$ rpki-client -vvf rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/keZ5ch7R4JJ-u35GHIBYDSOTWSo.mft File: keZ5ch7R4JJ-u35GHIBYDSOTWSo.mft (raw, json) Hash identifier: XfUwxqGHijAYwTyhdiCo6eDKIN+UUItDmmOgtaLHnLE= Subject key identifier: 28:AD:25:51:54:6F:47:3D:70:5B:AD:09:BE:19:1B:18:0D:92:01:02 Authority key identifier: 91:E6:79:72:1E:D1:E0:92:7E:BB:7E:46:1C:80:58:0D:23:93:59:2A Certificate issuer: /CN=A911ACAC/serialNumber=91E679721ED1E0927EBB7E461C80580D2393592A Certificate serial: 04B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keZ5ch7R4JJ-u35GHIBYDSOTWSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/keZ5ch7R4JJ-u35GHIBYDSOTWSo.mft Manifest number: 04A9 Signing time: Mon 12 May 2025 23:45:55 +0000 Manifest this update: Mon 12 May 2025 23:45:55 +0000 Manifest next update: Mon 19 May 2025 23:45:55 +0000 Files and hashes: 1: keZ5ch7R4JJ-u35GHIBYDSOTWSo.crl (hash: npSJgnImh2fZPwswr493Ib22m1+cFdH47JDNeKTo2f8=) 2: C52B4E0A3FE011EF88794913C4F9AE02.roa (hash: BHc0YO4uerOV3pChxVjG7O544zd2LrVw+gOJhxCdrB0=) 3: 1295B5943FA611EF94664041C4F9AE02.roa (hash: FuWrvkmDIg3mxhyAWWbi/ukBRQacmBTwsE71FX0nX8M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/keZ5ch7R4JJ-u35GHIBYDSOTWSo.crl rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/keZ5ch7R4JJ-u35GHIBYDSOTWSo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keZ5ch7R4JJ-u35GHIBYDSOTWSo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 23:45:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1205 (0x4b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911ACAC, serialNumber=91E679721ED1E0927EBB7E461C80580D2393592A Validity Not Before: May 12 23:45:55 2025 GMT Not After : May 19 23:45:55 2025 GMT Subject: CN=68228833-d123 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:bf:2d:d7:95:d4:00:60:e3:bb:32:0f:e1:71: ef:af:01:5e:8d:19:cb:54:9f:3e:9b:12:92:c8:da: ee:5b:fe:cb:63:b8:26:bd:b2:dd:b2:2c:dc:18:72: 2d:6f:f4:d0:4f:d3:88:52:25:0c:47:48:27:0f:d9: 91:23:99:69:b3:22:d7:ef:8b:d8:4f:eb:7a:1c:27: 0a:89:64:54:68:51:23:95:35:e0:7e:e4:39:ed:f8: a9:36:97:6b:85:7f:1b:66:e2:04:40:73:d3:30:62: 43:48:3f:27:e3:93:6f:eb:ba:d9:24:3a:1f:81:a5: 36:34:4d:42:f7:a8:3f:66:8c:0f:af:f4:c6:b3:a7: 92:b8:a8:5e:08:00:74:05:16:39:75:5d:81:e9:42: 93:8a:e7:81:36:2b:ae:ae:b6:17:3c:bd:60:5b:6a: c0:f2:1c:6b:6a:55:10:1d:54:40:0f:f3:a5:50:0b: cc:da:93:56:10:08:d4:d7:b5:be:49:c6:29:d8:10: 62:3d:a8:e6:8b:47:bd:94:fd:99:27:d0:0b:90:9c: 30:0c:a5:32:99:40:37:ff:5a:a7:1c:c6:71:dd:18: 3c:5e:09:8e:0a:60:a8:66:ba:fc:32:f2:ca:1a:ac: a7:a7:5d:ac:18:d3:d2:f8:0c:38:af:c9:f3:68:fa: ca:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:AD:25:51:54:6F:47:3D:70:5B:AD:09:BE:19:1B:18:0D:92:01:02 X509v3 Authority Key Identifier: keyid:91:E6:79:72:1E:D1:E0:92:7E:BB:7E:46:1C:80:58:0D:23:93:59:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/keZ5ch7R4JJ-u35GHIBYDSOTWSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keZ5ch7R4JJ-u35GHIBYDSOTWSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/keZ5ch7R4JJ-u35GHIBYDSOTWSo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:8c:b7:30:d2:e3:23:94:66:d5:67:61:22:68:c4:d3:3b:27: 5d:9f:54:be:7d:cb:55:b6:84:6b:76:67:35:ec:fa:7a:a7:e6: 51:84:2e:eb:2a:04:67:eb:64:c0:e4:fc:3d:02:a4:78:96:cb: d1:4d:8e:f0:19:c5:0a:b8:da:6b:23:c8:a7:1e:15:db:28:9a: 10:fa:9c:98:2f:d4:20:65:bc:05:bb:a5:c5:8a:7f:79:8b:d1: f2:00:6c:ee:83:f6:a9:fd:b7:37:d1:d4:ad:00:2e:93:b6:4f: c6:df:2c:cb:8d:ab:29:a4:8d:fb:10:f0:e4:ef:62:58:3d:cc: 43:60:f9:58:91:e3:f3:c9:35:56:fe:1f:56:bc:e5:ab:24:44: 96:cf:f2:93:9c:41:25:51:2a:d7:bb:6c:b8:dd:3e:1a:96:ce: 6e:21:98:44:25:c3:ac:5b:5e:10:aa:8e:fc:6c:90:28:e0:ce: 88:0e:c4:d8:21:87:03:a6:70:dd:9b:ac:59:62:92:18:38:87: cd:24:84:e3:07:b0:32:5d:52:96:59:8c:91:a8:7c:03:a4:29: f3:39:93:df:0f:8e:55:ee:40:de:e1:3a:23:d4:14:f8:45:b0: d6:48:d3:fe:bb:5f:8e:e5:89:38:7b:ba:35:22:ea:dc:39:7a: de:cc:b5:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFDQUMxMTAvBgNVBAUTKDkxRTY3OTcyMUVEMUUwOTI3RUJCN0U0NjFDODA1ODBE MjM5MzU5MkEwHhcNMjUwNTEyMjM0NTU1WhcNMjUwNTE5MjM0NTU1WjAYMRYwFAYD VQQDEw02ODIyODgzMy1kMTIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvr8t15XUAGDjuzIP4XHvrwFejRnLVJ8+mxKSyNruW/7LY7gmvbLdsizcGHIt b/TQT9OIUiUMR0gnD9mRI5lpsyLX74vYT+t6HCcKiWRUaFEjlTXgfuQ57fipNpdr hX8bZuIEQHPTMGJDSD8n45Nv67rZJDofgaU2NE1C96g/ZowPr/TGs6eSuKheCAB0 BRY5dV2B6UKTiueBNiuurrYXPL1gW2rA8hxralUQHVRAD/OlUAvM2pNWEAjU17W+ ScYp2BBiPajmi0e9lP2ZJ9ALkJwwDKUymUA3/1qnHMZx3Rg8XgmOCmCoZrr8MvLK Gqynp12sGNPS+Aw4r8nzaPrK1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCitJVFU b0c9cFutCb4ZGxgNkgECMB8GA1UdIwQYMBaAFJHmeXIe0eCSfrt+RhyAWA0jk1kq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUNBQy9CM0JEQTU2NDMx RDMxMUVDOEQzQkJGMzBDNEY5QUUwMi9rZVo1Y2g3UjRKSi11MzVHSElCWURTT1RX U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tlWjVjaDdSNEpKLXUzNUdISUJZRFNPVFdTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUNBQy9CM0JEQTU2NDMxRDMxMUVDOEQzQkJGMzBDNEY5QUUwMi9rZVo1Y2g3UjRK Si11MzVHSElCWURTT1RXU28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBojLcw0uMjlGbVZ2EiaMTTOyddn1S+fctVtoRrdmc17Pp6p+ZRhC7r KgRn62TA5Pw9AqR4lsvRTY7wGcUKuNprI8inHhXbKJoQ+pyYL9QgZbwFu6XFin95 i9HyAGzug/ap/bc30dStAC6Ttk/G3yzLjasppI37EPDk72JYPcxDYPlYkePzyTVW /h9WvOWrJESWz/KTnEElUSrXu2y43T4als5uIZhEJcOsW14Qqo78bJAo4M6IDsTY IYcDpnDdm6xZYpIYOIfNJITjB7AyXVKWWYyRqHwDpCnzOZPfD45V7kDe4Toj1BT4 RbDWSNP+u1+O5Yk4e7o1IurcOXrezLUm -----END CERTIFICATE-----Generated at Wed May 14 10:42:11 2025 by rpki-client