$ rpki-client -vvf rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.mft File: 5HE8G511dZKVr2TN-6YrcNuaBTc.mft (raw, json) Hash identifier: QQP6BrLOUVp0/62NM81b5O1SvMCWHoKd/NbFPYMI+oQ= Subject key identifier: FA:16:8D:07:09:6D:C3:B4:81:6F:50:24:83:AA:71:2E:27:B0:58:1E Authority key identifier: E4:71:3C:1B:9D:75:75:92:95:AF:64:CD:FB:A6:2B:70:DB:9A:05:37 Certificate issuer: /CN=A91561B7/serialNumber=E4713C1B9D75759295AF64CDFBA62B70DB9A0537 Certificate serial: 1DA4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HE8G511dZKVr2TN-6YrcNuaBTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.mft Manifest number: 1D8F Signing time: Mon 12 May 2025 16:04:57 +0000 Manifest this update: Mon 12 May 2025 16:04:57 +0000 Manifest next update: Mon 19 May 2025 16:04:57 +0000 Files and hashes: 1: 5HE8G511dZKVr2TN-6YrcNuaBTc.crl (hash: neWVNWA4e0h6yvo5ITd7d8Uz6zd4MWBFpLD819RpXmA=) 2: 4865DD00A13B11E687921078C4F9AE02.roa (hash: MaFWYkY2HcnSI16cq7zrf3Xg1TMrKe+K2OOU5n2vPcU=) 3: 1D57FF40A01311E684546521C4F9AE02.roa (hash: 8kLRR6g7/NXM5uPCUqU+X4Qb9woBVi0kDN/Wkxs+ARo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.crl rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HE8G511dZKVr2TN-6YrcNuaBTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 16:04:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7588 (0x1da4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91561B7, serialNumber=E4713C1B9D75759295AF64CDFBA62B70DB9A0537 Validity Not Before: May 12 16:04:57 2025 GMT Not After : May 19 16:04:57 2025 GMT Subject: CN=68221c29-84c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:3b:c0:d4:5d:43:c9:04:31:4a:86:2e:8c:4e: 1e:de:05:ce:8d:4f:52:b5:39:10:2b:ec:a5:f7:6b: 3d:8a:54:e1:ae:05:18:b9:70:87:fe:b5:71:ef:54: 6b:5b:a9:b7:49:15:17:8d:91:1d:aa:e4:cf:b2:c8: a9:88:2c:3e:22:0d:9f:39:ba:25:ff:e6:b9:2c:a4: d7:a2:6c:c0:82:68:4c:73:87:68:42:26:ab:f5:3c: f7:db:3e:d7:cf:79:b4:ea:97:51:b9:91:eb:16:06: 4a:36:9f:bd:28:a2:1c:15:ae:07:c6:7f:76:a2:8e: 45:58:dd:9a:b5:cb:28:9a:e4:89:37:72:28:1b:0d: e5:c3:46:26:a6:82:ac:7f:b4:e0:9e:e0:ce:e1:1d: d4:3b:35:30:61:cb:47:eb:5b:66:c3:01:b7:16:00: 10:74:bd:55:ae:55:18:ff:9a:65:03:fa:c9:a2:25: 03:95:f6:c7:84:bd:3f:42:41:45:04:9e:23:9d:61: b4:95:f8:0b:ef:76:19:90:5a:9d:24:71:db:7d:2a: 23:60:57:01:83:04:bd:f9:d2:05:05:38:d4:59:6c: 40:55:16:57:67:1a:8a:8b:1e:be:37:89:72:c6:24: cb:de:a9:e3:83:d7:ad:ea:d3:b3:84:84:d1:2b:f8: da:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:16:8D:07:09:6D:C3:B4:81:6F:50:24:83:AA:71:2E:27:B0:58:1E X509v3 Authority Key Identifier: keyid:E4:71:3C:1B:9D:75:75:92:95:AF:64:CD:FB:A6:2B:70:DB:9A:05:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HE8G511dZKVr2TN-6YrcNuaBTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:7d:cd:b3:27:0d:a8:86:87:c7:c9:d7:ef:f8:b6:57:21:64: 67:97:37:7c:90:9a:34:37:12:f3:fe:03:4a:3f:fe:5d:b0:c0: 00:80:27:5a:0a:cc:de:74:e1:2d:9f:68:be:3c:7a:34:10:50: d9:08:f6:82:0d:d6:cc:a3:ab:5f:e1:9a:6e:7d:37:c9:f7:3e: cc:6e:11:fb:49:29:99:4a:f5:d1:ba:c1:ec:b3:38:51:04:2c: f7:0d:e5:ef:e8:21:0e:b2:6f:dc:9d:48:c5:cb:fb:8e:7a:6b: 7c:94:9b:e2:04:4b:ce:4f:df:f9:e0:86:b6:47:75:c6:15:77: 0b:0e:8e:a6:2f:39:bc:48:27:e2:15:ba:af:57:a0:ec:59:53: 53:a5:10:49:f9:28:da:04:8c:f7:78:35:16:23:b4:1c:b1:ea: 17:be:02:3d:47:92:2e:12:ed:1c:22:11:56:6a:ff:f0:21:dd: 6e:11:29:c2:75:57:a4:6b:f3:c4:b0:bf:e0:bb:32:29:c4:44: 42:c0:d5:4a:d2:b7:62:40:7b:db:ea:ec:09:1d:f8:fe:cb:7b: 46:e3:c4:99:cd:19:4d:fa:43:60:b8:f6:57:a4:ef:1d:bf:64: de:5c:0d:8a:96:fc:13:f8:d7:f9:f6:7f:b5:51:ad:b5:33:69: 66:5e:9b:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHaQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYxQjcxMTAvBgNVBAUTKEU0NzEzQzFCOUQ3NTc1OTI5NUFGNjRDREZCQTYyQjcw REI5QTA1MzcwHhcNMjUwNTEyMTYwNDU3WhcNMjUwNTE5MTYwNDU3WjAYMRYwFAYD VQQDEw02ODIyMWMyOS04NGMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2zvA1F1DyQQxSoYujE4e3gXOjU9StTkQK+yl92s9ilThrgUYuXCH/rVx71Rr W6m3SRUXjZEdquTPssipiCw+Ig2fObol/+a5LKTXomzAgmhMc4doQiar9Tz32z7X z3m06pdRuZHrFgZKNp+9KKIcFa4Hxn92oo5FWN2atcsomuSJN3IoGw3lw0YmpoKs f7TgnuDO4R3UOzUwYctH61tmwwG3FgAQdL1VrlUY/5plA/rJoiUDlfbHhL0/QkFF BJ4jnWG0lfgL73YZkFqdJHHbfSojYFcBgwS9+dIFBTjUWWxAVRZXZxqKix6+N4ly xiTL3qnjg9et6tOzhITRK/jawwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPoWjQcJ bcO0gW9QJIOqcS4nsFgeMB8GA1UdIwQYMBaAFORxPBuddXWSla9kzfumK3DbmgU3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjFCNy81RkExRUQzMDlF RjAxMUU2ODExMDI3MzNDNEY5QUUwMi81SEU4RzUxMWRaS1ZyMlROLTZZcmNOdWFC VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVIRThHNTExZFpLVnIyVE4tNllyY051YUJUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjFCNy81RkExRUQzMDlFRjAxMUU2ODExMDI3MzNDNEY5QUUwMi81SEU4RzUxMWRa S1ZyMlROLTZZcmNOdWFCVGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOfc2zJw2ohofHydfv+LZXIWRnlzd8kJo0NxLz/gNKP/5dsMAAgCda CszedOEtn2i+PHo0EFDZCPaCDdbMo6tf4ZpufTfJ9z7MbhH7SSmZSvXRusHsszhR BCz3DeXv6CEOsm/cnUjFy/uOemt8lJviBEvOT9/54Ia2R3XGFXcLDo6mLzm8SCfi FbqvV6DsWVNTpRBJ+SjaBIz3eDUWI7QcseoXvgI9R5IuEu0cIhFWav/wId1uESnC dVeka/PEsL/guzIpxERCwNVK0rdiQHvb6uwJHfj+y3tG48SZzRlN+kNguPZXpO8d v2TeXA2KlvwT+Nf59n+1Ua21M2lmXpvW -----END CERTIFICATE-----Generated at Mon May 12 18:56:37 2025 by rpki-client