$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8525/52212610612F11E7BD2EDA0BC4F9AE02/5xqfIU6Aybw7LSOf-LmqtxP27bc.mft File: 5xqfIU6Aybw7LSOf-LmqtxP27bc.mft (raw, json) Hash identifier: yja+OppchHYLy5HhgvYuaMACRL4P/xaMtZ2n/JowjzY= Subject key identifier: AB:BF:5B:47:9C:49:13:30:DE:F7:C5:FC:37:5F:2F:71:F9:3A:65:E4 Authority key identifier: E7:1A:9F:21:4E:80:C9:BC:3B:2D:23:9F:F8:B9:AA:B7:13:F6:ED:B7 Certificate issuer: /CN=A91E8525/serialNumber=E71A9F214E80C9BC3B2D239FF8B9AAB713F6EDB7 Certificate serial: 19C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5xqfIU6Aybw7LSOf-LmqtxP27bc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8525/52212610612F11E7BD2EDA0BC4F9AE02/5xqfIU6Aybw7LSOf-LmqtxP27bc.mft Manifest number: 19AE Signing time: Thu 24 Apr 2025 16:24:27 +0000 Manifest this update: Thu 24 Apr 2025 16:24:27 +0000 Manifest next update: Thu 01 May 2025 16:24:27 +0000 Files and hashes: 1: 5xqfIU6Aybw7LSOf-LmqtxP27bc.crl (hash: 9yERKm3ah2ScDy/9Vb+hFeLd2tC/lE3PHGr4OSHUJ7s=) 2: 3A21C144E51211EBB1225278C4F9AE02.roa (hash: 72UJY4qW+1X6PGltHkH0J24hlzlOfouYDMNRAXq28vY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8525/52212610612F11E7BD2EDA0BC4F9AE02/5xqfIU6Aybw7LSOf-LmqtxP27bc.crl rsync://rpki.apnic.net/member_repository/A91E8525/52212610612F11E7BD2EDA0BC4F9AE02/5xqfIU6Aybw7LSOf-LmqtxP27bc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5xqfIU6Aybw7LSOf-LmqtxP27bc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:24:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6592 (0x19c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8525, serialNumber=E71A9F214E80C9BC3B2D239FF8B9AAB713F6EDB7 Validity Not Before: Apr 24 16:24:27 2025 GMT Not After : May 1 16:24:27 2025 GMT Subject: CN=680a65bb-2533 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:1d:77:2a:44:d2:8f:1b:82:4a:64:ac:ba:a6: 90:99:04:84:a4:02:c7:01:97:ab:ba:77:2e:cb:1c: c9:f1:22:f5:b5:6e:3a:64:49:13:09:04:a9:4d:99: b8:e8:a4:80:75:86:8d:21:ef:53:a4:e4:f2:2f:67: ed:11:29:99:87:28:13:9f:dc:21:22:1b:95:21:80: d0:a4:ed:e1:11:78:da:31:76:35:f2:66:30:6c:68: 06:d7:8e:a9:a6:18:20:ec:f2:43:82:f3:b1:be:e0: ec:d5:39:98:51:c0:0f:ff:0c:1e:f8:14:8a:67:2f: d4:d9:db:d3:de:56:76:0c:2e:bf:5e:81:21:08:3f: 66:93:f2:9f:38:4c:b3:34:4c:a1:66:1a:b0:37:39: d3:4a:0b:79:66:4d:ec:c0:c7:da:7c:e9:b8:10:03: 4e:e1:9b:72:6c:63:94:d2:8d:fb:30:84:6d:40:83: a8:0a:a8:34:38:b4:c4:d0:2f:6f:dc:0c:c4:7a:25: d3:77:2e:11:33:54:d2:37:66:c9:15:12:ad:1c:7c: a9:7b:63:a8:2c:19:d4:39:36:21:0c:0a:98:e8:71: 29:2b:2c:09:85:6f:ce:9a:c9:50:2b:65:fb:d7:fc: a2:f5:6b:0c:a8:30:e8:66:39:fe:cc:c4:15:62:8f: 5a:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:BF:5B:47:9C:49:13:30:DE:F7:C5:FC:37:5F:2F:71:F9:3A:65:E4 X509v3 Authority Key Identifier: keyid:E7:1A:9F:21:4E:80:C9:BC:3B:2D:23:9F:F8:B9:AA:B7:13:F6:ED:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8525/52212610612F11E7BD2EDA0BC4F9AE02/5xqfIU6Aybw7LSOf-LmqtxP27bc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5xqfIU6Aybw7LSOf-LmqtxP27bc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8525/52212610612F11E7BD2EDA0BC4F9AE02/5xqfIU6Aybw7LSOf-LmqtxP27bc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ce:77:b8:a2:9b:1e:09:45:bf:92:fd:dd:fa:37:9f:42:9f:d4: 93:09:40:8d:1f:1e:a9:70:2f:9d:fc:42:8d:8e:29:97:b7:8e: 07:c1:30:a5:87:8a:b3:b0:d1:3f:e1:44:52:e4:4b:d6:15:67: 9b:d2:4f:9f:30:e7:c9:94:f0:ff:4c:22:70:ee:e8:d9:42:e6: 46:e7:6b:31:c5:fb:fb:27:bd:a5:a0:a0:99:c9:85:47:3c:b4: 18:50:01:fc:19:ad:0e:d2:c6:f6:0b:63:9c:0f:d5:31:13:39: 8a:ce:26:4c:3a:50:18:54:27:e2:42:2f:d4:cd:4a:5f:d9:a6: 16:29:62:45:56:f3:79:40:90:49:41:8f:a7:4f:47:d2:2d:66: 14:ad:c9:57:c6:81:7d:4c:0d:ab:61:fd:d2:3c:1a:56:af:f2: 26:cb:24:e9:e5:62:47:0c:1b:b4:63:b9:45:31:a4:84:49:66: 1d:0e:a8:eb:57:fe:93:07:91:7c:83:43:a6:d2:65:d8:71:3c: 4d:0f:b3:d5:d4:e4:f3:c7:17:0a:be:6d:0f:cc:7b:fc:91:48: 69:d3:cf:69:8d:99:b9:27:62:d4:53:6b:51:33:bd:1b:21:4e: 9a:2b:0e:0d:a4:ec:0f:bd:cf:40:68:19:2f:3b:3a:09:4b:44: 43:80:c1:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGcAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg1MjUxMTAvBgNVBAUTKEU3MUE5RjIxNEU4MEM5QkMzQjJEMjM5RkY4QjlBQUI3 MTNGNkVEQjcwHhcNMjUwNDI0MTYyNDI3WhcNMjUwNTAxMTYyNDI3WjAYMRYwFAYD VQQDEw02ODBhNjViYi0yNTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9R13KkTSjxuCSmSsuqaQmQSEpALHAZeruncuyxzJ8SL1tW46ZEkTCQSpTZm4 6KSAdYaNIe9TpOTyL2ftESmZhygTn9whIhuVIYDQpO3hEXjaMXY18mYwbGgG146p phgg7PJDgvOxvuDs1TmYUcAP/wwe+BSKZy/U2dvT3lZ2DC6/XoEhCD9mk/KfOEyz NEyhZhqwNznTSgt5Zk3swMfafOm4EANO4ZtybGOU0o37MIRtQIOoCqg0OLTE0C9v 3AzEeiXTdy4RM1TSN2bJFRKtHHype2OoLBnUOTYhDAqY6HEpKywJhW/OmslQK2X7 1/yi9WsMqDDoZjn+zMQVYo9aMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKu/W0ec SRMw3vfF/DdfL3H5OmXkMB8GA1UdIwQYMBaAFOcanyFOgMm8Oy0jn/i5qrcT9u23 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODUyNS81MjIxMjYxMDYx MkYxMUU3QkQyRURBMEJDNEY5QUUwMi81eHFmSVU2QXlidzdMU09mLUxtcXR4UDI3 YmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV4cWZJVTZBeWJ3N0xTT2YtTG1xdHhQMjdiYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODUyNS81MjIxMjYxMDYxMkYxMUU3QkQyRURBMEJDNEY5QUUwMi81eHFmSVU2QXli dzdMU09mLUxtcXR4UDI3YmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDOd7iimx4JRb+S/d36N59Cn9STCUCNHx6pcC+d/EKNjimXt44HwTCl h4qzsNE/4URS5EvWFWeb0k+fMOfJlPD/TCJw7ujZQuZG52sxxfv7J72loKCZyYVH PLQYUAH8Ga0O0sb2C2OcD9UxEzmKziZMOlAYVCfiQi/UzUpf2aYWKWJFVvN5QJBJ QY+nT0fSLWYUrclXxoF9TA2rYf3SPBpWr/ImyyTp5WJHDBu0Y7lFMaSESWYdDqjr V/6TB5F8g0Om0mXYcTxND7PV1OTzxxcKvm0PzHv8kUhp089pjZm5J2LUU2tRM70b IU6aKw4NpOwPvc9AaBkvOzoJS0RDgMGW -----END CERTIFICATE-----Generated at Sat Apr 26 12:38:46 2025 by rpki-client