$ rpki-client -vvf rpki.apnic.net/member_repository/A91B861D/D2997F60ABE311EB9C2B1156C4F9AE02/5hI_ServZkwi-UzV67rqztOHoW8.mft File: 5hI_ServZkwi-UzV67rqztOHoW8.mft (raw, json) Hash identifier: Lxa6hPdfmDCcPN78MfBmha8wwvrZn+wykJ4oBQngouM= Subject key identifier: 05:36:C1:5F:0D:7A:30:AB:2D:D3:17:03:34:DF:A2:1D:90:23:14:BE Authority key identifier: E6:12:3F:49:EA:EF:66:4C:22:F9:4C:D5:EB:BA:EA:CE:D3:87:A1:6F Certificate issuer: /CN=A91B861D/serialNumber=E6123F49EAEF664C22F94CD5EBBAEACED387A16F Certificate serial: 05EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5hI_ServZkwi-UzV67rqztOHoW8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B861D/D2997F60ABE311EB9C2B1156C4F9AE02/5hI_ServZkwi-UzV67rqztOHoW8.mft Manifest number: 05E8 Signing time: Thu 24 Apr 2025 22:44:22 +0000 Manifest this update: Thu 24 Apr 2025 22:44:21 +0000 Manifest next update: Thu 01 May 2025 22:44:21 +0000 Files and hashes: 1: 5hI_ServZkwi-UzV67rqztOHoW8.crl (hash: hUdY/SZ2Ggi4q8sJIfSxaFHCCbeGxu3RvPHBaV81DeQ=) 2: 2496CA7E557E11EF8AC47D15C4F9AE02.roa (hash: Si88NstkAfEiBBnqBOs/DXYPITXuyjYlx7/3WbtXefA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B861D/D2997F60ABE311EB9C2B1156C4F9AE02/5hI_ServZkwi-UzV67rqztOHoW8.crl rsync://rpki.apnic.net/member_repository/A91B861D/D2997F60ABE311EB9C2B1156C4F9AE02/5hI_ServZkwi-UzV67rqztOHoW8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5hI_ServZkwi-UzV67rqztOHoW8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:44:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1518 (0x5ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B861D, serialNumber=E6123F49EAEF664C22F94CD5EBBAEACED387A16F Validity Not Before: Apr 24 22:44:21 2025 GMT Not After : May 1 22:44:21 2025 GMT Subject: CN=680abec5-1b93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:6a:80:60:7f:d9:d0:4a:5a:f8:ea:84:19:1e: 61:70:27:c2:65:b5:6c:c6:d5:a4:4f:a8:e6:d3:d8: 06:50:e9:fd:f6:f0:16:b5:ac:8b:f2:8e:c5:32:2e: 01:d7:7c:cb:d3:a2:ef:5c:bc:fe:57:a6:3e:c4:08: 08:57:27:b2:26:9a:30:0d:b2:7d:49:c9:b3:af:65: 11:e1:5d:97:1b:b3:20:4e:22:5c:52:ec:8a:73:be: e4:26:aa:47:22:7b:1c:be:20:b8:d1:ab:31:f5:ae: 75:c4:54:61:b8:69:ab:18:68:9d:82:24:1c:e7:73: 75:d3:6c:cb:b1:67:3c:cf:f3:87:41:18:fd:31:f8: 41:bb:0a:17:7e:aa:3d:e0:92:79:7b:97:c3:eb:a3: 45:c3:1e:24:06:66:61:3b:8e:f9:90:7d:9f:c3:d7: 9c:86:4b:b1:e4:96:32:f3:88:38:02:63:c9:5c:6f: dd:86:6a:61:9c:26:f7:66:4f:9a:98:d1:5f:df:6a: ba:e7:d4:ab:30:f7:56:4c:4a:c3:b4:10:99:04:f2: 8b:1b:d2:0e:4b:c1:80:d7:95:6c:55:6c:bb:24:e9: 6e:eb:33:d2:28:19:1b:66:fe:7c:30:44:e7:a1:29: 9c:13:55:5a:f2:b7:7e:50:6a:d8:0e:b1:d4:ae:70: 48:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:36:C1:5F:0D:7A:30:AB:2D:D3:17:03:34:DF:A2:1D:90:23:14:BE X509v3 Authority Key Identifier: keyid:E6:12:3F:49:EA:EF:66:4C:22:F9:4C:D5:EB:BA:EA:CE:D3:87:A1:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B861D/D2997F60ABE311EB9C2B1156C4F9AE02/5hI_ServZkwi-UzV67rqztOHoW8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5hI_ServZkwi-UzV67rqztOHoW8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B861D/D2997F60ABE311EB9C2B1156C4F9AE02/5hI_ServZkwi-UzV67rqztOHoW8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:b4:eb:18:33:4d:67:f2:f9:07:db:4a:07:d2:1f:3a:ae:b0: f7:7d:8e:5f:a0:32:0d:0d:3d:43:7b:f4:57:97:d9:fe:27:f8: c6:e6:d7:74:95:d4:5a:62:27:92:06:d0:3f:de:d8:44:6e:c2: 24:5e:3b:30:78:76:97:53:5f:15:15:e7:70:e6:44:3a:0e:82: 76:d6:17:14:f2:10:cb:4a:8e:e7:6e:38:94:6d:b2:0f:58:03: 7a:d9:3d:82:e0:46:70:23:da:45:b1:d2:a1:51:3c:98:44:b6: f4:d1:33:e0:3d:65:bf:57:4a:94:ad:56:88:a8:26:c7:88:71: 48:07:8a:76:9c:5a:7b:dc:76:97:c9:71:58:05:8d:87:47:fe: 76:78:14:f7:a1:d8:18:51:96:05:30:ec:b2:b7:c9:72:e7:0b: 76:6b:02:c7:16:05:19:05:63:eb:d2:5d:a3:74:52:92:db:a5: dc:f8:90:17:c2:c9:4d:66:93:d5:c7:34:00:8c:3a:45:3a:f7: f5:67:49:38:fa:c7:8a:9f:a8:a8:7f:38:24:c1:25:66:55:8a: 0c:d7:4d:7b:cd:4b:b8:ee:1f:2c:89:30:6b:c7:1b:1a:c2:b4: 90:6b:a7:94:26:80:be:d7:c0:93:65:a5:2e:b4:42:48:aa:96: 1b:3b:be:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBe4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjg2MUQxMTAvBgNVBAUTKEU2MTIzRjQ5RUFFRjY2NEMyMkY5NENENUVCQkFFQUNF RDM4N0ExNkYwHhcNMjUwNDI0MjI0NDIxWhcNMjUwNTAxMjI0NDIxWjAYMRYwFAYD VQQDEw02ODBhYmVjNS0xYjkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArGqAYH/Z0Epa+OqEGR5hcCfCZbVsxtWkT6jm09gGUOn99vAWtayL8o7FMi4B 13zL06LvXLz+V6Y+xAgIVyeyJpowDbJ9Scmzr2UR4V2XG7MgTiJcUuyKc77kJqpH InscviC40asx9a51xFRhuGmrGGidgiQc53N102zLsWc8z/OHQRj9MfhBuwoXfqo9 4JJ5e5fD66NFwx4kBmZhO475kH2fw9echkux5JYy84g4AmPJXG/dhmphnCb3Zk+a mNFf32q659SrMPdWTErDtBCZBPKLG9IOS8GA15VsVWy7JOlu6zPSKBkbZv58METn oSmcE1Va8rd+UGrYDrHUrnBIBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAU2wV8N ejCrLdMXAzTfoh2QIxS+MB8GA1UdIwQYMBaAFOYSP0nq72ZMIvlM1eu66s7Th6Fv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODYxRC9EMjk5N0Y2MEFC RTMxMUVCOUMyQjExNTZDNEY5QUUwMi81aElfU2Vydlprd2ktVXpWNjdycXp0T0hv VzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVoSV9TZXJ2Wmt3aS1VelY2N3JxenRPSG9XOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODYxRC9EMjk5N0Y2MEFCRTMxMUVCOUMyQjExNTZDNEY5QUUwMi81aElfU2Vydlpr d2ktVXpWNjdycXp0T0hvVzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADtOsYM01n8vkH20oH0h86rrD3fY5foDINDT1De/RXl9n+J/jG5td0 ldRaYieSBtA/3thEbsIkXjsweHaXU18VFedw5kQ6DoJ21hcU8hDLSo7nbjiUbbIP WAN62T2C4EZwI9pFsdKhUTyYRLb00TPgPWW/V0qUrVaIqCbHiHFIB4p2nFp73HaX yXFYBY2HR/52eBT3odgYUZYFMOyyt8ly5wt2awLHFgUZBWPr0l2jdFKS26Xc+JAX wslNZpPVxzQAjDpFOvf1Z0k4+seKn6iofzgkwSVmVYoM1017zUu47h8siTBrxxsa wrSQa6eUJoC+18CTZaUutEJIqpYbO775 -----END CERTIFICATE-----Generated at Sat Apr 26 17:13:27 2025 by rpki-client