$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.mft File: K5XY2CKKiRR9gBk9l3DrUK7du2s.mft (raw, json) Hash identifier: 5tQseLn+wOxnOsJnA9qR2LNCVtc/Zevt57v0sBU7LBU= Subject key identifier: 5B:77:74:A4:19:87:D6:E7:E6:E7:80:99:5A:19:95:AC:D9:22:0F:94 Authority key identifier: 2B:95:D8:D8:22:8A:89:14:7D:80:19:3D:97:70:EB:50:AE:DD:BB:6B Certificate issuer: /CN=A91FF5A9/serialNumber=2B95D8D8228A89147D80193D9770EB50AEDDBB6B Certificate serial: 16AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5XY2CKKiRR9gBk9l3DrUK7du2s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.mft Manifest number: 1695 Signing time: Thu 24 Apr 2025 16:40:55 +0000 Manifest this update: Thu 24 Apr 2025 16:40:55 +0000 Manifest next update: Thu 01 May 2025 16:40:55 +0000 Files and hashes: 1: K5XY2CKKiRR9gBk9l3DrUK7du2s.crl (hash: Xwlx4VSZiRnaPl2HITXeqojd+7HoK0sz+SORfUS9Bu0=) 2: 07D665E0862711EBAC147872C4F9AE02.roa (hash: h1jWRhCaXCGscugt7m7NPkJTh1NUHltfWypGJXiPwZw=) 3: F9E21144D90F11EDB2DBEA49C4F9AE02.roa (hash: fP45NGSHNvdQShMBiD1rePe2Esz9p+VlDQo2vfi2cz0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.crl rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5XY2CKKiRR9gBk9l3DrUK7du2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:40:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5806 (0x16ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF5A9, serialNumber=2B95D8D8228A89147D80193D9770EB50AEDDBB6B Validity Not Before: Apr 24 16:40:55 2025 GMT Not After : May 1 16:40:55 2025 GMT Subject: CN=680a6997-6b16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:f2:7b:9a:d2:5c:82:80:73:04:07:63:97:06: 1d:b0:9c:2b:29:5e:4b:e3:fe:6c:9f:8b:e9:96:f3: e2:4b:28:4d:03:73:6b:70:c5:a7:fa:46:b4:3e:d8: 23:df:d4:58:cb:8e:cc:a1:21:a5:7e:0c:59:54:fc: 2e:98:9a:e7:41:07:eb:d6:cb:e5:e3:d9:26:de:65: 5b:58:05:f8:8c:ff:b3:fb:53:5d:4b:20:21:94:4b: 07:e5:51:dc:96:2c:87:89:26:fa:a0:d7:6e:e6:0c: 25:2d:f5:3b:3a:95:a3:e6:7d:b4:8e:4c:a9:af:2a: f3:cb:66:01:ad:cc:2a:87:06:ec:1b:58:8d:be:45: cc:aa:b1:84:be:c6:d1:91:d7:ae:c2:79:ef:3a:be: 13:e4:d5:29:ef:7d:31:19:ff:c6:53:5a:42:73:19: b6:84:c5:de:fd:b8:65:6f:cd:49:14:fd:e8:33:e5: 47:2f:5e:ea:ac:a0:f3:a1:03:58:4a:5a:98:50:b6: 34:26:da:52:56:78:d8:47:8d:5d:ae:ef:ad:2a:db: 66:ba:24:ff:1d:89:a3:0f:49:06:c1:bf:ae:b1:6c: cc:48:ba:a9:65:46:9a:ac:56:69:a7:9e:6a:be:14: ee:d8:be:02:31:c1:5a:de:7c:e9:3b:4d:34:0a:3f: 03:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:77:74:A4:19:87:D6:E7:E6:E7:80:99:5A:19:95:AC:D9:22:0F:94 X509v3 Authority Key Identifier: keyid:2B:95:D8:D8:22:8A:89:14:7D:80:19:3D:97:70:EB:50:AE:DD:BB:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5XY2CKKiRR9gBk9l3DrUK7du2s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:8f:81:52:e5:8b:f5:65:12:68:0a:35:6d:33:0c:c3:22:3e: 5e:82:45:57:3b:7a:a5:c5:c2:54:f1:75:63:59:ba:1e:04:bf: f5:ae:9e:cd:8b:2e:ba:93:8c:c7:0d:87:41:41:07:53:48:fd: 5d:1e:02:db:bf:f4:96:d2:1c:38:83:fa:b6:ce:6e:98:ec:c8: 84:c9:2e:f6:db:f5:0b:6c:1f:38:ba:5f:6d:20:37:10:2c:84: 7b:a5:d4:bb:f7:8a:e3:ee:c7:c4:a2:ca:e2:8b:5b:1d:5e:86: 99:e4:f0:66:0e:c1:e4:b3:67:1b:e5:7e:4b:08:5f:0a:9c:d4: dc:19:9b:e7:0b:ee:67:8b:80:cd:5a:2c:11:9c:0b:de:91:9c: 83:61:e6:08:62:49:19:29:fa:d2:07:66:7a:55:c5:76:e0:fc: bc:f4:92:e3:e6:e8:0b:56:5d:13:a2:79:e1:05:b8:d2:d0:c2: d1:15:0e:51:95:73:b5:6e:55:d7:30:e2:39:bd:b1:74:26:d7: 14:5e:60:79:03:27:bc:42:a2:ae:5e:b3:76:24:40:c4:b6:05: 6e:27:91:0c:ba:9b:49:15:42:43:a8:3f:38:f6:e3:b2:f2:8b: 77:f3:25:60:3b:4b:47:19:f1:12:24:79:ae:7c:73:ac:c8:5b: 68:4f:64:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFq4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY1QTkxMTAvBgNVBAUTKDJCOTVEOEQ4MjI4QTg5MTQ3RDgwMTkzRDk3NzBFQjUw QUVEREJCNkIwHhcNMjUwNDI0MTY0MDU1WhcNMjUwNTAxMTY0MDU1WjAYMRYwFAYD VQQDEw02ODBhNjk5Ny02YjE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn/J7mtJcgoBzBAdjlwYdsJwrKV5L4/5sn4vplvPiSyhNA3NrcMWn+ka0Ptgj 39RYy47MoSGlfgxZVPwumJrnQQfr1svl49km3mVbWAX4jP+z+1NdSyAhlEsH5VHc liyHiSb6oNdu5gwlLfU7OpWj5n20jkypryrzy2YBrcwqhwbsG1iNvkXMqrGEvsbR kdeuwnnvOr4T5NUp730xGf/GU1pCcxm2hMXe/bhlb81JFP3oM+VHL17qrKDzoQNY SlqYULY0JtpSVnjYR41dru+tKttmuiT/HYmjD0kGwb+usWzMSLqpZUaarFZpp55q vhTu2L4CMcFa3nzpO000Cj8DewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFt3dKQZ h9bn5ueAmVoZlazZIg+UMB8GA1UdIwQYMBaAFCuV2NgiiokUfYAZPZdw61Cu3btr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjVBOS8wMEI3MTUxQ0ZE MDgxMUU3QTQyOEZGMEZDNEY5QUUwMi9LNVhZMkNLS2lSUjlnQms5bDNEclVLN2R1 MnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s1WFkyQ0tLaVJSOWdCazlsM0RyVUs3ZHUycy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjVBOS8wMEI3MTUxQ0ZEMDgxMUU3QTQyOEZGMEZDNEY5QUUwMi9LNVhZMkNLS2lS UjlnQms5bDNEclVLN2R1MnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5j4FS5Yv1ZRJoCjVtMwzDIj5egkVXO3qlxcJU8XVjWboeBL/1rp7N iy66k4zHDYdBQQdTSP1dHgLbv/SW0hw4g/q2zm6Y7MiEyS722/ULbB84ul9tIDcQ LIR7pdS794rj7sfEosrii1sdXoaZ5PBmDsHks2cb5X5LCF8KnNTcGZvnC+5ni4DN WiwRnAvekZyDYeYIYkkZKfrSB2Z6VcV24Py89JLj5ugLVl0TonnhBbjS0MLRFQ5R lXO1blXXMOI5vbF0JtcUXmB5Aye8QqKuXrN2JEDEtgVuJ5EMuptJFUJDqD849uOy 8ot38yVgO0tHGfESJHmufHOsyFtoT2S7 -----END CERTIFICATE-----Generated at Sat Apr 26 16:59:25 2025 by rpki-client