$ rpki-client -vvf rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft File: 4QZLtgGhMQh2G1RXofcVJMSky84.mft (raw, json) Hash identifier: P7vc2ohd0jYnZG0HVCIQXxNeIrPy/M8ut2oj3/kECN8= Subject key identifier: 6B:3C:6E:94:B7:43:37:BC:63:8B:07:94:09:3B:B3:BB:A5:E5:A7:F9 Authority key identifier: E1:06:4B:B6:01:A1:31:08:76:1B:54:57:A1:F7:15:24:C4:A4:CB:CE Certificate issuer: /CN=A914B57F/serialNumber=E1064BB601A13108761B5457A1F71524C4A4CBCE Certificate serial: 0AC6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QZLtgGhMQh2G1RXofcVJMSky84.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft Manifest number: 0AC0 Signing time: Mon 12 May 2025 19:18:33 +0000 Manifest this update: Mon 12 May 2025 19:18:32 +0000 Manifest next update: Mon 19 May 2025 19:18:32 +0000 Files and hashes: 1: 4QZLtgGhMQh2G1RXofcVJMSky84.crl (hash: ghCuq2YsuRJ92vLKmLM5Ow35ldZv/ESk64Z7VqsG+BA=) 2: 11685AAC4F0D11EAA161D143C4F9AE02.roa (hash: HpuZh21zVl0Ft40GZ9PsEwmlpNjswClEyYGJmu6x+ok=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.crl rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QZLtgGhMQh2G1RXofcVJMSky84.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 19:18:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2758 (0xac6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B57F, serialNumber=E1064BB601A13108761B5457A1F71524C4A4CBCE Validity Not Before: May 12 19:18:32 2025 GMT Not After : May 19 19:18:32 2025 GMT Subject: CN=68224989-d713 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:97:00:8a:68:c1:e0:23:ab:bd:24:08:d7:8c: 83:9d:7b:38:55:ad:b7:ac:1b:78:b4:e3:0e:7f:1a: 14:a1:a2:01:d7:4d:7a:61:90:c5:88:bd:c4:53:ab: cc:12:33:88:05:c5:4c:58:c7:3a:86:1d:aa:06:41: 9e:8b:77:45:68:cc:fd:65:d0:d2:c5:e5:90:34:0d: 5e:6f:e2:a7:f5:d5:b4:fa:90:3c:f7:b1:26:b6:23: 5c:cd:98:d0:e3:65:c9:4c:6d:9f:48:a8:68:1c:4e: 88:6e:00:93:83:23:f3:0f:c2:e5:63:2f:4a:85:aa: 08:93:c7:ab:df:8d:d4:68:6f:82:b0:aa:c8:41:11: ab:cc:dd:72:fd:fb:c8:87:ab:84:09:3d:e2:91:4b: ae:22:78:12:96:be:67:41:2e:6b:00:8a:6f:ae:6b: d9:92:02:c5:6a:d0:e5:1e:01:63:71:ef:de:56:5f: b0:a9:fe:b0:d0:e5:30:50:18:19:70:f2:d8:75:0d: 31:24:ea:c4:c4:a7:ce:51:77:56:c0:cf:07:0d:c8: 7a:33:75:72:d3:a2:14:0d:a5:c0:94:93:77:ea:1f: 1b:5c:70:eb:85:54:f4:f0:7c:89:7e:1b:03:d2:ae: 0e:86:91:ef:60:2d:3b:49:91:57:6a:95:66:b2:a7: cc:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:3C:6E:94:B7:43:37:BC:63:8B:07:94:09:3B:B3:BB:A5:E5:A7:F9 X509v3 Authority Key Identifier: keyid:E1:06:4B:B6:01:A1:31:08:76:1B:54:57:A1:F7:15:24:C4:A4:CB:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QZLtgGhMQh2G1RXofcVJMSky84.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:8f:c5:b9:1b:0a:54:73:af:1c:a9:e6:38:cd:8a:de:1e:07: 3c:dd:b8:48:97:28:b7:eb:e8:b0:f6:a2:4e:52:75:b6:f7:d5: cd:99:b0:e8:61:6d:55:24:f1:3f:dd:5a:77:f0:15:be:1e:ca: 5b:11:5a:a6:ea:c9:4a:de:33:20:b5:3e:35:8c:c0:51:ab:1f: 16:5b:ab:cc:fa:bd:29:52:68:61:13:4f:2e:d9:69:2f:77:f9: ed:28:78:49:92:7f:a9:99:dd:a2:7e:5d:34:c9:d8:9a:9a:a3: 90:13:ea:0e:83:b8:fa:a2:e7:08:ec:4b:d7:d3:ca:c4:cf:86: fb:c3:62:f8:25:7d:ee:74:87:1f:11:9a:83:79:12:9b:d6:89: 46:c4:69:85:13:a5:88:97:65:c4:6d:9f:02:e0:7f:88:be:23: 1d:8a:7c:3a:22:1f:e4:58:2a:9b:7a:e6:4b:ef:f2:b9:09:3f: dc:a5:76:3b:3e:76:b2:00:e5:84:0b:a9:8d:91:13:32:58:ba: da:57:3a:92:7a:c5:70:cd:38:80:ed:3b:ef:20:08:8b:58:4b: c0:54:3f:3a:ad:89:ff:18:e5:81:06:9f:71:bd:66:cd:1c:38: 56:54:60:42:16:e2:b9:f4:0e:5a:e7:0a:4e:34:d7:c0:69:6c: 78:95:66:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCsYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEI1N0YxMTAvBgNVBAUTKEUxMDY0QkI2MDFBMTMxMDg3NjFCNTQ1N0ExRjcxNTI0 QzRBNENCQ0UwHhcNMjUwNTEyMTkxODMyWhcNMjUwNTE5MTkxODMyWjAYMRYwFAYD VQQDEw02ODIyNDk4OS1kNzEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvpcAimjB4COrvSQI14yDnXs4Va23rBt4tOMOfxoUoaIB1016YZDFiL3EU6vM EjOIBcVMWMc6hh2qBkGei3dFaMz9ZdDSxeWQNA1eb+Kn9dW0+pA897EmtiNczZjQ 42XJTG2fSKhoHE6IbgCTgyPzD8LlYy9KhaoIk8er343UaG+CsKrIQRGrzN1y/fvI h6uECT3ikUuuIngSlr5nQS5rAIpvrmvZkgLFatDlHgFjce/eVl+wqf6w0OUwUBgZ cPLYdQ0xJOrExKfOUXdWwM8HDch6M3Vy06IUDaXAlJN36h8bXHDrhVT08HyJfhsD 0q4OhpHvYC07SZFXapVmsqfMvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGs8bpS3 Qze8Y4sHlAk7s7ul5af5MB8GA1UdIwQYMBaAFOEGS7YBoTEIdhtUV6H3FSTEpMvO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjU3Ri9CMjQ1N0Q2QTRF NTkxMUVBOUVFOUUyMERDNEY5QUUwMi80UVpMdGdHaE1RaDJHMVJYb2ZjVkpNU2t5 ODQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRRWkx0Z0doTVFoMkcxUlhvZmNWSk1Ta3k4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjU3Ri9CMjQ1N0Q2QTRFNTkxMUVBOUVFOUUyMERDNEY5QUUwMi80UVpMdGdHaE1R aDJHMVJYb2ZjVkpNU2t5ODQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/j8W5GwpUc68cqeY4zYreHgc83bhIlyi36+iw9qJOUnW299XNmbDo YW1VJPE/3Vp38BW+HspbEVqm6slK3jMgtT41jMBRqx8WW6vM+r0pUmhhE08u2Wkv d/ntKHhJkn+pmd2ifl00ydiamqOQE+oOg7j6oucI7EvX08rEz4b7w2L4JX3udIcf EZqDeRKb1olGxGmFE6WIl2XEbZ8C4H+IviMdinw6Ih/kWCqbeuZL7/K5CT/cpXY7 PnayAOWEC6mNkRMyWLraVzqSesVwzTiA7TvvIAiLWEvAVD86rYn/GOWBBp9xvWbN HDhWVGBCFuK59A5a5wpONNfAaWx4lWZb -----END CERTIFICATE-----Generated at Wed May 14 15:28:16 2025 by rpki-client