$ rpki-client -vvf rpki.apnic.net/member_repository/A918F0E2/2B4BB42EA25E11EFA38D9375C4F9AE02/gH5oiqUL0-OL4xtdTE4GCATrFdw.mft File: gH5oiqUL0-OL4xtdTE4GCATrFdw.mft (raw, json) Hash identifier: DZSon8lU8O0zi+DqAGbP5DTrN39j6mvFc6lLqILfk4A= Subject key identifier: 9C:14:22:9E:C6:F7:AE:38:F7:43:B7:0E:1F:5B:F6:93:EE:A9:D5:63 Authority key identifier: 80:7E:68:8A:A5:0B:D3:E3:8B:E3:1B:5D:4C:4E:06:08:04:EB:15:DC Certificate issuer: /CN=A918F0E2/serialNumber=807E688AA50BD3E38BE31B5D4C4E060804EB15DC Certificate serial: 61 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gH5oiqUL0-OL4xtdTE4GCATrFdw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F0E2/2B4BB42EA25E11EFA38D9375C4F9AE02/gH5oiqUL0-OL4xtdTE4GCATrFdw.mft Manifest number: 5F Signing time: Sun 11 May 2025 05:51:28 +0000 Manifest this update: Sun 11 May 2025 05:51:28 +0000 Manifest next update: Sun 18 May 2025 05:51:28 +0000 Files and hashes: 1: gH5oiqUL0-OL4xtdTE4GCATrFdw.crl (hash: ZWxZFO3Awf05DZw2tu2kYjASJ3XCa40NmFaqN07QM+U=) 2: EF63DB0EA26B11EF8F077C3FC4F9AE02.roa (hash: etgfr2FMXbKAdL4ONMDhHdEqlj7eq8Os+Vy9Aq6JfHo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F0E2/2B4BB42EA25E11EFA38D9375C4F9AE02/gH5oiqUL0-OL4xtdTE4GCATrFdw.crl rsync://rpki.apnic.net/member_repository/A918F0E2/2B4BB42EA25E11EFA38D9375C4F9AE02/gH5oiqUL0-OL4xtdTE4GCATrFdw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gH5oiqUL0-OL4xtdTE4GCATrFdw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 05:51:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 97 (0x61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F0E2, serialNumber=807E688AA50BD3E38BE31B5D4C4E060804EB15DC Validity Not Before: May 11 05:51:28 2025 GMT Not After : May 18 05:51:28 2025 GMT Subject: CN=68203ae0-e90e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:08:df:a4:a4:ee:c2:aa:5f:97:48:41:26:21: 1c:80:88:0f:1a:ca:12:db:09:77:b0:2f:8b:66:1c: d2:9d:e9:97:66:84:6f:ac:b5:e1:05:7c:f8:cb:92: 90:27:b2:29:91:90:f3:0e:dd:41:67:c4:2f:f6:0e: 38:cf:21:a7:bf:1b:e6:d5:01:b7:f6:27:c2:dd:91: 2f:bc:5c:f2:1d:01:c0:2d:f2:97:11:e6:f1:1b:21: 5a:a6:06:cd:2c:0d:55:b9:23:49:92:59:25:10:71: 5d:7d:13:3a:d9:81:be:aa:0b:26:02:9f:57:df:ab: 34:f2:8d:c7:04:03:51:ea:8f:12:f3:e1:41:c5:c2: 73:c4:b4:86:05:b7:c6:77:83:b1:d0:00:4d:46:fc: 41:05:76:64:c4:8c:a5:24:ed:19:48:2e:e3:15:49: ca:a0:c2:47:1e:aa:3e:dc:1e:bf:34:e5:92:cd:e8: 30:73:39:d0:b9:c2:18:07:90:a3:11:bc:67:67:b7: 8c:ae:f5:11:d7:3f:64:71:46:06:2b:0e:8f:fe:2d: 64:5e:4d:33:ce:2b:17:41:87:7a:28:9d:31:2a:a3: 27:ca:65:2b:a5:81:08:2a:a6:2a:e7:d2:a4:94:ac: 5a:b1:be:8f:af:c8:68:5d:e5:05:77:22:5f:8a:cd: 1b:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:14:22:9E:C6:F7:AE:38:F7:43:B7:0E:1F:5B:F6:93:EE:A9:D5:63 X509v3 Authority Key Identifier: keyid:80:7E:68:8A:A5:0B:D3:E3:8B:E3:1B:5D:4C:4E:06:08:04:EB:15:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F0E2/2B4BB42EA25E11EFA38D9375C4F9AE02/gH5oiqUL0-OL4xtdTE4GCATrFdw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gH5oiqUL0-OL4xtdTE4GCATrFdw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F0E2/2B4BB42EA25E11EFA38D9375C4F9AE02/gH5oiqUL0-OL4xtdTE4GCATrFdw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:d4:11:2f:9b:d5:bf:f6:6d:f1:2f:c3:3d:e0:ad:e7:d8:ee: 8b:60:9a:68:72:c9:fa:32:41:2f:1c:3f:68:85:e3:c0:53:40: 7e:a3:a4:b5:de:7e:8d:35:e9:83:2c:9f:06:ce:0a:ee:68:a5: f1:c4:9e:04:44:7a:60:60:da:b9:b9:e2:36:bf:f1:94:3c:98: e4:f0:b1:ec:59:9c:02:6d:40:53:40:f4:af:f1:6c:91:f8:ed: e3:f6:26:93:41:b7:ec:de:24:94:64:85:81:c4:c6:dc:f0:18: e9:ec:d9:d1:a2:9c:99:68:04:bf:3d:d7:f3:0a:07:93:33:47: 67:a8:9f:0d:60:5a:2d:84:2c:4f:52:de:72:79:7d:50:28:fb: c1:cc:6b:c2:25:fd:22:cc:c5:f3:e6:a0:ed:15:e2:ac:e4:70: cb:60:d7:cc:00:6f:5f:2a:82:64:fa:ac:9c:6d:3f:60:96:2f: 9a:97:fd:b9:2f:57:f5:58:02:c3:39:c1:a3:6a:dc:91:31:ae: a6:38:80:5e:9f:72:c8:7f:b4:f9:74:83:d9:20:8d:49:39:f4: 68:93:73:d4:d5:68:67:11:4a:99:51:2d:21:cd:9a:37:d8:86: d1:2e:90:0b:07:fd:b5:dc:b7:79:05:86:15:9d:ce:b4:d2:ab: 69:ab:3b:51 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RjBFMjExMC8GA1UEBRMoODA3RTY4OEFBNTBCRDNFMzhCRTMxQjVENEM0RTA2MDgw NEVCMTVEQzAeFw0yNTA1MTEwNTUxMjhaFw0yNTA1MTgwNTUxMjhaMBgxFjAUBgNV BAMTDTY4MjAzYWUwLWU5MGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5CN+kpO7Cql+XSEEmIRyAiA8ayhLbCXewL4tmHNKd6ZdmhG+steEFfPjLkpAn simRkPMO3UFnxC/2DjjPIae/G+bVAbf2J8LdkS+8XPIdAcAt8pcR5vEbIVqmBs0s DVW5I0mSWSUQcV19EzrZgb6qCyYCn1ffqzTyjccEA1HqjxLz4UHFwnPEtIYFt8Z3 g7HQAE1G/EEFdmTEjKUk7RlILuMVScqgwkceqj7cHr805ZLN6DBzOdC5whgHkKMR vGdnt4yu9RHXP2RxRgYrDo/+LWReTTPOKxdBh3oonTEqoyfKZSulgQgqpirn0qSU rFqxvo+vyGhd5QV3Il+KzRsRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUnBQinsb3 rjj3Q7cOH1v2k+6p1WMwHwYDVR0jBBgwFoAUgH5oiqUL0+OL4xtdTE4GCATrFdww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThGMEUyLzJCNEJCNDJFQTI1 RTExRUZBMzhEOTM3NUM0RjlBRTAyL2dINW9pcVVMMC1PTDR4dGRURTRHQ0FUckZk dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZ0g1b2lxVUwwLU9MNHh0ZFRFNEdDQVRyRmR3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThG MEUyLzJCNEJCNDJFQTI1RTExRUZBMzhEOTM3NUM0RjlBRTAyL2dINW9pcVVMMC1P TDR4dGRURTRHQ0FUckZkdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAErUES+b1b/2bfEvwz3grefY7otgmmhyyfoyQS8cP2iF48BTQH6jpLXe fo016YMsnwbOCu5opfHEngREemBg2rm54ja/8ZQ8mOTwsexZnAJtQFNA9K/xbJH4 7eP2JpNBt+zeJJRkhYHExtzwGOns2dGinJloBL891/MKB5MzR2eonw1gWi2ELE9S 3nJ5fVAo+8HMa8Il/SLMxfPmoO0V4qzkcMtg18wAb18qgmT6rJxtP2CWL5qX/bkv V/VYAsM5waNq3JExrqY4gF6fcsh/tPl0g9kgjUk59GiTc9TVaGcRSplRLSHNmjfY htEukAsH/bXct3kFhhWdzrTSq2mrO1E= -----END CERTIFICATE-----Generated at Mon May 12 19:15:38 2025 by rpki-client