$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8B0B/5AEB5EB2FCC511E99858A91EC4F9AE02/5Otd-leSQpC7j-xFuZd_xsf2-jc.mft File: 5Otd-leSQpC7j-xFuZd_xsf2-jc.mft (raw, json) Hash identifier: eVf+fH02fV4AKZ5Xi+WrSuOtFB1SauSduEoVj7OF08o= Subject key identifier: BD:D5:9A:50:47:2E:08:41:DC:16:9B:2F:15:5F:90:90:A8:1A:AC:8F Authority key identifier: E4:EB:5D:FA:57:92:42:90:BB:8F:EC:45:B9:97:7F:C6:C7:F6:FA:37 Certificate issuer: /CN=A91A8B0B/serialNumber=E4EB5DFA57924290BB8FEC45B9977FC6C7F6FA37 Certificate serial: 0C7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Otd-leSQpC7j-xFuZd_xsf2-jc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8B0B/5AEB5EB2FCC511E99858A91EC4F9AE02/5Otd-leSQpC7j-xFuZd_xsf2-jc.mft Manifest number: 0C68 Signing time: Thu 24 Apr 2025 18:14:26 +0000 Manifest this update: Thu 24 Apr 2025 18:14:25 +0000 Manifest next update: Thu 01 May 2025 18:14:25 +0000 Files and hashes: 1: 5Otd-leSQpC7j-xFuZd_xsf2-jc.crl (hash: GQSkTy0sS+uVd9c6XSgnlDo+lUvP3MbpM93Aq71pXcE=) 2: 5842DDF0FCE511E9BFA4B27AC4F9AE02.roa (hash: kJqESF4QlMyVG/2/vUjwGWXp6ZiWLKmRChQ5GeCT1ak=) 3: EA17F65E6C6711ECB7C0925AC4F9AE02.roa (hash: n6K4eFBQQStBGPjOWI9UjtqimxuSa7JV9+htrnKW+a4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8B0B/5AEB5EB2FCC511E99858A91EC4F9AE02/5Otd-leSQpC7j-xFuZd_xsf2-jc.crl rsync://rpki.apnic.net/member_repository/A91A8B0B/5AEB5EB2FCC511E99858A91EC4F9AE02/5Otd-leSQpC7j-xFuZd_xsf2-jc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Otd-leSQpC7j-xFuZd_xsf2-jc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:14:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3194 (0xc7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8B0B, serialNumber=E4EB5DFA57924290BB8FEC45B9977FC6C7F6FA37 Validity Not Before: Apr 24 18:14:25 2025 GMT Not After : May 1 18:14:25 2025 GMT Subject: CN=680a7f81-9db7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:e6:e1:50:c5:d7:bd:3b:b0:b3:ea:8d:b4:c2: a7:eb:71:65:7e:ae:c6:9d:1e:1f:8b:83:36:d1:7c: 94:c0:53:4a:fb:dd:96:f1:6d:1f:61:57:7b:45:c3: c5:81:7a:82:62:83:9e:00:77:da:90:e4:fb:8f:b2: b3:69:dd:aa:34:d3:8a:4e:04:bb:3c:82:5d:f0:9b: cb:81:d4:be:41:cf:df:cc:31:d8:fc:9a:bf:8c:e1: cc:59:bc:70:a7:a0:82:d9:3d:60:72:65:fb:2d:cb: de:8b:12:c4:5a:73:c1:9f:05:ca:c0:ff:d7:64:cb: bf:db:38:3c:ef:96:a8:4b:0f:8b:26:b4:00:ba:9c: 0f:fa:a1:18:e7:ad:64:a6:b9:c8:5c:b8:f1:bc:a0: b3:7f:c8:73:b0:43:8f:f9:d0:9e:93:1f:dd:bd:c9: ce:7b:42:00:d5:d0:40:cc:30:54:46:34:85:ec:19: cf:54:0a:a1:1b:3f:40:83:b3:22:eb:f0:cf:e1:a3: 70:b7:74:8e:ce:c2:a0:16:03:f8:ca:73:25:d7:e8: cb:5c:34:28:69:0b:36:a8:42:08:bf:f8:e5:6b:76: 7a:52:b5:2e:10:fc:37:e5:0e:ec:0b:a1:70:7d:24: 1d:e0:52:da:67:39:6b:f2:22:52:a2:7d:cb:82:59: 78:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:D5:9A:50:47:2E:08:41:DC:16:9B:2F:15:5F:90:90:A8:1A:AC:8F X509v3 Authority Key Identifier: keyid:E4:EB:5D:FA:57:92:42:90:BB:8F:EC:45:B9:97:7F:C6:C7:F6:FA:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8B0B/5AEB5EB2FCC511E99858A91EC4F9AE02/5Otd-leSQpC7j-xFuZd_xsf2-jc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Otd-leSQpC7j-xFuZd_xsf2-jc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8B0B/5AEB5EB2FCC511E99858A91EC4F9AE02/5Otd-leSQpC7j-xFuZd_xsf2-jc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:19:a8:ec:9f:30:04:79:e1:4e:f1:c5:1d:3e:bb:9f:7b:0f: 07:24:dc:87:44:ed:12:70:0b:6f:0c:77:6c:4e:e6:62:d2:cd: 33:9b:f0:b1:5f:9d:84:ff:4f:ed:8d:83:d1:0e:21:5a:c3:64: ef:d7:96:9f:23:8d:ba:c3:37:b6:d0:2f:91:8a:48:6c:fb:ab: 7e:c7:91:eb:d9:ee:eb:ce:ce:a8:73:e6:09:b8:9c:5c:58:af: f8:e6:73:14:ce:59:c3:19:39:1b:a2:d9:2f:22:47:03:f6:0b: c0:7d:58:61:2a:e9:db:fa:6d:2d:1b:23:0b:89:da:69:c5:81: de:09:28:50:69:9c:67:b0:ff:9c:59:b0:a5:d9:9b:55:14:c6: 4f:67:e2:90:14:6e:58:03:e1:b7:83:18:49:f1:72:f4:5e:9f: 8e:aa:a1:53:54:97:47:83:0c:b5:58:b9:7f:99:49:45:d1:84: 58:ed:de:d8:70:59:b2:82:e8:4b:fa:67:62:c3:d9:1d:f0:5a: 0e:d1:3b:a4:fb:1b:8f:50:4f:15:63:83:f6:e8:1a:29:b7:e0: a9:66:53:c9:86:05:26:98:13:e0:91:16:a3:fa:26:16:34:ec: 02:1d:8b:69:b5:2d:00:fb:45:0d:3e:3e:6e:32:91:60:c6:5e: 8c:d0:85:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDHowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThCMEIxMTAvBgNVBAUTKEU0RUI1REZBNTc5MjQyOTBCQjhGRUM0NUI5OTc3RkM2 QzdGNkZBMzcwHhcNMjUwNDI0MTgxNDI1WhcNMjUwNTAxMTgxNDI1WjAYMRYwFAYD VQQDEw02ODBhN2Y4MS05ZGI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq+bhUMXXvTuws+qNtMKn63Flfq7GnR4fi4M20XyUwFNK+92W8W0fYVd7RcPF gXqCYoOeAHfakOT7j7Kzad2qNNOKTgS7PIJd8JvLgdS+Qc/fzDHY/Jq/jOHMWbxw p6CC2T1gcmX7LcveixLEWnPBnwXKwP/XZMu/2zg875aoSw+LJrQAupwP+qEY561k prnIXLjxvKCzf8hzsEOP+dCekx/dvcnOe0IA1dBAzDBURjSF7BnPVAqhGz9Ag7Mi 6/DP4aNwt3SOzsKgFgP4ynMl1+jLXDQoaQs2qEIIv/jla3Z6UrUuEPw35Q7sC6Fw fSQd4FLaZzlr8iJSon3Lgll4eQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL3VmlBH LghB3BabLxVfkJCoGqyPMB8GA1UdIwQYMBaAFOTrXfpXkkKQu4/sRbmXf8bH9vo3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEIwQi81QUVCNUVCMkZD QzUxMUU5OTg1OEE5MUVDNEY5QUUwMi81T3RkLWxlU1FwQzdqLXhGdVpkX3hzZjIt amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVPdGQtbGVTUXBDN2oteEZ1WmRfeHNmMi1qYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEIwQi81QUVCNUVCMkZDQzUxMUU5OTg1OEE5MUVDNEY5QUUwMi81T3RkLWxlU1Fw QzdqLXhGdVpkX3hzZjItamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACGajsnzAEeeFO8cUdPrufew8HJNyHRO0ScAtvDHdsTuZi0s0zm/Cx X52E/0/tjYPRDiFaw2Tv15afI426wze20C+Rikhs+6t+x5Hr2e7rzs6oc+YJuJxc WK/45nMUzlnDGTkbotkvIkcD9gvAfVhhKunb+m0tGyMLidppxYHeCShQaZxnsP+c WbCl2ZtVFMZPZ+KQFG5YA+G3gxhJ8XL0Xp+OqqFTVJdHgwy1WLl/mUlF0YRY7d7Y cFmyguhL+mdiw9kd8FoO0Tuk+xuPUE8VY4P26Bopt+CpZlPJhgUmmBPgkRaj+iYW NOwCHYtptS0A+0UNPj5uMpFgxl6M0IWO -----END CERTIFICATE-----Generated at Sat Apr 26 04:18:31 2025 by rpki-client