$ rpki-client -vvf rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft File: 4XM7lw_d92f_GVQoQ34SQqN2knc.mft (raw, json) Hash identifier: fT6RGW2XX+R89P91xoW2IYs1HoKRE+lI9tywAs6oGEc= Subject key identifier: 0D:09:DB:82:66:2C:E7:F6:F6:18:7A:5D:57:A5:BB:8D:10:D5:A2:3A Authority key identifier: E1:73:3B:97:0F:DD:F7:67:FF:19:54:28:43:7E:12:42:A3:76:92:77 Certificate issuer: /CN=A912E5CB/serialNumber=E1733B970FDDF767FF195428437E1242A3769277 Certificate serial: 01E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XM7lw_d92f_GVQoQ34SQqN2knc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft Manifest number: 01E2 Signing time: Tue 01 Jul 2025 03:01:48 +0000 Manifest this update: Tue 01 Jul 2025 03:01:48 +0000 Manifest next update: Tue 08 Jul 2025 03:01:48 +0000 Files and hashes: 1: 4XM7lw_d92f_GVQoQ34SQqN2knc.crl (hash: b00gMnZXCmI55iv6XHXd6LEeByO1HM62iTSlbhwVB5g=) 2: 5FF4FD52704C11ED97935E7DC4F9AE02.roa (hash: C5+qR+xwM5riTT+23t/1tPZQq66L4etzO1hAZvNu09M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.crl rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XM7lw_d92f_GVQoQ34SQqN2knc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 03:01:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 485 (0x1e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E5CB, serialNumber=E1733B970FDDF767FF195428437E1242A3769277 Validity Not Before: Jul 1 03:01:48 2025 GMT Not After : Jul 8 03:01:48 2025 GMT Subject: CN=68634f9c-8b49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:4d:38:db:2d:a0:04:2c:43:19:e5:82:ce:29: eb:76:35:b5:ed:cc:85:a5:75:c5:25:c5:e6:00:b0: 94:4d:d8:ec:d1:40:30:5d:18:e7:4c:a7:5f:82:8e: db:fd:30:39:18:ab:4e:83:2f:27:21:3f:27:10:28: a4:12:b0:30:79:a1:5b:a6:6d:e4:7c:dd:84:fe:2a: 71:f2:e8:a7:42:b3:e6:f9:9f:de:7e:77:56:61:53: 7c:85:6d:f5:a5:f7:cb:77:70:61:60:59:a3:04:ec: 67:bd:2d:5e:a4:ce:f0:bf:34:ef:57:b6:e0:67:ed: 05:7f:74:f3:11:eb:c7:78:3e:6b:01:b0:84:4c:1c: a4:94:24:b6:7c:e6:5e:bf:47:2f:92:48:ca:cd:f9: b4:40:17:6a:e3:4c:2d:06:55:96:58:e6:ee:9c:c1: a0:fd:f6:d4:27:17:b2:cc:cc:01:e9:5d:3a:b3:01: f3:e1:12:45:3c:01:db:b9:f4:55:a4:44:7e:70:61: 4f:99:36:0b:54:c3:82:23:7d:37:05:8c:2e:22:e3: 0b:ed:10:ff:bf:68:7e:c0:d9:31:e4:16:b8:e3:b3: 07:ac:7c:ee:58:19:1f:ca:72:bd:0f:23:35:9a:33: ee:ff:d2:ab:cc:c5:06:6b:aa:18:c2:5e:42:cb:54: fb:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:09:DB:82:66:2C:E7:F6:F6:18:7A:5D:57:A5:BB:8D:10:D5:A2:3A X509v3 Authority Key Identifier: keyid:E1:73:3B:97:0F:DD:F7:67:FF:19:54:28:43:7E:12:42:A3:76:92:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XM7lw_d92f_GVQoQ34SQqN2knc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:24:8b:e9:cf:2a:5f:f6:e0:af:b2:16:e7:db:1d:e9:c2:5e: 7d:e4:3e:90:93:55:3e:43:f6:28:a7:b6:2c:31:e6:df:b2:8a: 39:7e:2e:c4:ab:2b:d3:7d:d2:bc:04:4b:ad:24:4a:90:43:44: 51:32:86:b6:cd:c2:b6:e2:a3:b7:ce:29:b7:96:08:d5:b3:15: b9:74:ee:1c:67:f2:b2:eb:ae:3e:9c:d0:0b:d8:6b:3a:ec:c4: 88:16:9c:3c:1c:33:65:0a:9f:55:08:e8:56:e9:7a:76:7f:10: 94:37:1b:83:94:c0:eb:67:f9:7f:c6:62:72:5a:64:b9:65:f2: 1a:04:05:0a:d1:cc:68:6b:b4:9e:7e:20:7b:07:71:0c:0d:73: 60:e5:c3:56:60:28:71:0f:b6:c7:aa:26:36:a0:20:39:6c:14: 01:73:97:cd:58:40:7e:88:9c:6a:9a:59:ed:5c:57:d2:f1:13: 19:6a:02:b6:5b:b4:fc:be:af:c4:89:65:8e:94:db:b3:89:ff: e1:b5:b9:9f:1f:49:1b:e3:d3:fa:38:16:7c:f9:8f:8f:59:0c: 5a:82:11:eb:90:8d:7f:31:56:96:13:76:92:11:85:c4:49:a3: e6:bb:8a:c8:54:b3:4c:1c:03:ee:b7:f3:2e:eb:2e:09:f3:63: 65:55:cd:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkU1Q0IxMTAvBgNVBAUTKEUxNzMzQjk3MEZEREY3NjdGRjE5NTQyODQzN0UxMjQy QTM3NjkyNzcwHhcNMjUwNzAxMDMwMTQ4WhcNMjUwNzA4MDMwMTQ4WjAYMRYwFAYD VQQDEw02ODYzNGY5Yy04YjQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzU042y2gBCxDGeWCzinrdjW17cyFpXXFJcXmALCUTdjs0UAwXRjnTKdfgo7b /TA5GKtOgy8nIT8nECikErAweaFbpm3kfN2E/ipx8uinQrPm+Z/efndWYVN8hW31 pffLd3BhYFmjBOxnvS1epM7wvzTvV7bgZ+0Ff3TzEevHeD5rAbCETByklCS2fOZe v0cvkkjKzfm0QBdq40wtBlWWWObunMGg/fbUJxeyzMwB6V06swHz4RJFPAHbufRV pER+cGFPmTYLVMOCI303BYwuIuML7RD/v2h+wNkx5Ba447MHrHzuWBkfynK9DyM1 mjPu/9KrzMUGa6oYwl5Cy1T7BwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA0J24Jm LOf29hh6XVelu40Q1aI6MB8GA1UdIwQYMBaAFOFzO5cP3fdn/xlUKEN+EkKjdpJ3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTVDQi81Mjg4RENFMDcw NDkxMUVEQjZFMUZCNzhDNEY5QUUwMi80WE03bHdfZDkyZl9HVlFvUTM0U1FxTjJr bmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRYTTdsd19kOTJmX0dWUW9RMzRTUXFOMmtuYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RTVDQi81Mjg4RENFMDcwNDkxMUVEQjZFMUZCNzhDNEY5QUUwMi80WE03bHdfZDky Zl9HVlFvUTM0U1FxTjJrbmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+JIvpzypf9uCvshbn2x3pwl595D6Qk1U+Q/Yop7YsMebfsoo5fi7E qyvTfdK8BEutJEqQQ0RRMoa2zcK24qO3zim3lgjVsxW5dO4cZ/Ky664+nNAL2Gs6 7MSIFpw8HDNlCp9VCOhW6Xp2fxCUNxuDlMDrZ/l/xmJyWmS5ZfIaBAUK0cxoa7Se fiB7B3EMDXNg5cNWYChxD7bHqiY2oCA5bBQBc5fNWEB+iJxqmlntXFfS8RMZagK2 W7T8vq/EiWWOlNuzif/htbmfH0kb49P6OBZ8+Y+PWQxaghHrkI1/MVaWE3aSEYXE SaPmu4rIVLNMHAPut/Mu6y4J82NlVc0C -----END CERTIFICATE-----Generated at Wed Jul 2 23:19:17 2025 by rpki-client