$ rpki-client -vvf rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft File: 5igiDz_QD0F7mXLh1KD2QWlueZk.mft (raw, json) Hash identifier: 0JhNuHd47QRUWHWOEI56Kl+ZhMC1py2Yy3cU5GI3Fg8= Subject key identifier: 94:88:32:FC:B6:2F:06:7C:43:FB:50:DF:BD:15:08:DE:0F:B7:03:1B Authority key identifier: E6:28:22:0F:3F:D0:0F:41:7B:99:72:E1:D4:A0:F6:41:69:6E:79:99 Certificate issuer: /CN=A912E31D/serialNumber=E628220F3FD00F417B9972E1D4A0F641696E7999 Certificate serial: 2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5igiDz_QD0F7mXLh1KD2QWlueZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft Manifest number: 29 Signing time: Thu 15 May 2025 07:05:28 +0000 Manifest this update: Thu 15 May 2025 07:05:28 +0000 Manifest next update: Thu 22 May 2025 07:05:28 +0000 Files and hashes: 1: 5igiDz_QD0F7mXLh1KD2QWlueZk.crl (hash: z5c7v/20RP8w8BQrHfegL1bKUBzBO3aJRI3QAAPcdy0=) 2: 9CDF0C0CFA4311EFAEC6A81AC4F9AE02.roa (hash: A659tR0soBiQRXoeD1FPvGrYfSs+v9kVVN6MSoHXtyU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.crl rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5igiDz_QD0F7mXLh1KD2QWlueZk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 07:05:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E31D, serialNumber=E628220F3FD00F417B9972E1D4A0F641696E7999 Validity Not Before: May 15 07:05:28 2025 GMT Not After : May 22 07:05:28 2025 GMT Subject: CN=68259238-d4d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:34:fc:10:4b:c0:ca:4a:73:18:f9:ce:b4:cb: b1:30:a5:5d:5c:84:fb:5d:e8:c2:1a:52:16:ba:d1: 76:d8:c7:c4:6c:ad:cf:5d:df:2b:73:4f:e9:57:1d: 5a:ce:da:25:80:a6:0f:4d:5c:f9:cc:b4:c8:ce:dc: da:e8:98:ca:5c:47:1a:51:a5:da:5a:f5:4d:7d:24: ce:10:c0:13:fc:16:f5:50:27:53:61:5c:3d:82:5b: e3:09:15:41:2c:da:6d:b2:a5:17:60:b4:34:d6:9d: 67:25:09:15:84:a5:1f:62:ed:8e:e8:57:8b:e1:97: e5:34:6b:0e:24:15:fb:4c:bf:b2:f9:66:dc:10:68: a9:da:5d:af:67:54:bc:3a:14:0e:ff:03:7f:d0:94: e4:fa:f9:5e:90:37:af:70:03:79:fd:2f:e8:3c:e1: 0d:99:0b:24:cc:3f:6b:ae:61:9c:8e:12:72:10:19: e5:e2:6e:00:24:54:c9:f0:a8:53:38:6f:71:33:42: 67:6e:54:c6:8f:66:c0:aa:fc:74:04:dc:ac:ad:69: e9:79:af:87:7d:a2:6f:34:13:fd:2d:91:bb:a0:26: 75:84:ac:56:46:de:fb:6c:40:b8:60:37:9e:cb:73: 0f:43:a5:3b:c4:1c:3a:80:5c:0d:e3:b0:c9:cd:06: b2:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:88:32:FC:B6:2F:06:7C:43:FB:50:DF:BD:15:08:DE:0F:B7:03:1B X509v3 Authority Key Identifier: keyid:E6:28:22:0F:3F:D0:0F:41:7B:99:72:E1:D4:A0:F6:41:69:6E:79:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5igiDz_QD0F7mXLh1KD2QWlueZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:6c:98:d1:d3:84:64:fb:42:c9:3f:4a:e5:82:6a:3d:8c:87: 32:e5:7a:e5:7c:43:70:8c:00:5a:72:10:65:6d:b9:97:4f:67: c4:30:b1:e4:57:08:54:02:91:97:81:31:35:b5:32:6d:27:0e: a4:0e:df:1e:ef:2b:45:0d:32:8d:76:26:ad:c4:94:f0:90:4e: b8:77:23:e3:0e:03:d1:d4:2d:65:8b:0b:69:db:2e:86:7a:47: 78:25:19:08:9d:02:85:ea:97:49:d5:8c:cd:e1:cb:6c:56:50: 8b:9b:90:b2:26:0b:12:91:55:ce:b0:66:cc:de:2e:03:9b:74: e4:46:ea:8c:1f:67:c2:7e:06:72:c7:45:f2:82:f1:7f:26:4b: fd:01:02:b8:af:21:6b:13:1c:24:cd:2a:86:db:59:0b:8c:93: cd:0a:5e:ff:a1:c5:a0:af:03:b4:e6:42:43:d8:e7:4e:ca:f7: ec:69:02:9c:3f:25:2d:04:87:d9:db:46:b3:cd:ad:bf:ce:b4: c5:7f:16:48:d8:95:13:3f:bf:8a:06:be:b2:f5:9d:3c:49:7f: 2f:23:bb:17:56:ae:11:ce:15:84:c8:35:57:75:fa:05:50:f4: fd:9b:cb:75:4b:f9:83:35:8a:40:45:a7:22:12:87:73:86:27: bd:ae:44:b8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy RTMxRDExMC8GA1UEBRMoRTYyODIyMEYzRkQwMEY0MTdCOTk3MkUxRDRBMEY2NDE2 OTZFNzk5OTAeFw0yNTA1MTUwNzA1MjhaFw0yNTA1MjIwNzA1MjhaMBgxFjAUBgNV BAMTDTY4MjU5MjM4LWQ0ZDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8NPwQS8DKSnMY+c60y7EwpV1chPtd6MIaUha60XbYx8Rsrc9d3ytzT+lXHVrO 2iWApg9NXPnMtMjO3NromMpcRxpRpdpa9U19JM4QwBP8FvVQJ1NhXD2CW+MJFUEs 2m2ypRdgtDTWnWclCRWEpR9i7Y7oV4vhl+U0aw4kFftMv7L5ZtwQaKnaXa9nVLw6 FA7/A3/QlOT6+V6QN69wA3n9L+g84Q2ZCyTMP2uuYZyOEnIQGeXibgAkVMnwqFM4 b3EzQmduVMaPZsCq/HQE3Kytael5r4d9om80E/0tkbugJnWErFZG3vtsQLhgN57L cw9DpTvEHDqAXA3jsMnNBrK3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUlIgy/LYv BnxD+1DfvRUI3g+3AxswHwYDVR0jBBgwFoAU5igiDz/QD0F7mXLh1KD2QWlueZkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJFMzFELzJDRjZCOEIwRjlD OTExRUZBNTRGNzYyQUM0RjlBRTAyLzVpZ2lEel9RRDBGN21YTGgxS0QyUVdsdWVa ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNWlnaUR6X1FEMEY3bVhMaDFLRDJRV2x1ZVprLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJF MzFELzJDRjZCOEIwRjlDOTExRUZBNTRGNzYyQUM0RjlBRTAyLzVpZ2lEel9RRDBG N21YTGgxS0QyUVdsdWVaay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI1smNHThGT7Qsk/SuWCaj2MhzLleuV8Q3CMAFpyEGVtuZdPZ8QwseRX CFQCkZeBMTW1Mm0nDqQO3x7vK0UNMo12Jq3ElPCQTrh3I+MOA9HULWWLC2nbLoZ6 R3glGQidAoXql0nVjM3hy2xWUIubkLImCxKRVc6wZszeLgObdORG6owfZ8J+BnLH RfKC8X8mS/0BArivIWsTHCTNKobbWQuMk80KXv+hxaCvA7TmQkPY507K9+xpApw/ JS0Eh9nbRrPNrb/OtMV/FkjYlRM/v4oGvrL1nTxJfy8juxdWrhHOFYTINVd1+gVQ 9P2by3VL+YM1ikBFpyISh3OGJ72uRLg= -----END CERTIFICATE-----Generated at Fri May 16 16:47:18 2025 by rpki-client