$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3ABA/985F0922354B11ECB62DBD48C4F9AE02/5ZkxVcREOi5WwN4jM6RLVsrUkZw.mft File: 5ZkxVcREOi5WwN4jM6RLVsrUkZw.mft (raw, json) Hash identifier: JQokCj7bJlOLiXYtm0dtT5p/UpNRunijRGpHjaJ/pYE= Subject key identifier: 93:A9:2C:88:7E:40:95:08:22:F6:DF:80:59:5A:92:DB:7C:13:F0:F6 Authority key identifier: E5:99:31:55:C4:44:3A:2E:56:C0:DE:23:33:A4:4B:56:CA:D4:91:9C Certificate issuer: /CN=A91C3ABA/serialNumber=E5993155C4443A2E56C0DE2333A44B56CAD4919C Certificate serial: 0495 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5ZkxVcREOi5WwN4jM6RLVsrUkZw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3ABA/985F0922354B11ECB62DBD48C4F9AE02/5ZkxVcREOi5WwN4jM6RLVsrUkZw.mft Manifest number: 0490 Signing time: Thu 24 Apr 2025 23:47:28 +0000 Manifest this update: Thu 24 Apr 2025 23:47:27 +0000 Manifest next update: Thu 01 May 2025 23:47:27 +0000 Files and hashes: 1: 5ZkxVcREOi5WwN4jM6RLVsrUkZw.crl (hash: 5EJQPDuQoFuOeK/W7EG6Llxe9ChEJ0/8rji4okgbHgk=) 2: 4B9F1AA6354F11EC8531C34DC4F9AE02.roa (hash: +rLDpG6E4AF0Dcxf7o8iMswR6KeKAMAGKwbYTVWTRnM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3ABA/985F0922354B11ECB62DBD48C4F9AE02/5ZkxVcREOi5WwN4jM6RLVsrUkZw.crl rsync://rpki.apnic.net/member_repository/A91C3ABA/985F0922354B11ECB62DBD48C4F9AE02/5ZkxVcREOi5WwN4jM6RLVsrUkZw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5ZkxVcREOi5WwN4jM6RLVsrUkZw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:47:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1173 (0x495) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3ABA, serialNumber=E5993155C4443A2E56C0DE2333A44B56CAD4919C Validity Not Before: Apr 24 23:47:27 2025 GMT Not After : May 1 23:47:27 2025 GMT Subject: CN=680acd8f-34b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:23:90:e2:8c:97:64:bc:70:8f:c9:c7:80:13: f3:c4:35:37:54:85:63:d9:82:e7:0a:39:e6:6c:8c: 61:98:07:f0:84:b5:7c:6a:34:00:56:25:d6:b2:8b: 12:e8:73:9f:4d:b6:77:5e:92:fc:41:d3:cf:cd:9a: 04:f2:bc:49:3e:6d:26:1b:64:71:bf:b6:47:0c:98: e1:b9:2a:23:1c:1a:8b:49:99:e2:e3:70:18:31:0c: 32:b8:fd:e0:09:bd:de:96:e6:60:5c:96:8c:5f:66: c7:2c:52:b8:d5:e5:72:60:19:5d:a5:85:08:37:56: 18:72:c5:8a:36:e1:92:0d:d7:d4:bb:9c:79:23:75: 25:63:03:f4:b7:8d:8c:f4:0d:f7:c8:c9:bb:51:11: 73:47:07:a7:e2:a6:da:b4:39:3e:b0:1e:65:5e:0d: a4:69:7f:0a:9a:1b:df:ad:01:2a:ab:a6:54:14:1d: 7d:f2:27:f8:00:6e:0a:48:7e:e5:d8:00:a3:8e:10: 23:d7:1b:68:ea:b0:d1:37:4d:b3:af:c5:27:07:23: ce:93:2c:68:97:e5:92:00:1c:a0:2c:ca:58:4c:53: fb:bb:29:cf:4b:84:9f:df:01:b2:29:c9:8b:e2:85: bf:3a:93:91:8a:48:13:f7:c9:da:1f:82:64:b2:c0: 4c:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:A9:2C:88:7E:40:95:08:22:F6:DF:80:59:5A:92:DB:7C:13:F0:F6 X509v3 Authority Key Identifier: keyid:E5:99:31:55:C4:44:3A:2E:56:C0:DE:23:33:A4:4B:56:CA:D4:91:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3ABA/985F0922354B11ECB62DBD48C4F9AE02/5ZkxVcREOi5WwN4jM6RLVsrUkZw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5ZkxVcREOi5WwN4jM6RLVsrUkZw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3ABA/985F0922354B11ECB62DBD48C4F9AE02/5ZkxVcREOi5WwN4jM6RLVsrUkZw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c5:4d:38:ad:79:2c:3b:2b:36:64:d1:42:b5:33:92:ed:6e:9e: 4c:0c:ed:67:db:d0:58:cf:f0:4c:d0:a9:27:99:0a:34:36:49: f5:66:c4:4d:dc:f9:7d:bb:97:7c:db:1c:d6:cd:ec:21:ea:62: d8:42:3e:9a:90:b5:41:19:b3:72:aa:9a:36:d9:06:47:14:30: 36:ae:cc:d9:cf:56:bd:cb:7c:dc:ea:1c:bf:d8:69:3f:52:4d: fd:45:7e:b5:ee:88:5f:9a:90:92:95:6a:25:dc:b7:50:79:a2: 63:67:da:00:20:cd:24:df:37:ec:15:4f:17:d2:ea:87:ec:e1: 62:c8:97:02:5f:f4:14:d3:bb:37:6e:95:b9:98:e2:10:ef:25: e8:be:9f:80:c1:94:bb:aa:05:24:00:19:c5:4b:9e:d7:02:2b: 52:b8:05:9a:63:62:e8:88:52:32:0f:4d:47:50:c3:95:cc:4c: f4:ce:94:21:a6:0a:17:b1:7a:f8:bb:b1:b2:b0:e3:01:ba:e1: 78:c1:e4:7e:f0:fe:4c:54:9b:d8:72:a6:be:ac:18:6a:a5:20: a6:49:c2:a9:5c:d5:67:7d:ca:ed:9c:da:35:06:85:d0:50:24: 1e:44:22:cb:31:a8:c0:db:be:e4:48:a9:e0:a5:dd:e9:23:f6: db:1c:8e:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzNBQkExMTAvBgNVBAUTKEU1OTkzMTU1QzQ0NDNBMkU1NkMwREUyMzMzQTQ0QjU2 Q0FENDkxOUMwHhcNMjUwNDI0MjM0NzI3WhcNMjUwNTAxMjM0NzI3WjAYMRYwFAYD VQQDEw02ODBhY2Q4Zi0zNGI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0SOQ4oyXZLxwj8nHgBPzxDU3VIVj2YLnCjnmbIxhmAfwhLV8ajQAViXWsosS 6HOfTbZ3XpL8QdPPzZoE8rxJPm0mG2Rxv7ZHDJjhuSojHBqLSZni43AYMQwyuP3g Cb3eluZgXJaMX2bHLFK41eVyYBldpYUIN1YYcsWKNuGSDdfUu5x5I3UlYwP0t42M 9A33yMm7URFzRwen4qbatDk+sB5lXg2kaX8KmhvfrQEqq6ZUFB198if4AG4KSH7l 2ACjjhAj1xto6rDRN02zr8UnByPOkyxol+WSABygLMpYTFP7uynPS4Sf3wGyKcmL 4oW/OpORikgT98naH4JkssBMFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJOpLIh+ QJUIIvbfgFlaktt8E/D2MB8GA1UdIwQYMBaAFOWZMVXERDouVsDeIzOkS1bK1JGc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDM0FCQS85ODVGMDkyMjM1 NEIxMUVDQjYyREJENDhDNEY5QUUwMi81Wmt4VmNSRU9pNVd3TjRqTTZSTFZzclVr WncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVaa3hWY1JFT2k1V3dONGpNNlJMVnNyVWtady5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD M0FCQS85ODVGMDkyMjM1NEIxMUVDQjYyREJENDhDNEY5QUUwMi81Wmt4VmNSRU9p NVd3TjRqTTZSTFZzclVrWncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDFTTiteSw7KzZk0UK1M5Ltbp5MDO1n29BYz/BM0KknmQo0Nkn1ZsRN 3Pl9u5d82xzWzewh6mLYQj6akLVBGbNyqpo22QZHFDA2rszZz1a9y3zc6hy/2Gk/ Uk39RX617ohfmpCSlWol3LdQeaJjZ9oAIM0k3zfsFU8X0uqH7OFiyJcCX/QU07s3 bpW5mOIQ7yXovp+AwZS7qgUkABnFS57XAitSuAWaY2LoiFIyD01HUMOVzEz0zpQh pgoXsXr4u7GysOMBuuF4weR+8P5MVJvYcqa+rBhqpSCmScKpXNVnfcrtnNo1BoXQ UCQeRCLLMajA277kSKngpd3pI/bbHI5l -----END CERTIFICATE-----Generated at Sat Apr 26 14:18:40 2025 by rpki-client