$ rpki-client -vvf rpki.apnic.net/member_repository/A9145B13/4637FBF2B12811EFB750A52BC4F9AE02/4_FvnXPM7iaTkVokT0S1U6TbPcw.mft File: 4_FvnXPM7iaTkVokT0S1U6TbPcw.mft (raw, json) Hash identifier: BWYg4EY/oqzrCrlwh6UEJR9VSpQu0oTDWGjeIjDZZhI= Subject key identifier: 9D:D6:33:75:C5:6A:4B:9F:51:22:F9:A1:39:28:9F:9C:15:EE:F2:57 Authority key identifier: E3:F1:6F:9D:73:CC:EE:26:93:91:5A:24:4F:44:B5:53:A4:DB:3D:CC Certificate issuer: /CN=A9145B13/serialNumber=E3F16F9D73CCEE2693915A244F44B553A4DB3DCC Certificate serial: 57 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4_FvnXPM7iaTkVokT0S1U6TbPcw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145B13/4637FBF2B12811EFB750A52BC4F9AE02/4_FvnXPM7iaTkVokT0S1U6TbPcw.mft Manifest number: 56 Signing time: Sat 17 May 2025 06:41:36 +0000 Manifest this update: Sat 17 May 2025 06:41:35 +0000 Manifest next update: Sat 24 May 2025 06:41:35 +0000 Files and hashes: 1: 4_FvnXPM7iaTkVokT0S1U6TbPcw.crl (hash: vzkEkAiL4BHI4897tUIKkG8uQ4Crd1FXOpxSBhvaau8=) 2: 05E4CBECB12911EF993BC12DC4F9AE02.roa (hash: 6bS2IOUFxNL/dxgXXkv7hlgTjA3VB1/wSeyQ+zl4/9o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145B13/4637FBF2B12811EFB750A52BC4F9AE02/4_FvnXPM7iaTkVokT0S1U6TbPcw.crl rsync://rpki.apnic.net/member_repository/A9145B13/4637FBF2B12811EFB750A52BC4F9AE02/4_FvnXPM7iaTkVokT0S1U6TbPcw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4_FvnXPM7iaTkVokT0S1U6TbPcw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 87 (0x57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145B13, serialNumber=E3F16F9D73CCEE2693915A244F44B553A4DB3DCC Validity Not Before: May 17 06:41:35 2025 GMT Not After : May 24 06:41:35 2025 GMT Subject: CN=68282f9f-3d67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:e0:eb:87:34:1c:2b:6a:c2:ac:0b:1e:b5:78: f6:06:66:16:9e:38:4d:71:a5:b1:8b:61:3b:ef:96: 84:05:29:56:08:b3:b5:26:47:a8:5a:bd:53:1d:5c: 2b:50:0e:59:d1:6b:95:eb:5c:fb:33:31:54:c8:63: 96:a1:ba:e0:2c:49:97:70:53:e0:c3:a5:db:c0:54: eb:b8:92:6a:64:8f:aa:80:db:80:1e:0f:f7:53:0b: e9:bc:21:c5:50:33:30:a1:92:e8:e9:5f:4f:a3:72: 58:f9:c1:b7:ee:87:b8:72:db:12:96:51:79:ca:cc: 57:01:c5:ec:8a:96:c7:d5:8a:71:b9:c0:97:0b:4c: dc:19:2b:88:03:62:f3:73:14:af:cb:5b:7f:68:21: 55:dd:70:6f:a7:30:76:67:f3:31:c4:22:65:dd:7c: 48:95:66:f4:fb:1e:f1:51:7a:a7:dd:6c:06:01:12: 7c:f9:e0:6c:59:06:bb:96:52:a5:cd:4a:db:f7:ed: 9c:28:a2:f6:80:48:45:61:81:a7:53:d5:21:3c:6d: 34:3a:30:b3:91:1b:70:29:c6:45:22:67:48:df:d5: 5f:8a:59:13:15:d8:32:07:7c:fb:ea:ae:95:f4:b3: 1a:2c:cc:dd:13:0b:86:93:da:f1:22:a5:a7:09:e4: 3e:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:D6:33:75:C5:6A:4B:9F:51:22:F9:A1:39:28:9F:9C:15:EE:F2:57 X509v3 Authority Key Identifier: keyid:E3:F1:6F:9D:73:CC:EE:26:93:91:5A:24:4F:44:B5:53:A4:DB:3D:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145B13/4637FBF2B12811EFB750A52BC4F9AE02/4_FvnXPM7iaTkVokT0S1U6TbPcw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4_FvnXPM7iaTkVokT0S1U6TbPcw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145B13/4637FBF2B12811EFB750A52BC4F9AE02/4_FvnXPM7iaTkVokT0S1U6TbPcw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:cd:90:41:22:3f:db:a4:1a:5a:4f:82:43:ed:41:28:d8:7e: 28:4f:20:b4:c1:a1:ca:50:a3:09:01:92:85:48:6f:96:52:39: 17:c9:be:9e:17:4e:1f:ea:3e:2d:4a:dd:94:35:1a:33:b0:46: 0e:e4:cc:18:0b:13:34:26:6e:6b:89:f8:0a:d3:f8:71:80:68: 02:75:64:c9:7b:7e:3d:1b:3b:8b:c3:55:4f:4f:e8:c9:ea:03: 1f:88:3d:e0:2f:3f:f4:7c:8b:96:d9:31:26:8b:82:3a:88:80: 28:a7:03:42:df:8c:89:3b:59:75:52:26:0d:74:1d:fa:6d:46: ab:4a:6d:e1:00:23:67:d3:61:15:be:44:ec:d1:90:86:55:42: ee:ea:bd:f2:40:a1:10:af:c1:25:f6:71:f5:16:c6:a1:6b:c5: 13:c5:db:82:a4:ee:49:17:67:7c:f2:3b:b8:d9:58:ee:8f:dd: 25:93:dc:12:61:c4:cc:78:e0:28:cb:2c:2c:ce:ee:18:00:38: 08:6d:10:2c:60:e9:1c:a2:25:8a:b3:9e:b9:69:3d:42:22:59: d5:46:de:33:16:40:5d:c0:c9:20:39:ff:be:1a:34:7f:22:89: c1:ef:19:52:16:7f:65:1d:8b:52:52:d0:40:3a:24:2b:77:f3: f2:ae:8e:69 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NUIxMzExMC8GA1UEBRMoRTNGMTZGOUQ3M0NDRUUyNjkzOTE1QTI0NEY0NEI1NTNB NERCM0RDQzAeFw0yNTA1MTcwNjQxMzVaFw0yNTA1MjQwNjQxMzVaMBgxFjAUBgNV BAMTDTY4MjgyZjlmLTNkNjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDD4OuHNBwrasKsCx61ePYGZhaeOE1xpbGLYTvvloQFKVYIs7UmR6havVMdXCtQ DlnRa5XrXPszMVTIY5ahuuAsSZdwU+DDpdvAVOu4kmpkj6qA24AeD/dTC+m8IcVQ MzChkujpX0+jclj5wbfuh7hy2xKWUXnKzFcBxeyKlsfVinG5wJcLTNwZK4gDYvNz FK/LW39oIVXdcG+nMHZn8zHEImXdfEiVZvT7HvFReqfdbAYBEnz54GxZBruWUqXN Stv37ZwoovaASEVhgadT1SE8bTQ6MLORG3ApxkUiZ0jf1V+KWRMV2DIHfPvqrpX0 sxoszN0TC4aT2vEipacJ5D5PAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUndYzdcVq S59RIvmhOSifnBXu8lcwHwYDVR0jBBgwFoAU4/FvnXPM7iaTkVokT0S1U6TbPcww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1QjEzLzQ2MzdGQkYyQjEy ODExRUZCNzUwQTUyQkM0RjlBRTAyLzRfRnZuWFBNN2lhVGtWb2tUMFMxVTZUYlBj dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNF9Gdm5YUE03aWFUa1Zva1QwUzFVNlRiUGN3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1 QjEzLzQ2MzdGQkYyQjEyODExRUZCNzUwQTUyQkM0RjlBRTAyLzRfRnZuWFBNN2lh VGtWb2tUMFMxVTZUYlBjdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAADNkEEiP9ukGlpPgkPtQSjYfihPILTBocpQowkBkoVIb5ZSORfJvp4X Th/qPi1K3ZQ1GjOwRg7kzBgLEzQmbmuJ+ArT+HGAaAJ1ZMl7fj0bO4vDVU9P6Mnq Ax+IPeAvP/R8i5bZMSaLgjqIgCinA0LfjIk7WXVSJg10HfptRqtKbeEAI2fTYRW+ ROzRkIZVQu7qvfJAoRCvwSX2cfUWxqFrxRPF24Kk7kkXZ3zyO7jZWO6P3SWT3BJh xMx44CjLLCzO7hgAOAhtECxg6RyiJYqznrlpPUIiWdVG3jMWQF3AySA5/74aNH8i icHvGVIWf2Udi1JS0EA6JCt38/Kujmk= -----END CERTIFICATE-----Generated at Sat May 17 09:42:04 2025 by rpki-client