$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/5bsti54YaXwBWe2BMuXzS4axN7E.mft File: 5bsti54YaXwBWe2BMuXzS4axN7E.mft (raw, json) Hash identifier: ye0lHpEJObkUbH10bG8nKgDaCI+8mMXRzZdrCAVztIQ= Subject key identifier: B2:B5:A8:CB:84:01:72:8B:E5:38:3E:2D:42:2E:3A:9A:85:76:30:A3 Authority key identifier: E5:BB:2D:8B:9E:18:69:7C:01:59:ED:81:32:E5:F3:4B:86:B1:37:B1 Certificate issuer: /CN=A91E0C2B/serialNumber=E5BB2D8B9E18697C0159ED8132E5F34B86B137B1 Certificate serial: 0197 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bsti54YaXwBWe2BMuXzS4axN7E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/5bsti54YaXwBWe2BMuXzS4axN7E.mft Manifest number: 0193 Signing time: Tue 13 May 2025 02:44:59 +0000 Manifest this update: Tue 13 May 2025 02:44:58 +0000 Manifest next update: Tue 20 May 2025 02:44:58 +0000 Files and hashes: 1: 5bsti54YaXwBWe2BMuXzS4axN7E.crl (hash: qKKZ8xPfmFBkf3hKg5dEo1B2LK3rkoFvpmDknFHG0Os=) 2: 12B9A5DECBC211EDB6F09516C4F9AE02.roa (hash: GC2+Qt2m2cOxU2MSwTfp+OhWSqEwAQ14izm/J1/ZU5o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/5bsti54YaXwBWe2BMuXzS4axN7E.crl rsync://rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/5bsti54YaXwBWe2BMuXzS4axN7E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bsti54YaXwBWe2BMuXzS4axN7E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 02:44:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 407 (0x197) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0C2B, serialNumber=E5BB2D8B9E18697C0159ED8132E5F34B86B137B1 Validity Not Before: May 13 02:44:58 2025 GMT Not After : May 20 02:44:58 2025 GMT Subject: CN=6822b22b-8c1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:77:74:20:9f:2f:46:5a:e3:d7:5b:09:a6:83: 1c:9d:4d:7f:21:4d:20:aa:01:6e:69:bd:82:d5:99: 5d:69:9c:9a:fc:bf:dd:1c:e9:e9:e3:a4:c6:3e:7f: dd:89:6e:75:be:2e:d4:49:44:11:3c:c7:da:69:a7: 24:4f:3c:d3:ef:ff:ed:f7:b6:4f:d0:f1:7a:11:21: b2:c3:8f:0d:a8:16:56:49:41:50:7d:98:39:59:4d: ef:9f:cc:f8:b7:36:c0:39:b9:4f:07:49:14:e4:8a: 77:33:b9:e4:94:a8:10:5d:4d:29:4d:cf:91:96:01: e7:df:35:6e:95:92:4f:b5:cf:72:a1:6f:65:f3:02: 0b:06:f3:ef:e5:e6:86:7b:9d:b3:51:db:22:ce:b7: 5a:55:bd:74:08:7e:99:c2:38:c1:53:7e:53:22:e6: fc:e0:a1:f2:14:d9:fe:4c:dd:a6:95:99:4f:57:22: 28:a9:a6:f4:dd:d0:62:2e:63:f8:58:3e:1e:43:48: e6:97:cd:9c:04:95:e2:4b:60:06:ab:07:38:ec:15: cf:e0:77:03:20:39:c7:49:d8:0d:12:07:bf:4a:71: ac:98:90:e1:b0:4e:4b:17:36:7e:61:cd:85:ab:2d: e5:15:a0:8a:c3:b7:c2:f1:1e:53:cb:fb:b5:76:04: 5f:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:B5:A8:CB:84:01:72:8B:E5:38:3E:2D:42:2E:3A:9A:85:76:30:A3 X509v3 Authority Key Identifier: keyid:E5:BB:2D:8B:9E:18:69:7C:01:59:ED:81:32:E5:F3:4B:86:B1:37:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/5bsti54YaXwBWe2BMuXzS4axN7E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bsti54YaXwBWe2BMuXzS4axN7E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/5bsti54YaXwBWe2BMuXzS4axN7E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:9b:00:da:6b:07:09:44:0f:fb:9b:cd:65:01:cf:f4:b2:cd: e3:3d:47:66:e4:17:c7:9e:45:bb:8f:7a:e3:c8:f6:8e:61:46: fe:7a:d5:77:a5:16:b1:da:08:45:d6:2e:49:8e:8d:23:f4:2a: cf:3d:9b:6a:dd:70:1c:91:a1:db:13:79:72:72:12:9d:0b:f7: de:a7:12:52:16:5d:fa:53:80:53:10:62:9c:bc:34:84:df:d4: 88:db:3e:de:a4:a3:d8:8e:83:e5:d1:79:18:a5:53:d1:23:0d: bf:ae:50:89:a3:df:89:34:94:1c:ab:ee:92:f1:29:80:10:47: 58:55:4c:55:41:de:26:8b:47:c3:4c:fe:89:d6:4b:26:43:15: 1e:17:59:0a:b8:45:ff:13:fd:68:79:9d:c2:37:de:4e:0d:2e: 50:6e:11:7f:98:0e:76:e5:18:51:5d:99:77:96:30:76:06:51: e1:d8:b9:64:25:52:8a:82:2b:4c:9c:c0:ca:89:3c:35:35:98: 21:9e:90:0f:6e:c2:a8:26:92:3b:4f:88:8c:44:66:2f:00:96: ba:11:3e:e9:6d:50:ca:23:dc:07:c7:19:20:cd:47:84:4c:ee: 36:4f:22:b9:88:01:7d:7a:83:7a:7e:9f:bf:83:6f:41:7b:3b: 43:68:c9:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBDMkIxMTAvBgNVBAUTKEU1QkIyRDhCOUUxODY5N0MwMTU5RUQ4MTMyRTVGMzRC ODZCMTM3QjEwHhcNMjUwNTEzMDI0NDU4WhcNMjUwNTIwMDI0NDU4WjAYMRYwFAYD VQQDEw02ODIyYjIyYi04YzFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzHd0IJ8vRlrj11sJpoMcnU1/IU0gqgFuab2C1ZldaZya/L/dHOnp46TGPn/d iW51vi7USUQRPMfaaackTzzT7//t97ZP0PF6ESGyw48NqBZWSUFQfZg5WU3vn8z4 tzbAOblPB0kU5Ip3M7nklKgQXU0pTc+RlgHn3zVulZJPtc9yoW9l8wILBvPv5eaG e52zUdsizrdaVb10CH6ZwjjBU35TIub84KHyFNn+TN2mlZlPVyIoqab03dBiLmP4 WD4eQ0jml82cBJXiS2AGqwc47BXP4HcDIDnHSdgNEge/SnGsmJDhsE5LFzZ+Yc2F qy3lFaCKw7fC8R5Ty/u1dgRfkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLK1qMuE AXKL5Tg+LUIuOpqFdjCjMB8GA1UdIwQYMBaAFOW7LYueGGl8AVntgTLl80uGsTex MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEMyQi9EMjdFNkVEMENC OTYxMUVEQUMzNDlCNzlDNEY5QUUwMi81YnN0aTU0WWFYd0JXZTJCTXVYelM0YXhO N0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVic3RpNTRZYVh3QldlMkJNdVh6UzRheE43RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MEMyQi9EMjdFNkVEMENCOTYxMUVEQUMzNDlCNzlDNEY5QUUwMi81YnN0aTU0WWFY d0JXZTJCTXVYelM0YXhON0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCumwDaawcJRA/7m81lAc/0ss3jPUdm5BfHnkW7j3rjyPaOYUb+etV3 pRax2ghF1i5Jjo0j9CrPPZtq3XAckaHbE3lychKdC/fepxJSFl36U4BTEGKcvDSE 39SI2z7epKPYjoPl0XkYpVPRIw2/rlCJo9+JNJQcq+6S8SmAEEdYVUxVQd4mi0fD TP6J1ksmQxUeF1kKuEX/E/1oeZ3CN95ODS5QbhF/mA525RhRXZl3ljB2BlHh2Llk JVKKgitMnMDKiTw1NZghnpAPbsKoJpI7T4iMRGYvAJa6ET7pbVDKI9wHxxkgzUeE TO42TyK5iAF9eoN6fp+/g29BeztDaMkK -----END CERTIFICATE-----Generated at Thu May 15 00:48:32 2025 by rpki-client