$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.mft File: eKfTXvnEd150y6PRZrYbdZAkFSM.mft (raw, json) Hash identifier: u/QlE72A/lXxwBDgVIFzFKMCFogD/Nmd3QdVi7UAT2w= Subject key identifier: BD:1E:DF:A0:0A:EE:42:81:06:E2:54:E2:13:EA:8D:09:B8:99:BC:2E Authority key identifier: 78:A7:D3:5E:F9:C4:77:5E:74:CB:A3:D1:66:B6:1B:75:90:24:15:23 Certificate issuer: /CN=A91D2C38/serialNumber=78A7D35EF9C4775E74CBA3D166B61B7590241523 Certificate serial: 5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eKfTXvnEd150y6PRZrYbdZAkFSM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.mft Manifest number: 5A Signing time: Thu 15 May 2025 06:26:13 +0000 Manifest this update: Thu 15 May 2025 06:26:12 +0000 Manifest next update: Thu 22 May 2025 06:26:12 +0000 Files and hashes: 1: eKfTXvnEd150y6PRZrYbdZAkFSM.crl (hash: 693Slnuck30Iv5u63ladBzyhIFwTKjbKCHXFiMEp6Mk=) 2: 8DDD0D56A98C11EFAAC0F364C4F9AE02.roa (hash: yg1U4JyDYBAoLLqLQFnhNTd+uuZ0oKhea1PeFahobmY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.crl rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eKfTXvnEd150y6PRZrYbdZAkFSM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 06:26:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 91 (0x5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2C38, serialNumber=78A7D35EF9C4775E74CBA3D166B61B7590241523 Validity Not Before: May 15 06:26:12 2025 GMT Not After : May 22 06:26:12 2025 GMT Subject: CN=68258905-4eb3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f5:08:9c:b6:f3:12:12:c0:b9:0b:bf:0d:26: 4b:1f:11:e4:d8:42:86:0a:f5:37:89:0e:06:d8:ac: 6c:56:cc:6f:55:2c:06:d4:d9:41:24:07:a2:ab:4a: a6:2a:75:1f:14:6c:a7:9b:07:85:1e:93:9d:97:92: a2:f1:f2:8b:b7:19:f8:e9:33:3c:03:11:b2:0b:bc: ff:64:04:aa:3c:e2:02:c9:0e:10:8d:d7:5f:27:1f: b1:1b:27:6f:cd:02:e4:e7:fc:c8:14:bc:9c:87:12: 35:21:80:70:2e:64:1b:0b:f5:89:ac:12:36:89:8d: 48:85:71:ee:49:33:12:c7:3c:08:4a:f5:ab:dc:95: 75:cc:8f:3c:b3:68:5e:7d:9a:b5:5b:9a:ac:d1:d4: 6d:1d:33:af:74:56:30:ce:c2:a2:8f:77:e9:aa:ca: 06:15:ab:55:22:4a:fa:a0:20:82:a5:fa:4d:05:95: 4e:01:1e:e4:8e:be:52:b9:01:0d:24:60:44:a4:0c: 2d:f3:9a:5b:32:0e:52:7b:bb:04:6d:e3:53:b4:db: cb:55:ea:44:2a:b1:8e:23:8a:3b:78:f4:9c:95:0e: 1f:7f:9c:0b:21:93:30:be:16:4a:0e:2e:35:b3:f3: 70:23:24:9b:98:db:7a:7d:db:c9:63:51:bc:22:92: 51:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:1E:DF:A0:0A:EE:42:81:06:E2:54:E2:13:EA:8D:09:B8:99:BC:2E X509v3 Authority Key Identifier: keyid:78:A7:D3:5E:F9:C4:77:5E:74:CB:A3:D1:66:B6:1B:75:90:24:15:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eKfTXvnEd150y6PRZrYbdZAkFSM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:ab:c0:da:69:32:07:46:57:df:1e:ad:4c:43:ce:31:29:d4: b3:aa:64:67:6e:ee:cd:9c:46:f4:e4:0a:b5:f4:e6:98:85:ea: 29:8d:be:81:74:a4:77:6e:d0:4d:10:68:ec:a5:44:29:6d:57: 3f:ee:1d:c8:b5:45:4e:6a:c4:78:d1:42:45:20:a7:76:aa:41: 17:71:6c:f1:24:b2:14:ef:63:8e:12:45:d1:4c:69:cd:85:60: 07:b9:ee:3e:bd:44:1b:41:8c:df:26:dd:21:bb:7a:a2:70:b5: 29:bd:c0:e4:fd:2a:92:ab:6c:7a:08:28:34:05:23:ae:38:ea: 43:d7:c6:a8:22:72:e5:95:52:11:db:0c:85:35:c1:82:25:cb: a6:1f:98:b9:80:30:ae:3b:34:4f:d9:6d:4c:13:7e:b5:df:4a: d2:ee:c2:f1:62:a6:07:21:ac:5a:d9:c7:fb:ff:6f:7e:0e:b1: 69:02:18:90:76:af:34:b5:2a:34:ec:69:42:91:a1:6f:0c:18: cf:55:11:c1:de:5d:2e:17:3a:dc:7e:6a:34:98:4e:b2:35:c1: b7:ab:46:fb:b2:b5:f7:05:5e:45:c0:94:4d:17:e6:85:ed:66: f9:ee:31:5f:a5:15:25:49:fe:b9:95:73:46:f3:56:e9:8e:e5: aa:c4:83:d7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MkMzODExMC8GA1UEBRMoNzhBN0QzNUVGOUM0Nzc1RTc0Q0JBM0QxNjZCNjFCNzU5 MDI0MTUyMzAeFw0yNTA1MTUwNjI2MTJaFw0yNTA1MjIwNjI2MTJaMBgxFjAUBgNV BAMTDTY4MjU4OTA1LTRlYjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC09QictvMSEsC5C78NJksfEeTYQoYK9TeJDgbYrGxWzG9VLAbU2UEkB6KrSqYq dR8UbKebB4Uek52XkqLx8ou3GfjpMzwDEbILvP9kBKo84gLJDhCN118nH7EbJ2/N AuTn/MgUvJyHEjUhgHAuZBsL9YmsEjaJjUiFce5JMxLHPAhK9avclXXMjzyzaF59 mrVbmqzR1G0dM690VjDOwqKPd+mqygYVq1UiSvqgIIKl+k0FlU4BHuSOvlK5AQ0k YESkDC3zmlsyDlJ7uwRt41O028tV6kQqsY4jijt49JyVDh9/nAshkzC+FkoOLjWz 83AjJJuY23p928ljUbwiklHXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUvR7foAru QoEG4lTiE+qNCbiZvC4wHwYDVR0jBBgwFoAUeKfTXvnEd150y6PRZrYbdZAkFSMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQyQzM4LzBERTg5MzQwQTk4 QzExRUY5MzUwRkI2M0M0RjlBRTAyL2VLZlRYdm5FZDE1MHk2UFJaclliZFpBa0ZT TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZUtmVFh2bkVkMTUweTZQUlpyWWJkWkFrRlNNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQy QzM4LzBERTg5MzQwQTk4QzExRUY5MzUwRkI2M0M0RjlBRTAyL2VLZlRYdm5FZDE1 MHk2UFJaclliZFpBa0ZTTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACCrwNppMgdGV98erUxDzjEp1LOqZGdu7s2cRvTkCrX05piF6imNvoF0 pHdu0E0QaOylRCltVz/uHci1RU5qxHjRQkUgp3aqQRdxbPEkshTvY44SRdFMac2F YAe57j69RBtBjN8m3SG7eqJwtSm9wOT9KpKrbHoIKDQFI6446kPXxqgicuWVUhHb DIU1wYIly6YfmLmAMK47NE/ZbUwTfrXfStLuwvFipgchrFrZx/v/b34OsWkCGJB2 rzS1KjTsaUKRoW8MGM9VEcHeXS4XOtx+ajSYTrI1wberRvuytfcFXkXAlE0X5oXt ZvnuMV+lFSVJ/rmVc0bzVumO5arEg9c= -----END CERTIFICATE-----Generated at Fri May 16 00:25:36 2025 by rpki-client