$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC711/C7D1B0541EE311EF90D21234C4F9AE02/5CnUKeZreXs9ihy-JJFXetw4pI4.mft File: 5CnUKeZreXs9ihy-JJFXetw4pI4.mft (raw, json) Hash identifier: 3Ws/8tJSNh0p/1WfxYWv/NeknHccWCHIz+aVtSPkWOQ= Subject key identifier: 95:39:CA:42:C0:53:39:F5:C1:84:E5:4B:25:58:97:71:69:30:BD:4A Authority key identifier: E4:29:D4:29:E6:6B:79:7B:3D:8A:1C:BE:24:91:57:7A:DC:38:A4:8E Certificate issuer: /CN=A91CC711/serialNumber=E429D429E66B797B3D8A1CBE2491577ADC38A48E Certificate serial: F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CnUKeZreXs9ihy-JJFXetw4pI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC711/C7D1B0541EE311EF90D21234C4F9AE02/5CnUKeZreXs9ihy-JJFXetw4pI4.mft Manifest number: D8 Signing time: Tue 13 May 2025 05:10:50 +0000 Manifest this update: Tue 13 May 2025 05:10:49 +0000 Manifest next update: Tue 20 May 2025 05:10:49 +0000 Files and hashes: 1: 5CnUKeZreXs9ihy-JJFXetw4pI4.crl (hash: 1gEMCmyRBge7LiX/CXmjj8JIWdFibCvHOTH/UNx0+hc=) 2: 06FA65A81F2711EF98DA2926C4F9AE02.roa (hash: oS4PRK+VFwkVhFqqmzFtlUlVZ/0tESve4AVvdpaS7tg=) 3: 25ED44B41EE411EFA62B1335C4F9AE02.roa (hash: zb91MkoqcDkuzuZwD7VYBRLCNDf9oSeL0ikN94ozVn8=) 4: A7FC5DEE8D0411EFBD7A0057C4F9AE02.roa (hash: TGsIq74Qma+U6c7Ey8qeEz04VjG5STVU5SpvAS46Q6U=) 5: 359CBDB28D0D11EF90882959C4F9AE02.roa (hash: qdwbcsIyL1f3wI2tO7dwB6BR0n7SfSV/G7xRpNDHqtU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC711/C7D1B0541EE311EF90D21234C4F9AE02/5CnUKeZreXs9ihy-JJFXetw4pI4.crl rsync://rpki.apnic.net/member_repository/A91CC711/C7D1B0541EE311EF90D21234C4F9AE02/5CnUKeZreXs9ihy-JJFXetw4pI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CnUKeZreXs9ihy-JJFXetw4pI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 05:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 248 (0xf8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC711, serialNumber=E429D429E66B797B3D8A1CBE2491577ADC38A48E Validity Not Before: May 13 05:10:49 2025 GMT Not After : May 20 05:10:49 2025 GMT Subject: CN=6822d459-bb7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:c1:f3:da:64:64:d0:4f:72:98:3f:b9:c7:10: 48:ca:6a:6c:8a:72:41:42:24:59:be:f9:56:8b:16: 1c:a2:7f:f4:bb:0f:65:1c:6b:fc:8c:17:50:fb:12: 81:b3:2f:88:b6:c3:85:06:e6:ef:c7:4b:1a:dc:8e: 4d:4c:36:67:55:4e:91:49:4b:e3:a5:73:2e:2c:31: c6:a7:89:72:1f:56:55:14:3c:66:fa:36:00:9c:7f: 2c:3b:2d:5f:99:36:be:46:f9:b0:35:1f:87:58:c3: e5:e7:df:e8:e0:a0:88:36:b6:2d:81:56:64:3d:09: ac:1f:e3:30:da:8a:76:73:83:9c:b6:45:b8:69:b7: 44:07:6a:67:d7:94:af:05:8d:fc:4c:cc:66:ea:f8: 0f:ea:cc:ea:91:7f:fa:ea:1d:0f:68:45:ed:7d:f9: e9:94:89:8a:fc:6e:ba:5b:91:70:d4:9a:dd:d9:7b: dd:16:e5:03:c1:90:33:6e:c9:f4:61:e6:b8:5e:86: fd:78:75:96:3d:96:46:30:8b:bc:48:c2:e4:ae:26: d0:78:87:5c:89:b3:dc:42:bf:df:12:ff:74:de:bf: 8f:a1:44:1b:4c:03:02:cf:d3:c7:03:81:c4:ce:55: a1:ea:94:45:a0:30:49:46:7e:1f:74:d0:25:9f:ea: 2f:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:39:CA:42:C0:53:39:F5:C1:84:E5:4B:25:58:97:71:69:30:BD:4A X509v3 Authority Key Identifier: keyid:E4:29:D4:29:E6:6B:79:7B:3D:8A:1C:BE:24:91:57:7A:DC:38:A4:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC711/C7D1B0541EE311EF90D21234C4F9AE02/5CnUKeZreXs9ihy-JJFXetw4pI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CnUKeZreXs9ihy-JJFXetw4pI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC711/C7D1B0541EE311EF90D21234C4F9AE02/5CnUKeZreXs9ihy-JJFXetw4pI4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:b7:39:41:ad:a4:09:fa:cb:80:f4:01:14:74:ac:d8:d3:fc: 93:a4:51:e5:fe:19:f3:80:85:2d:03:1f:19:f5:8c:95:97:4f: 3b:0a:31:67:e3:47:9e:68:31:6d:41:24:ff:0b:80:78:02:e7: de:e5:b0:fa:f8:7c:26:7a:da:ab:28:47:26:02:44:47:6e:a2: db:39:15:ec:db:34:fd:fd:83:6f:34:c5:2a:38:49:d1:90:27: 98:ed:91:2d:39:2f:3e:ab:c4:97:41:df:db:72:46:46:69:f2: be:05:0b:50:5c:88:0f:92:6e:ed:06:6b:d3:b2:c4:43:bf:5e: c6:c4:29:6f:f1:b4:2f:d8:40:86:7f:d7:14:3e:d7:26:86:89: b8:c5:45:5f:70:8c:bb:76:fc:7f:40:22:48:3a:da:fe:ef:98: 63:81:db:6c:96:9b:ca:a9:0b:12:be:67:21:73:39:24:67:41: 3b:07:4a:23:8e:cc:a0:ec:fd:e2:6f:42:cc:1d:f8:99:d7:f4: d5:36:cf:da:87:95:02:7c:46:4a:91:f8:d1:57:7c:4a:fc:b4: 12:28:ef:a9:3a:2a:10:85:e0:51:df:59:ba:60:32:2b:f8:c7: c2:95:77:d5:60:b2:fe:df:a3:91:07:7f:0e:f8:d0:2a:94:46: 81:0b:bb:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0M3MTExMTAvBgNVBAUTKEU0MjlENDI5RTY2Qjc5N0IzRDhBMUNCRTI0OTE1NzdB REMzOEE0OEUwHhcNMjUwNTEzMDUxMDQ5WhcNMjUwNTIwMDUxMDQ5WjAYMRYwFAYD VQQDEw02ODIyZDQ1OS1iYjdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA38Hz2mRk0E9ymD+5xxBIympsinJBQiRZvvlWixYcon/0uw9lHGv8jBdQ+xKB sy+ItsOFBubvx0sa3I5NTDZnVU6RSUvjpXMuLDHGp4lyH1ZVFDxm+jYAnH8sOy1f mTa+RvmwNR+HWMPl59/o4KCINrYtgVZkPQmsH+Mw2op2c4OctkW4abdEB2pn15Sv BY38TMxm6vgP6szqkX/66h0PaEXtffnplImK/G66W5Fw1Jrd2XvdFuUDwZAzbsn0 Yea4Xob9eHWWPZZGMIu8SMLkribQeIdcibPcQr/fEv903r+PoUQbTAMCz9PHA4HE zlWh6pRFoDBJRn4fdNAln+ovaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJU5ykLA Uzn1wYTlSyVYl3FpML1KMB8GA1UdIwQYMBaAFOQp1Cnma3l7PYocviSRV3rcOKSO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzcxMS9DN0QxQjA1NDFF RTMxMUVGOTBEMjEyMzRDNEY5QUUwMi81Q25VS2VacmVYczlpaHktSkpGWGV0dzRw STQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVDblVLZVpyZVhzOWloeS1KSkZYZXR3NHBJNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QzcxMS9DN0QxQjA1NDFFRTMxMUVGOTBEMjEyMzRDNEY5QUUwMi81Q25VS2VacmVY czlpaHktSkpGWGV0dzRwSTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbtzlBraQJ+suA9AEUdKzY0/yTpFHl/hnzgIUtAx8Z9YyVl087CjFn 40eeaDFtQST/C4B4Aufe5bD6+HwmetqrKEcmAkRHbqLbORXs2zT9/YNvNMUqOEnR kCeY7ZEtOS8+q8SXQd/bckZGafK+BQtQXIgPkm7tBmvTssRDv17GxClv8bQv2ECG f9cUPtcmhom4xUVfcIy7dvx/QCJIOtr+75hjgdtslpvKqQsSvmchczkkZ0E7B0oj jsyg7P3ib0LMHfiZ1/TVNs/ah5UCfEZKkfjRV3xK/LQSKO+pOioQheBR31m6YDIr +MfClXfVYLL+36ORB38O+NAqlEaBC7tj -----END CERTIFICATE-----Generated at Wed May 14 23:48:13 2025 by rpki-client