$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft File: 5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft (raw, json) Hash identifier: ew+JlxP2Ie65M/NRip+GrKyOMTYzwaOUWWVfuyiqdGw= Subject key identifier: 7C:15:E8:43:DF:CA:E4:57:B9:C2:52:C4:AF:CD:45:F1:9C:AC:8A:C1 Authority key identifier: E5:B1:CE:1D:45:39:18:19:5B:EB:5C:D9:0F:6D:87:9E:FE:99:10:A2 Certificate issuer: /CN=A91DE5E8/serialNumber=E5B1CE1D453918195BEB5CD90F6D879EFE9910A2 Certificate serial: 01A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bHOHUU5GBlb61zZD22Hnv6ZEKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft Manifest number: 01A2 Signing time: Fri 25 Apr 2025 02:28:46 +0000 Manifest this update: Fri 25 Apr 2025 02:28:46 +0000 Manifest next update: Fri 02 May 2025 02:28:46 +0000 Files and hashes: 1: 5bHOHUU5GBlb61zZD22Hnv6ZEKI.crl (hash: OBmBnmHfTZIYjz0Kxvprt1GZZQ5Lf1wGftXi9B2Yzxw=) 2: 785B44D6F2AF11EF97443030C4F9AE02.roa (hash: 3X8JQRJ56NXF/A25OQxe1Q8xkJiOt4/FMaPtZ+BwKik=) 3: B264EB66A30911ED99A82087C4F9AE02.roa (hash: tZEzhiKfHDteKh17cCbwci/tZYnVymPaW90yd5ZJ1q4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.crl rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bHOHUU5GBlb61zZD22Hnv6ZEKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:28:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 424 (0x1a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE5E8, serialNumber=E5B1CE1D453918195BEB5CD90F6D879EFE9910A2 Validity Not Before: Apr 25 02:28:46 2025 GMT Not After : May 2 02:28:46 2025 GMT Subject: CN=680af35e-688c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:0d:e9:cf:8f:da:47:7c:05:15:dc:9d:1a:f6: eb:ff:b5:50:21:e9:1f:f1:ed:84:1b:2c:6f:92:f4: 68:98:b8:2d:0c:24:b4:b4:f8:98:60:61:64:1c:83: 53:9e:da:f5:37:53:dc:87:b2:e6:c4:9a:d1:9a:fc: 7d:96:e7:db:18:0c:9a:78:9d:19:0d:5c:03:c2:5d: bf:27:cb:dc:47:db:c6:ee:7f:e7:dd:18:64:3f:91: dd:3c:50:15:c1:a0:09:8b:55:c5:3f:5c:84:11:10: f3:2d:79:0f:97:2a:86:f8:a8:85:da:69:a0:7b:8d: 62:c0:24:32:a6:2d:f8:18:92:4e:be:ba:63:e0:fd: 10:d4:cf:da:ce:ab:f3:29:92:ab:38:3d:cc:99:f0: fe:19:65:b1:90:6e:b0:26:c7:5f:e0:1b:5b:11:d1: 59:b8:4c:41:92:55:c6:65:c6:20:d1:89:00:2b:d5: 10:db:55:b2:12:3a:45:ca:36:e5:b9:dc:44:1b:c1: 8e:97:de:95:e4:a9:b0:d8:3b:cb:e9:83:e7:a2:42: 30:f1:8d:a6:ca:27:22:c6:e9:5f:84:7a:b7:f2:b7: 2f:1e:a1:66:93:17:61:90:42:b3:20:9d:aa:1f:8e: 22:41:4e:6b:95:db:ff:c9:f7:27:84:e2:5f:00:da: 44:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:15:E8:43:DF:CA:E4:57:B9:C2:52:C4:AF:CD:45:F1:9C:AC:8A:C1 X509v3 Authority Key Identifier: keyid:E5:B1:CE:1D:45:39:18:19:5B:EB:5C:D9:0F:6D:87:9E:FE:99:10:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bHOHUU5GBlb61zZD22Hnv6ZEKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:f0:aa:fe:53:4d:d1:cf:fc:e0:31:2e:98:ff:47:94:e9:ec: 33:11:79:a2:70:fd:0c:a6:b0:a7:da:2c:0b:fa:c2:fd:d2:47: 1f:72:61:c2:25:0b:90:1f:4c:a5:4b:98:c8:66:13:05:80:f1: 9d:62:24:24:5c:a3:54:df:73:76:1b:5d:ce:97:45:bd:e1:3d: 7a:0d:4c:a1:31:48:99:9c:69:42:e0:ed:89:98:50:86:33:3e: 1d:2c:c5:e6:74:9c:0e:7b:6e:af:f0:e2:a0:1e:cc:f6:b1:66: 8c:da:ba:12:69:4c:7e:fc:f0:4e:58:c5:0b:fb:4e:f2:03:a6: e0:53:f1:fa:74:aa:7a:61:a4:9e:c5:df:50:31:ca:6f:fa:95: 8b:af:ab:38:61:d5:ca:6e:9f:b5:6f:03:35:f2:8c:7f:37:20: aa:c8:f5:2d:8f:35:74:7a:b3:ab:cf:c0:b1:9e:f7:3c:8e:8f: c7:cc:5b:fe:cf:b0:75:86:06:50:dc:1b:38:01:71:07:df:5d: a0:13:ff:c7:bc:c3:11:74:3c:1b:e2:6a:c6:10:41:9c:9a:86: 9e:db:75:f0:55:1a:54:1f:bc:ae:42:a7:e4:54:58:6b:ef:f4: f9:fc:f5:22:40:ce:32:c1:42:db:00:4e:88:61:ee:ff:16:c2: 64:f4:f9:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAagwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU1RTgxMTAvBgNVBAUTKEU1QjFDRTFENDUzOTE4MTk1QkVCNUNEOTBGNkQ4NzlF RkU5OTEwQTIwHhcNMjUwNDI1MDIyODQ2WhcNMjUwNTAyMDIyODQ2WjAYMRYwFAYD VQQDEw02ODBhZjM1ZS02ODhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlw3pz4/aR3wFFdydGvbr/7VQIekf8e2EGyxvkvRomLgtDCS0tPiYYGFkHINT ntr1N1Pch7LmxJrRmvx9lufbGAyaeJ0ZDVwDwl2/J8vcR9vG7n/n3RhkP5HdPFAV waAJi1XFP1yEERDzLXkPlyqG+KiF2mmge41iwCQypi34GJJOvrpj4P0Q1M/azqvz KZKrOD3MmfD+GWWxkG6wJsdf4BtbEdFZuExBklXGZcYg0YkAK9UQ21WyEjpFyjbl udxEG8GOl96V5Kmw2DvL6YPnokIw8Y2myicixulfhHq38rcvHqFmkxdhkEKzIJ2q H44iQU5rldv/yfcnhOJfANpEjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHwV6EPf yuRXucJSxK/NRfGcrIrBMB8GA1UdIwQYMBaAFOWxzh1FORgZW+tc2Q9th57+mRCi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTVFOC9FOUUxQkYyOEEz MDUxMUVEQUMxNEVFNkNDNEY5QUUwMi81YkhPSFVVNUdCbGI2MXpaRDIySG52NlpF S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzViSE9IVVU1R0JsYjYxelpEMjJIbnY2WkVLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTVFOC9FOUUxQkYyOEEzMDUxMUVEQUMxNEVFNkNDNEY5QUUwMi81YkhPSFVVNUdC bGI2MXpaRDIySG52NlpFS0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBc8Kr+U03Rz/zgMS6Y/0eU6ewzEXmicP0MprCn2iwL+sL90kcfcmHC JQuQH0ylS5jIZhMFgPGdYiQkXKNU33N2G13Ol0W94T16DUyhMUiZnGlC4O2JmFCG Mz4dLMXmdJwOe26v8OKgHsz2sWaM2roSaUx+/PBOWMUL+07yA6bgU/H6dKp6YaSe xd9QMcpv+pWLr6s4YdXKbp+1bwM18ox/NyCqyPUtjzV0erOrz8Cxnvc8jo/HzFv+ z7B1hgZQ3Bs4AXEH312gE//HvMMRdDwb4mrGEEGcmoae23XwVRpUH7yuQqfkVFhr 7/T5/PUiQM4ywULbAE6IYe7/FsJk9Pmy -----END CERTIFICATE-----Generated at Sat Apr 26 04:30:38 2025 by rpki-client