$ rpki-client -vvf rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.mft File: 1H75KB4xQx3ljjR8aX45vydCkRk.mft (raw, json) Hash identifier: U6s13KubXqV2quxjBHfaDWMrZ94fCaIlg5zBApoZM0M= Subject key identifier: 3C:30:57:DD:F5:5B:0E:3D:83:67:2C:F1:09:11:27:66:2A:5D:52:09 Authority key identifier: D4:7E:F9:28:1E:31:43:1D:E5:8E:34:7C:69:7E:39:BF:27:42:91:19 Certificate issuer: /CN=A91612FE/serialNumber=D47EF9281E31431DE58E347C697E39BF27429119 Certificate serial: 5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1H75KB4xQx3ljjR8aX45vydCkRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.mft Manifest number: 5E Signing time: Tue 13 May 2025 06:17:51 +0000 Manifest this update: Tue 13 May 2025 06:17:51 +0000 Manifest next update: Tue 20 May 2025 06:17:50 +0000 Files and hashes: 1: 1H75KB4xQx3ljjR8aX45vydCkRk.crl (hash: mDeKWjPfyMiJkU6rx8D42+K74eW/6ZyNrDFtiPaycAk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.crl rsync://rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1H75KB4xQx3ljjR8aX45vydCkRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 06:17:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 94 (0x5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91612FE, serialNumber=D47EF9281E31431DE58E347C697E39BF27429119 Validity Not Before: May 13 06:17:51 2025 GMT Not After : May 20 06:17:50 2025 GMT Subject: CN=6822e40f-d6a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:37:4a:1f:d3:1c:2d:95:cf:d8:f9:e0:fe:16: 4c:1b:e0:f7:70:d7:74:ff:06:93:45:c2:4d:4d:07: e1:11:89:77:44:02:49:ed:5d:85:79:4d:0f:40:2e: 80:29:c2:62:80:79:53:ad:99:b4:f7:07:bb:7f:e1: 8d:7c:48:b2:6e:dd:71:67:07:3d:e2:9a:5b:9c:b1: ab:f3:42:a0:47:ed:59:0d:78:73:3f:72:81:b0:d9: c8:dd:24:c3:79:9b:28:33:bd:a9:bd:11:c5:3c:76: 61:55:f8:b9:44:06:cd:04:3b:d9:ae:2b:47:61:e3: ad:6a:4a:67:6c:a6:a0:a7:e9:8b:1c:e5:6b:99:97: bf:8f:24:3d:62:af:16:12:3b:71:ab:93:97:91:6e: 0b:ca:92:6c:d3:21:77:44:21:ff:23:23:59:e7:bd: d1:a8:5f:4c:dd:e7:c7:01:97:12:7e:ad:d8:61:03: 64:24:ff:05:ba:0c:8f:a3:7e:c5:a8:44:72:fd:9a: ca:da:82:82:c0:4e:ad:56:a3:b3:ef:bc:09:a2:6a: 22:82:a6:97:60:3c:5c:ea:d4:87:18:73:40:35:02: d2:e2:22:3f:9f:d7:7a:22:d0:ff:8e:8f:99:75:31: b4:ce:6b:17:4c:ac:f3:82:78:76:45:34:ef:c2:f7: ff:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:30:57:DD:F5:5B:0E:3D:83:67:2C:F1:09:11:27:66:2A:5D:52:09 X509v3 Authority Key Identifier: keyid:D4:7E:F9:28:1E:31:43:1D:E5:8E:34:7C:69:7E:39:BF:27:42:91:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1H75KB4xQx3ljjR8aX45vydCkRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:f8:3e:41:f4:00:fd:f9:13:a1:58:a4:99:7f:02:25:d4:65: cc:9a:1c:31:dc:d1:9c:81:9a:e1:b7:e1:92:28:9f:f9:05:ff: ca:bc:7f:8c:96:b7:b3:c8:10:ba:25:50:46:cf:04:4c:7d:1d: 1e:1c:66:a9:42:8b:d5:32:d8:80:a2:32:6d:e1:68:51:59:a7: fd:d3:05:57:49:30:8e:17:90:c3:1f:98:6f:fc:91:14:79:16: 24:da:6b:39:d7:75:f5:0d:cf:35:70:2b:60:51:72:c4:a0:98: 92:d8:62:67:f9:91:94:1a:49:73:e4:d8:32:1e:21:ae:e3:43: 5e:93:4f:2d:c6:a3:c8:f8:9e:19:c8:25:56:78:b8:5c:e0:28: 06:b3:57:60:82:8a:28:2b:ec:5e:b6:70:c1:83:5f:c1:fe:ca: e9:0e:ae:48:6f:2c:75:04:3e:27:90:63:46:bc:a9:fc:8e:28: 02:96:f5:65:07:36:c4:34:f9:40:68:41:50:af:d4:39:79:c4: 8d:e8:bc:c8:74:86:38:ee:9a:1b:e6:cd:e2:e7:26:25:62:d5: 61:40:4f:ce:a4:62:a6:58:e4:28:e7:18:13:00:69:ce:9c:76: eb:94:4b:54:04:38:af:2a:fe:18:96:20:d6:fe:d3:c5:ce:8a: 1e:3f:07:cf -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MTJGRTExMC8GA1UEBRMoRDQ3RUY5MjgxRTMxNDMxREU1OEUzNDdDNjk3RTM5QkYy NzQyOTExOTAeFw0yNTA1MTMwNjE3NTFaFw0yNTA1MjAwNjE3NTBaMBgxFjAUBgNV BAMTDTY4MjJlNDBmLWQ2YTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6N0of0xwtlc/Y+eD+Fkwb4Pdw13T/BpNFwk1NB+ERiXdEAkntXYV5TQ9ALoAp wmKAeVOtmbT3B7t/4Y18SLJu3XFnBz3imlucsavzQqBH7VkNeHM/coGw2cjdJMN5 mygzvam9EcU8dmFV+LlEBs0EO9muK0dh461qSmdspqCn6Ysc5WuZl7+PJD1irxYS O3Grk5eRbgvKkmzTIXdEIf8jI1nnvdGoX0zd58cBlxJ+rdhhA2Qk/wW6DI+jfsWo RHL9msragoLATq1Wo7PvvAmiaiKCppdgPFzq1IcYc0A1AtLiIj+f13oi0P+Oj5l1 MbTOaxdMrPOCeHZFNO/C9/+nAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUPDBX3fVb Dj2DZyzxCREnZipdUgkwHwYDVR0jBBgwFoAU1H75KB4xQx3ljjR8aX45vydCkRkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYxMkZFLzQ5MUQ2OTRDQTI1 NTExRUZCMkNBNzgyQUM0RjlBRTAyLzFINzVLQjR4UXgzbGpqUjhhWDQ1dnlkQ2tS ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMUg3NUtCNHhReDNsampSOGFYNDV2eWRDa1JrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYx MkZFLzQ5MUQ2OTRDQTI1NTExRUZCMkNBNzgyQUM0RjlBRTAyLzFINzVLQjR4UXgz bGpqUjhhWDQ1dnlkQ2tSay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEL4PkH0AP35E6FYpJl/AiXUZcyaHDHc0ZyBmuG34ZIon/kF/8q8f4yW t7PIELolUEbPBEx9HR4cZqlCi9Uy2ICiMm3haFFZp/3TBVdJMI4XkMMfmG/8kRR5 FiTaaznXdfUNzzVwK2BRcsSgmJLYYmf5kZQaSXPk2DIeIa7jQ16TTy3Go8j4nhnI JVZ4uFzgKAazV2CCiigr7F62cMGDX8H+yukOrkhvLHUEPieQY0a8qfyOKAKW9WUH NsQ0+UBoQVCv1Dl5xI3ovMh0hjjumhvmzeLnJiVi1WFAT86kYqZY5CjnGBMAac6c duuUS1QEOK8q/hiWINb+08XOih4/B88= -----END CERTIFICATE-----Generated at Wed May 14 14:11:40 2025 by rpki-client