$ rpki-client -vvf rpki.apnic.net/member_repository/A91471DA/51D579480FE211ECA4DDC909C4F9AE02/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.mft File: 4k0JVBBixgi-Nj_2Gcy4RE3cPC8.mft (raw, json) Hash identifier: WYu5+II5yifZbqEiSvkQ9jwb3c6N83r3lDFj8pmQzEQ= Subject key identifier: 04:8C:AD:7F:3D:D1:44:17:49:58:57:F0:CD:34:38:B7:2E:7F:00:F7 Authority key identifier: E2:4D:09:54:10:62:C6:08:BE:36:3F:F6:19:CC:B8:44:4D:DC:3C:2F Certificate issuer: /CN=A91471DA/serialNumber=E24D09541062C608BE363FF619CCB8444DDC3C2F Certificate serial: 04F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91471DA/51D579480FE211ECA4DDC909C4F9AE02/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.mft Manifest number: 04EF Signing time: Mon 12 May 2025 23:29:47 +0000 Manifest this update: Mon 12 May 2025 23:29:47 +0000 Manifest next update: Mon 19 May 2025 23:29:47 +0000 Files and hashes: 1: 4k0JVBBixgi-Nj_2Gcy4RE3cPC8.crl (hash: sy/SVNIlFfH3adIq1L6s5LkCzLcJ+bScE2+5lnHQNhU=) 2: 914E7A440FE611EC8DD2020EC4F9AE02.roa (hash: mjyt1YwDNmlbVB+s1ceKNJUb36Gp/fdDhWoek/UDCZM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91471DA/51D579480FE211ECA4DDC909C4F9AE02/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.crl rsync://rpki.apnic.net/member_repository/A91471DA/51D579480FE211ECA4DDC909C4F9AE02/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 23:29:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1265 (0x4f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91471DA, serialNumber=E24D09541062C608BE363FF619CCB8444DDC3C2F Validity Not Before: May 12 23:29:47 2025 GMT Not After : May 19 23:29:47 2025 GMT Subject: CN=6822846b-796c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:3e:c3:92:7c:0e:a5:bd:c8:8d:40:b9:14:0f: cb:27:b1:4e:fa:18:4f:57:ec:f0:b6:2f:e7:46:95: 0a:49:0b:e6:8a:3c:7e:37:f1:22:ed:ff:3b:75:0f: 81:51:b9:91:2a:bb:0c:02:5b:d3:27:e7:56:aa:b8: ed:bc:96:cf:7c:d6:24:3e:b5:ef:fd:36:8e:12:98: f0:d6:01:4c:e8:27:79:e5:7c:0e:7a:55:80:7c:47: 77:2a:70:86:fc:09:92:ea:c6:bc:30:01:64:c2:33: 13:1a:98:ed:ad:6f:7b:18:cc:0f:70:6b:6a:48:80: 0c:7a:92:a9:75:f6:79:6d:78:9e:c5:60:03:5e:25: ba:bd:48:08:b7:26:b7:25:62:85:47:04:8c:a8:17: df:0b:e3:4c:cd:0b:04:32:36:16:43:4f:6c:80:03: 6e:ba:75:4f:e4:8c:38:ef:78:b9:3a:9b:bf:4e:4f: e9:b1:f2:9e:af:5e:8e:4f:03:43:fd:15:54:a4:12: 04:52:8b:0e:a4:0e:9a:94:a3:c0:7a:fc:02:7e:c9: 92:18:43:db:26:9a:bf:50:d6:2e:a9:17:95:59:11: 78:68:99:40:dc:5f:23:88:8d:89:fc:6c:8f:5f:62: fd:67:e7:08:b9:29:b7:17:10:ca:be:ff:92:87:d2: cc:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:8C:AD:7F:3D:D1:44:17:49:58:57:F0:CD:34:38:B7:2E:7F:00:F7 X509v3 Authority Key Identifier: keyid:E2:4D:09:54:10:62:C6:08:BE:36:3F:F6:19:CC:B8:44:4D:DC:3C:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91471DA/51D579480FE211ECA4DDC909C4F9AE02/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91471DA/51D579480FE211ECA4DDC909C4F9AE02/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:69:e9:f6:dc:a8:3c:b8:53:1b:a1:96:f2:af:4b:2c:c8:7c: e7:4b:15:3c:39:91:54:ce:0b:a3:00:d6:04:28:72:54:4a:8f: 9b:40:31:73:c0:1e:d0:e5:07:f4:14:aa:1c:22:22:5b:07:74: fa:c8:b0:1d:18:87:a0:f3:3e:a6:7c:00:78:5c:5d:c4:f2:47: 9c:ec:3a:dd:81:af:45:83:f2:84:cb:cc:27:2c:f7:77:4d:78: 2b:8e:47:23:2d:d5:59:01:45:a1:c0:2f:d8:ba:3a:85:99:6f: 7a:0b:ef:ce:62:a0:fa:36:b0:f4:4a:37:03:9f:52:c3:b9:6a: b2:4d:01:02:4d:cd:bf:fa:38:f6:ae:4c:bb:c7:7f:f7:90:e3: 20:ab:60:76:3f:43:25:c3:35:0b:44:8e:1e:59:53:03:b4:99: 98:db:f5:6f:c8:05:c1:12:79:50:d6:f2:fe:b2:64:84:5c:89: b9:25:cc:f5:b1:a3:e5:2e:34:2b:fc:30:12:cf:53:8a:52:12: 7e:2f:e6:f1:89:b5:c1:26:95:a3:5f:c8:54:5c:99:b2:7d:70: 50:77:b2:ad:c1:e6:f8:45:d3:19:2f:26:65:da:c6:0c:90:5f: c4:1c:0d:35:86:a2:e2:d3:3f:e1:02:72:fd:43:24:7e:20:8d: 82:ef:27:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDcxREExMTAvBgNVBAUTKEUyNEQwOTU0MTA2MkM2MDhCRTM2M0ZGNjE5Q0NCODQ0 NEREQzNDMkYwHhcNMjUwNTEyMjMyOTQ3WhcNMjUwNTE5MjMyOTQ3WjAYMRYwFAYD VQQDEw02ODIyODQ2Yi03OTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4j7DknwOpb3IjUC5FA/LJ7FO+hhPV+zwti/nRpUKSQvmijx+N/Ei7f87dQ+B UbmRKrsMAlvTJ+dWqrjtvJbPfNYkPrXv/TaOEpjw1gFM6Cd55XwOelWAfEd3KnCG /AmS6sa8MAFkwjMTGpjtrW97GMwPcGtqSIAMepKpdfZ5bXiexWADXiW6vUgItya3 JWKFRwSMqBffC+NMzQsEMjYWQ09sgANuunVP5Iw473i5Opu/Tk/psfKer16OTwND /RVUpBIEUosOpA6alKPAevwCfsmSGEPbJpq/UNYuqReVWRF4aJlA3F8jiI2J/GyP X2L9Z+cIuSm3FxDKvv+Sh9LMSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFASMrX89 0UQXSVhX8M00OLcufwD3MB8GA1UdIwQYMBaAFOJNCVQQYsYIvjY/9hnMuERN3Dwv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzFEQS81MUQ1Nzk0ODBG RTIxMUVDQTREREM5MDlDNEY5QUUwMi80azBKVkJCaXhnaS1Oal8yR2N5NFJFM2NQ QzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRrMEpWQkJpeGdpLU5qXzJHY3k0UkUzY1BDOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzFEQS81MUQ1Nzk0ODBGRTIxMUVDQTREREM5MDlDNEY5QUUwMi80azBKVkJCaXhn aS1Oal8yR2N5NFJFM2NQQzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPaen23Kg8uFMboZbyr0ssyHznSxU8OZFUzgujANYEKHJUSo+bQDFz wB7Q5Qf0FKocIiJbB3T6yLAdGIeg8z6mfAB4XF3E8kec7Drdga9Fg/KEy8wnLPd3 TXgrjkcjLdVZAUWhwC/YujqFmW96C+/OYqD6NrD0SjcDn1LDuWqyTQECTc2/+jj2 rky7x3/3kOMgq2B2P0MlwzULRI4eWVMDtJmY2/VvyAXBEnlQ1vL+smSEXIm5Jcz1 saPlLjQr/DASz1OKUhJ+L+bxibXBJpWjX8hUXJmyfXBQd7Ktweb4RdMZLyZl2sYM kF/EHA01hqLi0z/hAnL9QyR+II2C7yeD -----END CERTIFICATE-----Generated at Tue May 13 11:26:54 2025 by rpki-client