$ rpki-client -vvf rpki.apnic.net/member_repository/A91827C5/D9AAB82C8AD911EF981C8283C4F9AE02/o5hxRib4es6-X2_QHlBwGRWqfRU.mft File: o5hxRib4es6-X2_QHlBwGRWqfRU.mft (raw, json) Hash identifier: 86cIYDQYG0mrbi/9E/uXS7KoUg6R3TFE+n5/kEt6hrg= Subject key identifier: 7C:1A:D1:AE:9F:98:DD:39:95:4F:EA:F4:4E:8A:7E:1F:FF:64:C9:D1 Authority key identifier: A3:98:71:46:26:F8:7A:CE:BE:5F:6F:D0:1E:50:70:19:15:AA:7D:15 Certificate issuer: /CN=A91827C5/serialNumber=A398714626F87ACEBE5F6FD01E50701915AA7D15 Certificate serial: 6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5hxRib4es6-X2_QHlBwGRWqfRU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91827C5/D9AAB82C8AD911EF981C8283C4F9AE02/o5hxRib4es6-X2_QHlBwGRWqfRU.mft Manifest number: 6D Signing time: Tue 13 May 2025 06:04:35 +0000 Manifest this update: Tue 13 May 2025 06:04:34 +0000 Manifest next update: Tue 20 May 2025 06:04:34 +0000 Files and hashes: 1: o5hxRib4es6-X2_QHlBwGRWqfRU.crl (hash: MXTPnao64Cv31HooV585XtutUifhnEiCQvKW5PDPmI4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91827C5/D9AAB82C8AD911EF981C8283C4F9AE02/o5hxRib4es6-X2_QHlBwGRWqfRU.crl rsync://rpki.apnic.net/member_repository/A91827C5/D9AAB82C8AD911EF981C8283C4F9AE02/o5hxRib4es6-X2_QHlBwGRWqfRU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5hxRib4es6-X2_QHlBwGRWqfRU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 06:04:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 109 (0x6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91827C5, serialNumber=A398714626F87ACEBE5F6FD01E50701915AA7D15 Validity Not Before: May 13 06:04:34 2025 GMT Not After : May 20 06:04:34 2025 GMT Subject: CN=6822e0f3-154f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:c9:a7:57:13:8c:59:a5:a2:f8:a3:ea:ca:86: 1c:2d:93:c1:b6:2c:14:70:37:59:48:fb:31:0f:68: 62:e7:96:0b:72:f3:44:a7:06:54:a0:cf:18:f8:b4: cd:42:27:19:01:a9:1b:78:5f:77:ee:b6:0a:80:03: 1d:7c:25:a7:ba:93:a5:f1:98:55:54:73:28:b9:ac: ae:b5:0f:03:58:59:01:61:bb:37:f1:3f:f8:ef:cd: fe:01:b4:be:03:43:2e:04:e0:12:57:14:40:52:d1: 22:7d:a8:c8:0f:60:81:9b:ec:00:a2:ee:81:cc:7e: 5b:6c:ea:e4:6a:6f:2b:03:84:59:01:88:7e:54:b9: ac:63:0d:cb:a4:83:a5:26:d8:7a:03:f1:2f:2c:63: 87:37:e4:1b:9f:b8:84:71:ca:16:5f:b2:51:9c:eb: 7a:36:41:96:20:37:a5:c2:8a:46:24:39:b1:86:29: 54:8a:e1:57:45:8e:c3:36:8a:c9:3b:42:41:1c:4b: 17:9e:cf:9c:2f:3f:c2:a2:d4:1c:4d:ef:4b:4e:f3: 88:a8:87:21:08:04:86:6d:1d:7f:70:e2:e8:8a:17: 95:2f:66:70:78:a1:b4:da:a1:ea:f8:e0:9f:0e:06: b5:63:cb:e8:12:1d:03:27:67:be:67:b1:ed:05:e3: 04:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:1A:D1:AE:9F:98:DD:39:95:4F:EA:F4:4E:8A:7E:1F:FF:64:C9:D1 X509v3 Authority Key Identifier: keyid:A3:98:71:46:26:F8:7A:CE:BE:5F:6F:D0:1E:50:70:19:15:AA:7D:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91827C5/D9AAB82C8AD911EF981C8283C4F9AE02/o5hxRib4es6-X2_QHlBwGRWqfRU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5hxRib4es6-X2_QHlBwGRWqfRU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91827C5/D9AAB82C8AD911EF981C8283C4F9AE02/o5hxRib4es6-X2_QHlBwGRWqfRU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:da:da:e7:c5:ca:10:a5:8f:17:64:e2:ab:48:86:d1:39:d5: 9f:25:d6:c8:1e:d8:13:51:56:56:ef:45:78:ed:8c:e3:7c:ca: 6a:70:aa:2d:a2:73:dd:0c:11:d8:89:b0:fb:eb:da:65:4c:66: af:58:9f:30:84:89:09:3e:be:b9:83:24:c6:37:c6:2e:de:49: dc:54:e1:21:52:80:89:1b:91:e0:8c:3d:35:5e:7b:5d:68:93: c0:a3:81:5e:1c:71:b6:b8:3e:e0:f1:f1:d2:49:4a:d2:75:79: 41:39:25:2d:db:e6:ca:fc:31:19:c3:3f:5e:cb:65:f3:e3:83: 8e:94:43:92:f8:9a:96:f9:b3:6e:9f:b7:b7:f5:d4:91:86:dc: 90:98:04:2f:06:b7:e2:db:51:50:3b:d1:8f:89:3d:9a:97:78: ec:aa:58:d0:2e:de:a3:1d:4a:e3:42:e1:5c:ee:9b:ee:06:0e: 60:07:ca:81:e4:78:cb:5c:b8:16:eb:e0:ee:71:c8:20:4f:95: ea:8f:e8:b3:c1:62:2b:59:9f:3c:ef:de:f1:bb:7d:fa:b3:4a: 14:f0:f1:c9:52:9a:48:dd:0d:aa:bc:b2:3d:ab:9a:27:a1:2c: d4:58:c4:c8:4c:27:72:b5:66:f8:81:00:00:ee:c1:71:ef:02: ce:d6:bc:8f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MjdDNTExMC8GA1UEBRMoQTM5ODcxNDYyNkY4N0FDRUJFNUY2RkQwMUU1MDcwMTkx NUFBN0QxNTAeFw0yNTA1MTMwNjA0MzRaFw0yNTA1MjAwNjA0MzRaMBgxFjAUBgNV BAMTDTY4MjJlMGYzLTE1NGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCeyadXE4xZpaL4o+rKhhwtk8G2LBRwN1lI+zEPaGLnlgty80SnBlSgzxj4tM1C JxkBqRt4X3futgqAAx18Jae6k6XxmFVUcyi5rK61DwNYWQFhuzfxP/jvzf4BtL4D Qy4E4BJXFEBS0SJ9qMgPYIGb7ACi7oHMflts6uRqbysDhFkBiH5UuaxjDcukg6Um 2HoD8S8sY4c35BufuIRxyhZfslGc63o2QZYgN6XCikYkObGGKVSK4VdFjsM2isk7 QkEcSxeez5wvP8Ki1BxN70tO84iohyEIBIZtHX9w4uiKF5UvZnB4obTaoer44J8O BrVjy+gSHQMnZ75nse0F4wQTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUfBrRrp+Y 3TmVT+r0Top+H/9kydEwHwYDVR0jBBgwFoAUo5hxRib4es6+X2/QHlBwGRWqfRUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgyN0M1L0Q5QUFCODJDOEFE OTExRUY5ODFDODI4M0M0RjlBRTAyL281aHhSaWI0ZXM2LVgyX1FIbEJ3R1JXcWZS VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbzVoeFJpYjRlczYtWDJfUUhsQndHUldxZlJVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgy N0M1L0Q5QUFCODJDOEFEOTExRUY5ODFDODI4M0M0RjlBRTAyL281aHhSaWI0ZXM2 LVgyX1FIbEJ3R1JXcWZSVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADDa2ufFyhCljxdk4qtIhtE51Z8l1sge2BNRVlbvRXjtjON8ympwqi2i c90MEdiJsPvr2mVMZq9YnzCEiQk+vrmDJMY3xi7eSdxU4SFSgIkbkeCMPTVee11o k8CjgV4ccba4PuDx8dJJStJ1eUE5JS3b5sr8MRnDP17LZfPjg46UQ5L4mpb5s26f t7f11JGG3JCYBC8Gt+LbUVA70Y+JPZqXeOyqWNAu3qMdSuNC4Vzum+4GDmAHyoHk eMtcuBbr4O5xyCBPleqP6LPBYitZnzzv3vG7ffqzShTw8clSmkjdDaq8sj2rmieh LNRYxMhMJ3K1ZviBAADuwXHvAs7WvI8= -----END CERTIFICATE-----Generated at Tue May 13 09:08:46 2025 by rpki-client