$ rpki-client -vvf rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft File: 5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft (raw, json) Hash identifier: 8IIBMTLiehxAF4Fg0bD1XO9a1LrjzcxFFQibXNHsMrw= Subject key identifier: C8:F5:CD:DA:B6:A4:E9:B9:0A:9C:16:02:A9:8B:81:3F:DF:48:2C:C8 Authority key identifier: 5D:70:7B:0D:35:69:62:24:32:B4:BD:CB:FD:32:0F:9A:8B:6D:DC:7B Certificate issuer: /CN=A91DD5100000/serialNumber=5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B Certificate serial: 4CCD30260D4AA8753D184CD6B3E8A8BC48664C88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XXB7DTVpYiQytL3L_TIPmott3Hs.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft Manifest number: C0 Signing time: Mon 05 May 2025 02:54:53 +0000 Manifest this update: Mon 05 May 2025 02:49:53 +0000 Manifest next update: Tue 06 May 2025 05:04:53 +0000 Files and hashes: 1: 5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.crl (hash: 7SLnyqmKnqc3pjqwWOvLKMXjzOuYsoQwKyq6QTEDXtU=) 2: 34332e3235322e32332e302f32342d3234203d3e203239383032.roa (hash: LfF8fU+QkX6d5K08nkQmulF4/9qGZmobs40531E0EuE=) 3: 34332e3235322e32322e302f32342d3234203d3e203438323636.roa (hash: lh0a38K8JAllhrAcZvOqWh+3NCJyyj25skARvaE+EWo=) 4: 34332e3235322e32312e302f32342d3234203d3e203530333835.roa (hash: baGBWXcDrtK+cAVKGJBMAmZee53ol0gPCj9NO0O551w=) Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.crl rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XXB7DTVpYiQytL3L_TIPmott3Hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 06 May 2025 05:04:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:cd:30:26:0d:4a:a8:75:3d:18:4c:d6:b3:e8:a8:bc:48:66:4c:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD5100000, serialNumber=5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B Validity Not Before: May 5 02:49:53 2025 GMT Not After : May 6 05:04:53 2025 GMT Subject: CN=C8F5CDDAB6A4E9B90A9C1602A98B813FDF482CC8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:b1:06:b5:e0:e5:ad:0b:0b:e1:ff:93:17:47: 49:39:b4:65:44:5e:8c:dc:94:b8:50:bb:8e:8a:36: e8:94:a9:96:79:c3:22:2b:3b:58:72:fb:dc:19:a5: 5e:23:ce:bd:a9:8e:a6:b0:b5:bb:f1:29:d5:26:6d: 05:18:c4:d4:19:96:99:10:7d:0e:0a:06:5f:26:6d: 6f:8c:70:7d:40:ee:b3:21:91:27:8a:3e:4b:4a:06: 2b:be:c0:1f:6a:8a:d7:ff:d8:37:9b:4f:f2:83:38: 6f:d5:96:b5:41:b5:a9:5f:cd:4b:4e:92:ea:68:e1: 38:e6:ef:22:ad:85:3d:ae:70:ee:20:12:36:af:e9: cf:28:68:55:6b:8f:da:d7:2a:53:c1:dd:97:14:cc: 9e:6d:d3:fd:f7:a8:bc:5b:20:b1:24:ac:f7:ba:67: 1a:62:e7:95:e4:f0:52:45:45:9f:e3:ee:f9:b5:62: a1:79:76:7e:e4:bf:dd:0d:77:3a:77:a1:5a:06:8e: 02:95:af:49:54:73:f3:7d:75:1f:85:d8:27:e7:f7: 1f:6a:07:20:c2:ca:ab:02:1f:d8:3e:40:d6:5b:fb: 7f:c2:23:24:af:e2:ec:0e:a1:69:1b:08:62:83:7e: e8:55:c5:bc:89:70:a8:e1:5f:e4:92:25:27:2e:a1: 91:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:F5:CD:DA:B6:A4:E9:B9:0A:9C:16:02:A9:8B:81:3F:DF:48:2C:C8 X509v3 Authority Key Identifier: keyid:5D:70:7B:0D:35:69:62:24:32:B4:BD:CB:FD:32:0F:9A:8B:6D:DC:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XXB7DTVpYiQytL3L_TIPmott3Hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 82:69:e9:76:2e:63:03:33:f9:7e:12:90:b8:c2:7c:6a:bb:ca: ae:de:de:4c:20:c4:72:a8:1b:0d:3e:eb:b1:66:6b:0e:f5:97: f4:34:68:b5:57:2c:20:02:b0:f3:9a:3d:01:29:6f:50:15:24: f5:b0:ad:ba:cc:68:c6:62:47:84:70:6d:be:74:86:de:70:09: 75:91:2f:66:2b:20:09:db:cb:2c:68:18:75:fa:dc:66:01:7d: 27:ff:5e:be:9c:7b:1c:b7:d1:cb:a7:91:f4:26:fd:1a:13:ac: 95:d0:0d:36:92:df:40:10:be:91:ce:ef:80:2e:19:5a:b4:6c: 4a:38:36:13:0e:d0:83:ff:e9:22:da:89:3a:3f:98:be:0f:9d: d6:f2:0b:16:53:4a:b3:16:f2:6a:db:e6:47:62:07:16:fd:d3: 67:c1:eb:0a:38:b3:dd:7b:2d:87:b1:ae:c5:16:70:1a:0f:61: 57:e1:8d:99:4c:31:81:d3:ec:c6:f6:41:2a:a2:71:28:b1:79: 25:aa:83:42:1d:35:85:d0:aa:c6:a6:73:a7:cf:5f:53:4c:cc: ec:44:39:a5:d3:44:4e:f9:b6:10:53:ab:f4:9d:66:f1:c6:ad: 1a:3b:b6:fb:7e:f6:ab:70:1b:b8:09:c0:33:31:c9:40:af:98: e4:f4:1a:54 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTM0wJg1KqHU9GEzWs+iovEhmTIgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxREQ1MTAwMDAwMTEwLwYDVQQFEyg1RDcwN0IwRDM1 Njk2MjI0MzJCNEJEQ0JGRDMyMEY5QThCNkREQzdCMB4XDTI1MDUwNTAyNDk1M1oX DTI1MDUwNjA1MDQ1M1owMzExMC8GA1UEAxMoQzhGNUNEREFCNkE0RTlCOTBBOUMx NjAyQTk4QjgxM0ZERjQ4MkNDODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANexBrXg5a0LC+H/kxdHSTm0ZURejNyUuFC7joo26JSplnnDIis7WHL73Bml XiPOvamOprC1u/Ep1SZtBRjE1BmWmRB9DgoGXyZtb4xwfUDusyGRJ4o+S0oGK77A H2qK1//YN5tP8oM4b9WWtUG1qV/NS06S6mjhOObvIq2FPa5w7iASNq/pzyhoVWuP 2tcqU8HdlxTMnm3T/feovFsgsSSs97pnGmLnleTwUkVFn+Pu+bVioXl2fuS/3Q13 OnehWgaOApWvSVRz8311H4XYJ+f3H2oHIMLKqwIf2D5A1lv7f8IjJK/i7A6haRsI YoN+6FXFvIlwqOFf5JIlJy6hkSUCAwEAAaOCAhswggIXMB0GA1UdDgQWBBTI9c3a tqTpuQqcFgKpi4E/30gsyDAfBgNVHSMEGDAWgBRdcHsNNWliJDK0vcv9Mg+ai23c ezAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFERDUxMDAwMDAvMC81RDcwN0Iw RDM1Njk2MjI0MzJCNEJEQ0JGRDMyMEY5QThCNkREQzdCLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9YWEI3RFRWcFlp UXl0TDNMX1RJUG1vdHQzSHMuY2VyMH0GCCsGAQUFBwELBHEwbzBtBggrBgEFBQcw C4ZhcnN5bmM6Ly9ycGtpLnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFERDUx MDAwMDAvMC81RDcwN0IwRDM1Njk2MjI0MzJCNEJEQ0JGRDMyMEY5QThCNkREQzdC Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIw EDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG 9w0BAQsFAAOCAQEAgmnpdi5jAzP5fhKQuMJ8arvKrt7eTCDEcqgbDT7rsWZrDvWX 9DRotVcsIAKw85o9ASlvUBUk9bCtusxoxmJHhHBtvnSG3nAJdZEvZisgCdvLLGgY dfrcZgF9J/9evpx7HLfRy6eR9Cb9GhOsldANNpLfQBC+kc7vgC4ZWrRsSjg2Ew7Q g//pItqJOj+Yvg+d1vILFlNKsxbyatvmR2IHFv3TZ8HrCjiz3Xsth7GuxRZwGg9h V+GNmUwxgdPsxvZBKqJxKLF5JaqDQh01hdCqxqZzp89fU0zM7EQ5pdNETvm2EFOr 9J1m8catGju2+372q3AbuAnAMzHJQK+Y5PQaVA== -----END CERTIFICATE-----Generated at Mon May 5 12:26:24 2025 by rpki-client