$ rpki-client -vvf rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft File: 5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft (raw, json) Hash identifier: lNjupj31wWlnqNQOQ6XFrZSb8dEedQFwkogvJOBxU1s= Subject key identifier: AF:0A:EA:B5:C1:9F:47:B3:55:3B:7F:74:4B:7E:EC:72:6F:72:84:3E Authority key identifier: E4:7B:F7:02:54:53:26:97:D2:0D:0D:31:10:F6:25:37:0D:65:FA:83 Certificate issuer: /CN=A91B59E5/serialNumber=E47BF70254532697D20D0D3110F625370D65FA83 Certificate serial: 01B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft Manifest number: 0189 Signing time: Fri 25 Apr 2025 03:28:23 +0000 Manifest this update: Fri 25 Apr 2025 03:28:21 +0000 Manifest next update: Fri 02 May 2025 03:28:21 +0000 Files and hashes: 1: 5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.crl (hash: ZAlgjcnsiuohVVdGJo668D7fZqc+c13Blo0WHBjPydk=) 2: 9EEE3C44D94F11EF916BCF23C4F9AE02.roa (hash: JTgCQ/a/n5QlsjMCTHDArlAgGVjedlWxdAR2U4v5LnA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.crl rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:28:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 438 (0x1b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B59E5, serialNumber=E47BF70254532697D20D0D3110F625370D65FA83 Validity Not Before: Apr 25 03:28:21 2025 GMT Not After : May 2 03:28:21 2025 GMT Subject: CN=680b0156-e2aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:fc:e7:be:fa:82:ef:c4:e4:db:c4:9d:d1:a4: e2:48:41:f3:64:92:40:b0:71:07:1d:f3:47:65:7d: f3:19:75:46:b7:c1:04:82:b9:fa:0b:fd:d7:8c:b2: f9:f1:5b:c7:67:a4:1b:d1:45:8c:78:71:fb:71:c3: 76:25:0a:35:b1:11:13:6d:bd:da:bc:96:45:41:47: 22:94:f7:52:20:1d:3b:80:fb:5a:8c:81:1e:e1:c2: 64:4b:43:e0:2b:e8:ff:66:e7:53:b2:4c:d3:4d:93: a3:3b:ea:14:9f:be:d7:09:ff:ff:ac:7e:89:28:d7: 9d:a7:d1:f8:bd:7d:d0:24:bd:43:f3:ac:ee:ec:bb: 02:c4:8b:a5:dd:ba:84:72:f0:01:b6:89:83:31:f7: a5:10:01:71:5b:5e:2c:91:a4:c0:36:3c:2f:47:7c: 9a:08:21:85:d7:36:43:19:b3:4a:d5:22:5f:d6:76: 77:40:30:5c:7f:32:d9:40:e4:d9:6e:f9:f5:8a:e7: 68:19:4a:a4:3b:57:21:24:53:c3:1e:3a:f8:53:22: e7:3d:a6:4b:27:9e:df:8e:a0:18:6a:5d:a7:db:1f: 42:f5:0e:36:79:dc:a8:79:ad:e1:92:93:0b:b6:7b: ec:f2:24:05:2c:c9:01:a7:84:68:d3:98:3a:58:05: 95:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:0A:EA:B5:C1:9F:47:B3:55:3B:7F:74:4B:7E:EC:72:6F:72:84:3E X509v3 Authority Key Identifier: keyid:E4:7B:F7:02:54:53:26:97:D2:0D:0D:31:10:F6:25:37:0D:65:FA:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:d3:ae:7e:94:52:a7:2f:9a:c7:f8:40:e4:43:d0:d5:f5:7d: c6:29:6c:15:b5:bb:fd:be:7a:8e:6e:08:fe:4d:fe:89:8a:bb: 87:f4:59:d3:a9:e4:82:ff:1b:79:ea:2a:d9:1e:3c:01:eb:5f: c2:c7:1e:a1:f2:b4:66:c0:36:86:36:eb:70:34:a7:7c:5c:f7: 6e:3e:41:e3:5b:19:b3:bc:fe:b8:99:7b:08:e0:7d:fa:e4:a7: f6:a3:5e:28:08:a9:5e:19:c2:e1:0b:68:a8:79:25:ad:33:00: 90:72:19:d5:83:a7:4f:bb:60:f0:7c:1f:92:f5:76:53:27:85: f5:ed:9e:da:5d:c7:b7:e5:ec:16:34:a3:09:e7:94:c2:7a:9a: a9:b2:28:fc:15:3b:94:35:be:ac:02:d3:67:4a:aa:0d:2a:1c: 1a:7d:9d:49:ba:28:5c:2b:e9:da:6f:0f:5f:58:79:f4:ed:71: 91:96:b3:b1:42:0f:3d:f4:e9:8e:6a:1a:9c:9b:eb:f0:04:a6: df:96:b4:96:2e:8e:d4:3e:31:8b:34:1a:8f:bd:25:86:e9:d2: 68:44:74:c8:14:e8:1f:35:ca:81:60:e9:e6:ce:95:25:ad:9d: 44:e3:19:47:f5:79:0e:2b:5d:ca:ba:45:af:c5:53:3c:5c:c7: 3a:b0:a1:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU5RTUxMTAvBgNVBAUTKEU0N0JGNzAyNTQ1MzI2OTdEMjBEMEQzMTEwRjYyNTM3 MEQ2NUZBODMwHhcNMjUwNDI1MDMyODIxWhcNMjUwNTAyMDMyODIxWjAYMRYwFAYD VQQDEw02ODBiMDE1Ni1lMmFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt/znvvqC78Tk28Sd0aTiSEHzZJJAsHEHHfNHZX3zGXVGt8EEgrn6C/3XjLL5 8VvHZ6Qb0UWMeHH7ccN2JQo1sRETbb3avJZFQUcilPdSIB07gPtajIEe4cJkS0Pg K+j/ZudTskzTTZOjO+oUn77XCf//rH6JKNedp9H4vX3QJL1D86zu7LsCxIul3bqE cvABtomDMfelEAFxW14skaTANjwvR3yaCCGF1zZDGbNK1SJf1nZ3QDBcfzLZQOTZ bvn1iudoGUqkO1chJFPDHjr4UyLnPaZLJ57fjqAYal2n2x9C9Q42edyoea3hkpML tnvs8iQFLMkBp4Ro05g6WAWVwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK8K6rXB n0ezVTt/dEt+7HJvcoQ+MB8GA1UdIwQYMBaAFOR79wJUUyaX0g0NMRD2JTcNZfqD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTlFNS9ERDlGMUY3QzND MDExMUVFOTFDQkUxNTdDNEY5QUUwMi81SHYzQWxSVEpwZlNEUTB4RVBZbE53MWwt b00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVIdjNBbFJUSnBmU0RRMHhFUFlsTncxbC1vTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTlFNS9ERDlGMUY3QzNDMDExMUVFOTFDQkUxNTdDNEY5QUUwMi81SHYzQWxSVEpw ZlNEUTB4RVBZbE53MWwtb00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAg065+lFKnL5rH+EDkQ9DV9X3GKWwVtbv9vnqObgj+Tf6JiruH9FnT qeSC/xt56irZHjwB61/Cxx6h8rRmwDaGNutwNKd8XPduPkHjWxmzvP64mXsI4H36 5Kf2o14oCKleGcLhC2ioeSWtMwCQchnVg6dPu2DwfB+S9XZTJ4X17Z7aXce35ewW NKMJ55TCepqpsij8FTuUNb6sAtNnSqoNKhwafZ1JuihcK+nabw9fWHn07XGRlrOx Qg899OmOahqcm+vwBKbflrSWLo7UPjGLNBqPvSWG6dJoRHTIFOgfNcqBYOnmzpUl rZ1E4xlH9XkOK13KukWvxVM8XMc6sKFE -----END CERTIFICATE-----Generated at Sat Apr 26 04:54:58 2025 by rpki-client