$ rpki-client -vvf rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft File: 5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft (raw, json) Hash identifier: JGYeajsYWlUObOprjwTWd60/38u4f86JVHP/rYzgJ2Y= Subject key identifier: EC:D0:A2:C8:E8:CC:11:1C:E2:9D:94:2D:39:74:19:60:A7:49:36:62 Authority key identifier: 5D:70:7B:0D:35:69:62:24:32:B4:BD:CB:FD:32:0F:9A:8B:6D:DC:7B Certificate issuer: /CN=A91DD5100000/serialNumber=5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B Certificate serial: 4ED17DA4178BA828355E411DFD22A95A01560821 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XXB7DTVpYiQytL3L_TIPmott3Hs.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft Manifest number: B3 Signing time: Fri 25 Apr 2025 14:34:53 +0000 Manifest this update: Fri 25 Apr 2025 14:29:53 +0000 Manifest next update: Sat 26 Apr 2025 16:08:53 +0000 Files and hashes: 1: 34332e3235322e32322e302f32342d3234203d3e203438323636.roa (hash: lh0a38K8JAllhrAcZvOqWh+3NCJyyj25skARvaE+EWo=) 2: 34332e3235322e32312e302f32342d3234203d3e203530333835.roa (hash: baGBWXcDrtK+cAVKGJBMAmZee53ol0gPCj9NO0O551w=) 3: 5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.crl (hash: 1nqJfBw6Bt0V1qXuVAmZjocyokKtEU+1hrDKUqR3zFs=) 4: 34332e3235322e32332e302f32342d3234203d3e203239383032.roa (hash: LfF8fU+QkX6d5K08nkQmulF4/9qGZmobs40531E0EuE=) Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.crl rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XXB7DTVpYiQytL3L_TIPmott3Hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 16:08:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:d1:7d:a4:17:8b:a8:28:35:5e:41:1d:fd:22:a9:5a:01:56:08:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD5100000, serialNumber=5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B Validity Not Before: Apr 25 14:29:53 2025 GMT Not After : Apr 26 16:08:53 2025 GMT Subject: CN=ECD0A2C8E8CC111CE29D942D39741960A7493662 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:31:04:1b:72:15:22:c6:6c:ea:af:48:70:86: d1:70:89:16:1b:7e:40:fb:c3:c3:90:38:39:69:9a: 98:35:b9:a7:b7:0a:ac:5f:db:da:05:e5:73:a5:37: a6:17:1a:a9:14:87:6b:71:c9:c2:9a:e4:18:ff:f5: ce:48:55:d9:e1:f6:87:a7:fe:b6:e0:54:14:3a:93: 69:d0:9f:5c:e5:78:43:7a:0d:42:35:ae:9c:fb:7e: 0b:62:4a:54:2e:f4:3b:f9:ab:8c:3e:eb:03:8d:f2: b1:a4:30:d0:3d:91:d1:54:4c:c3:8c:aa:14:b4:ec: 8b:f8:86:a9:78:07:c3:88:50:4a:db:94:41:ca:fc: 6b:48:72:fb:1b:24:02:f9:5b:8f:2b:e3:70:89:f4: 7f:55:33:3e:ca:84:3d:07:7c:ad:9a:9e:49:9f:3e: ad:0e:d3:b5:37:f6:99:08:3f:98:c7:c0:ba:91:9b: 81:50:e9:f6:8f:3e:e8:6e:ff:b4:35:5a:b8:ec:06: 44:95:17:ff:91:0a:1b:86:df:59:2d:96:e4:af:ef: 55:45:1e:33:c9:eb:30:90:82:c2:59:91:fb:69:fc: e1:2b:07:b8:14:5c:4d:d3:3e:b2:81:8a:19:c5:fd: 29:9a:9f:d8:1e:d0:4b:fb:2b:9c:36:db:41:b3:88: e3:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:D0:A2:C8:E8:CC:11:1C:E2:9D:94:2D:39:74:19:60:A7:49:36:62 X509v3 Authority Key Identifier: keyid:5D:70:7B:0D:35:69:62:24:32:B4:BD:CB:FD:32:0F:9A:8B:6D:DC:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XXB7DTVpYiQytL3L_TIPmott3Hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d1:b3:07:d8:98:1f:40:57:e4:b8:4c:ed:4d:a5:b6:9b:1c:9a: 27:b1:e1:51:76:27:a9:f4:99:03:49:07:86:f9:7a:5f:bb:7f: b3:ae:c4:a4:bc:93:39:69:5f:a5:5d:cd:5f:c4:1b:f9:0c:e1: 4d:af:65:9e:49:62:de:7f:71:85:ec:9f:8e:5a:bc:ce:88:94: 8b:8f:97:b5:4a:0e:52:3e:fd:b2:97:72:d5:9b:61:0a:5b:08: 57:5a:02:de:a2:f3:8b:5d:55:95:23:60:c7:77:e2:6e:db:78: 5f:60:4e:4e:ce:ba:b3:e8:1c:35:78:b9:15:4c:08:34:e4:e7: b6:f5:52:bd:a8:03:19:04:5e:fd:92:82:54:33:2b:8d:61:5e: d9:f1:f4:2d:fd:fb:8e:da:bd:99:25:43:18:cb:41:dc:70:01: d1:96:b5:5a:b5:85:7c:42:f2:18:0d:bd:dc:de:03:6f:42:8b: 42:7c:26:37:4f:eb:5a:a9:15:b6:b7:02:6a:7a:35:9c:74:36: 0e:c3:a8:fd:52:a8:69:2d:e7:11:45:10:03:11:ea:aa:7e:6a: 72:1e:9f:36:df:ca:9f:1a:7e:54:5f:33:80:f8:c7:17:e4:03: 83:3d:17:b1:93:35:57:d6:2a:e8:0c:cb:66:45:9d:49:50:04: ef:59:ff:f1 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTtF9pBeLqCg1XkEd/SKpWgFWCCEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxREQ1MTAwMDAwMTEwLwYDVQQFEyg1RDcwN0IwRDM1 Njk2MjI0MzJCNEJEQ0JGRDMyMEY5QThCNkREQzdCMB4XDTI1MDQyNTE0Mjk1M1oX DTI1MDQyNjE2MDg1M1owMzExMC8GA1UEAxMoRUNEMEEyQzhFOENDMTExQ0UyOUQ5 NDJEMzk3NDE5NjBBNzQ5MzY2MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALgxBBtyFSLGbOqvSHCG0XCJFht+QPvDw5A4OWmamDW5p7cKrF/b2gXlc6U3 phcaqRSHa3HJwprkGP/1zkhV2eH2h6f+tuBUFDqTadCfXOV4Q3oNQjWunPt+C2JK VC70O/mrjD7rA43ysaQw0D2R0VRMw4yqFLTsi/iGqXgHw4hQStuUQcr8a0hy+xsk AvlbjyvjcIn0f1UzPsqEPQd8rZqeSZ8+rQ7TtTf2mQg/mMfAupGbgVDp9o8+6G7/ tDVauOwGRJUX/5EKG4bfWS2W5K/vVUUeM8nrMJCCwlmR+2n84SsHuBRcTdM+soGK GcX9KZqf2B7QS/srnDbbQbOI448CAwEAAaOCAhswggIXMB0GA1UdDgQWBBTs0KLI 6MwRHOKdlC05dBlgp0k2YjAfBgNVHSMEGDAWgBRdcHsNNWliJDK0vcv9Mg+ai23c ezAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFERDUxMDAwMDAvMC81RDcwN0Iw RDM1Njk2MjI0MzJCNEJEQ0JGRDMyMEY5QThCNkREQzdCLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9YWEI3RFRWcFlp UXl0TDNMX1RJUG1vdHQzSHMuY2VyMH0GCCsGAQUFBwELBHEwbzBtBggrBgEFBQcw C4ZhcnN5bmM6Ly9ycGtpLnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFERDUx MDAwMDAvMC81RDcwN0IwRDM1Njk2MjI0MzJCNEJEQ0JGRDMyMEY5QThCNkREQzdC Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIw EDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG 9w0BAQsFAAOCAQEA0bMH2JgfQFfkuEztTaW2mxyaJ7HhUXYnqfSZA0kHhvl6X7t/ s67EpLyTOWlfpV3NX8Qb+QzhTa9lnkli3n9xheyfjlq8zoiUi4+XtUoOUj79spdy 1ZthClsIV1oC3qLzi11VlSNgx3fibtt4X2BOTs66s+gcNXi5FUwINOTntvVSvagD GQRe/ZKCVDMrjWFe2fH0Lf37jtq9mSVDGMtB3HAB0Za1WrWFfELyGA293N4Db0KL QnwmN0/rWqkVtrcCano1nHQ2DsOo/VKoaS3nEUUQAxHqqn5qch6fNt/Knxp+VF8z gPjHF+QDgz0XsZM1V9Yq6AzLZkWdSVAE71n/8Q== -----END CERTIFICATE-----Generated at Sat Apr 26 03:24:53 2025 by rpki-client