$ rpki-client -vvf rpki.apnic.net/member_repository/A918F646/CECE8C9AF48E11E8B14A341EC4F9AE02/C5sr_BxrLAlndq91fTrxRUfkPnI.mft File: C5sr_BxrLAlndq91fTrxRUfkPnI.mft (raw, json) Hash identifier: LRKRmdyX9UvrTqIzLFuKNLjc7FC+yd+ZH+UL74j1E5Q= Subject key identifier: F8:07:36:37:5A:73:4B:41:17:D2:36:8E:5D:36:86:3C:0B:EE:06:73 Authority key identifier: 0B:9B:2B:FC:1C:6B:2C:09:67:76:AF:75:7D:3A:F1:45:47:E4:3E:72 Certificate issuer: /CN=A918F646/serialNumber=0B9B2BFC1C6B2C096776AF757D3AF14547E43E72 Certificate serial: 11C4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/C5sr_BxrLAlndq91fTrxRUfkPnI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F646/CECE8C9AF48E11E8B14A341EC4F9AE02/C5sr_BxrLAlndq91fTrxRUfkPnI.mft Manifest number: 11AF Signing time: Sat 10 May 2025 17:05:47 +0000 Manifest this update: Sat 10 May 2025 17:05:46 +0000 Manifest next update: Sat 17 May 2025 17:05:46 +0000 Files and hashes: 1: C5sr_BxrLAlndq91fTrxRUfkPnI.crl (hash: b24UwxX+3pRRorbReHom9nMzsVfaVni6VlAQIUIJXZc=) 2: 60FCDED2F48F11E89651151FC4F9AE02.roa (hash: TiqURCOWDtFV1lphAi7QXXgszXNq/kYQUGQ1WC3OpiM=) 3: DA0E6EFEE86411ECA54EC03BC4F9AE02.roa (hash: mYkKjSQQ/omFBmjS3V6LuAFr1BpNALu/wvYuWXKZHNc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F646/CECE8C9AF48E11E8B14A341EC4F9AE02/C5sr_BxrLAlndq91fTrxRUfkPnI.crl rsync://rpki.apnic.net/member_repository/A918F646/CECE8C9AF48E11E8B14A341EC4F9AE02/C5sr_BxrLAlndq91fTrxRUfkPnI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/C5sr_BxrLAlndq91fTrxRUfkPnI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 17:05:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4548 (0x11c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F646, serialNumber=0B9B2BFC1C6B2C096776AF757D3AF14547E43E72 Validity Not Before: May 10 17:05:46 2025 GMT Not After : May 17 17:05:46 2025 GMT Subject: CN=681f876a-80dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:9c:23:89:00:e5:4a:60:64:9c:4f:a2:44:b6: d4:85:3f:93:cc:d3:cc:10:04:ac:04:ec:eb:74:41: fd:8b:bf:b9:e6:56:2e:30:3b:7b:d8:50:da:c8:7a: ff:ed:e1:ac:dc:37:e3:16:58:c0:c4:69:39:d7:4c: 1f:53:86:dc:17:45:9a:0c:96:45:05:54:ed:10:9d: 5d:c6:8e:ae:77:00:94:da:b9:33:5a:b1:8b:58:52: 24:07:13:30:80:26:bc:07:d9:3c:92:31:78:54:45: 1a:a4:cb:09:d6:70:f6:f8:14:10:cf:0a:32:9d:b0: fe:8e:a6:b7:c0:c4:f0:84:85:c1:88:7d:f7:25:16: fb:68:41:4a:cd:f3:0d:b8:aa:69:d3:44:a4:b9:7b: 8a:83:64:59:3d:d2:10:62:d2:97:42:16:95:03:0f: 43:6c:c4:60:c3:7e:c0:22:cc:af:13:cd:12:c2:94: f1:0e:1f:2b:87:91:ab:15:d3:0b:70:07:d0:c0:ad: 72:56:4b:47:e6:f0:d3:d9:63:a1:cb:34:e4:3e:27: 63:7a:f2:53:a5:1e:4b:66:c7:9b:af:c0:1b:ff:a4: 44:c7:f6:6e:99:3f:55:3b:88:3a:87:cd:ea:23:ea: 3c:c3:ac:51:83:08:bf:0a:74:e6:27:f5:53:95:7b: 38:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:07:36:37:5A:73:4B:41:17:D2:36:8E:5D:36:86:3C:0B:EE:06:73 X509v3 Authority Key Identifier: keyid:0B:9B:2B:FC:1C:6B:2C:09:67:76:AF:75:7D:3A:F1:45:47:E4:3E:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F646/CECE8C9AF48E11E8B14A341EC4F9AE02/C5sr_BxrLAlndq91fTrxRUfkPnI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/C5sr_BxrLAlndq91fTrxRUfkPnI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F646/CECE8C9AF48E11E8B14A341EC4F9AE02/C5sr_BxrLAlndq91fTrxRUfkPnI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:a5:80:fe:b3:d9:dc:4d:c9:c1:75:44:ab:56:54:20:15:bf: 7c:34:24:df:95:3f:bd:c2:40:b3:16:7a:d0:ce:05:9d:d9:5b: 16:32:1a:5c:3d:28:90:c7:08:a9:ee:f9:26:d0:50:1c:69:f0: 55:07:6a:62:2f:28:6c:2a:fa:e3:16:68:70:57:e7:be:6a:11: 07:f6:32:f8:52:f8:2a:0f:1c:7f:a2:d9:72:fb:30:e6:d9:7e: e1:7c:18:44:f5:72:21:8d:44:36:54:31:51:cd:1d:f6:a7:e6: 60:9d:13:86:b9:df:81:80:7e:12:b5:fb:e2:d5:20:15:b3:74: 52:04:09:4f:6b:a5:9c:a1:d9:c3:d0:20:2c:35:be:ad:7d:c0: ad:59:c6:4e:37:af:ae:75:b9:91:c4:15:eb:70:de:f7:87:89: ae:b6:9b:e1:85:db:cc:1e:e5:89:a9:e8:ef:62:5c:c6:2c:94: 87:03:41:b2:39:18:44:7b:2b:a8:01:ea:93:27:9b:fd:28:0f: 1c:21:0d:e0:7c:5f:ca:ce:84:21:d5:87:17:be:5d:9e:7c:cb: 31:ed:06:06:78:8b:e2:85:d7:b0:ec:d3:d5:5d:ed:24:b3:94: ab:2b:27:f2:ca:ac:2d:8c:22:7a:e6:a0:c9:46:14:85:44:d8: 4d:e3:da:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEcQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY2NDYxMTAvBgNVBAUTKDBCOUIyQkZDMUM2QjJDMDk2Nzc2QUY3NTdEM0FGMTQ1 NDdFNDNFNzIwHhcNMjUwNTEwMTcwNTQ2WhcNMjUwNTE3MTcwNTQ2WjAYMRYwFAYD VQQDEw02ODFmODc2YS04MGRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw5wjiQDlSmBknE+iRLbUhT+TzNPMEASsBOzrdEH9i7+55lYuMDt72FDayHr/ 7eGs3DfjFljAxGk510wfU4bcF0WaDJZFBVTtEJ1dxo6udwCU2rkzWrGLWFIkBxMw gCa8B9k8kjF4VEUapMsJ1nD2+BQQzwoynbD+jqa3wMTwhIXBiH33JRb7aEFKzfMN uKpp00SkuXuKg2RZPdIQYtKXQhaVAw9DbMRgw37AIsyvE80SwpTxDh8rh5GrFdML cAfQwK1yVktH5vDT2WOhyzTkPidjevJTpR5LZsebr8Ab/6REx/ZumT9VO4g6h83q I+o8w6xRgwi/CnTmJ/VTlXs4CwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPgHNjda c0tBF9I2jl02hjwL7gZzMB8GA1UdIwQYMBaAFAubK/wcaywJZ3avdX068UVH5D5y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjY0Ni9DRUNFOEM5QUY0 OEUxMUU4QjE0QTM0MUVDNEY5QUUwMi9DNXNyX0J4ckxBbG5kcTkxZlRyeFJVZmtQ bkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0M1c3JfQnhyTEFsbmRxOTFmVHJ4UlVma1BuSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RjY0Ni9DRUNFOEM5QUY0OEUxMUU4QjE0QTM0MUVDNEY5QUUwMi9DNXNyX0J4ckxB bG5kcTkxZlRyeFJVZmtQbkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+pYD+s9ncTcnBdUSrVlQgFb98NCTflT+9wkCzFnrQzgWd2VsWMhpc PSiQxwip7vkm0FAcafBVB2piLyhsKvrjFmhwV+e+ahEH9jL4UvgqDxx/otly+zDm 2X7hfBhE9XIhjUQ2VDFRzR32p+ZgnROGud+BgH4Stfvi1SAVs3RSBAlPa6WcodnD 0CAsNb6tfcCtWcZON6+udbmRxBXrcN73h4mutpvhhdvMHuWJqejvYlzGLJSHA0Gy ORhEeyuoAeqTJ5v9KA8cIQ3gfF/KzoQh1YcXvl2efMsx7QYGeIvihdew7NPVXe0k s5SrKyfyyqwtjCJ65qDJRhSFRNhN49rf -----END CERTIFICATE-----Generated at Mon May 12 06:20:25 2025 by rpki-client