$ rpki-client -vvf rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft File: 5S3osZGTOKPiVWZOiASKVpihINA.mft (raw, json) Hash identifier: Xg70x87S6RNJkQ0vMMgSwBYptdygf6aO/JklNYWo5X4= Subject key identifier: 37:A9:8A:92:1B:72:0A:3E:81:FB:95:A0:23:86:15:6B:A3:15:24:0B Authority key identifier: E5:2D:E8:B1:91:93:38:A3:E2:55:66:4E:88:04:8A:56:98:A1:20:D0 Certificate issuer: /CN=A9160701/serialNumber=E52DE8B1919338A3E255664E88048A5698A120D0 Certificate serial: 0B69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S3osZGTOKPiVWZOiASKVpihINA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft Manifest number: 0B5F Signing time: Tue 06 May 2025 19:00:46 +0000 Manifest this update: Tue 06 May 2025 19:00:45 +0000 Manifest next update: Tue 13 May 2025 19:00:45 +0000 Files and hashes: 1: 5S3osZGTOKPiVWZOiASKVpihINA.crl (hash: 30aUHlrxAhpYGfrv7xTYOFfPPP23SXc7qk6URaVq3i8=) 2: 6DCC06C231BC11EA9AACCA4BC4F9AE02.roa (hash: 3rmLILbAM/KMJx9b9ZtmiW/UU8JiAcyOhmtpDcFmRPg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.crl rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S3osZGTOKPiVWZOiASKVpihINA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 19:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2921 (0xb69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160701, serialNumber=E52DE8B1919338A3E255664E88048A5698A120D0 Validity Not Before: May 6 19:00:45 2025 GMT Not After : May 13 19:00:45 2025 GMT Subject: CN=681a5c5d-096e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:eb:d6:d0:88:ff:2d:72:b8:30:ca:16:19:97: c6:0c:27:e8:76:1b:0d:92:29:f3:0d:fb:1f:5e:9c: d1:21:af:24:31:86:20:9b:99:3f:e7:cf:d9:cb:20: 1a:62:45:11:f8:c7:49:85:30:52:b5:24:23:ab:8b: 4d:95:8c:fe:52:9d:f6:c9:c5:85:ae:89:9e:42:d4: 2e:7b:f4:52:90:c1:bc:93:d9:0f:47:6e:52:ad:6e: 83:c8:41:89:d4:34:23:f8:d9:92:6b:a9:9f:e1:eb: b3:c8:32:fc:f4:f5:d6:89:ad:20:c2:be:d7:ac:93: af:35:3d:d4:8f:37:41:6f:3f:bf:8d:69:e5:b5:8e: 87:99:3e:d2:3f:ea:11:9e:39:03:57:cb:69:fc:78: 0d:ba:ff:77:f6:40:1b:0f:ca:e2:66:cc:0d:7e:76: b7:d5:0c:16:56:13:b5:11:02:e2:f8:48:7e:b7:dd: f3:0c:98:fe:de:31:83:9b:c4:20:00:4a:70:b5:48: 22:14:43:45:2f:01:3a:76:ad:a2:45:d6:86:23:16: 73:8c:07:f5:24:a3:2c:35:0f:de:56:c7:b4:ce:33: a5:1f:f6:72:be:f7:1e:ea:32:f1:37:73:5e:28:99: 45:44:b2:dc:b3:60:77:d7:61:cf:0c:29:44:ad:2c: bc:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:A9:8A:92:1B:72:0A:3E:81:FB:95:A0:23:86:15:6B:A3:15:24:0B X509v3 Authority Key Identifier: keyid:E5:2D:E8:B1:91:93:38:A3:E2:55:66:4E:88:04:8A:56:98:A1:20:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S3osZGTOKPiVWZOiASKVpihINA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:af:43:ff:17:d2:74:c6:d4:5f:81:bb:f2:8c:b5:19:75:c3: 0b:2c:0d:95:0b:60:b9:b9:0c:f8:e1:e3:be:8a:82:72:a9:d0: b8:6a:a6:1a:2a:7e:07:79:df:56:59:ac:bf:31:5d:82:14:8a: 2e:a1:66:78:ef:c7:4b:65:85:c1:9d:e1:f8:da:79:48:e7:6f: c8:ec:3d:80:bd:79:fa:22:c0:a8:d5:53:b1:8b:02:71:e5:2d: e3:da:01:b7:05:f1:2c:ec:9a:51:6f:88:2c:a9:fd:9c:29:df: b0:e9:2d:a7:21:fe:ea:87:74:74:fb:d9:80:48:b1:a7:81:fb: bb:11:1b:09:4f:5f:f9:00:b5:47:5e:62:b7:ae:c5:cd:3d:9e: d6:6f:cb:78:c4:8f:b8:b3:6c:0a:70:cb:c8:7e:c1:bf:ae:26: b8:88:5f:5a:4d:30:54:db:d2:7f:71:bd:b7:93:d2:9d:9a:df: 37:75:55:ff:4d:6b:8a:e1:20:5a:f2:de:95:53:22:47:b5:6c: a4:5d:f8:65:df:67:58:5f:1c:5a:09:7b:5d:23:70:47:b3:6d: 8a:5e:dd:2a:5c:70:31:4b:61:db:91:e0:95:16:13:c0:5e:64: c8:df:66:50:25:a7:bd:38:a3:f6:dc:4a:28:33:0f:94:71:a2: 63:ff:28:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC2kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA3MDExMTAvBgNVBAUTKEU1MkRFOEIxOTE5MzM4QTNFMjU1NjY0RTg4MDQ4QTU2 OThBMTIwRDAwHhcNMjUwNTA2MTkwMDQ1WhcNMjUwNTEzMTkwMDQ1WjAYMRYwFAYD VQQDEw02ODFhNWM1ZC0wOTZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyevW0Ij/LXK4MMoWGZfGDCfodhsNkinzDfsfXpzRIa8kMYYgm5k/58/ZyyAa YkUR+MdJhTBStSQjq4tNlYz+Up32ycWFromeQtQue/RSkMG8k9kPR25SrW6DyEGJ 1DQj+NmSa6mf4euzyDL89PXWia0gwr7XrJOvNT3UjzdBbz+/jWnltY6HmT7SP+oR njkDV8tp/HgNuv939kAbD8riZswNfna31QwWVhO1EQLi+Eh+t93zDJj+3jGDm8Qg AEpwtUgiFENFLwE6dq2iRdaGIxZzjAf1JKMsNQ/eVse0zjOlH/Zyvvce6jLxN3Ne KJlFRLLcs2B312HPDClErSy8ZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDepipIb cgo+gfuVoCOGFWujFSQLMB8GA1UdIwQYMBaAFOUt6LGRkzij4lVmTogEilaYoSDQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDcwMS81NDAwQzQxODMw MzAxMUVBQTcyRjM2N0FDNEY5QUUwMi81UzNvc1pHVE9LUGlWV1pPaUFTS1ZwaWhJ TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVTM29zWkdUT0tQaVZXWk9pQVNLVnBpaElOQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDcwMS81NDAwQzQxODMwMzAxMUVBQTcyRjM2N0FDNEY5QUUwMi81UzNvc1pHVE9L UGlWV1pPaUFTS1ZwaWhJTkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvr0P/F9J0xtRfgbvyjLUZdcMLLA2VC2C5uQz44eO+ioJyqdC4aqYa Kn4Hed9WWay/MV2CFIouoWZ478dLZYXBneH42nlI52/I7D2AvXn6IsCo1VOxiwJx 5S3j2gG3BfEs7JpRb4gsqf2cKd+w6S2nIf7qh3R0+9mASLGngfu7ERsJT1/5ALVH XmK3rsXNPZ7Wb8t4xI+4s2wKcMvIfsG/ria4iF9aTTBU29J/cb23k9Kdmt83dVX/ TWuK4SBa8t6VUyJHtWykXfhl32dYXxxaCXtdI3BHs22KXt0qXHAxS2HbkeCVFhPA XmTI32ZQJae9OKP23EooMw+UcaJj/ygh -----END CERTIFICATE-----Generated at Thu May 8 19:19:11 2025 by rpki-client