$ rpki-client -vvf rpki.apnic.net/member_repository/A91380F7/A7EBC1D2A7F811EFBB44F371C4F9AE02/A5HZpw6JPnUbxhKJxUQXuHoQRVk.mft File: A5HZpw6JPnUbxhKJxUQXuHoQRVk.mft (raw, json) Hash identifier: FQCK1UM0RtueKjuo/Yg7vkxk/3iqv8YV9mvF4Dhg0Hg= Subject key identifier: 4D:80:4E:7C:5B:C6:2F:2E:76:AF:DE:E0:CB:EE:7F:31:04:F7:7D:4C Authority key identifier: 03:91:D9:A7:0E:89:3E:75:1B:C6:12:89:C5:44:17:B8:7A:10:45:59 Certificate issuer: /CN=A91380F7/serialNumber=0391D9A70E893E751BC61289C54417B87A104559 Certificate serial: 5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A5HZpw6JPnUbxhKJxUQXuHoQRVk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91380F7/A7EBC1D2A7F811EFBB44F371C4F9AE02/A5HZpw6JPnUbxhKJxUQXuHoQRVk.mft Manifest number: 5B Signing time: Thu 15 May 2025 06:25:07 +0000 Manifest this update: Thu 15 May 2025 06:25:07 +0000 Manifest next update: Thu 22 May 2025 06:25:07 +0000 Files and hashes: 1: A5HZpw6JPnUbxhKJxUQXuHoQRVk.crl (hash: hx+2kx3pP/ShBW/1j0IkXnzOVv5KVNaada3AqexmxAw=) 2: 9B3FE178A7FA11EFA7886875C4F9AE02.roa (hash: wskyOCDE340iqc6+xbxJBMsRJGfe9vODWh/hz8Ga1HM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91380F7/A7EBC1D2A7F811EFBB44F371C4F9AE02/A5HZpw6JPnUbxhKJxUQXuHoQRVk.crl rsync://rpki.apnic.net/member_repository/A91380F7/A7EBC1D2A7F811EFBB44F371C4F9AE02/A5HZpw6JPnUbxhKJxUQXuHoQRVk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A5HZpw6JPnUbxhKJxUQXuHoQRVk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 06:25:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 92 (0x5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91380F7, serialNumber=0391D9A70E893E751BC61289C54417B87A104559 Validity Not Before: May 15 06:25:07 2025 GMT Not After : May 22 06:25:07 2025 GMT Subject: CN=682588c3-d4b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:6c:18:d5:5c:99:e5:cf:15:fc:9a:cc:3e:0c: b6:99:27:ef:02:87:d6:c8:15:d4:d4:6a:52:a4:50: 89:01:29:55:65:5a:b0:d0:32:5b:70:e3:9b:43:3a: 4a:72:98:bc:45:32:8c:70:24:ba:70:5b:0f:10:11: 6c:06:e7:78:5e:68:88:9b:9a:4a:58:c6:80:0f:84: b3:bb:c1:cd:e6:d6:a2:81:ba:4a:df:c2:e1:58:4b: 54:e9:02:ce:06:94:c4:f1:d3:67:66:8d:a8:c3:7a: 03:53:4c:a4:5e:1e:55:39:61:89:f9:0e:34:44:09: 1f:de:41:ab:45:f8:30:f4:8c:21:56:7b:b8:51:b3: d7:d0:a1:89:48:0a:4a:2b:47:aa:0b:e3:70:1b:87: 08:1a:1e:81:62:15:98:ee:5a:31:bc:9a:32:49:21: 05:ac:a9:bd:67:62:40:ac:33:40:79:05:ee:7b:e2: 56:58:35:72:fa:00:55:54:5d:0d:22:ca:bf:0a:9e: f4:d4:03:cb:ff:65:aa:36:b1:7a:ce:5e:1c:2d:92: 3e:68:4f:30:17:ed:53:ac:9f:b0:7d:6f:9e:c1:af: f4:1c:65:37:5e:46:d1:15:a6:26:a3:e0:b7:a8:2c: 0d:2c:9e:85:47:84:42:cc:13:0c:07:a2:07:18:9c: b7:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:80:4E:7C:5B:C6:2F:2E:76:AF:DE:E0:CB:EE:7F:31:04:F7:7D:4C X509v3 Authority Key Identifier: keyid:03:91:D9:A7:0E:89:3E:75:1B:C6:12:89:C5:44:17:B8:7A:10:45:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91380F7/A7EBC1D2A7F811EFBB44F371C4F9AE02/A5HZpw6JPnUbxhKJxUQXuHoQRVk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A5HZpw6JPnUbxhKJxUQXuHoQRVk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91380F7/A7EBC1D2A7F811EFBB44F371C4F9AE02/A5HZpw6JPnUbxhKJxUQXuHoQRVk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:58:63:31:6b:9d:ed:55:ff:c3:76:19:ec:79:e7:79:a3:16: f1:ff:78:fd:26:65:03:d5:ad:0d:53:e4:64:15:a6:4d:b5:03: 23:d4:64:60:77:43:e5:3d:3d:75:69:80:43:8c:cb:49:87:1b: 97:db:96:e9:e8:c9:9a:91:8d:15:5d:ac:1b:3a:28:8e:2b:02: 97:09:4d:c3:b4:eb:77:cf:15:11:ea:0a:85:3b:8f:93:40:ae: 23:ba:5f:43:03:a4:29:9d:8f:19:bb:9d:b8:40:ef:6e:ec:85: 24:1a:63:be:fa:57:ad:cb:3a:a3:69:60:1e:37:09:e4:26:fd: 7b:fd:34:1b:19:5f:6f:61:9f:33:86:5f:b2:f7:c4:24:ff:3e: eb:62:24:bd:64:38:2b:77:cc:09:16:4e:a3:4e:ec:11:78:37: f8:3b:02:8e:f0:bd:42:53:84:a2:f7:ac:ec:2a:5d:af:df:32: ca:59:72:ac:fe:07:09:08:4b:4d:07:73:50:0f:60:6c:ff:de: e1:59:ee:70:b4:7a:f2:51:75:c3:e4:a4:7f:b1:c6:d8:23:1a: b1:f8:9b:4f:b9:ee:7f:25:bb:d4:7e:73:00:cc:30:e7:ae:f8: 12:c7:2c:f7:b0:e9:68:6b:96:a9:69:ca:24:08:26:83:7c:a5: 79:61:7d:3b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz ODBGNzExMC8GA1UEBRMoMDM5MUQ5QTcwRTg5M0U3NTFCQzYxMjg5QzU0NDE3Qjg3 QTEwNDU1OTAeFw0yNTA1MTUwNjI1MDdaFw0yNTA1MjIwNjI1MDdaMBgxFjAUBgNV BAMTDTY4MjU4OGMzLWQ0YjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0bBjVXJnlzxX8msw+DLaZJ+8Ch9bIFdTUalKkUIkBKVVlWrDQMltw45tDOkpy mLxFMoxwJLpwWw8QEWwG53heaIibmkpYxoAPhLO7wc3m1qKBukrfwuFYS1TpAs4G lMTx02dmjajDegNTTKReHlU5YYn5DjRECR/eQatF+DD0jCFWe7hRs9fQoYlICkor R6oL43AbhwgaHoFiFZjuWjG8mjJJIQWsqb1nYkCsM0B5Be574lZYNXL6AFVUXQ0i yr8KnvTUA8v/Zao2sXrOXhwtkj5oTzAX7VOsn7B9b57Br/QcZTdeRtEVpiaj4Leo LA0snoVHhELMEwwHogcYnLcxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUTYBOfFvG Ly52r97gy+5/MQT3fUwwHwYDVR0jBBgwFoAUA5HZpw6JPnUbxhKJxUQXuHoQRVkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM4MEY3L0E3RUJDMUQyQTdG ODExRUZCQjQ0RjM3MUM0RjlBRTAyL0E1SFpwdzZKUG5VYnhoS0p4VVFYdUhvUVJW ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQTVIWnB3NkpQblVieGhLSnhVUVh1SG9RUlZrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM4 MEY3L0E3RUJDMUQyQTdGODExRUZCQjQ0RjM3MUM0RjlBRTAyL0E1SFpwdzZKUG5V YnhoS0p4VVFYdUhvUVJWay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAB5YYzFrne1V/8N2Gex553mjFvH/eP0mZQPVrQ1T5GQVpk21AyPUZGB3 Q+U9PXVpgEOMy0mHG5fblunoyZqRjRVdrBs6KI4rApcJTcO063fPFRHqCoU7j5NA riO6X0MDpCmdjxm7nbhA727shSQaY776V63LOqNpYB43CeQm/Xv9NBsZX29hnzOG X7L3xCT/PutiJL1kOCt3zAkWTqNO7BF4N/g7Ao7wvUJThKL3rOwqXa/fMspZcqz+ BwkIS00Hc1APYGz/3uFZ7nC0evJRdcPkpH+xxtgjGrH4m0+57n8lu9R+cwDMMOeu +BLHLPew6WhrlqlpyiQIJoN8pXlhfTs= -----END CERTIFICATE-----Generated at Sat May 17 01:03:04 2025 by rpki-client