$ rpki-client -vvf rpki.apnic.net/member_repository/A91E85F1/6220633C0DFC11F0A1D98053C4F9AE02/5OTCQkd4XDQv81kH9-EcSrs5i4M.mft File: 5OTCQkd4XDQv81kH9-EcSrs5i4M.mft (raw, json) Hash identifier: 7+7ciU/2NRsyUtszLNPWeFgvj2yiVcDntLyytws3Lyw= Subject key identifier: D8:85:E7:6F:6F:CA:01:A6:18:55:2F:CD:1E:0E:68:AB:4E:BE:6F:52 Authority key identifier: E4:E4:C2:42:47:78:5C:34:2F:F3:59:07:F7:E1:1C:4A:BB:39:8B:83 Certificate issuer: /CN=A91E85F1/serialNumber=E4E4C24247785C342FF35907F7E11C4ABB398B83 Certificate serial: 1E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5OTCQkd4XDQv81kH9-EcSrs5i4M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E85F1/6220633C0DFC11F0A1D98053C4F9AE02/5OTCQkd4XDQv81kH9-EcSrs5i4M.mft Manifest number: 1B Signing time: Tue 13 May 2025 07:13:05 +0000 Manifest this update: Tue 13 May 2025 07:13:04 +0000 Manifest next update: Tue 20 May 2025 07:13:04 +0000 Files and hashes: 1: 5OTCQkd4XDQv81kH9-EcSrs5i4M.crl (hash: aZlPg4J07qlZynQVBdhL6gFGLjASFKIyrA2SejJRKdU=) 2: 212E0B520DFE11F0B266963AC4F9AE02.roa (hash: 44vHU0H/9/bs4kOPReZOgC2D0Y7H1F8Nu3vr76cFkxs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E85F1/6220633C0DFC11F0A1D98053C4F9AE02/5OTCQkd4XDQv81kH9-EcSrs5i4M.crl rsync://rpki.apnic.net/member_repository/A91E85F1/6220633C0DFC11F0A1D98053C4F9AE02/5OTCQkd4XDQv81kH9-EcSrs5i4M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5OTCQkd4XDQv81kH9-EcSrs5i4M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 07:13:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30 (0x1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E85F1, serialNumber=E4E4C24247785C342FF35907F7E11C4ABB398B83 Validity Not Before: May 13 07:13:04 2025 GMT Not After : May 20 07:13:04 2025 GMT Subject: CN=6822f100-0fd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:ae:8a:d1:fb:c3:db:24:21:26:da:7d:73:df: 28:98:10:b3:5a:38:7d:5b:0e:5d:ba:15:01:6f:3b: 7f:33:de:ed:8b:d1:f9:d2:5c:96:f5:05:49:6a:49: 65:12:a7:18:af:75:f0:f9:0d:dd:65:df:f3:52:b1: 30:17:81:18:a1:3c:ff:81:ad:bd:be:79:c8:7a:82: 2e:1c:27:a9:f4:e7:5b:ba:75:19:04:7f:65:30:04: a6:02:89:09:ce:f2:74:01:6f:cb:92:bc:3b:f5:94: d4:91:7d:32:b3:e2:57:aa:64:b3:57:9b:85:91:dc: 16:8d:bc:47:93:5f:c3:13:f7:f2:d3:7a:e6:70:c2: 33:1d:67:a3:07:dc:88:d9:18:3f:be:eb:e9:9c:f4: 71:9f:8f:93:41:27:ae:d1:54:52:a0:56:03:25:f4: 43:69:a2:2d:a6:9c:77:d4:69:c9:b7:8b:5f:10:2c: c6:92:13:8e:8d:69:a4:58:0a:e8:9e:75:99:e3:6f: 2e:8e:f6:5c:d8:ff:7e:75:e7:30:95:3f:91:60:fe: 13:71:a1:56:ec:9f:86:09:b4:2b:51:35:95:31:bf: 46:a9:d4:8f:0b:09:c0:df:16:09:ce:22:1c:b0:66: 96:0d:3c:53:36:c6:fe:5c:26:43:c5:ee:d1:e7:37: cf:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:85:E7:6F:6F:CA:01:A6:18:55:2F:CD:1E:0E:68:AB:4E:BE:6F:52 X509v3 Authority Key Identifier: keyid:E4:E4:C2:42:47:78:5C:34:2F:F3:59:07:F7:E1:1C:4A:BB:39:8B:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E85F1/6220633C0DFC11F0A1D98053C4F9AE02/5OTCQkd4XDQv81kH9-EcSrs5i4M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5OTCQkd4XDQv81kH9-EcSrs5i4M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E85F1/6220633C0DFC11F0A1D98053C4F9AE02/5OTCQkd4XDQv81kH9-EcSrs5i4M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:69:8d:33:a3:d9:ab:5d:03:cf:b2:7c:0c:22:e4:22:20:3e: 9b:66:5c:1d:78:31:56:24:ab:d9:06:ea:c2:1c:d0:36:23:eb: b5:63:71:52:c1:e0:1a:3d:fe:f6:bc:25:d7:fe:d1:d7:ec:e6: 8f:a3:c7:85:66:d1:76:ce:bb:8f:23:58:8a:9e:86:cb:44:ab: 87:15:6d:7c:58:f4:54:2a:0c:67:ee:90:48:80:b8:d0:fc:87: 3f:b2:49:a8:1d:91:25:9d:aa:db:e5:9a:28:20:45:c0:a5:d3: 04:f5:dd:c4:cb:ce:3e:b2:9b:45:52:e0:13:ab:99:2c:f9:37: f4:eb:48:fa:86:a1:b4:8e:f0:70:36:ca:ff:e4:2c:c8:d1:2e: 05:0a:44:ef:0a:d4:df:c6:f2:6d:a6:ad:7c:65:fd:c7:89:a0: 2c:f7:e9:c6:52:cb:e6:33:09:9e:55:5b:44:b7:5e:67:6c:6c: d2:2b:eb:15:0f:7c:37:49:b3:80:e0:eb:44:cd:2f:65:6d:60: 67:fa:03:a0:18:68:9a:5e:a9:a5:e4:4e:61:f9:2b:cb:a5:b6: f9:f8:39:f4:e9:26:79:54:4c:20:96:12:5f:96:fd:0d:3e:7f: f9:18:78:44:2c:9f:6c:e2:a2:bb:1a:0e:4b:38:b0:03:3c:52: cf:39:2d:70 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF ODVGMTExMC8GA1UEBRMoRTRFNEMyNDI0Nzc4NUMzNDJGRjM1OTA3RjdFMTFDNEFC QjM5OEI4MzAeFw0yNTA1MTMwNzEzMDRaFw0yNTA1MjAwNzEzMDRaMBgxFjAUBgNV BAMTDTY4MjJmMTAwLTBmZDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCsrorR+8PbJCEm2n1z3yiYELNaOH1bDl26FQFvO38z3u2L0fnSXJb1BUlqSWUS pxivdfD5Dd1l3/NSsTAXgRihPP+Brb2+ech6gi4cJ6n051u6dRkEf2UwBKYCiQnO 8nQBb8uSvDv1lNSRfTKz4leqZLNXm4WR3BaNvEeTX8MT9/LTeuZwwjMdZ6MH3IjZ GD++6+mc9HGfj5NBJ67RVFKgVgMl9ENpoi2mnHfUacm3i18QLMaSE46NaaRYCuie dZnjby6O9lzY/3515zCVP5Fg/hNxoVbsn4YJtCtRNZUxv0ap1I8LCcDfFgnOIhyw ZpYNPFM2xv5cJkPF7tHnN8+FAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU2IXnb2/K AaYYVS/NHg5oq06+b1IwHwYDVR0jBBgwFoAU5OTCQkd4XDQv81kH9+EcSrs5i4Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4NUYxLzYyMjA2MzNDMERG QzExRjBBMUQ5ODA1M0M0RjlBRTAyLzVPVENRa2Q0WERRdjgxa0g5LUVjU3JzNWk0 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNU9UQ1FrZDRYRFF2ODFrSDktRWNTcnM1aTRNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4 NUYxLzYyMjA2MzNDMERGQzExRjBBMUQ5ODA1M0M0RjlBRTAyLzVPVENRa2Q0WERR djgxa0g5LUVjU3JzNWk0TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAH5pjTOj2atdA8+yfAwi5CIgPptmXB14MVYkq9kG6sIc0DYj67VjcVLB 4Bo9/va8Jdf+0dfs5o+jx4Vm0XbOu48jWIqehstEq4cVbXxY9FQqDGfukEiAuND8 hz+ySagdkSWdqtvlmiggRcCl0wT13cTLzj6ym0VS4BOrmSz5N/TrSPqGobSO8HA2 yv/kLMjRLgUKRO8K1N/G8m2mrXxl/ceJoCz36cZSy+YzCZ5VW0S3XmdsbNIr6xUP fDdJs4Dg60TNL2VtYGf6A6AYaJpeqaXkTmH5K8ultvn4OfTpJnlUTCCWEl+W/Q0+ f/kYeEQsn2ziorsaDks4sAM8Us85LXA= -----END CERTIFICATE-----Generated at Thu May 15 04:01:16 2025 by rpki-client