$ rpki-client -vvf rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft File: 5HfTiqrEo3zG3xZlvxyICvmbe08.mft (raw, json) Hash identifier: oKHlH96fuYn0BkPF4qIA+61HgstKYMFEm7t+vABSo7g= Subject key identifier: 15:F7:EA:91:D9:CF:1A:AB:07:B8:C7:F1:26:EC:41:49:2F:75:51:2A Authority key identifier: E4:77:D3:8A:AA:C4:A3:7C:C6:DF:16:65:BF:1C:88:0A:F9:9B:7B:4F Certificate issuer: /CN=A91E504E/serialNumber=E477D38AAAC4A37CC6DF1665BF1C880AF99B7B4F Certificate serial: 03AD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft Manifest number: 03A1 Signing time: Fri 25 Apr 2025 00:32:43 +0000 Manifest this update: Fri 25 Apr 2025 00:32:42 +0000 Manifest next update: Fri 02 May 2025 00:32:42 +0000 Files and hashes: 1: 5HfTiqrEo3zG3xZlvxyICvmbe08.crl (hash: YNyrATD+zLU1CtvIUP3aaRzKC9gSopHXeiPPR4nhBME=) 2: 5F9FA12E0CA411ED96936D79C4F9AE02.roa (hash: 0ekBq+u3qTtCrN1H3WBpcyEBXqtT/nmRB1wnzUy864Q=) 3: 06820D08961011ECA540626AC4F9AE02.roa (hash: AajhgEbZBOC20FRVNZHV44NbIbhPj9V3ePlv/pPgwT4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.crl rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:32:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 941 (0x3ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E504E, serialNumber=E477D38AAAC4A37CC6DF1665BF1C880AF99B7B4F Validity Not Before: Apr 25 00:32:42 2025 GMT Not After : May 2 00:32:42 2025 GMT Subject: CN=680ad82b-46fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:48:85:5c:f0:a9:f7:10:b7:c6:5e:32:53:c4: 05:48:96:c5:4e:17:f8:89:0d:93:d0:59:82:95:59: 8c:f9:d1:01:7d:92:7e:39:ea:0e:94:af:52:fc:0c: 86:41:1a:1e:61:92:f0:88:d8:ee:c2:5a:91:27:6a: 20:3a:df:c9:39:ce:54:10:cc:be:40:8b:49:c4:a5: f8:83:eb:4f:66:8f:7f:b6:52:93:15:eb:2a:17:8d: d7:ac:b0:70:ab:59:6c:39:ac:59:00:12:76:1f:97: 95:08:65:9c:8b:6e:e3:7c:e9:12:c5:63:c2:c7:e5: 01:c1:e6:fd:c3:8d:33:b0:60:3d:13:53:fc:e0:28: 7c:fa:83:ec:95:4d:a9:66:36:c1:28:1d:1f:99:ba: 12:c9:20:fe:01:2f:34:57:b4:c5:66:47:f1:44:78: 50:85:2a:d7:19:1e:6e:35:f0:0a:f6:e8:ba:82:f3: b3:e4:1a:59:1a:d7:d0:c5:ce:a8:57:71:f3:1d:6a: a0:13:fc:42:f4:b8:ae:1d:86:5c:3f:7c:6a:f7:2c: 1a:b4:04:76:bd:86:6c:b6:2b:1f:9b:c9:08:e9:71: bf:91:a0:90:49:08:fa:f6:2c:d2:bc:bc:f1:76:48: dd:d9:4b:11:a5:34:44:4b:d7:b9:ca:c9:66:0c:45: 2c:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:F7:EA:91:D9:CF:1A:AB:07:B8:C7:F1:26:EC:41:49:2F:75:51:2A X509v3 Authority Key Identifier: keyid:E4:77:D3:8A:AA:C4:A3:7C:C6:DF:16:65:BF:1C:88:0A:F9:9B:7B:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:18:7c:87:05:1d:b0:43:a6:49:c3:9c:df:0b:e6:c2:44:aa: 47:5f:e1:15:3a:38:f4:46:93:77:c2:53:5e:5e:3d:a8:c8:48: af:59:a2:02:4b:b6:cc:65:18:17:e2:f0:a1:bb:45:fc:93:d4: 42:5e:f1:11:1f:52:c8:26:68:86:c2:8d:8d:4b:81:79:34:dc: 5e:f7:54:9c:6c:46:26:9e:fe:3e:d2:09:88:2f:c3:f7:4d:18: 7d:ed:84:93:8e:f2:fd:0d:77:64:36:56:1e:b0:fd:3b:25:29: a8:e7:bd:61:3e:d8:50:29:68:b4:c6:dc:df:79:68:fb:79:66: 97:65:ef:ad:1f:5d:0e:2a:d9:c9:36:f1:9b:ec:0e:10:95:07: 4d:d2:ab:31:19:ee:bb:6b:31:ab:ec:b6:57:60:57:c8:a2:6f: 81:4b:9c:fc:04:f2:2a:0c:86:a3:e2:aa:17:ec:67:0f:89:1e: 9d:e2:39:49:b3:34:dc:b4:e3:f7:0b:91:4e:9c:b2:d8:8f:3d: 34:db:5a:43:89:a3:e8:fb:ac:6b:1b:1d:76:49:91:c7:be:5b: 53:08:83:d6:55:0c:85:2e:cb:42:4c:10:f7:d8:91:40:f4:9c: 5e:6e:b4:34:11:9e:38:6a:17:b9:8a:dc:a6:b1:a7:e6:08:a1: 9d:b3:54:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA60wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTUwNEUxMTAvBgNVBAUTKEU0NzdEMzhBQUFDNEEzN0NDNkRGMTY2NUJGMUM4ODBB Rjk5QjdCNEYwHhcNMjUwNDI1MDAzMjQyWhcNMjUwNTAyMDAzMjQyWjAYMRYwFAYD VQQDEw02ODBhZDgyYi00NmZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5EiFXPCp9xC3xl4yU8QFSJbFThf4iQ2T0FmClVmM+dEBfZJ+OeoOlK9S/AyG QRoeYZLwiNjuwlqRJ2ogOt/JOc5UEMy+QItJxKX4g+tPZo9/tlKTFesqF43XrLBw q1lsOaxZABJ2H5eVCGWci27jfOkSxWPCx+UBweb9w40zsGA9E1P84Ch8+oPslU2p ZjbBKB0fmboSySD+AS80V7TFZkfxRHhQhSrXGR5uNfAK9ui6gvOz5BpZGtfQxc6o V3HzHWqgE/xC9LiuHYZcP3xq9ywatAR2vYZstisfm8kI6XG/kaCQSQj69izSvLzx dkjd2UsRpTRES9e5yslmDEUsswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBX36pHZ zxqrB7jH8SbsQUkvdVEqMB8GA1UdIwQYMBaAFOR304qqxKN8xt8WZb8ciAr5m3tP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTA0RS80RTNFMzY3RTk2 MDgxMUVDQTA0QTAwODZDNEY5QUUwMi81SGZUaXFyRW8zekczeFpsdnh5SUN2bWJl MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVIZlRpcXJFbzN6RzN4Wmx2eHlJQ3ZtYmUwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTA0RS80RTNFMzY3RTk2MDgxMUVDQTA0QTAwODZDNEY5QUUwMi81SGZUaXFyRW8z ekczeFpsdnh5SUN2bWJlMDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6GHyHBR2wQ6ZJw5zfC+bCRKpHX+EVOjj0RpN3wlNeXj2oyEivWaIC S7bMZRgX4vChu0X8k9RCXvERH1LIJmiGwo2NS4F5NNxe91ScbEYmnv4+0gmIL8P3 TRh97YSTjvL9DXdkNlYesP07JSmo571hPthQKWi0xtzfeWj7eWaXZe+tH10OKtnJ NvGb7A4QlQdN0qsxGe67azGr7LZXYFfIom+BS5z8BPIqDIaj4qoX7GcPiR6d4jlJ szTctOP3C5FOnLLYjz0021pDiaPo+6xrGx12SZHHvltTCIPWVQyFLstCTBD32JFA 9JxebrQ0EZ44ahe5itymsafmCKGds1Rf -----END CERTIFICATE-----Generated at Sat Apr 26 17:06:29 2025 by rpki-client