$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft File: 5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft (raw, json) Hash identifier: 3gdJ5XCXJsckRdeD+YCfiwfjJWKtLNLTXp7+QTyy1s4= Subject key identifier: 5D:3F:C5:50:55:89:B0:48:EA:E6:E3:CE:41:16:68:E9:E7:3E:27:4F Authority key identifier: E4:D6:2D:31:29:7F:17:E4:9C:42:FA:7A:7B:66:23:62:4A:D9:41:75 Certificate issuer: /CN=A91B9B0D/serialNumber=E4D62D31297F17E49C42FA7A7B6623624AD94175 Certificate serial: 0649 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NYtMSl_F-ScQvp6e2YjYkrZQXU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft Manifest number: 0644 Signing time: Sat 10 May 2025 22:11:46 +0000 Manifest this update: Sat 10 May 2025 22:11:45 +0000 Manifest next update: Sat 17 May 2025 22:11:45 +0000 Files and hashes: 1: 5NYtMSl_F-ScQvp6e2YjYkrZQXU.crl (hash: r6omhKa00fkwGNQ+DvPJjXhYZJX3dPXzj1/HMphwUNc=) 2: 3F9CDA68179911EDB9008D18C4F9AE02.roa (hash: uQ87OwRIbPff2rIgxwDqjjJe9H/t71HNB3Wpu5Q8ifI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.crl rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NYtMSl_F-ScQvp6e2YjYkrZQXU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 22:11:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1609 (0x649) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9B0D, serialNumber=E4D62D31297F17E49C42FA7A7B6623624AD94175 Validity Not Before: May 10 22:11:45 2025 GMT Not After : May 17 22:11:45 2025 GMT Subject: CN=681fcf21-0c46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:2b:15:1e:db:41:00:8d:75:ab:8e:32:38:12: ca:bb:af:cc:80:b5:3c:e6:8a:ac:5f:7f:bc:6b:b8: e9:c9:71:c6:29:fe:10:8a:1b:24:00:2a:d4:06:f6: 38:96:51:6a:48:6c:b9:a1:a6:1a:f2:bf:fc:77:08: 9c:9e:69:ef:b2:0d:b2:25:38:ad:48:c8:4b:21:ec: e8:fb:75:4b:36:73:b4:6c:d9:4e:00:73:96:ef:f1: 25:49:a5:1e:af:52:5a:59:51:c9:df:a2:24:5e:21: ac:44:55:60:15:66:31:97:81:af:71:6b:11:89:d2: 27:cb:c6:3a:c8:7e:8f:04:d0:75:c6:aa:0c:3b:e0: 90:06:56:7f:21:c8:2d:ce:f5:7b:f7:3f:e6:cf:c1: b1:86:f2:90:17:e7:04:ec:26:83:bb:e7:a7:19:d1: b1:24:da:db:52:72:99:f0:ff:82:48:38:4e:b1:ed: cb:e5:14:a6:48:d6:5f:7b:f8:a4:37:c9:65:c3:e1: 7b:5b:06:1b:2d:b5:76:70:9a:cd:17:d6:b7:0a:e9: 98:38:29:4c:82:a4:15:1e:80:01:cc:00:31:84:48: 5e:17:e7:b5:65:78:06:b8:4d:8b:d5:70:e8:e0:ac: b8:72:a5:b0:d2:32:8c:85:8a:c8:57:be:2e:ca:e0: 64:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:3F:C5:50:55:89:B0:48:EA:E6:E3:CE:41:16:68:E9:E7:3E:27:4F X509v3 Authority Key Identifier: keyid:E4:D6:2D:31:29:7F:17:E4:9C:42:FA:7A:7B:66:23:62:4A:D9:41:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NYtMSl_F-ScQvp6e2YjYkrZQXU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:a8:74:e5:f6:51:5d:16:07:58:2b:11:16:66:a9:32:d3:a7: 63:3a:53:a5:2a:76:e7:d4:06:bb:48:56:e9:77:5b:e8:96:38: a2:f9:7a:25:30:8e:40:2a:88:ff:aa:e2:ec:ca:3c:a2:de:84: 08:5c:1a:4a:08:0e:3f:84:08:a8:9b:d6:79:c8:ca:a8:44:70: a8:00:65:b9:93:15:e1:10:11:31:a1:be:d6:a8:ef:6a:e8:32: 13:d1:70:5e:a6:2f:e8:28:b3:16:97:e8:12:9b:7b:80:04:89: bb:52:6b:e4:6a:f0:c0:ff:7f:d1:12:fe:36:a3:4d:fb:f5:6d: cb:42:9d:33:22:66:53:d4:31:43:8c:08:ab:fa:30:1e:37:e4: 68:dd:cb:d6:32:0a:16:ba:d6:d0:02:93:a8:a2:be:3a:47:58: c4:a9:50:9a:21:22:f9:19:d6:01:93:92:17:3c:90:fb:f6:29: ee:cb:9a:62:54:4e:7e:d9:f2:15:d6:af:db:e9:69:79:8c:6e: c8:2d:5c:1b:2d:12:2a:97:de:e1:7e:55:10:eb:75:5c:3e:fa: bb:0d:fb:af:fc:25:a1:14:dd:03:37:31:6b:2b:83:cc:57:79: 03:ad:35:93:11:08:80:67:5a:08:e3:1c:18:47:c8:c7:08:ff: 45:e6:18:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlCMEQxMTAvBgNVBAUTKEU0RDYyRDMxMjk3RjE3RTQ5QzQyRkE3QTdCNjYyMzYy NEFEOTQxNzUwHhcNMjUwNTEwMjIxMTQ1WhcNMjUwNTE3MjIxMTQ1WjAYMRYwFAYD VQQDEw02ODFmY2YyMS0wYzQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvysVHttBAI11q44yOBLKu6/MgLU85oqsX3+8a7jpyXHGKf4QihskACrUBvY4 llFqSGy5oaYa8r/8dwicnmnvsg2yJTitSMhLIezo+3VLNnO0bNlOAHOW7/ElSaUe r1JaWVHJ36IkXiGsRFVgFWYxl4GvcWsRidIny8Y6yH6PBNB1xqoMO+CQBlZ/Icgt zvV79z/mz8GxhvKQF+cE7CaDu+enGdGxJNrbUnKZ8P+CSDhOse3L5RSmSNZfe/ik N8llw+F7WwYbLbV2cJrNF9a3CumYOClMgqQVHoABzAAxhEheF+e1ZXgGuE2L1XDo 4Ky4cqWw0jKMhYrIV74uyuBkUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF0/xVBV ibBI6ubjzkEWaOnnPidPMB8GA1UdIwQYMBaAFOTWLTEpfxfknEL6entmI2JK2UF1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUIwRC9BMjhFQ0JDMDhB QjYxMUVCODIzN0Q0MTRDNEY5QUUwMi81Tll0TVNsX0YtU2NRdnA2ZTJZallrclpR WFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVOWXRNU2xfRi1TY1F2cDZlMllqWWtyWlFYVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUIwRC9BMjhFQ0JDMDhBQjYxMUVCODIzN0Q0MTRDNEY5QUUwMi81Tll0TVNsX0Yt U2NRdnA2ZTJZallrclpRWFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoqHTl9lFdFgdYKxEWZqky06djOlOlKnbn1Aa7SFbpd1voljii+Xol MI5AKoj/quLsyjyi3oQIXBpKCA4/hAiom9Z5yMqoRHCoAGW5kxXhEBExob7WqO9q 6DIT0XBepi/oKLMWl+gSm3uABIm7UmvkavDA/3/REv42o0379W3LQp0zImZT1DFD jAir+jAeN+Ro3cvWMgoWutbQApOoor46R1jEqVCaISL5GdYBk5IXPJD79inuy5pi VE5+2fIV1q/b6Wl5jG7ILVwbLRIql97hflUQ63VcPvq7Dfuv/CWhFN0DNzFrK4PM V3kDrTWTEQiAZ1oI4xwYR8jHCP9F5hio -----END CERTIFICATE-----Generated at Mon May 12 08:47:57 2025 by rpki-client