$ rpki-client -vvf rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft File: 5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft (raw, json) Hash identifier: rAEjcLZPwJ6CY0gRLBg7+xBkTXeosGGz66SKRgpZpUw= Subject key identifier: F4:2C:04:2A:6C:86:73:14:10:AC:47:45:D6:C2:66:E3:5C:4B:41:5E Authority key identifier: E4:7B:F7:02:54:53:26:97:D2:0D:0D:31:10:F6:25:37:0D:65:FA:83 Certificate issuer: /CN=A91B59E5/serialNumber=E47BF70254532697D20D0D3110F625370D65FA83 Certificate serial: 01BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft Manifest number: 0190 Signing time: Fri 09 May 2025 03:23:42 +0000 Manifest this update: Fri 09 May 2025 03:23:42 +0000 Manifest next update: Fri 16 May 2025 03:23:42 +0000 Files and hashes: 1: 5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.crl (hash: 2ZYAhZ0Ir/aqKqumZ3uan2jAPiD75G2bdtnBAPuYmC8=) 2: 9EEE3C44D94F11EF916BCF23C4F9AE02.roa (hash: JTgCQ/a/n5QlsjMCTHDArlAgGVjedlWxdAR2U4v5LnA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.crl rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 03:23:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 445 (0x1bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B59E5, serialNumber=E47BF70254532697D20D0D3110F625370D65FA83 Validity Not Before: May 9 03:23:42 2025 GMT Not After : May 16 03:23:42 2025 GMT Subject: CN=681d753e-b226 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:dd:be:0c:d7:ba:a7:b3:b4:ed:fb:87:75:f5: 33:ff:76:3e:7d:72:6d:7c:10:4e:33:cf:b4:ad:80: b2:68:e1:af:5c:b8:28:c0:4b:37:ad:87:de:b2:56: 92:18:56:3e:dc:a5:ae:b2:e1:59:c3:43:b2:40:71: cf:f8:20:ef:e3:b9:6d:f6:33:f9:e0:07:58:ea:00: 91:4b:22:26:03:34:83:36:9a:39:d3:65:84:4e:d4: 29:65:27:1a:c3:f3:e1:0d:4e:88:98:3a:71:e7:a0: d3:09:b9:41:5c:46:ea:0c:3e:47:15:d5:47:51:04: 4b:8a:64:23:7c:01:c8:5b:a7:da:e8:4d:0e:80:6c: e2:ec:5a:12:c6:1e:28:56:c8:45:5f:17:bc:dc:6c: 76:30:c5:b8:f5:49:d6:00:2c:bb:4b:c7:b7:67:ef: 1b:42:37:57:6c:74:d0:f4:de:16:74:0c:7e:e9:2a: 33:68:f0:59:fd:ee:83:f2:89:4d:b6:cc:ea:95:e2: 95:02:af:ad:aa:c5:55:ee:e1:75:f1:43:15:74:04: a3:b2:29:23:b6:b4:30:7d:eb:5f:5b:8e:ba:a6:4f: 36:7a:99:f8:8f:34:0b:ad:2c:a4:ea:60:ce:e8:79: 58:72:19:92:fe:64:b0:4a:6a:87:3f:98:94:ca:f4: 2a:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:2C:04:2A:6C:86:73:14:10:AC:47:45:D6:C2:66:E3:5C:4B:41:5E X509v3 Authority Key Identifier: keyid:E4:7B:F7:02:54:53:26:97:D2:0D:0D:31:10:F6:25:37:0D:65:FA:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:cf:ab:8a:69:18:dc:08:54:f4:b7:fe:32:ca:44:65:b3:e4: 9b:a7:f4:0d:f5:9f:2e:6f:95:a2:05:77:62:a1:ad:de:94:fa: 9b:96:00:a3:bf:a1:8d:de:bb:42:10:44:e9:30:a9:5f:07:2c: 69:9f:b5:6e:68:10:4f:29:2a:de:86:e5:08:aa:9c:cd:c7:50: 79:56:de:0a:ea:8c:25:f3:7d:07:3a:24:07:e8:32:4d:8c:12: cd:fa:11:50:38:42:63:d8:c3:3e:62:1e:9e:45:fe:42:68:ec: 01:3b:5a:37:a4:51:92:ed:c8:1d:25:7c:81:d2:03:5b:f0:f2: 7e:b0:41:15:19:4f:50:af:31:8a:f9:71:a7:fd:9b:e1:2e:c7: b7:19:4e:3e:fb:cf:8a:94:5e:20:63:7e:a9:d2:59:5a:74:a7: 41:0e:97:15:ed:7f:c4:4e:8d:37:43:9d:f5:23:32:bc:d7:9b: 63:1b:d3:fd:e1:91:5c:fd:35:42:ce:d3:72:a1:cb:fb:74:b2: 76:71:06:f4:a4:03:c6:d9:14:84:50:ba:88:fe:8d:b0:8a:43: 3b:78:fe:cc:24:1d:e7:5c:67:8d:6f:e4:f4:8c:fe:b0:38:08: 36:8e:22:e6:a8:e2:95:e7:74:ce:2e:bb:4b:59:ae:53:b2:5e: 5b:8c:ed:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAb0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU5RTUxMTAvBgNVBAUTKEU0N0JGNzAyNTQ1MzI2OTdEMjBEMEQzMTEwRjYyNTM3 MEQ2NUZBODMwHhcNMjUwNTA5MDMyMzQyWhcNMjUwNTE2MDMyMzQyWjAYMRYwFAYD VQQDEw02ODFkNzUzZS1iMjI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsd2+DNe6p7O07fuHdfUz/3Y+fXJtfBBOM8+0rYCyaOGvXLgowEs3rYfeslaS GFY+3KWusuFZw0OyQHHP+CDv47lt9jP54AdY6gCRSyImAzSDNpo502WETtQpZSca w/PhDU6ImDpx56DTCblBXEbqDD5HFdVHUQRLimQjfAHIW6fa6E0OgGzi7FoSxh4o VshFXxe83Gx2MMW49UnWACy7S8e3Z+8bQjdXbHTQ9N4WdAx+6SozaPBZ/e6D8olN tszqleKVAq+tqsVV7uF18UMVdASjsikjtrQwfetfW466pk82epn4jzQLrSyk6mDO 6HlYchmS/mSwSmqHP5iUyvQqKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPQsBCps hnMUEKxHRdbCZuNcS0FeMB8GA1UdIwQYMBaAFOR79wJUUyaX0g0NMRD2JTcNZfqD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTlFNS9ERDlGMUY3QzND MDExMUVFOTFDQkUxNTdDNEY5QUUwMi81SHYzQWxSVEpwZlNEUTB4RVBZbE53MWwt b00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVIdjNBbFJUSnBmU0RRMHhFUFlsTncxbC1vTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTlFNS9ERDlGMUY3QzNDMDExMUVFOTFDQkUxNTdDNEY5QUUwMi81SHYzQWxSVEpw ZlNEUTB4RVBZbE53MWwtb00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPz6uKaRjcCFT0t/4yykRls+Sbp/QN9Z8ub5WiBXdioa3elPqblgCj v6GN3rtCEETpMKlfByxpn7VuaBBPKSrehuUIqpzNx1B5Vt4K6owl830HOiQH6DJN jBLN+hFQOEJj2MM+Yh6eRf5CaOwBO1o3pFGS7cgdJXyB0gNb8PJ+sEEVGU9QrzGK +XGn/ZvhLse3GU4++8+KlF4gY36p0lladKdBDpcV7X/ETo03Q531IzK815tjG9P9 4ZFc/TVCztNyocv7dLJ2cQb0pAPG2RSEULqI/o2wikM7eP7MJB3nXGeNb+T0jP6w OAg2jiLmqOKV53TOLrtLWa5Tsl5bjO0G -----END CERTIFICATE-----Generated at Sat May 10 17:50:03 2025 by rpki-client