$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft File: 5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft (raw, json) Hash identifier: uL4yKPZPr0ssl3hDaQW4+T5ownhdFFOooNvxyqx0f64= Subject key identifier: BD:90:06:B2:03:8D:FF:E5:FD:CD:9D:FF:40:EC:C4:3A:2A:61:A7:02 Authority key identifier: E7:3F:B8:86:8D:D3:B4:61:EA:1A:67:3C:7A:36:94:52:35:E9:CA:AE Certificate issuer: /CN=A91FCEB1/serialNumber=E73FB8868DD3B461EA1A673C7A36945235E9CAAE Certificate serial: 06EF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5z-4ho3TtGHqGmc8ejaUUjXpyq4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft Manifest number: 214F Signing time: Thu 24 Apr 2025 15:59:13 +0000 Manifest this update: Thu 24 Apr 2025 15:59:12 +0000 Manifest next update: Thu 01 May 2025 15:59:12 +0000 Files and hashes: 1: 5z-4ho3TtGHqGmc8ejaUUjXpyq4.crl (hash: XwCq07EV/4Ezr/Lfu2nAIv3UVsNi7e9Y2LHjVUKNR8A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.crl rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5z-4ho3TtGHqGmc8ejaUUjXpyq4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:59:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1775 (0x6ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FCEB1, serialNumber=E73FB8868DD3B461EA1A673C7A36945235E9CAAE Validity Not Before: Apr 24 15:59:12 2025 GMT Not After : May 1 15:59:12 2025 GMT Subject: CN=680a5fd1-82d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:6e:36:1f:67:a0:63:8b:46:89:21:6f:fd:18: 7d:df:1c:d6:f3:49:b6:0e:1e:3e:76:9c:54:ef:0f: 24:2b:cc:32:99:7c:39:43:e1:10:45:21:90:c9:e8: 86:bb:29:43:54:2b:8e:43:d1:6a:ab:0f:26:24:b6: 81:a2:a3:b0:48:b2:7b:61:61:21:0d:07:dd:39:58: b5:c6:b3:03:8c:78:f9:06:5b:a6:68:f5:c9:9e:c4: 7d:76:d7:57:b8:cf:e1:4c:5a:c0:c2:3e:b7:89:fd: af:09:7a:0d:f9:41:ca:1d:f2:f4:75:9e:7d:3b:2d: 7d:1e:a3:f0:06:9e:51:fc:c8:de:c5:ec:6c:f9:08: 3e:1e:ae:c1:00:1c:88:ba:71:69:f3:1c:87:50:20: 93:f3:7c:36:d4:b1:5c:7c:9e:4d:5f:5f:c3:8f:9a: 06:16:19:7e:bb:61:e5:b8:9a:cb:17:d5:fd:f0:80: ae:34:a9:87:da:78:ec:dd:2b:36:22:82:71:f4:ce: 6f:4d:c8:2a:31:ff:4a:6e:85:81:16:3f:fe:1b:84: df:be:47:0b:0a:d5:0d:c6:1b:eb:96:e9:5d:c6:ee: a3:ff:8f:9d:be:c6:f4:6d:b9:7c:c7:19:fe:27:3a: 23:75:7b:5e:15:57:43:9c:ac:a1:90:33:9c:f0:5e: 6b:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:90:06:B2:03:8D:FF:E5:FD:CD:9D:FF:40:EC:C4:3A:2A:61:A7:02 X509v3 Authority Key Identifier: keyid:E7:3F:B8:86:8D:D3:B4:61:EA:1A:67:3C:7A:36:94:52:35:E9:CA:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5z-4ho3TtGHqGmc8ejaUUjXpyq4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:38:4f:9e:e1:5c:3e:15:8b:56:c7:b2:fc:d8:ab:4c:f4:7c: 7e:dc:b7:71:20:1b:df:19:64:fe:3c:75:9d:ae:64:1a:92:fc: 6b:d7:4f:ea:2f:fc:d4:be:29:25:b0:60:2e:31:05:dd:a2:82: bc:7e:05:ea:6e:b8:0f:4c:92:89:37:2e:08:b6:1e:84:9f:80: 2a:2a:64:dc:84:a9:0c:40:ae:85:b3:9d:57:05:b6:7d:db:0f: bf:96:23:d4:30:38:a8:ae:de:64:d6:eb:c3:fb:f8:23:64:1c: 75:cd:d2:d9:9f:6c:9a:4a:ec:c9:d2:f6:a9:64:f4:26:20:6f: 6d:6c:54:c4:62:59:c8:70:69:e0:6c:1b:e3:6e:4e:ab:f7:8a: 7c:8d:04:37:57:8a:e1:a0:23:57:ef:6f:85:4f:92:07:5c:f6: 16:bf:ba:14:ee:c8:98:26:21:4a:d0:9c:06:97:95:70:6c:47: be:3b:fd:57:16:bc:6d:4a:ca:ed:55:53:7b:c4:8c:50:71:78: 01:05:af:ae:c7:59:65:d5:f5:10:87:09:e6:da:3c:cd:79:ad: b2:d6:06:a1:79:52:0b:e0:db:68:13:b5:d0:b0:12:3c:3c:71: 41:9b:3d:b3:94:fe:ea:a5:77:55:b7:eb:6f:e0:82:43:3e:d8: c8:91:e1:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBu8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkNFQjExMTAvBgNVBAUTKEU3M0ZCODg2OEREM0I0NjFFQTFBNjczQzdBMzY5NDUy MzVFOUNBQUUwHhcNMjUwNDI0MTU1OTEyWhcNMjUwNTAxMTU1OTEyWjAYMRYwFAYD VQQDEw02ODBhNWZkMS04MmQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzW42H2egY4tGiSFv/Rh93xzW80m2Dh4+dpxU7w8kK8wymXw5Q+EQRSGQyeiG uylDVCuOQ9Fqqw8mJLaBoqOwSLJ7YWEhDQfdOVi1xrMDjHj5BlumaPXJnsR9dtdX uM/hTFrAwj63if2vCXoN+UHKHfL0dZ59Oy19HqPwBp5R/Mjexexs+Qg+Hq7BAByI unFp8xyHUCCT83w21LFcfJ5NX1/Dj5oGFhl+u2HluJrLF9X98ICuNKmH2njs3Ss2 IoJx9M5vTcgqMf9KboWBFj/+G4TfvkcLCtUNxhvrluldxu6j/4+dvsb0bbl8xxn+ JzojdXteFVdDnKyhkDOc8F5r9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL2QBrID jf/l/c2d/0DsxDoqYacCMB8GA1UdIwQYMBaAFOc/uIaN07Rh6hpnPHo2lFI16cqu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQ0VCMS85QzE0QjQwNjNB MjExMUU3OUFBMEQ1MUNDNEY5QUUwMi81ei00aG8zVHRHSHFHbWM4ZWphVVVqWHB5 cTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzV6LTRobzNUdEdIcUdtYzhlamFVVWpYcHlxNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Q0VCMS85QzE0QjQwNjNBMjExMUU3OUFBMEQ1MUNDNEY5QUUwMi81ei00aG8zVHRH SHFHbWM4ZWphVVVqWHB5cTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9OE+e4Vw+FYtWx7L82KtM9Hx+3LdxIBvfGWT+PHWdrmQakvxr10/q L/zUviklsGAuMQXdooK8fgXqbrgPTJKJNy4Ith6En4AqKmTchKkMQK6Fs51XBbZ9 2w+/liPUMDiort5k1uvD+/gjZBx1zdLZn2yaSuzJ0vapZPQmIG9tbFTEYlnIcGng bBvjbk6r94p8jQQ3V4rhoCNX72+FT5IHXPYWv7oU7siYJiFK0JwGl5VwbEe+O/1X FrxtSsrtVVN7xIxQcXgBBa+ux1ll1fUQhwnm2jzNea2y1gaheVIL4NtoE7XQsBI8 PHFBmz2zlP7qpXdVt+tv4IJDPtjIkeHA -----END CERTIFICATE-----Generated at Sat Apr 26 12:31:17 2025 by rpki-client