$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3062/988089E4616B11EBA647874AC4F9AE02/5EZZ6m_c00PGwef_0BSlsHgYlos.mft File: 5EZZ6m_c00PGwef_0BSlsHgYlos.mft (raw, json) Hash identifier: Mq4G9E68xsF2wV11dm3YnSUpBblQWHbhmMotXBDwANw= Subject key identifier: C0:7D:3B:1C:FE:13:33:DB:83:EB:27:05:C1:4E:5E:F0:0A:0D:99:07 Authority key identifier: E4:46:59:EA:6F:DC:D3:43:C6:C1:E7:FF:D0:14:A5:B0:78:18:96:8B Certificate issuer: /CN=A91B3062/serialNumber=E44659EA6FDCD343C6C1E7FFD014A5B07818968B Certificate serial: 06AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5EZZ6m_c00PGwef_0BSlsHgYlos.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3062/988089E4616B11EBA647874AC4F9AE02/5EZZ6m_c00PGwef_0BSlsHgYlos.mft Manifest number: 06AA Signing time: Sat 10 May 2025 21:48:16 +0000 Manifest this update: Sat 10 May 2025 21:48:15 +0000 Manifest next update: Sat 17 May 2025 21:48:15 +0000 Files and hashes: 1: 5EZZ6m_c00PGwef_0BSlsHgYlos.crl (hash: 6YYbOkpu1SKHs7dW8z+0A6jSoQlVqA1VQWcG0ijKWzw=) 2: C8FB0DB8616D11EB928F0250C4F9AE02.roa (hash: wvBpCoANMp6HM7/0VPGZvZaF4FC0qm23TRsKibzPLZk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3062/988089E4616B11EBA647874AC4F9AE02/5EZZ6m_c00PGwef_0BSlsHgYlos.crl rsync://rpki.apnic.net/member_repository/A91B3062/988089E4616B11EBA647874AC4F9AE02/5EZZ6m_c00PGwef_0BSlsHgYlos.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5EZZ6m_c00PGwef_0BSlsHgYlos.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 21:48:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1711 (0x6af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3062, serialNumber=E44659EA6FDCD343C6C1E7FFD014A5B07818968B Validity Not Before: May 10 21:48:15 2025 GMT Not After : May 17 21:48:15 2025 GMT Subject: CN=681fc99f-5c8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:4c:b8:51:95:99:30:82:70:bc:5c:e9:96:9b: 98:82:8d:36:86:9c:b7:e4:f5:d8:ed:6a:e7:b2:59: 58:36:00:27:16:a9:65:92:4d:5c:62:f4:8f:8d:4f: 7b:80:b6:9f:87:0f:ae:d7:7c:54:b3:15:21:d6:bd: 5d:d4:72:94:5d:d5:a2:30:78:ed:c9:2d:37:3d:08: 96:45:4d:2f:9f:0f:a1:a1:84:58:39:16:bc:0e:73: 69:5c:1d:7e:2e:78:46:55:4c:2a:66:e5:93:5f:80: 3e:e0:72:51:10:a8:73:11:d4:fb:4c:1a:95:82:56: 35:2e:e2:d1:73:8f:35:a1:67:86:23:b6:b9:4b:36: 42:74:a1:01:61:bc:2c:d1:d6:2e:b0:94:15:46:85: 2c:42:a9:ac:50:be:dd:46:cd:0e:b2:d2:69:7a:20: cd:f4:8b:45:09:35:1d:63:f8:65:c4:61:3a:fa:b9: 51:2b:76:a1:ec:a4:d8:33:a7:a0:b6:ee:23:5e:f6: 59:59:a8:67:75:24:12:75:80:52:eb:87:71:c6:99: 17:a6:ac:39:a1:33:74:ab:0f:7c:f6:51:74:9e:e0: 44:23:eb:1b:63:e0:f2:e3:4b:a6:8a:a5:2a:a5:15: f1:db:78:79:bf:47:73:39:5a:48:25:c0:52:3b:18: ea:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:7D:3B:1C:FE:13:33:DB:83:EB:27:05:C1:4E:5E:F0:0A:0D:99:07 X509v3 Authority Key Identifier: keyid:E4:46:59:EA:6F:DC:D3:43:C6:C1:E7:FF:D0:14:A5:B0:78:18:96:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3062/988089E4616B11EBA647874AC4F9AE02/5EZZ6m_c00PGwef_0BSlsHgYlos.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5EZZ6m_c00PGwef_0BSlsHgYlos.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3062/988089E4616B11EBA647874AC4F9AE02/5EZZ6m_c00PGwef_0BSlsHgYlos.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:8c:3b:10:ad:19:f1:14:73:08:45:55:2d:d8:c5:97:6c:7b: 1d:a9:c9:c1:ff:b2:68:cd:70:ab:b3:f5:48:29:7f:99:ab:e3: 04:5b:ad:a9:29:55:5c:7a:5b:b4:1b:dd:73:9f:b5:8d:67:80: 75:f6:ed:8e:d7:29:0a:8c:96:c0:f2:37:fd:e4:2d:d3:30:20: 5d:67:1e:3e:00:19:4f:93:f0:9c:72:ae:5e:34:68:22:d4:10: a4:8a:ff:d5:04:4a:e1:70:0f:68:18:91:c8:e3:dd:7b:49:9f: 28:9c:25:2f:33:67:e6:8e:d2:12:c4:21:50:f3:8f:6b:7e:33: 18:90:62:68:2f:3c:57:e0:4b:9e:66:25:d4:b5:3f:df:fc:f6: 9e:15:2a:92:a7:e3:d2:cc:9b:ab:1d:cc:38:1d:52:3d:10:a2: aa:27:b7:3c:39:79:d6:86:85:f7:59:1e:c3:22:90:c4:e5:20: be:f3:18:c4:08:06:76:88:dc:c5:5c:de:ac:38:a0:38:16:49: f6:43:46:b1:21:78:30:9c:60:68:5a:bb:47:bc:a0:33:84:11: eb:ba:bc:4d:9e:96:ea:8a:b3:da:b9:07:66:8f:fb:0d:f7:43: 29:27:29:fe:bc:68:cc:c9:74:39:e4:4e:62:4e:39:de:32:e1: d1:74:bc:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBq8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjMwNjIxMTAvBgNVBAUTKEU0NDY1OUVBNkZEQ0QzNDNDNkMxRTdGRkQwMTRBNUIw NzgxODk2OEIwHhcNMjUwNTEwMjE0ODE1WhcNMjUwNTE3MjE0ODE1WjAYMRYwFAYD VQQDEw02ODFmYzk5Zi01YzhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9Uy4UZWZMIJwvFzplpuYgo02hpy35PXY7WrnsllYNgAnFqllkk1cYvSPjU97 gLafhw+u13xUsxUh1r1d1HKUXdWiMHjtyS03PQiWRU0vnw+hoYRYORa8DnNpXB1+ LnhGVUwqZuWTX4A+4HJREKhzEdT7TBqVglY1LuLRc481oWeGI7a5SzZCdKEBYbws 0dYusJQVRoUsQqmsUL7dRs0OstJpeiDN9ItFCTUdY/hlxGE6+rlRK3ah7KTYM6eg tu4jXvZZWahndSQSdYBS64dxxpkXpqw5oTN0qw989lF0nuBEI+sbY+Dy40umiqUq pRXx23h5v0dzOVpIJcBSOxjqUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMB9Oxz+ EzPbg+snBcFOXvAKDZkHMB8GA1UdIwQYMBaAFORGWepv3NNDxsHn/9AUpbB4GJaL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzA2Mi85ODgwODlFNDYx NkIxMUVCQTY0Nzg3NEFDNEY5QUUwMi81RVpaNm1fYzAwUEd3ZWZfMEJTbHNIZ1ls b3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVFWlo2bV9jMDBQR3dlZl8wQlNsc0hnWWxvcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzA2Mi85ODgwODlFNDYxNkIxMUVCQTY0Nzg3NEFDNEY5QUUwMi81RVpaNm1fYzAw UEd3ZWZfMEJTbHNIZ1lsb3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYjDsQrRnxFHMIRVUt2MWXbHsdqcnB/7JozXCrs/VIKX+Zq+MEW62p KVVcelu0G91zn7WNZ4B19u2O1ykKjJbA8jf95C3TMCBdZx4+ABlPk/Cccq5eNGgi 1BCkiv/VBErhcA9oGJHI4917SZ8onCUvM2fmjtISxCFQ849rfjMYkGJoLzxX4Eue ZiXUtT/f/PaeFSqSp+PSzJurHcw4HVI9EKKqJ7c8OXnWhoX3WR7DIpDE5SC+8xjE CAZ2iNzFXN6sOKA4Fkn2Q0axIXgwnGBoWrtHvKAzhBHrurxNnpbqirPauQdmj/sN 90MpJyn+vGjMyXQ55E5iTjneMuHRdLwQ -----END CERTIFICATE-----Generated at Sun May 11 20:03:02 2025 by rpki-client