$ rpki-client -vvf rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.mft File: 4YL5k2lSxCadZw2ldS3syGgjTxs.mft (raw, json) Hash identifier: wMnN9tnIQwyedxW9Lyhg0WkfHCY/eeEGMyr8gC4ZVYE= Subject key identifier: 53:81:C2:04:FC:7A:5F:39:CB:0C:5E:9C:40:8D:96:1E:BF:49:A7:CD Authority key identifier: E1:82:F9:93:69:52:C4:26:9D:67:0D:A5:75:2D:EC:C8:68:23:4F:1B Certificate issuer: /CN=A9126F2B/serialNumber=E182F9936952C4269D670DA5752DECC868234F1B Certificate serial: 21C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YL5k2lSxCadZw2ldS3syGgjTxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.mft Manifest number: 21A4 Signing time: Wed 14 May 2025 15:58:56 +0000 Manifest this update: Wed 14 May 2025 15:58:56 +0000 Manifest next update: Wed 21 May 2025 15:58:56 +0000 Files and hashes: 1: 4YL5k2lSxCadZw2ldS3syGgjTxs.crl (hash: IXh5Tu6E7LMlFLRbli7eDcXeHAwpZdSPYNd0taCyHrg=) 2: B72206B4554B11E791BA5861C4F9AE02.roa (hash: Si+Xx28szHe9Iv7W1YtcZoNp90VlP5RP91wUGl6kx/U=) 3: A8E9DE704B8511E7BF406610C4F9AE02.roa (hash: nu+MmRVMelFZBsdSEFhVpeJliAcHe14e7veTklAJkjc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.crl rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YL5k2lSxCadZw2ldS3syGgjTxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 15:58:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8645 (0x21c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9126F2B, serialNumber=E182F9936952C4269D670DA5752DECC868234F1B Validity Not Before: May 14 15:58:56 2025 GMT Not After : May 21 15:58:56 2025 GMT Subject: CN=6824bdc0-d9eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:01:51:76:93:17:c6:7c:28:e2:85:52:2e:5d: 58:b2:f1:54:eb:84:e3:28:a1:65:ee:ae:96:d3:78: c9:8c:66:56:00:11:cf:71:43:bb:d9:1d:aa:3e:60: e7:b7:92:a0:3e:fb:de:ae:4e:25:51:95:98:cb:15: bd:d8:24:c1:d7:03:b5:0c:9d:c5:d9:0d:f7:9a:09: cf:aa:f6:da:dd:72:4f:b8:b3:d1:9e:e8:85:a7:02: b5:72:40:29:bc:84:e0:78:e6:0f:47:5a:40:62:2d: ea:ff:27:b5:0c:d3:a3:e9:d3:36:3d:8c:a6:69:e1: 12:ed:10:db:7f:8a:84:a9:4f:4d:d3:27:9a:e2:25: 9c:65:4d:17:61:5f:34:ac:de:0a:80:66:f8:1c:23: b4:3a:01:08:a7:e1:75:51:25:12:a7:25:e2:45:42: d5:d4:c1:33:6d:5a:77:a5:8b:c6:3c:1b:18:c5:9e: 91:c3:e6:d6:b7:4b:f1:10:b9:26:54:48:9a:24:5e: 4f:dc:56:48:13:eb:89:e2:7d:c9:b4:57:24:a4:22: 2b:9d:f2:01:ae:85:2f:1f:e5:66:37:36:11:9d:16: c4:90:75:f6:10:5c:98:83:ba:d4:2e:28:0c:64:14: d5:ff:11:a3:9b:e6:a4:f5:8d:12:e4:8a:42:c1:11: 7f:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:81:C2:04:FC:7A:5F:39:CB:0C:5E:9C:40:8D:96:1E:BF:49:A7:CD X509v3 Authority Key Identifier: keyid:E1:82:F9:93:69:52:C4:26:9D:67:0D:A5:75:2D:EC:C8:68:23:4F:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YL5k2lSxCadZw2ldS3syGgjTxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:74:5c:da:45:04:9f:8c:4d:5e:2d:69:bc:8c:65:74:bd:c4: 59:98:35:80:6c:ca:3d:e1:2a:8e:95:c9:7c:85:b7:0a:14:2e: 0f:56:48:74:02:1f:60:93:c6:55:69:94:38:6d:16:86:47:b2: 17:7d:31:4f:79:f2:09:26:8c:35:d2:e6:43:8e:6e:e0:51:aa: 4f:ea:28:8f:f3:a5:e6:89:25:36:9c:02:a0:16:e9:37:da:a7: f9:2f:ee:aa:75:bc:c1:5c:ca:97:88:df:6b:2b:73:11:06:4d: fb:8e:30:3f:6c:51:31:ce:8a:24:f3:a6:b1:9a:27:ca:30:d5: 2f:58:4e:82:d3:8a:12:f4:d6:4b:89:04:7f:e7:c1:6f:c1:4b: cc:c8:a1:71:2d:d9:c2:f8:cb:4e:aa:c6:7d:61:38:da:49:6d: 21:65:a7:0d:1a:8f:dc:ca:76:e8:ae:ec:8d:0b:aa:06:88:1b: 32:d2:f4:04:d8:36:ed:48:d0:10:7c:2e:2d:23:f3:fc:03:b7: b8:73:22:06:29:3f:c2:85:97:44:38:31:d9:2c:ba:b3:69:25: 3b:48:a6:7c:db:4c:0a:dc:bf:2c:82:c3:de:03:20:ff:e2:ab: 1f:a0:0f:49:6b:bf:2a:ae:ef:5b:33:3e:ce:22:17:5f:9f:dc: 32:4e:d7:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIcUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjZGMkIxMTAvBgNVBAUTKEUxODJGOTkzNjk1MkM0MjY5RDY3MERBNTc1MkRFQ0M4 NjgyMzRGMUIwHhcNMjUwNTE0MTU1ODU2WhcNMjUwNTIxMTU1ODU2WjAYMRYwFAYD VQQDEw02ODI0YmRjMC1kOWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4AFRdpMXxnwo4oVSLl1YsvFU64TjKKFl7q6W03jJjGZWABHPcUO72R2qPmDn t5KgPvverk4lUZWYyxW92CTB1wO1DJ3F2Q33mgnPqvba3XJPuLPRnuiFpwK1ckAp vITgeOYPR1pAYi3q/ye1DNOj6dM2PYymaeES7RDbf4qEqU9N0yea4iWcZU0XYV80 rN4KgGb4HCO0OgEIp+F1USUSpyXiRULV1MEzbVp3pYvGPBsYxZ6Rw+bWt0vxELkm VEiaJF5P3FZIE+uJ4n3JtFckpCIrnfIBroUvH+VmNzYRnRbEkHX2EFyYg7rULigM ZBTV/xGjm+ak9Y0S5IpCwRF/QwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFOBwgT8 el85ywxenECNlh6/SafNMB8GA1UdIwQYMBaAFOGC+ZNpUsQmnWcNpXUt7MhoI08b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNkYyQi85MEZBREVFQ0Q1 Q0QxMUU1QUE0MjZFNDBDNEY5QUUwMi80WUw1azJsU3hDYWRadzJsZFMzc3lHZ2pU eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRZTDVrMmxTeENhZFp3MmxkUzNzeUdnalR4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NkYyQi85MEZBREVFQ0Q1Q0QxMUU1QUE0MjZFNDBDNEY5QUUwMi80WUw1azJsU3hD YWRadzJsZFMzc3lHZ2pUeHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBadFzaRQSfjE1eLWm8jGV0vcRZmDWAbMo94SqOlcl8hbcKFC4PVkh0 Ah9gk8ZVaZQ4bRaGR7IXfTFPefIJJow10uZDjm7gUapP6iiP86XmiSU2nAKgFuk3 2qf5L+6qdbzBXMqXiN9rK3MRBk37jjA/bFExzook86axmifKMNUvWE6C04oS9NZL iQR/58FvwUvMyKFxLdnC+MtOqsZ9YTjaSW0hZacNGo/cynboruyNC6oGiBsy0vQE 2DbtSNAQfC4tI/P8A7e4cyIGKT/ChZdEODHZLLqzaSU7SKZ820wK3L8sgsPeAyD/ 4qsfoA9Ja78qru9bMz7OIhdfn9wyTtfa -----END CERTIFICATE-----Generated at Fri May 16 06:28:42 2025 by rpki-client