$ rpki-client -vvf rpki.apnic.net/member_repository/A91D60CF/EF8137E42AFC11EFA0243C4AC4F9AE02/5k4CF3Q1rvHL_WJOJmfmlpqvqv8.mft File: 5k4CF3Q1rvHL_WJOJmfmlpqvqv8.mft (raw, json) Hash identifier: XqPibP2DHRuFKj4lpgRM5wpkUAVeRJqCius6F9MbZWc= Subject key identifier: 56:72:37:5F:E5:75:B8:84:0E:43:DB:A0:BF:DA:66:AB:B0:C0:63:E9 Authority key identifier: E6:4E:02:17:74:35:AE:F1:CB:FD:62:4E:26:67:E6:96:9A:AF:AA:FF Certificate issuer: /CN=A91D60CF/serialNumber=E64E02177435AEF1CBFD624E2667E6969AAFAAFF Certificate serial: A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5k4CF3Q1rvHL_WJOJmfmlpqvqv8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D60CF/EF8137E42AFC11EFA0243C4AC4F9AE02/5k4CF3Q1rvHL_WJOJmfmlpqvqv8.mft Manifest number: A1 Signing time: Fri 25 Apr 2025 05:11:27 +0000 Manifest this update: Fri 25 Apr 2025 05:11:26 +0000 Manifest next update: Fri 02 May 2025 05:11:26 +0000 Files and hashes: 1: 5k4CF3Q1rvHL_WJOJmfmlpqvqv8.crl (hash: 2WThNcpieJh2iJv3NUrHqILAw+vFrkl4lLvhJufGjaQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D60CF/EF8137E42AFC11EFA0243C4AC4F9AE02/5k4CF3Q1rvHL_WJOJmfmlpqvqv8.crl rsync://rpki.apnic.net/member_repository/A91D60CF/EF8137E42AFC11EFA0243C4AC4F9AE02/5k4CF3Q1rvHL_WJOJmfmlpqvqv8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5k4CF3Q1rvHL_WJOJmfmlpqvqv8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:11:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 161 (0xa1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D60CF, serialNumber=E64E02177435AEF1CBFD624E2667E6969AAFAAFF Validity Not Before: Apr 25 05:11:26 2025 GMT Not After : May 2 05:11:26 2025 GMT Subject: CN=680b197f-3a65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:6a:ba:09:39:e2:a6:c0:d8:84:31:19:f6:5b: 63:0e:ae:0b:fe:e8:b5:3e:2a:54:52:bd:4f:13:1d: 5c:dc:a6:fd:9c:61:a9:4d:9a:9a:f8:d4:83:49:a6: 1d:84:b0:d9:d5:eb:8e:07:99:1f:b0:bf:84:a3:dc: f9:a9:37:ca:68:fa:a5:37:38:0a:e3:f7:bb:22:a9: 0b:40:f9:57:3f:8f:69:94:86:90:90:16:f0:a2:0c: 80:24:7e:9e:6a:4d:6c:0a:ad:e7:db:bd:8d:02:ab: 91:3e:ec:bd:ca:0a:f2:7f:c0:63:51:95:42:19:b9: 1b:6c:91:7a:de:52:55:ed:dc:b8:6d:bc:34:23:21: c7:9b:07:e3:89:3f:68:15:de:2f:57:4d:f7:f2:d1: 7a:49:66:da:b6:ed:2e:56:a6:01:a2:ac:5b:5b:f1: 61:2a:5e:8f:14:63:8b:76:3b:64:cf:81:d8:41:83: 2a:81:fc:57:51:1c:41:e4:ee:08:41:9b:d7:ce:1e: 0d:91:b5:89:60:68:f7:9a:62:7a:b8:de:71:da:fe: 47:8c:45:d5:cb:c0:bb:b2:84:a0:fe:e6:24:bf:4a: 91:41:74:72:6e:85:e9:58:95:1c:ff:dd:e0:76:3f: e6:52:47:f8:7e:63:d8:71:9c:92:76:ad:5d:47:51: ef:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:72:37:5F:E5:75:B8:84:0E:43:DB:A0:BF:DA:66:AB:B0:C0:63:E9 X509v3 Authority Key Identifier: keyid:E6:4E:02:17:74:35:AE:F1:CB:FD:62:4E:26:67:E6:96:9A:AF:AA:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D60CF/EF8137E42AFC11EFA0243C4AC4F9AE02/5k4CF3Q1rvHL_WJOJmfmlpqvqv8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5k4CF3Q1rvHL_WJOJmfmlpqvqv8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D60CF/EF8137E42AFC11EFA0243C4AC4F9AE02/5k4CF3Q1rvHL_WJOJmfmlpqvqv8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:e9:7b:c5:f6:33:9a:97:0a:96:20:09:99:92:5d:9b:ce:17: 10:5b:26:e0:d7:79:bf:69:1c:85:75:ab:c2:40:d1:da:65:fb: 27:54:02:4d:5d:e0:4d:60:98:11:6d:66:71:d3:2c:03:4f:60: e1:88:7f:28:ca:20:4a:56:a7:86:58:f1:61:b2:fe:d8:ab:0d: 29:53:2c:e2:ab:25:db:40:4a:d7:e2:15:0e:d0:7d:71:e7:2e: 0f:8e:59:26:87:3a:a1:04:04:aa:b7:96:5d:be:57:9e:0f:e8: 80:57:88:aa:79:a0:b4:cc:79:08:69:a7:2e:f3:ff:81:a5:db: 91:28:83:be:32:df:d6:a9:c0:52:d1:62:71:bc:9d:b5:d5:ce: c1:66:f8:3b:3e:34:c6:df:17:9b:7d:ea:4f:d2:be:d1:f0:fe: cb:e8:1a:fe:85:17:1e:f1:84:7a:90:0e:fb:64:97:d2:63:e4: 1c:e1:da:50:02:a3:6e:c0:bb:0a:bc:23:b5:37:4d:9a:2f:42: 93:c3:19:26:a9:54:b8:90:eb:91:95:82:23:2e:9d:5c:89:2b: 7a:f9:af:db:ff:94:6e:2d:d2:65:9e:0c:d2:5a:bd:3c:d0:65: 37:2a:33:88:5a:e3:43:d8:89:c8:70:ae:01:80:8b:ab:36:db: 98:52:21:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDYwQ0YxMTAvBgNVBAUTKEU2NEUwMjE3NzQzNUFFRjFDQkZENjI0RTI2NjdFNjk2 OUFBRkFBRkYwHhcNMjUwNDI1MDUxMTI2WhcNMjUwNTAyMDUxMTI2WjAYMRYwFAYD VQQDEw02ODBiMTk3Zi0zYTY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnmq6CTnipsDYhDEZ9ltjDq4L/ui1PipUUr1PEx1c3Kb9nGGpTZqa+NSDSaYd hLDZ1euOB5kfsL+Eo9z5qTfKaPqlNzgK4/e7IqkLQPlXP49plIaQkBbwogyAJH6e ak1sCq3n272NAquRPuy9ygryf8BjUZVCGbkbbJF63lJV7dy4bbw0IyHHmwfjiT9o Fd4vV0338tF6SWbatu0uVqYBoqxbW/FhKl6PFGOLdjtkz4HYQYMqgfxXURxB5O4I QZvXzh4NkbWJYGj3mmJ6uN5x2v5HjEXVy8C7soSg/uYkv0qRQXRyboXpWJUc/93g dj/mUkf4fmPYcZySdq1dR1Hv3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFZyN1/l dbiEDkPboL/aZquwwGPpMB8GA1UdIwQYMBaAFOZOAhd0Na7xy/1iTiZn5paar6r/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjBDRi9FRjgxMzdFNDJB RkMxMUVGQTAyNDNDNEFDNEY5QUUwMi81azRDRjNRMXJ2SExfV0pPSm1mbWxwcXZx djguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVrNENGM1ExcnZITF9XSk9KbWZtbHBxdnF2OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjBDRi9FRjgxMzdFNDJBRkMxMUVGQTAyNDNDNEFDNEY5QUUwMi81azRDRjNRMXJ2 SExfV0pPSm1mbWxwcXZxdjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB46XvF9jOalwqWIAmZkl2bzhcQWybg13m/aRyFdavCQNHaZfsnVAJN XeBNYJgRbWZx0ywDT2DhiH8oyiBKVqeGWPFhsv7Yqw0pUyziqyXbQErX4hUO0H1x 5y4PjlkmhzqhBASqt5ZdvleeD+iAV4iqeaC0zHkIaacu8/+BpduRKIO+Mt/WqcBS 0WJxvJ211c7BZvg7PjTG3xebfepP0r7R8P7L6Br+hRce8YR6kA77ZJfSY+Qc4dpQ AqNuwLsKvCO1N02aL0KTwxkmqVS4kOuRlYIjLp1ciSt6+a/b/5RuLdJlngzSWr08 0GU3KjOIWuND2InIcK4BgIurNtuYUiHn -----END CERTIFICATE-----Generated at Sat Apr 26 05:18:49 2025 by rpki-client