$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC1DE/732D69B6277911ED9D48F423C4F9AE02/j5ZyrK2aUfA9SLxDtjOpVzSY494.mft File: j5ZyrK2aUfA9SLxDtjOpVzSY494.mft (raw, json) Hash identifier: fkrOfGXbsNNfMq1dnuObBoejloyGkw2gU6gSlhPw96s= Subject key identifier: E6:8F:06:2A:5C:07:03:A8:2F:73:7C:9E:82:D4:24:67:9A:60:6B:B2 Authority key identifier: 8F:96:72:AC:AD:9A:51:F0:3D:48:BC:43:B6:33:A9:57:34:98:E3:DE Certificate issuer: /CN=A91FC1DE/serialNumber=8F9672ACAD9A51F03D48BC43B633A9573498E3DE Certificate serial: 0223 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j5ZyrK2aUfA9SLxDtjOpVzSY494.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC1DE/732D69B6277911ED9D48F423C4F9AE02/j5ZyrK2aUfA9SLxDtjOpVzSY494.mft Manifest number: 0222 Signing time: Fri 25 Apr 2025 01:43:15 +0000 Manifest this update: Fri 25 Apr 2025 01:43:15 +0000 Manifest next update: Fri 02 May 2025 01:43:15 +0000 Files and hashes: 1: j5ZyrK2aUfA9SLxDtjOpVzSY494.crl (hash: cHA2NVfY/WM9+qcnTRIY8ov68ExDIVObefKwTcIlhfQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC1DE/732D69B6277911ED9D48F423C4F9AE02/j5ZyrK2aUfA9SLxDtjOpVzSY494.crl rsync://rpki.apnic.net/member_repository/A91FC1DE/732D69B6277911ED9D48F423C4F9AE02/j5ZyrK2aUfA9SLxDtjOpVzSY494.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j5ZyrK2aUfA9SLxDtjOpVzSY494.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:43:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 547 (0x223) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC1DE, serialNumber=8F9672ACAD9A51F03D48BC43B633A9573498E3DE Validity Not Before: Apr 25 01:43:15 2025 GMT Not After : May 2 01:43:15 2025 GMT Subject: CN=680ae8b3-016f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:1c:a7:87:06:03:a5:3a:3e:16:25:14:ab:bd: 68:9a:e8:b2:76:97:a2:9f:11:c8:7a:a7:75:a3:05: 99:e2:4e:ac:95:cd:93:3f:37:d3:ba:af:f1:ed:6d: f9:73:f3:67:5a:6a:76:87:93:fd:48:71:18:22:da: 0a:97:32:fb:d2:c1:79:18:af:8e:e6:b5:66:8a:72: b0:b1:02:4b:79:7a:60:51:94:d4:4f:fd:9e:53:ee: b5:d3:33:79:9f:1e:6a:73:e9:0a:d0:a7:e5:08:73: 30:87:94:d7:e4:ff:01:06:05:7d:30:8b:9c:b9:38: c8:d0:80:ae:2d:bc:19:1d:07:97:d3:d1:45:8b:e8: de:17:11:09:f4:3d:42:3d:e6:72:af:bf:5a:a3:ba: ee:30:fb:eb:47:12:b3:6f:26:ee:ef:3e:20:c5:01: 35:d3:3e:fa:14:14:22:16:c2:da:34:64:9b:5a:b7: 13:7b:f8:f7:8b:8e:c4:73:1a:9f:bb:1c:d2:fa:f7: 7c:79:c6:cc:dc:e1:4d:4c:fb:61:db:56:e9:85:e9: 64:96:18:4d:d2:44:d8:33:ce:a4:6a:f4:50:39:e3: f4:8f:43:3f:98:92:ff:ab:1b:24:26:0b:94:6b:26: 59:4b:9c:36:4e:8d:6e:28:f2:b5:d3:81:2b:c8:7b: 9f:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:8F:06:2A:5C:07:03:A8:2F:73:7C:9E:82:D4:24:67:9A:60:6B:B2 X509v3 Authority Key Identifier: keyid:8F:96:72:AC:AD:9A:51:F0:3D:48:BC:43:B6:33:A9:57:34:98:E3:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC1DE/732D69B6277911ED9D48F423C4F9AE02/j5ZyrK2aUfA9SLxDtjOpVzSY494.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j5ZyrK2aUfA9SLxDtjOpVzSY494.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC1DE/732D69B6277911ED9D48F423C4F9AE02/j5ZyrK2aUfA9SLxDtjOpVzSY494.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:0d:76:38:7d:f9:1e:b7:6d:b3:da:d4:3d:ee:b8:fc:a9:8c: 0c:5c:bb:f0:cf:a7:2c:7b:24:72:20:06:7e:8c:2b:b7:d6:f2: 33:ef:2a:51:0d:ff:11:94:e7:4e:63:a1:fd:c8:da:57:db:89: a8:7f:93:44:7e:8c:64:4d:bf:e3:84:7b:14:bc:ad:e9:0a:b1: a5:66:ea:47:d5:91:87:02:44:03:3d:9f:47:72:47:2c:5d:db: b1:54:96:15:07:05:28:51:d9:6c:84:fc:13:1a:3a:be:0f:43: d5:9a:12:d4:23:77:9b:d1:94:d6:1a:88:d0:19:04:cc:4e:76: 39:a9:25:99:dd:7c:81:7c:86:b8:a7:32:9e:19:41:36:55:cc: 1d:e9:38:07:09:7b:22:39:ed:01:1c:74:af:67:e6:bc:ec:14: ef:fb:1d:7a:16:06:ca:17:c2:5e:b4:ba:7a:70:80:b7:85:24: 6d:01:85:da:8e:27:5d:d0:90:a2:73:92:d8:b9:c0:c9:11:ca: c7:02:c6:31:7f:72:b4:3a:77:ee:24:97:6a:bd:e5:89:10:1a: ec:1c:8b:74:8b:03:2f:76:c0:e1:c6:9f:8f:04:f4:6e:dc:37: 57:10:11:c0:86:de:b9:58:d9:ed:de:8b:30:54:68:8a:ec:ea: 49:01:85:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkMxREUxMTAvBgNVBAUTKDhGOTY3MkFDQUQ5QTUxRjAzRDQ4QkM0M0I2MzNBOTU3 MzQ5OEUzREUwHhcNMjUwNDI1MDE0MzE1WhcNMjUwNTAyMDE0MzE1WjAYMRYwFAYD VQQDEw02ODBhZThiMy0wMTZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAthynhwYDpTo+FiUUq71omuiydpeinxHIeqd1owWZ4k6slc2TPzfTuq/x7W35 c/NnWmp2h5P9SHEYItoKlzL70sF5GK+O5rVminKwsQJLeXpgUZTUT/2eU+610zN5 nx5qc+kK0KflCHMwh5TX5P8BBgV9MIucuTjI0ICuLbwZHQeX09FFi+jeFxEJ9D1C PeZyr79ao7ruMPvrRxKzbybu7z4gxQE10z76FBQiFsLaNGSbWrcTe/j3i47Ecxqf uxzS+vd8ecbM3OFNTPth21bphelklhhN0kTYM86kavRQOeP0j0M/mJL/qxskJguU ayZZS5w2To1uKPK104EryHufYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOaPBipc BwOoL3N8noLUJGeaYGuyMB8GA1UdIwQYMBaAFI+WcqytmlHwPUi8Q7YzqVc0mOPe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzFERS83MzJENjlCNjI3 NzkxMUVEOUQ0OEY0MjNDNEY5QUUwMi9qNVp5cksyYVVmQTlTTHhEdGpPcFZ6U1k0 OTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2o1WnlySzJhVWZBOVNMeER0ak9wVnpTWTQ5NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzFERS83MzJENjlCNjI3NzkxMUVEOUQ0OEY0MjNDNEY5QUUwMi9qNVp5cksyYVVm QTlTTHhEdGpPcFZ6U1k0OTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3DXY4ffket22z2tQ97rj8qYwMXLvwz6cseyRyIAZ+jCu31vIz7ypR Df8RlOdOY6H9yNpX24mof5NEfoxkTb/jhHsUvK3pCrGlZupH1ZGHAkQDPZ9Hckcs XduxVJYVBwUoUdlshPwTGjq+D0PVmhLUI3eb0ZTWGojQGQTMTnY5qSWZ3XyBfIa4 pzKeGUE2Vcwd6TgHCXsiOe0BHHSvZ+a87BTv+x16FgbKF8JetLp6cIC3hSRtAYXa jidd0JCic5LYucDJEcrHAsYxf3K0OnfuJJdqveWJEBrsHIt0iwMvdsDhxp+PBPRu 3DdXEBHAht65WNnt3oswVGiK7OpJAYVO -----END CERTIFICATE-----Generated at Sat Apr 26 13:06:48 2025 by rpki-client