$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/5vZdIhtZX2uhPrMU3uM4yiQeJyA.mft File: 5vZdIhtZX2uhPrMU3uM4yiQeJyA.mft (raw, json) Hash identifier: +8fLZdgg9z40A3Gp1rMsGyPJg1cyuJqoWMl0Ss5emL4= Subject key identifier: 61:86:9F:71:2E:8D:F8:F8:94:4F:08:5B:17:5B:E8:C8:80:F3:DF:8B Authority key identifier: E6:F6:5D:22:1B:59:5F:6B:A1:3E:B3:14:DE:E3:38:CA:24:1E:27:20 Certificate issuer: /CN=A91D2B62/serialNumber=E6F65D221B595F6BA13EB314DEE338CA241E2720 Certificate serial: 87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vZdIhtZX2uhPrMU3uM4yiQeJyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/5vZdIhtZX2uhPrMU3uM4yiQeJyA.mft Manifest number: 85 Signing time: Fri 25 Apr 2025 05:33:18 +0000 Manifest this update: Fri 25 Apr 2025 05:33:18 +0000 Manifest next update: Fri 02 May 2025 05:33:17 +0000 Files and hashes: 1: 5vZdIhtZX2uhPrMU3uM4yiQeJyA.crl (hash: ioBfA92LZkeO0mYkMdxHmEONX3xy9mfWByp2G4Dfu0s=) 2: F47CB05C5AE011EFB4CD7428C4F9AE02.roa (hash: dP/ms8awhu5P0L5X1kq3UaHwPpJfEdsfRvw8IFgrpFk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/5vZdIhtZX2uhPrMU3uM4yiQeJyA.crl rsync://rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/5vZdIhtZX2uhPrMU3uM4yiQeJyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vZdIhtZX2uhPrMU3uM4yiQeJyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:33:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 135 (0x87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2B62, serialNumber=E6F65D221B595F6BA13EB314DEE338CA241E2720 Validity Not Before: Apr 25 05:33:18 2025 GMT Not After : May 2 05:33:17 2025 GMT Subject: CN=680b1e9e-087e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:4e:32:a6:c8:e7:02:52:7c:50:d9:b5:f0:32: 7b:24:e5:ae:a8:31:21:e9:6e:4d:f9:85:fe:43:ff: be:06:0f:7f:d2:c1:ad:e8:e1:0e:ad:13:9a:9f:64: 5c:cf:4f:a9:aa:c2:d2:77:31:6c:d8:f5:0e:bb:47: 7a:66:7c:2e:96:6e:23:9b:07:90:f3:7d:d0:cb:a1: 0a:dd:7d:b8:60:2e:83:9b:eb:1b:06:34:e0:91:ad: 05:6d:e8:da:a7:6b:ab:f0:67:0a:c2:fe:16:d6:8d: 4b:99:85:94:8e:88:e0:ee:05:ef:95:47:15:2d:2c: 1b:04:c7:3b:b1:33:0b:4c:b5:9e:ba:60:d5:4e:5a: a2:3b:2d:02:ad:fc:de:9f:51:72:04:8f:86:f6:db: d6:cb:46:e0:50:ef:12:97:3d:18:0f:39:d6:83:32: 6d:6a:ad:7c:71:5b:87:00:a7:b5:e3:7b:cd:05:0b: 26:68:15:ab:44:5e:bc:d7:6f:db:38:6e:ad:aa:56: 4c:85:b3:d1:4c:c9:57:0a:91:18:b2:bd:41:35:b4: 38:7a:2f:f6:4d:2c:47:10:4c:eb:9c:24:c4:8f:07: b6:48:9b:1c:c1:c4:21:fe:f3:bc:1c:a7:a3:f5:2b: f0:fe:0b:25:90:1c:ab:17:1d:7c:75:69:0a:05:03: df:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:86:9F:71:2E:8D:F8:F8:94:4F:08:5B:17:5B:E8:C8:80:F3:DF:8B X509v3 Authority Key Identifier: keyid:E6:F6:5D:22:1B:59:5F:6B:A1:3E:B3:14:DE:E3:38:CA:24:1E:27:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/5vZdIhtZX2uhPrMU3uM4yiQeJyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vZdIhtZX2uhPrMU3uM4yiQeJyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/5vZdIhtZX2uhPrMU3uM4yiQeJyA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:b2:ca:0e:f6:04:5d:88:de:1b:95:fe:cd:dd:25:0c:b5:50: aa:30:73:f8:3c:24:a4:0f:45:67:07:76:72:9d:05:8d:2a:25: d5:10:26:7c:3d:d2:f3:51:84:ca:c3:6e:66:fa:8e:75:72:d5: e1:4c:29:e4:6a:05:77:a5:d1:a6:a5:db:fc:6d:8c:04:df:53: c7:2e:7a:89:00:5f:5f:34:39:c6:cd:2a:2d:59:52:10:18:df: ad:f2:c9:0c:93:5e:61:81:0d:b3:fa:8b:20:90:45:e7:37:25: 49:3f:4e:c9:99:27:73:f4:85:3e:db:74:06:65:eb:ed:8e:21: 9c:ef:6c:ab:1d:3d:44:43:2c:0a:50:bb:df:5a:a4:6a:65:f4: 27:cc:9b:7d:13:f9:13:69:82:71:51:7f:44:21:23:80:bd:96: b6:b7:67:33:51:ac:43:b8:e5:1b:f5:67:5c:9c:14:3a:5d:47: 6e:10:1f:ed:57:d2:94:60:9a:74:ed:fd:85:53:97:a3:9c:78: 42:62:d8:fa:66:2d:2e:52:a5:fe:8b:bb:13:fd:f6:8e:a1:0b: f0:8e:a7:20:e6:13:fe:12:ce:bc:bf:2f:f3:a6:2b:bb:3d:ca: 3c:b1:ee:d0:ce:32:68:bf:61:11:93:8d:b9:ed:f3:73:bf:0d: aa:9f:63:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJCNjIxMTAvBgNVBAUTKEU2RjY1RDIyMUI1OTVGNkJBMTNFQjMxNERFRTMzOENB MjQxRTI3MjAwHhcNMjUwNDI1MDUzMzE4WhcNMjUwNTAyMDUzMzE3WjAYMRYwFAYD VQQDEw02ODBiMWU5ZS0wODdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvE4ypsjnAlJ8UNm18DJ7JOWuqDEh6W5N+YX+Q/++Bg9/0sGt6OEOrROan2Rc z0+pqsLSdzFs2PUOu0d6Znwulm4jmweQ833Qy6EK3X24YC6Dm+sbBjTgka0Fbeja p2ur8GcKwv4W1o1LmYWUjojg7gXvlUcVLSwbBMc7sTMLTLWeumDVTlqiOy0Crfze n1FyBI+G9tvWy0bgUO8Slz0YDznWgzJtaq18cVuHAKe143vNBQsmaBWrRF6812/b OG6tqlZMhbPRTMlXCpEYsr1BNbQ4ei/2TSxHEEzrnCTEjwe2SJscwcQh/vO8HKej 9Svw/gslkByrFx18dWkKBQPfkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGGGn3Eu jfj4lE8IWxdb6MiA89+LMB8GA1UdIwQYMBaAFOb2XSIbWV9roT6zFN7jOMokHicg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkI2Mi9CRDI5QjgxNjVB RTAxMUVGODY1MUI2MUJDNEY5QUUwMi81dlpkSWh0WlgydWhQck1VM3VNNHlpUWVK eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV2WmRJaHRaWDJ1aFByTVUzdU00eWlRZUp5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MkI2Mi9CRDI5QjgxNjVBRTAxMUVGODY1MUI2MUJDNEY5QUUwMi81dlpkSWh0Wlgy dWhQck1VM3VNNHlpUWVKeUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxssoO9gRdiN4blf7N3SUMtVCqMHP4PCSkD0VnB3ZynQWNKiXVECZ8 PdLzUYTKw25m+o51ctXhTCnkagV3pdGmpdv8bYwE31PHLnqJAF9fNDnGzSotWVIQ GN+t8skMk15hgQ2z+osgkEXnNyVJP07JmSdz9IU+23QGZevtjiGc72yrHT1EQywK ULvfWqRqZfQnzJt9E/kTaYJxUX9EISOAvZa2t2czUaxDuOUb9WdcnBQ6XUduEB/t V9KUYJp07f2FU5ejnHhCYtj6Zi0uUqX+i7sT/faOoQvwjqcg5hP+Es68vy/zpiu7 Pco8se7QzjJov2ERk4257fNzvw2qn2P5 -----END CERTIFICATE-----Generated at Sat Apr 26 04:36:49 2025 by rpki-client