$ rpki-client -vvf rpki.apnic.net/member_repository/A91427E2/783DFBC4935011EFBACE004CC4F9AE02/R4tJDpOd3d8hrKx4y5MZinuBRIU.mft File: R4tJDpOd3d8hrKx4y5MZinuBRIU.mft (raw, json) Hash identifier: rCxPsnnRyZD9/TaiGOmCgySdfeLosuLI639NRmWEPV0= Subject key identifier: 02:D3:E2:1F:84:C9:6D:DD:47:1B:44:98:ED:8C:9F:CA:A1:48:7B:18 Authority key identifier: 47:8B:49:0E:93:9D:DD:DF:21:AC:AC:78:CB:93:19:8A:7B:81:44:85 Certificate issuer: /CN=A91427E2/serialNumber=478B490E939DDDDF21ACAC78CB93198A7B814485 Certificate serial: 69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4tJDpOd3d8hrKx4y5MZinuBRIU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91427E2/783DFBC4935011EFBACE004CC4F9AE02/R4tJDpOd3d8hrKx4y5MZinuBRIU.mft Manifest number: 68 Signing time: Sun 11 May 2025 05:44:16 +0000 Manifest this update: Sun 11 May 2025 05:44:15 +0000 Manifest next update: Sun 18 May 2025 05:44:15 +0000 Files and hashes: 1: R4tJDpOd3d8hrKx4y5MZinuBRIU.crl (hash: ofe792sYw2DP+nI6jJz9oC1EUiee2anfJZpqPqdaHZM=) 2: 534DAEB2935111EF98AA8C86C4F9AE02.roa (hash: uOl4+NzZB6fPlXrYszF0PeNPfsE4Pp9BL5TML7ATF7Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91427E2/783DFBC4935011EFBACE004CC4F9AE02/R4tJDpOd3d8hrKx4y5MZinuBRIU.crl rsync://rpki.apnic.net/member_repository/A91427E2/783DFBC4935011EFBACE004CC4F9AE02/R4tJDpOd3d8hrKx4y5MZinuBRIU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4tJDpOd3d8hrKx4y5MZinuBRIU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 05:44:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 105 (0x69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91427E2, serialNumber=478B490E939DDDDF21ACAC78CB93198A7B814485 Validity Not Before: May 11 05:44:15 2025 GMT Not After : May 18 05:44:15 2025 GMT Subject: CN=68203930-5f34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:73:29:96:bc:b9:a3:26:99:a8:2c:c2:3e:cb: 91:eb:91:7c:43:4f:dc:9f:e7:95:d9:a1:09:b6:1f: 0d:d0:e7:d6:6b:b8:22:4f:c8:95:0c:e6:b3:c8:21: fe:e6:5e:f5:13:4d:88:98:da:2f:49:54:1d:cd:91: 7f:00:3f:63:90:ab:73:a9:e3:4a:50:97:9c:0b:c8: 65:6f:58:c8:16:73:0c:58:53:b4:29:46:ad:65:0c: e7:03:9f:5e:ac:c0:5f:ad:fa:83:43:36:0b:e6:9f: ac:7a:3b:8b:47:99:d5:6e:f9:98:64:7c:50:fb:f2: 9b:48:d0:4d:8d:ee:40:b3:a0:d0:66:a3:e3:da:d9: fd:2d:a0:f8:f8:1c:37:a4:08:c9:2c:b8:94:50:99: 63:6e:4c:4b:74:b5:3a:2e:d4:72:6c:50:af:42:88: e5:5a:ee:25:76:0f:b2:3b:9c:55:a6:44:3c:4c:e7: 59:2a:44:7e:2e:33:9b:af:f3:da:a9:ad:58:6d:dd: 12:68:54:d0:e4:54:b8:5c:36:bf:d0:c9:2a:5a:ca: ae:ad:a7:e6:ec:88:27:b7:f0:c3:80:03:d5:66:b3: 7b:04:b8:b7:ea:89:89:d0:ae:d2:d3:7e:bf:7b:f6: 1f:98:91:1f:df:e6:8a:c5:44:09:a1:96:6d:36:71: 5f:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:D3:E2:1F:84:C9:6D:DD:47:1B:44:98:ED:8C:9F:CA:A1:48:7B:18 X509v3 Authority Key Identifier: keyid:47:8B:49:0E:93:9D:DD:DF:21:AC:AC:78:CB:93:19:8A:7B:81:44:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91427E2/783DFBC4935011EFBACE004CC4F9AE02/R4tJDpOd3d8hrKx4y5MZinuBRIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4tJDpOd3d8hrKx4y5MZinuBRIU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91427E2/783DFBC4935011EFBACE004CC4F9AE02/R4tJDpOd3d8hrKx4y5MZinuBRIU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:6e:2f:06:01:60:68:90:ee:9e:98:2f:55:0d:e8:f2:d5:c7: cf:c7:63:df:fe:2a:b8:e8:b0:e5:e2:23:52:92:8d:f8:cd:2b: 4b:f8:9a:32:51:b1:6c:cd:91:81:c5:41:6c:c3:2d:e5:aa:0c: 88:b0:2e:d1:4f:aa:f7:73:1c:17:7b:dc:b1:99:a1:7a:06:fb: 8a:10:1c:4e:88:6e:61:bf:b0:b3:4d:ca:b4:83:fa:09:cc:bd: 42:36:9f:b8:c7:06:d1:37:e7:70:12:81:b7:a0:78:c1:de:17: bc:02:2a:f7:76:15:df:aa:68:19:d9:95:e8:c2:1a:3a:83:62: 55:b8:7e:26:43:2e:10:27:5b:4b:08:48:4d:89:05:93:36:c6: 52:39:5a:74:2c:7e:92:df:31:02:a1:7e:dc:49:50:ab:01:69: 02:0a:c5:5d:20:c7:c1:79:97:3c:a6:fd:ee:93:f7:ca:88:f6: 43:71:75:e8:2a:3b:b9:6f:21:ab:92:05:39:c4:ed:d1:7c:7f: ee:44:ac:d2:ca:b1:c1:69:16:f8:4d:53:23:04:44:b6:89:d4: 9a:f3:77:82:34:e2:a6:b2:ab:b2:14:bb:0e:66:ca:f3:82:1b: fe:d8:1e:c4:4e:b6:d9:8a:e1:d0:23:86:50:99:7e:20:7f:16: 4c:45:d3:9a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBaTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MjdFMjExMC8GA1UEBRMoNDc4QjQ5MEU5MzlERERERjIxQUNBQzc4Q0I5MzE5OEE3 QjgxNDQ4NTAeFw0yNTA1MTEwNTQ0MTVaFw0yNTA1MTgwNTQ0MTVaMBgxFjAUBgNV BAMTDTY4MjAzOTMwLTVmMzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCscymWvLmjJpmoLMI+y5HrkXxDT9yf55XZoQm2Hw3Q59ZruCJPyJUM5rPIIf7m XvUTTYiY2i9JVB3NkX8AP2OQq3Op40pQl5wLyGVvWMgWcwxYU7QpRq1lDOcDn16s wF+t+oNDNgvmn6x6O4tHmdVu+ZhkfFD78ptI0E2N7kCzoNBmo+Pa2f0toPj4HDek CMksuJRQmWNuTEt0tTou1HJsUK9CiOVa7iV2D7I7nFWmRDxM51kqRH4uM5uv89qp rVht3RJoVNDkVLhcNr/QySpayq6tp+bsiCe38MOAA9Vms3sEuLfqiYnQrtLTfr97 9h+YkR/f5orFRAmhlm02cV+nAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUAtPiH4TJ bd1HG0SY7YyfyqFIexgwHwYDVR0jBBgwFoAUR4tJDpOd3d8hrKx4y5MZinuBRIUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQyN0UyLzc4M0RGQkM0OTM1 MDExRUZCQUNFMDA0Q0M0RjlBRTAyL1I0dEpEcE9kM2Q4aHJLeDR5NU1aaW51QlJJ VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUjR0SkRwT2QzZDhockt4NHk1TVppbnVCUklVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQy N0UyLzc4M0RGQkM0OTM1MDExRUZCQUNFMDA0Q0M0RjlBRTAyL1I0dEpEcE9kM2Q4 aHJLeDR5NU1aaW51QlJJVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADhuLwYBYGiQ7p6YL1UN6PLVx8/HY9/+KrjosOXiI1KSjfjNK0v4mjJR sWzNkYHFQWzDLeWqDIiwLtFPqvdzHBd73LGZoXoG+4oQHE6IbmG/sLNNyrSD+gnM vUI2n7jHBtE353ASgbegeMHeF7wCKvd2Fd+qaBnZlejCGjqDYlW4fiZDLhAnW0sI SE2JBZM2xlI5WnQsfpLfMQKhftxJUKsBaQIKxV0gx8F5lzym/e6T98qI9kNxdegq O7lvIauSBTnE7dF8f+5ErNLKscFpFvhNUyMERLaJ1Jrzd4I04qayq7IUuw5myvOC G/7YHsROttmK4dAjhlCZfiB/FkxF05o= -----END CERTIFICATE-----Generated at Sun May 11 22:43:59 2025 by rpki-client