$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft File: sBO5crQspa2fahYr87XHT5M8HgU.mft (raw, json) Hash identifier: siT4ZB/rVWTt09baRgM+Ld82ZVxK/29d19xDGM4xINg= Subject key identifier: 23:65:2F:1B:82:6C:07:CD:00:7C:AB:C3:94:21:04:97:4C:D5:8C:43 Authority key identifier: B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05 Certificate issuer: /CN=A91E2B66/serialNumber=B013B972B42CA5AD9F6A162BF3B5C74F933C1E05 Certificate serial: 0576 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft Manifest number: 056E Signing time: Thu 24 Apr 2025 23:07:51 +0000 Manifest this update: Thu 24 Apr 2025 23:07:50 +0000 Manifest next update: Thu 01 May 2025 23:07:50 +0000 Files and hashes: 1: sBO5crQspa2fahYr87XHT5M8HgU.crl (hash: vep6ufvfntp0UBi3T5g+iBT72V5i/38jZw1/veBCukc=) 2: 5334D20CDA5E11EBA323F462C4F9AE02.roa (hash: tBjtbPJkQLSdN5Mupxr4RXelnuicO0p7Kp/u349fbi0=) 3: 53AD6F32DA5E11EBA323F462C4F9AE02.roa (hash: 5yL82AjNiBtE4vdmcnCW/8glBDbdrO2x3U6tcVWP0Uk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.crl rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:07:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1398 (0x576) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2B66, serialNumber=B013B972B42CA5AD9F6A162BF3B5C74F933C1E05 Validity Not Before: Apr 24 23:07:50 2025 GMT Not After : May 1 23:07:50 2025 GMT Subject: CN=680ac447-50ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:a2:eb:d0:3e:c1:34:a8:fe:a3:c8:f7:3e:4f: 2b:0e:4f:de:2a:02:82:b6:07:17:43:f9:98:75:7f: 04:44:2a:37:36:da:3a:a4:c9:78:92:8f:41:89:17: d1:94:1b:f0:5e:69:77:df:b1:39:d3:d0:8f:00:c6: a0:09:e5:e9:f1:d6:01:81:7c:62:06:f7:ca:c5:65: ad:46:e5:c5:c0:37:cd:5d:54:91:f5:ec:6d:ca:02: e9:1e:b7:37:1e:9e:32:ef:02:12:fc:2c:0a:7d:0c: ad:6b:65:9d:3e:89:7e:45:de:c6:ec:6f:f1:aa:25: 86:d7:56:4f:f5:ed:29:a0:19:43:82:64:1d:8a:d8: 37:6a:68:2a:37:f6:af:70:c7:03:95:9e:8c:21:bd: e1:1d:3e:73:ab:db:a4:4b:cf:a7:47:d4:f4:ff:cb: 85:79:23:16:52:fc:85:9e:96:c3:73:ed:37:01:28: f0:b6:02:79:9b:84:d3:50:4f:c2:9f:b8:35:97:3d: 0f:35:8a:d1:70:00:08:72:9f:2b:35:26:57:8c:ee: ad:01:8f:b1:2d:e2:3e:f4:f1:d4:3e:43:6a:6e:d0: 67:84:0b:ad:c3:da:9d:5b:5e:b0:8e:74:d2:38:81: 14:df:3d:b9:f5:70:42:3c:39:41:e6:2a:33:81:11: 7a:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:65:2F:1B:82:6C:07:CD:00:7C:AB:C3:94:21:04:97:4C:D5:8C:43 X509v3 Authority Key Identifier: keyid:B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:10:cf:cd:20:b7:dd:01:43:98:7a:6a:16:64:6c:80:7b:98: 08:07:fa:e5:ec:5c:70:ab:40:7d:bf:62:ac:2e:28:ff:77:9b: 1d:cd:75:6f:11:10:18:4c:a3:4c:6d:a8:80:bc:e5:97:bd:ab: 8e:d7:69:04:d6:24:0d:47:6d:5e:e0:4c:05:d5:1b:9b:9f:a3: d4:27:4c:30:a5:33:c6:bf:bc:d4:f7:76:f1:b6:05:aa:46:3f: 9d:fa:77:72:e4:11:42:90:4d:16:c8:88:72:90:8c:77:57:69: 5a:5b:0a:85:2f:d4:ca:d6:c9:67:26:15:07:60:bf:82:d2:45: 91:0a:18:39:32:63:0d:b8:d7:03:3c:02:c0:ae:57:c0:ed:2b: 59:4f:56:51:59:26:5a:cd:ed:c3:c8:0e:4d:6c:b7:6a:8f:24: aa:b1:55:09:6f:4c:12:26:bd:46:bd:17:8e:df:1d:85:1b:cd: ae:3d:d3:a7:4f:2b:88:26:fd:c2:61:af:c6:2d:54:24:36:ac: 03:ee:6d:e1:d5:80:3d:a7:42:01:c7:0d:de:99:f4:c8:8c:3f: 6f:09:5a:59:90:58:f8:aa:52:d2:8c:1d:09:5e:06:ba:bd:dc: d1:22:63:00:0a:ae:3c:fb:0c:42:74:59:4d:6c:09:d4:f6:50: ab:49:ea:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJCNjYxMTAvBgNVBAUTKEIwMTNCOTcyQjQyQ0E1QUQ5RjZBMTYyQkYzQjVDNzRG OTMzQzFFMDUwHhcNMjUwNDI0MjMwNzUwWhcNMjUwNTAxMjMwNzUwWjAYMRYwFAYD VQQDEw02ODBhYzQ0Ny01MGVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4KLr0D7BNKj+o8j3Pk8rDk/eKgKCtgcXQ/mYdX8ERCo3Nto6pMl4ko9BiRfR lBvwXml337E509CPAMagCeXp8dYBgXxiBvfKxWWtRuXFwDfNXVSR9extygLpHrc3 Hp4y7wIS/CwKfQyta2WdPol+Rd7G7G/xqiWG11ZP9e0poBlDgmQditg3amgqN/av cMcDlZ6MIb3hHT5zq9ukS8+nR9T0/8uFeSMWUvyFnpbDc+03ASjwtgJ5m4TTUE/C n7g1lz0PNYrRcAAIcp8rNSZXjO6tAY+xLeI+9PHUPkNqbtBnhAutw9qdW16wjnTS OIEU3z259XBCPDlB5iozgRF6bQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCNlLxuC bAfNAHyrw5QhBJdM1YxDMB8GA1UdIwQYMBaAFLATuXK0LKWtn2oWK/O1x0+TPB4F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkI2Ni81M0U4RkJFQURB NUIxMUVCODNCRTM3MUFDNEY5QUUwMi9zQk81Y3JRc3BhMmZhaFlyODdYSFQ1TThI Z1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NCTzVjclFzcGEyZmFoWXI4N1hIVDVNOEhnVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkI2Ni81M0U4RkJFQURBNUIxMUVCODNCRTM3MUFDNEY5QUUwMi9zQk81Y3JRc3Bh MmZhaFlyODdYSFQ1TThIZ1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXEM/NILfdAUOYemoWZGyAe5gIB/rl7Fxwq0B9v2KsLij/d5sdzXVv ERAYTKNMbaiAvOWXvauO12kE1iQNR21e4EwF1Rubn6PUJ0wwpTPGv7zU93bxtgWq Rj+d+ndy5BFCkE0WyIhykIx3V2laWwqFL9TK1slnJhUHYL+C0kWRChg5MmMNuNcD PALArlfA7StZT1ZRWSZaze3DyA5NbLdqjySqsVUJb0wSJr1GvReO3x2FG82uPdOn TyuIJv3CYa/GLVQkNqwD7m3h1YA9p0IBxw3emfTIjD9vCVpZkFj4qlLSjB0JXga6 vdzRImMACq48+wxCdFlNbAnU9lCrSeqH -----END CERTIFICATE-----Generated at Sat Apr 26 20:28:01 2025 by rpki-client