$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC46B/F685BC9C7FC211EBA714542AC4F9AE02/5P3k1jhc-jqHPsReepFHztMJvAI.mft File: 5P3k1jhc-jqHPsReepFHztMJvAI.mft (raw, json) Hash identifier: vSdjvsPUbZ0pPE5xwMBfykN+l9q7w8e+48wXTfK+v/M= Subject key identifier: C4:59:8F:B6:72:D6:05:70:72:16:0B:6A:49:62:82:F9:EC:A3:E4:93 Authority key identifier: E4:FD:E4:D6:38:5C:FA:3A:87:3E:C4:5E:7A:91:47:CE:D3:09:BC:02 Certificate issuer: /CN=A91EC46B/serialNumber=E4FDE4D6385CFA3A873EC45E7A9147CED309BC02 Certificate serial: 0661 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5P3k1jhc-jqHPsReepFHztMJvAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC46B/F685BC9C7FC211EBA714542AC4F9AE02/5P3k1jhc-jqHPsReepFHztMJvAI.mft Manifest number: 0659 Signing time: Thu 24 Apr 2025 22:14:53 +0000 Manifest this update: Thu 24 Apr 2025 22:14:52 +0000 Manifest next update: Thu 01 May 2025 22:14:52 +0000 Files and hashes: 1: 5P3k1jhc-jqHPsReepFHztMJvAI.crl (hash: px0QJqZcBLt37GyLd6exasPzdlSF36wMQZF/gv3xovc=) 2: 18ED6F18862211EB99005123C4F9AE02.roa (hash: rr8gNUqLqDSNabGr8QuJud25OZUwhJk+lADOj5yViNQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC46B/F685BC9C7FC211EBA714542AC4F9AE02/5P3k1jhc-jqHPsReepFHztMJvAI.crl rsync://rpki.apnic.net/member_repository/A91EC46B/F685BC9C7FC211EBA714542AC4F9AE02/5P3k1jhc-jqHPsReepFHztMJvAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5P3k1jhc-jqHPsReepFHztMJvAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:14:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1633 (0x661) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC46B, serialNumber=E4FDE4D6385CFA3A873EC45E7A9147CED309BC02 Validity Not Before: Apr 24 22:14:52 2025 GMT Not After : May 1 22:14:52 2025 GMT Subject: CN=680ab7dd-fe14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:61:bc:d1:34:9b:98:76:d5:35:a7:e1:dd:bc: 39:50:a2:0f:4f:01:d9:5b:74:4c:be:eb:6d:42:54: e2:f9:d4:42:04:c0:c4:b9:f1:e3:28:02:ce:11:d3: 9a:78:04:2e:92:0a:7d:8a:c9:64:e3:0e:ac:76:11: f2:ce:05:c7:23:6d:91:51:ab:84:53:9f:3b:fc:73: fd:e5:83:32:ed:17:fb:f5:73:45:54:82:59:70:78: 47:1b:3a:56:44:d3:4a:84:14:2e:39:1c:c8:f8:23: 9c:ac:fb:01:ba:fe:ef:a6:5b:09:b1:2a:82:66:a0: a3:43:29:7a:56:0e:7c:a6:fb:d2:76:5f:3b:db:82: e6:ab:9f:a8:77:12:8a:6c:67:90:e9:86:a8:ac:b9: b8:8c:53:cb:42:ab:dd:3a:7a:cc:51:7c:e9:7a:63: 3d:fb:0a:27:0f:54:af:5b:cf:8c:b0:7b:91:4c:b8: be:94:e7:5a:4a:84:5d:bb:1c:73:e9:d4:d4:98:5f: a0:28:59:36:f9:f1:b0:20:4f:7c:22:85:f6:b9:c4: c3:ab:ad:cf:23:8d:2d:35:5d:d2:9b:be:6a:d0:57: 19:c8:48:d2:a9:ed:79:10:8d:45:94:bf:16:57:00: dd:98:9f:8b:79:96:d9:8f:e7:d4:a6:ce:e2:93:fb: 87:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:59:8F:B6:72:D6:05:70:72:16:0B:6A:49:62:82:F9:EC:A3:E4:93 X509v3 Authority Key Identifier: keyid:E4:FD:E4:D6:38:5C:FA:3A:87:3E:C4:5E:7A:91:47:CE:D3:09:BC:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC46B/F685BC9C7FC211EBA714542AC4F9AE02/5P3k1jhc-jqHPsReepFHztMJvAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5P3k1jhc-jqHPsReepFHztMJvAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC46B/F685BC9C7FC211EBA714542AC4F9AE02/5P3k1jhc-jqHPsReepFHztMJvAI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:12:88:3d:27:28:45:47:77:d8:21:93:8a:dd:c6:3f:41:87: f6:6a:de:d0:7b:de:02:09:f7:4f:85:4b:f0:fe:ea:e4:99:28: 99:a8:78:b6:d0:75:56:1c:41:ec:ae:9b:83:d0:a3:75:b5:ce: f2:77:77:7b:31:2b:26:11:44:ff:f5:73:bf:1e:94:f6:13:91: 41:4d:7d:a1:35:f9:72:8a:2c:c3:c8:2e:ac:83:02:7b:88:35: 77:0f:ca:b4:c1:d4:c6:ed:67:b2:0c:af:a5:83:66:8c:16:c1: f2:c1:7c:9b:a3:86:ab:a0:a4:7e:de:4c:0b:08:5e:79:3f:08: 22:52:52:20:74:6a:92:58:39:64:de:1a:11:bb:a4:91:1a:62: 7b:da:26:25:00:ff:c0:7b:14:10:88:fd:ca:28:d5:e7:4b:33: 6b:4f:32:fb:9d:05:e6:97:a4:86:93:43:b8:f1:d7:5c:a4:1b: 66:da:28:68:2f:55:03:68:4d:d9:9a:23:2f:a2:2a:82:54:5c: cd:3e:81:be:dd:fa:1e:96:c0:ea:92:8f:6c:aa:ce:0e:13:c8: 7b:1d:d3:f2:9a:32:89:8a:bf:5f:1a:06:07:55:76:a5:42:ba: 48:19:fe:46:ec:53:fc:43:ca:58:ea:2b:a1:11:e0:a5:d9:63: 06:4c:98:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM0NkIxMTAvBgNVBAUTKEU0RkRFNEQ2Mzg1Q0ZBM0E4NzNFQzQ1RTdBOTE0N0NF RDMwOUJDMDIwHhcNMjUwNDI0MjIxNDUyWhcNMjUwNTAxMjIxNDUyWjAYMRYwFAYD VQQDEw02ODBhYjdkZC1mZTE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA82G80TSbmHbVNafh3bw5UKIPTwHZW3RMvuttQlTi+dRCBMDEufHjKALOEdOa eAQukgp9islk4w6sdhHyzgXHI22RUauEU587/HP95YMy7Rf79XNFVIJZcHhHGzpW RNNKhBQuORzI+COcrPsBuv7vplsJsSqCZqCjQyl6Vg58pvvSdl8724Lmq5+odxKK bGeQ6YaorLm4jFPLQqvdOnrMUXzpemM9+wonD1SvW8+MsHuRTLi+lOdaSoRduxxz 6dTUmF+gKFk2+fGwIE98IoX2ucTDq63PI40tNV3Sm75q0FcZyEjSqe15EI1FlL8W VwDdmJ+LeZbZj+fUps7ik/uHfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMRZj7Zy 1gVwchYLakligvnso+STMB8GA1UdIwQYMBaAFOT95NY4XPo6hz7EXnqRR87TCbwC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzQ2Qi9GNjg1QkM5QzdG QzIxMUVCQTcxNDU0MkFDNEY5QUUwMi81UDNrMWpoYy1qcUhQc1JlZXBGSHp0TUp2 QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVQM2sxamhjLWpxSFBzUmVlcEZIenRNSnZBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzQ2Qi9GNjg1QkM5QzdGQzIxMUVCQTcxNDU0MkFDNEY5QUUwMi81UDNrMWpoYy1q cUhQc1JlZXBGSHp0TUp2QUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrEog9JyhFR3fYIZOK3cY/QYf2at7Qe94CCfdPhUvw/urkmSiZqHi2 0HVWHEHsrpuD0KN1tc7yd3d7MSsmEUT/9XO/HpT2E5FBTX2hNflyiizDyC6sgwJ7 iDV3D8q0wdTG7WeyDK+lg2aMFsHywXybo4aroKR+3kwLCF55PwgiUlIgdGqSWDlk 3hoRu6SRGmJ72iYlAP/AexQQiP3KKNXnSzNrTzL7nQXml6SGk0O48ddcpBtm2iho L1UDaE3ZmiMvoiqCVFzNPoG+3foelsDqko9sqs4OE8h7HdPymjKJir9fGgYHVXal QrpIGf5G7FP8Q8pY6iuhEeCl2WMGTJiJ -----END CERTIFICATE-----Generated at Sat Apr 26 14:47:52 2025 by rpki-client