$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/Soo5XlVsx_Garmqwav8GeUSVa0Y.mft File: Soo5XlVsx_Garmqwav8GeUSVa0Y.mft (raw, json) Hash identifier: +8rS9SvcooxW6jPDgtGHCAXz+ZoblhfVehOWI116LFg= Subject key identifier: AD:5A:61:69:2C:5A:67:8C:11:AF:55:1B:66:44:3D:A3:E6:DB:B4:F1 Authority key identifier: 4A:8A:39:5E:55:6C:C7:F1:9A:AE:6A:B0:6A:FF:06:79:44:95:6B:46 Certificate issuer: /CN=A91CFD5A/serialNumber=4A8A395E556CC7F19AAE6AB06AFF067944956B46 Certificate serial: F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Soo5XlVsx_Garmqwav8GeUSVa0Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/Soo5XlVsx_Garmqwav8GeUSVa0Y.mft Manifest number: F2 Signing time: Fri 25 Apr 2025 04:23:58 +0000 Manifest this update: Fri 25 Apr 2025 04:23:57 +0000 Manifest next update: Fri 02 May 2025 04:23:57 +0000 Files and hashes: 1: Soo5XlVsx_Garmqwav8GeUSVa0Y.crl (hash: J8vGKc0WoJyiO/Lf9942x7MkM6+MbYkJeAjytkOEn1g=) 2: D60B1BCCB9AF11EE97EEDB49C4F9AE02.roa (hash: VWW3LG8bH56OHxKp9a6acMJUcTvLWrd2aS1b8cisvbE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/Soo5XlVsx_Garmqwav8GeUSVa0Y.crl rsync://rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/Soo5XlVsx_Garmqwav8GeUSVa0Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Soo5XlVsx_Garmqwav8GeUSVa0Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:23:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 245 (0xf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFD5A, serialNumber=4A8A395E556CC7F19AAE6AB06AFF067944956B46 Validity Not Before: Apr 25 04:23:57 2025 GMT Not After : May 2 04:23:57 2025 GMT Subject: CN=680b0e5e-ff51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:2a:ad:eb:bf:2a:d9:5a:d4:1d:5d:74:8a:b5: 47:52:32:ee:bf:c7:98:55:00:c0:cf:91:39:e3:ec: 3b:e5:52:da:fc:64:8e:c6:15:6a:dc:dc:2e:1e:4b: 34:59:ab:ef:8a:33:fc:76:39:98:d3:67:59:28:0c: ac:05:3e:02:19:7e:5e:42:cd:12:ae:75:1f:8d:4f: 2e:a9:a4:3c:7c:48:1b:08:74:8a:5a:5c:28:a5:3d: 01:ce:04:54:6b:16:10:69:3d:0e:5e:28:50:08:bd: 8d:e0:44:04:25:d5:58:e1:65:04:99:81:ce:86:aa: 03:cc:26:d1:30:83:6c:62:26:97:1f:51:ac:70:4d: fa:c5:74:fa:07:fd:4a:67:d3:98:fd:82:21:30:57: 55:fe:5d:57:92:f6:1a:06:a0:ec:52:66:d5:b2:6e: b1:b9:e1:1a:bc:9f:ae:cf:74:c0:86:7b:2d:04:68: 04:dd:db:27:b4:11:f6:98:4c:94:0f:fa:9a:60:0a: 90:97:e3:9e:d7:39:fc:cf:5e:15:c8:6e:2a:f1:08: 2f:37:8f:3f:b6:46:ea:d6:44:c8:dd:77:71:51:9d: 8a:62:a8:ec:b6:e2:8e:0c:ca:a7:dd:82:dc:08:47: f0:4e:06:68:8d:b6:ac:ad:25:63:e4:5c:b5:6f:1d: 7d:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:5A:61:69:2C:5A:67:8C:11:AF:55:1B:66:44:3D:A3:E6:DB:B4:F1 X509v3 Authority Key Identifier: keyid:4A:8A:39:5E:55:6C:C7:F1:9A:AE:6A:B0:6A:FF:06:79:44:95:6B:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/Soo5XlVsx_Garmqwav8GeUSVa0Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Soo5XlVsx_Garmqwav8GeUSVa0Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/Soo5XlVsx_Garmqwav8GeUSVa0Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:ce:8e:69:05:6f:f4:a6:aa:6d:84:94:eb:4b:6e:34:53:71: db:77:6d:f8:01:47:60:16:18:84:dc:2e:69:7e:f8:89:26:db: 99:2a:2e:d4:fc:16:ac:ff:ad:ce:60:7e:a2:39:b4:ad:45:ff: a4:1d:79:0f:98:c2:c1:94:fa:70:f2:37:c9:ab:6f:78:bf:9e: 16:76:8a:76:2c:e3:38:74:d6:e5:cf:20:25:2c:1e:dc:3b:1a: 9d:bc:71:43:bc:cc:ea:71:b1:84:f8:be:9f:e6:04:9f:0a:13: 48:a2:b9:da:84:1a:31:6b:8f:b5:ce:30:68:25:d3:45:f1:74: cc:94:2f:75:77:09:82:6c:08:70:24:5f:40:d6:66:f8:db:b3: 01:de:5d:2d:73:22:7d:6f:86:6a:4d:f5:f3:44:6e:36:c3:20: 03:3e:dc:5d:64:61:f2:10:58:47:07:55:c8:68:29:87:7d:bf: bb:6e:e2:fb:39:ad:b6:7b:61:f4:5c:8e:8f:fd:69:66:a1:56: 96:9d:37:38:cf:94:c0:4c:03:80:56:59:49:c0:8c:87:c7:82: 58:30:75:0a:ab:b6:5b:30:9d:2b:66:81:69:e3:f2:5b:a5:fc: c3:f0:ab:2e:34:d9:e8:dd:0e:1d:b3:54:cc:01:a7:d1:56:ca: bc:17:90:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZENUExMTAvBgNVBAUTKDRBOEEzOTVFNTU2Q0M3RjE5QUFFNkFCMDZBRkYwNjc5 NDQ5NTZCNDYwHhcNMjUwNDI1MDQyMzU3WhcNMjUwNTAyMDQyMzU3WjAYMRYwFAYD VQQDEw02ODBiMGU1ZS1mZjUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzCqt678q2VrUHV10irVHUjLuv8eYVQDAz5E54+w75VLa/GSOxhVq3NwuHks0 WavvijP8djmY02dZKAysBT4CGX5eQs0SrnUfjU8uqaQ8fEgbCHSKWlwopT0BzgRU axYQaT0OXihQCL2N4EQEJdVY4WUEmYHOhqoDzCbRMINsYiaXH1GscE36xXT6B/1K Z9OY/YIhMFdV/l1XkvYaBqDsUmbVsm6xueEavJ+uz3TAhnstBGgE3dsntBH2mEyU D/qaYAqQl+Oe1zn8z14VyG4q8QgvN48/tkbq1kTI3XdxUZ2KYqjstuKODMqn3YLc CEfwTgZojbasrSVj5Fy1bx19MwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK1aYWks WmeMEa9VG2ZEPaPm27TxMB8GA1UdIwQYMBaAFEqKOV5VbMfxmq5qsGr/BnlElWtG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkQ1QS8yMzc1QjMwNkI5 NDUxMUVFQkI4MTg4MzRDNEY5QUUwMi9Tb281WGxWc3hfR2FybXF3YXY4R2VVU1Zh MFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NvbzVYbFZzeF9HYXJtcXdhdjhHZVVTVmEwWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkQ1QS8yMzc1QjMwNkI5NDUxMUVFQkI4MTg4MzRDNEY5QUUwMi9Tb281WGxWc3hf R2FybXF3YXY4R2VVU1ZhMFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACzo5pBW/0pqpthJTrS240U3Hbd234AUdgFhiE3C5pfviJJtuZKi7U /Bas/63OYH6iObStRf+kHXkPmMLBlPpw8jfJq294v54Wdop2LOM4dNblzyAlLB7c OxqdvHFDvMzqcbGE+L6f5gSfChNIornahBoxa4+1zjBoJdNF8XTMlC91dwmCbAhw JF9A1mb427MB3l0tcyJ9b4ZqTfXzRG42wyADPtxdZGHyEFhHB1XIaCmHfb+7buL7 Oa22e2H0XI6P/WlmoVaWnTc4z5TATAOAVllJwIyHx4JYMHUKq7ZbMJ0rZoFp4/Jb pfzD8KsuNNno3Q4ds1TMAafRVsq8F5Bp -----END CERTIFICATE-----Generated at Sat Apr 26 14:02:14 2025 by rpki-client