$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft File: 5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft (raw, json) Hash identifier: mXj46o2m2ymJvcv4shba9/ATwC0T7r32hNnVZ+dlurA= Subject key identifier: B3:76:DF:68:44:65:C3:DB:9F:01:99:D8:42:C8:1E:60:72:C9:A5:20 Authority key identifier: E4:D6:2D:31:29:7F:17:E4:9C:42:FA:7A:7B:66:23:62:4A:D9:41:75 Certificate issuer: /CN=A91B9B0D/serialNumber=E4D62D31297F17E49C42FA7A7B6623624AD94175 Certificate serial: 0641 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NYtMSl_F-ScQvp6e2YjYkrZQXU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft Manifest number: 063C Signing time: Thu 24 Apr 2025 22:23:53 +0000 Manifest this update: Thu 24 Apr 2025 22:23:52 +0000 Manifest next update: Thu 01 May 2025 22:23:52 +0000 Files and hashes: 1: 5NYtMSl_F-ScQvp6e2YjYkrZQXU.crl (hash: zpE1C3gvWDwBL2XPEVrlQTWqsGeqxK4u/VpCrmdK7Q4=) 2: 3F9CDA68179911EDB9008D18C4F9AE02.roa (hash: uQ87OwRIbPff2rIgxwDqjjJe9H/t71HNB3Wpu5Q8ifI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.crl rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NYtMSl_F-ScQvp6e2YjYkrZQXU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:23:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1601 (0x641) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9B0D, serialNumber=E4D62D31297F17E49C42FA7A7B6623624AD94175 Validity Not Before: Apr 24 22:23:52 2025 GMT Not After : May 1 22:23:52 2025 GMT Subject: CN=680ab9f9-e1c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:62:30:46:e9:54:b6:03:fd:9b:99:94:3c:40: 39:22:39:4e:48:50:1e:ad:7b:61:11:4e:97:16:ed: b3:26:10:68:c9:91:e2:01:82:78:3d:c5:e2:b5:14: e5:1a:c7:f4:66:ec:8b:f6:ac:78:3e:df:0b:9b:14: 00:ac:70:d5:59:2c:c7:b7:03:80:54:de:8f:c6:60: 28:b6:74:e7:ba:d1:eb:b7:76:5b:d3:9e:b0:5a:ca: 6d:46:f3:6d:5e:2d:0c:85:4b:cb:b8:8e:18:7b:4a: 85:ba:c9:a6:87:e0:4e:0e:96:87:4d:3d:7e:a3:ac: b0:c6:3c:22:a9:07:cc:26:25:53:d8:44:56:f4:2b: c1:57:cb:04:45:ea:c1:d3:7a:3b:41:ba:71:cd:2b: 4e:0b:d3:a0:38:c7:f0:eb:d3:63:93:d9:87:79:72: 79:0f:05:ae:75:73:6c:a8:5d:d1:a4:8b:df:6b:55: 34:37:b3:b1:cb:da:de:6c:47:36:d8:0f:16:95:41: a7:7f:00:09:60:f8:76:54:69:1e:df:2e:b9:19:07: ff:a5:eb:49:fb:18:86:02:1c:c8:be:2d:55:07:d4: 37:0a:68:4a:5a:71:5d:12:65:85:40:d1:00:79:7e: 35:0a:00:a0:7c:99:d3:98:bd:08:62:40:ce:e2:d5: 95:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:76:DF:68:44:65:C3:DB:9F:01:99:D8:42:C8:1E:60:72:C9:A5:20 X509v3 Authority Key Identifier: keyid:E4:D6:2D:31:29:7F:17:E4:9C:42:FA:7A:7B:66:23:62:4A:D9:41:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NYtMSl_F-ScQvp6e2YjYkrZQXU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:83:7d:4f:d0:12:f1:0d:a7:0b:13:e2:b3:44:50:40:15:79: 7b:03:de:6f:96:56:32:9a:9e:c6:98:78:64:2b:5d:d6:a7:99: 66:84:9e:50:b8:49:62:c2:2b:7e:b9:55:43:e5:a9:89:bb:82: c4:9b:0d:cc:3c:5e:59:e0:c4:70:c3:a5:69:2c:81:c1:04:23: 9c:da:42:12:51:cb:29:7b:0a:8d:83:10:cf:98:96:5c:b2:6d: 93:ee:c1:7c:76:61:7d:25:a7:c4:bf:d1:c2:70:05:4b:98:ee: 89:be:ca:ab:f5:64:0b:a0:b4:a2:4b:41:f5:fe:c5:9d:b4:30: 23:94:99:69:cf:0f:de:e7:fa:f0:c1:0c:10:a3:ae:20:17:09: 4f:d8:e9:1c:f5:2f:0e:5f:ae:2e:ba:fc:b7:74:97:92:83:be: 51:80:f7:a7:9c:75:04:13:2d:33:08:db:1b:bb:af:3f:e3:ea: 83:9c:63:f6:ec:40:52:ea:cb:4d:aa:84:aa:1d:3e:3b:27:b8: d7:d8:68:81:63:c5:d4:d0:58:a2:fd:79:95:cd:72:ff:00:39: 81:0d:de:66:f5:b8:39:a3:0c:96:26:eb:4d:23:1d:5f:1a:9e: 17:c8:79:cd:a6:1e:9a:19:da:7a:65:90:41:86:4d:6a:a2:e2: bb:57:9d:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlCMEQxMTAvBgNVBAUTKEU0RDYyRDMxMjk3RjE3RTQ5QzQyRkE3QTdCNjYyMzYy NEFEOTQxNzUwHhcNMjUwNDI0MjIyMzUyWhcNMjUwNTAxMjIyMzUyWjAYMRYwFAYD VQQDEw02ODBhYjlmOS1lMWM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1mIwRulUtgP9m5mUPEA5IjlOSFAerXthEU6XFu2zJhBoyZHiAYJ4PcXitRTl Gsf0ZuyL9qx4Pt8LmxQArHDVWSzHtwOAVN6PxmAotnTnutHrt3Zb056wWsptRvNt Xi0MhUvLuI4Ye0qFusmmh+BODpaHTT1+o6ywxjwiqQfMJiVT2ERW9CvBV8sERerB 03o7QbpxzStOC9OgOMfw69Njk9mHeXJ5DwWudXNsqF3RpIvfa1U0N7Oxy9rebEc2 2A8WlUGnfwAJYPh2VGke3y65GQf/petJ+xiGAhzIvi1VB9Q3CmhKWnFdEmWFQNEA eX41CgCgfJnTmL0IYkDO4tWVhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLN232hE ZcPbnwGZ2ELIHmByyaUgMB8GA1UdIwQYMBaAFOTWLTEpfxfknEL6entmI2JK2UF1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUIwRC9BMjhFQ0JDMDhB QjYxMUVCODIzN0Q0MTRDNEY5QUUwMi81Tll0TVNsX0YtU2NRdnA2ZTJZallrclpR WFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVOWXRNU2xfRi1TY1F2cDZlMllqWWtyWlFYVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUIwRC9BMjhFQ0JDMDhBQjYxMUVCODIzN0Q0MTRDNEY5QUUwMi81Tll0TVNsX0Yt U2NRdnA2ZTJZallrclpRWFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNg31P0BLxDacLE+KzRFBAFXl7A95vllYymp7GmHhkK13Wp5lmhJ5Q uEliwit+uVVD5amJu4LEmw3MPF5Z4MRww6VpLIHBBCOc2kISUcspewqNgxDPmJZc sm2T7sF8dmF9JafEv9HCcAVLmO6Jvsqr9WQLoLSiS0H1/sWdtDAjlJlpzw/e5/rw wQwQo64gFwlP2Okc9S8OX64uuvy3dJeSg75RgPennHUEEy0zCNsbu68/4+qDnGP2 7EBS6stNqoSqHT47J7jX2GiBY8XU0Fii/XmVzXL/ADmBDd5m9bg5owyWJutNIx1f Gp4XyHnNph6aGdp6ZZBBhk1qouK7V53I -----END CERTIFICATE-----Generated at Sat Apr 26 16:37:06 2025 by rpki-client