$ rpki-client -vvf rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft File: rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft (raw, json) Hash identifier: EtjWc5GXANKBYeDEgSY6tFuEcbhWWhtoaHS2Q7Xt7xg= Subject key identifier: 45:CD:E6:B3:7E:5A:0D:3B:DB:66:D6:AD:06:E0:E3:D5:5C:AA:13:75 Authority key identifier: AD:54:5D:25:04:FE:1D:E9:2A:E1:76:6D:F4:65:76:37:DB:7A:7E:75 Certificate issuer: /CN=A9172FC5/serialNumber=AD545D2504FE1DE92AE1766DF4657637DB7A7E75 Certificate serial: 5B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rVRdJQT-Hekq4XZt9GV2N9t6fnU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft Manifest number: 58 Signing time: Fri 09 May 2025 06:12:35 +0000 Manifest this update: Fri 09 May 2025 06:12:35 +0000 Manifest next update: Fri 16 May 2025 06:12:35 +0000 Files and hashes: 1: rVRdJQT-Hekq4XZt9GV2N9t6fnU.crl (hash: S6YkHLbTZ0S9ULL3+YZIK3PEe83rywUfJQm6MqcyKgU=) 2: 15B99EFC016111F0B1B6A34EC4F9AE02.roa (hash: fNaQxATAW6BCNgpllm+ul+pMRSXup8I9s/wGqDPcAs4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.crl rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rVRdJQT-Hekq4XZt9GV2N9t6fnU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 06:12:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 91 (0x5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172FC5, serialNumber=AD545D2504FE1DE92AE1766DF4657637DB7A7E75 Validity Not Before: May 9 06:12:35 2025 GMT Not After : May 16 06:12:35 2025 GMT Subject: CN=681d9cd3-fe5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:7d:9b:87:df:c7:e3:fe:7b:ca:08:76:d1:cb: 6c:de:67:f2:49:ae:78:19:10:56:b6:60:6e:89:cd: 8a:24:ab:0b:68:39:5f:bb:66:c6:58:ea:19:21:a5: 41:93:4b:f6:2d:5d:f0:db:63:92:3b:d8:7b:83:34: f3:a4:f0:a5:4f:03:e7:61:49:5f:26:c2:81:a4:67: 03:58:5b:d1:39:9a:ab:28:9b:fd:4d:bb:aa:03:74: 3c:49:fc:b1:86:4a:4c:e9:dc:48:0c:cb:68:5b:85: 87:fc:9d:f9:33:79:60:f6:fe:33:84:9e:eb:44:64: 7e:37:42:e3:2e:e5:50:c6:ad:17:8c:8b:05:e8:4f: 15:04:40:5a:01:c9:a2:22:89:98:1a:e2:c5:9c:4b: 9f:42:3f:96:84:b2:33:ad:53:e1:0f:41:87:a4:1d: 54:33:ba:4f:3a:3a:f2:15:3a:b7:fb:a3:34:1c:77: 1c:db:ad:c9:74:bf:ad:75:f2:92:d9:a1:ea:c6:b6: 04:99:db:ce:36:83:a6:e9:de:6f:bb:94:b8:cb:27: 1e:78:bb:f6:2e:43:75:cd:68:6d:bd:66:e1:94:4b: 84:d1:39:e0:9b:c2:e6:af:3d:85:4b:a3:27:3c:57: d5:71:2e:bc:3c:5e:57:bb:1a:0d:76:ce:7d:6c:bd: b3:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:CD:E6:B3:7E:5A:0D:3B:DB:66:D6:AD:06:E0:E3:D5:5C:AA:13:75 X509v3 Authority Key Identifier: keyid:AD:54:5D:25:04:FE:1D:E9:2A:E1:76:6D:F4:65:76:37:DB:7A:7E:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rVRdJQT-Hekq4XZt9GV2N9t6fnU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:12:bb:32:b8:08:97:25:82:a2:65:ab:8e:0e:4a:e2:b9:3a: e8:6e:d0:5f:12:53:b4:87:e1:e5:7a:54:60:c8:3a:f7:18:eb: 2c:3f:1d:36:01:b5:f9:6e:ca:1e:17:f6:92:3b:7a:83:f8:cd: 2a:ff:2a:6f:c3:cd:b6:44:92:2c:e4:44:7e:09:fa:3f:db:76: e6:a9:43:09:a2:50:c6:46:1f:36:51:f4:92:8a:3c:08:43:a7: 11:30:ca:2e:c9:80:34:21:21:4c:e9:e1:f2:c1:df:8a:e0:6f: 0d:a3:e6:51:23:22:2b:2a:8b:3f:c4:d9:14:84:56:e4:62:3f: 5e:35:60:89:07:2b:e3:8c:ac:fa:ed:fc:d4:e6:f4:be:04:ab: 57:29:99:56:94:36:10:d6:20:ba:d7:2f:ba:fb:dc:63:da:53: 92:75:41:3a:d7:22:dd:30:39:f2:5c:f3:04:73:63:b4:8d:4b: 07:5f:65:10:a0:0a:91:3d:d6:d3:8e:33:c7:66:90:38:79:68: 7c:71:a7:d1:f8:cd:e7:02:0a:c3:d2:b8:0f:97:c3:46:14:cc: 4e:16:65:4a:a3:77:3f:b9:8b:e1:f7:40:49:62:f4:ae:ba:6c: 8b:ff:f8:9b:ee:b9:ac:b0:f7:d0:0f:f0:ac:e5:fa:82:6a:cf: b2:e0:b4:27 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MkZDNTExMC8GA1UEBRMoQUQ1NDVEMjUwNEZFMURFOTJBRTE3NjZERjQ2NTc2MzdE QjdBN0U3NTAeFw0yNTA1MDkwNjEyMzVaFw0yNTA1MTYwNjEyMzVaMBgxFjAUBgNV BAMTDTY4MWQ5Y2QzLWZlNWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDjfZuH38fj/nvKCHbRy2zeZ/JJrngZEFa2YG6JzYokqwtoOV+7ZsZY6hkhpUGT S/YtXfDbY5I72HuDNPOk8KVPA+dhSV8mwoGkZwNYW9E5mqsom/1Nu6oDdDxJ/LGG Skzp3EgMy2hbhYf8nfkzeWD2/jOEnutEZH43QuMu5VDGrReMiwXoTxUEQFoByaIi iZga4sWcS59CP5aEsjOtU+EPQYekHVQzuk86OvIVOrf7ozQcdxzbrcl0v6118pLZ oerGtgSZ2842g6bp3m+7lLjLJx54u/YuQ3XNaG29ZuGUS4TROeCbwuavPYVLoyc8 V9VxLrw8Xle7Gg12zn1svbP1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQURc3ms35a DTvbZtatBuDj1VyqE3UwHwYDVR0jBBgwFoAUrVRdJQT+Hekq4XZt9GV2N9t6fnUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcyRkM1L0U1MzlDREEwQUIz RjExRUZCRTAyQ0YxNEM0RjlBRTAyL3JWUmRKUVQtSGVrcTRYWnQ5R1YyTjl0NmZu VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvclZSZEpRVC1IZWtxNFhadDlHVjJOOXQ2Zm5VLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcy RkM1L0U1MzlDREEwQUIzRjExRUZCRTAyQ0YxNEM0RjlBRTAyL3JWUmRKUVQtSGVr cTRYWnQ5R1YyTjl0NmZuVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAASuzK4CJclgqJlq44OSuK5Ouhu0F8SU7SH4eV6VGDIOvcY6yw/HTYB tfluyh4X9pI7eoP4zSr/Km/DzbZEkizkRH4J+j/bduapQwmiUMZGHzZR9JKKPAhD pxEwyi7JgDQhIUzp4fLB34rgbw2j5lEjIisqiz/E2RSEVuRiP141YIkHK+OMrPrt /NTm9L4Eq1cpmVaUNhDWILrXL7r73GPaU5J1QTrXIt0wOfJc8wRzY7SNSwdfZRCg CpE91tOOM8dmkDh5aHxxp9H4zecCCsPSuA+Xw0YUzE4WZUqjdz+5i+H3QEli9K66 bIv/+Jvuuayw99AP8Kzl+oJqz7LgtCc= -----END CERTIFICATE-----Generated at Sat May 10 19:09:09 2025 by rpki-client