04:46:32 2025 GMT Not After : May 2 04:46:32 2025 GMT Subject: CN=680b13a8-0783 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:49:d8:99:7e:ad:93:d6:e7:9d:1c:dd:01:24: 52:41:e6:11:4e:8a:bd:bf:7e:94:53:c0:66:22:41: 47:62:a5:0c:8c:45:ce:2b:d6:b2:b9:2b:73:df:b5: 36:18:6b:ac:c4:35:57:8f:a0:dd:83:07:3d:4b:b4: 51:62:4f:44:9c:0f:b8:43:21:f9:2f:9b:9a:07:a5: 57:a8:1a:f5:3b:38:3f:f4:b2:d9:0e:56:04:dc:5e: 6f:07:09:31:14:bc:17:27:a6:8d:46:95:b2:13:6f: 2a:a1:6b:27:fe:69:c2:fa:27:f6:81:52:9a:c1:09: e7:52:5e:50:6c:6f:af:04:70:ec:87:d9:02:42:2c: f1:89:17:c4:8a:61:48:fa:01:2d:16:d2:7b:76:38: 7a:96:59:25:39:c3:b6:13:ac:f0:e4:25:d4:9a:e6: c2:49:47:71:1c:2c:6d:67:82:3a:06:cb:fa:56:03: a3:cd:6b:84:38:34:d5:22:53:b4:cf:d2:30:2b:81: 92:4e:c2:15:aa:f0:e2:8e:af:57:2d:2b:3c:cf:f7: df:57:fa:58:bb:73:1c:af:5f:4c:c9:31:e1:90:8a: 20:02:8f:71:33:ec:5a:15:d0:7d:f8:37:d6:91:90: f1:91:0b:6a:c0:26:29:b3:49:30:63:57:bb:da:5e: 90:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:D1:F1:33:93:40:AE:A7:6C:DD:E0:FF:BC:93:6E:D2:00:4D:29:E2 X509v3 Authority Key Identifier: keyid:E5:0C:B2:50:BF:AD:08:63:E8:5C:29:02:EA:02:19:D5:3C:C0:81:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:24:eb:41:22:d4:8e:8d:4d:00:e1:57:1d:82:7c:5a:5e:a0: b8:19:8b:1c:b8:fa:4a:c3:5e:ae:3d:29:87:c3:21:88:89:b5: b5:8e:20:fe:a2:57:77:92:24:e8:de:ef:4b:0e:55:9e:7c:07: da:98:7d:6c:63:ab:75:38:11:fe:47:8c:09:a6:85:e0:aa:9f: fa:da:51:6a:59:3c:05:e8:ca:b0:6c:7a:d5:63:5c:10:3d:e3: ff:be:64:db:31:4e:af:16:b8:28:8d:45:80:70:67:b1:87:14: f6:44:eb:37:13:8d:f8:27:6c:6d:e9:d6:31:e0:01:3a:4a:95: b7:95:70:7f:c8:03:f4:4c:6f:33:5e:1f:cf:7d:88:2c:fd:30: 43:cb:c9:09:08:3a:bc:77:b1:5f:3b:25:64:74:f7:63:ac:30: 3d:73:d6:24:4e:6d:a1:6b:e1:59:1c:fa:8f:40:52:7a:ad:14: 9f:f7:a8:9f:59:36:51:08:23:b3:08:83:12:28:b2:1d:8e:e4: be:5f:6f:05:be:0d:4e:54:c7:2d:50:0e:5d:5e:3f:68:db:90: e1:26:3e:10:36:2c:d5:71:8e:12:0c:d3:8f:33:02:91:7c:bc: e9:14:83:34:99:73:fc:48:3a:4c:3c:2e:b1:1c:1b:26:e2:5a: cd:fa:46:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTcxNjkxMTAvBgNVBAUTKEU1MENCMjUwQkZBRDA4NjNFODVDMjkwMkVBMDIxOUQ1 M0NDMDgxMkUwHhcNMjUwNDI1MDQ0NjMyWhcNMjUwNTAyMDQ0NjMyWjAYMRYwFAYD VQQDEw02ODBiMTNhOC0wNzgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxUnYmX6tk9bnnRzdASRSQeYRToq9v36UU8BmIkFHYqUMjEXOK9ayuStz37U2 GGusxDVXj6Ddgwc9S7RRYk9EnA+4QyH5L5uaB6VXqBr1Ozg/9LLZDlYE3F5vBwkx FLwXJ6aNRpWyE28qoWsn/mnC+if2gVKawQnnUl5QbG+vBHDsh9kCQizxiRfEimFI +gEtFtJ7djh6llklOcO2E6zw5CXUmubCSUdxHCxtZ4I6Bsv6VgOjzWuEODTVIlO0 z9IwK4GSTsIVqvDijq9XLSs8z/ffV/pYu3Mcr19MyTHhkIogAo9xM+xaFdB9+DfW kZDxkQtqwCYps0kwY1e72l6QeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNvR8TOT QK6nbN3g/7yTbtIATSniMB8GA1UdIwQYMBaAFOUMslC/rQhj6FwpAuoCGdU8wIEu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzE2OS82QjdGOTkzQ0VC QUUxMUVFOEEwRUQ5NjRDNEY5QUUwMi81UXl5VUwtdENHUG9YQ2tDNmdJWjFUekFn UzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVReXlVTC10Q0dQb1hDa0M2Z0laMVR6QWdTNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzE2OS82QjdGOTkzQ0VCQUUxMUVFOEEwRUQ5NjRDNEY5QUUwMi81UXl5VUwtdENH UG9YQ2tDNmdJWjFUekFnUzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClJOtBItSOjU0A4VcdgnxaXqC4GYscuPpKw16uPSmHwyGIibW1jiD+ old3kiTo3u9LDlWefAfamH1sY6t1OBH+R4wJpoXgqp/62lFqWTwF6MqwbHrVY1wQ PeP/vmTbMU6vFrgojUWAcGexhxT2ROs3E434J2xt6dYx4AE6SpW3lXB/yAP0TG8z Xh/PfYgs/TBDy8kJCDq8d7FfOyVkdPdjrDA9c9YkTm2ha+FZHPqPQFJ6rRSf96if WTZRCCOzCIMSKLIdjuS+X28Fvg1OVMctUA5dXj9o25DhJj4QNizVcY4SDNOPMwKR fLzpFIM0mXP8SDpMPC6xHBsm4lrN+ka4 -----END CERTIFICATE-----Generated at Sat Apr 26 17:06:26 2025 by rpki-client