$ rpki-client -vvf rpki.apnic.net/member_repository/A914E0B6/6956AE3EBF3011EEBE4F3C1EC4F9AE02/4BlKpTtYIbm9DFx7g1K7E4GFP50.mft File: 4BlKpTtYIbm9DFx7g1K7E4GFP50.mft (raw, json) Hash identifier: 6ZtjhmL0xDvlbI/qOTgkKogunUadqaCBjHIrlQCq2Hg= Subject key identifier: F4:DC:58:D1:C4:33:C9:3F:F9:41:B6:7F:2B:30:89:FC:78:9D:6B:0F Authority key identifier: E0:19:4A:A5:3B:58:21:B9:BD:0C:5C:7B:83:52:BB:13:81:85:3F:9D Certificate issuer: /CN=A914E0B6/serialNumber=E0194AA53B5821B9BD0C5C7B8352BB1381853F9D Certificate serial: F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4BlKpTtYIbm9DFx7g1K7E4GFP50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E0B6/6956AE3EBF3011EEBE4F3C1EC4F9AE02/4BlKpTtYIbm9DFx7g1K7E4GFP50.mft Manifest number: F2 Signing time: Thu 15 May 2025 04:37:23 +0000 Manifest this update: Thu 15 May 2025 04:37:22 +0000 Manifest next update: Thu 22 May 2025 04:37:22 +0000 Files and hashes: 1: 4BlKpTtYIbm9DFx7g1K7E4GFP50.crl (hash: 5FApuGIBqI1/Y/Rwl2txcaWepPkYa7kSBFuQ9H6qutE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E0B6/6956AE3EBF3011EEBE4F3C1EC4F9AE02/4BlKpTtYIbm9DFx7g1K7E4GFP50.crl rsync://rpki.apnic.net/member_repository/A914E0B6/6956AE3EBF3011EEBE4F3C1EC4F9AE02/4BlKpTtYIbm9DFx7g1K7E4GFP50.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4BlKpTtYIbm9DFx7g1K7E4GFP50.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 03:38:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 242 (0xf2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E0B6, serialNumber=E0194AA53B5821B9BD0C5C7B8352BB1381853F9D Validity Not Before: May 15 04:37:22 2025 GMT Not After : May 22 04:37:22 2025 GMT Subject: CN=68256f83-f3fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:b5:fb:d6:99:ec:eb:22:18:4f:2d:44:db:8a: 8f:36:ed:19:1c:ae:cb:5c:ab:82:b9:87:8b:a3:21: 16:e0:b3:c7:2f:31:d1:b0:03:15:e1:2f:9c:7b:ef: d6:44:e0:9a:fe:e3:67:3e:57:59:e8:96:53:ad:0e: ed:f2:00:4e:67:28:03:d4:7c:d7:8e:77:61:6e:73: 46:c4:38:ad:34:da:bb:04:d3:23:8f:a4:0c:c6:86: 50:31:a5:36:2c:65:b3:72:55:ac:01:08:34:cb:58: c6:b3:98:37:bc:6f:e6:7e:02:c0:09:1d:10:f8:1a: 88:f1:d4:83:70:1c:f0:c4:6f:e6:1f:7c:99:09:24: 97:0c:3f:b1:f6:8f:52:9c:0e:0a:25:06:5d:13:e5: b9:57:2c:52:0e:fe:57:0f:6e:a9:30:06:7c:4b:22: fa:fa:14:7a:71:5e:12:83:cb:ad:6f:36:95:ee:bf: 65:72:b2:fe:79:9b:40:61:62:fa:b4:f0:62:de:85: ac:a1:15:8b:c1:40:cf:9b:c8:67:d5:15:e3:f1:94: 68:88:6f:32:bb:b8:63:49:2a:34:6b:88:01:d3:17: bb:71:c8:da:40:1e:df:25:bb:73:0d:2e:a2:ca:1f: d5:b6:9e:90:a2:e7:f1:b7:0d:f3:80:8d:7e:b3:47: ca:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:DC:58:D1:C4:33:C9:3F:F9:41:B6:7F:2B:30:89:FC:78:9D:6B:0F X509v3 Authority Key Identifier: keyid:E0:19:4A:A5:3B:58:21:B9:BD:0C:5C:7B:83:52:BB:13:81:85:3F:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E0B6/6956AE3EBF3011EEBE4F3C1EC4F9AE02/4BlKpTtYIbm9DFx7g1K7E4GFP50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4BlKpTtYIbm9DFx7g1K7E4GFP50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E0B6/6956AE3EBF3011EEBE4F3C1EC4F9AE02/4BlKpTtYIbm9DFx7g1K7E4GFP50.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:bf:30:39:9f:3d:46:18:20:47:e3:a9:75:97:7a:a8:20:d9: bb:43:51:59:c1:b3:0f:e3:7f:0d:2f:aa:47:32:dd:08:e4:74: d8:7b:e5:78:a8:bb:c2:82:2f:75:6b:17:31:2f:84:48:c8:cb: 8b:0d:de:2b:a4:8d:0b:51:bf:62:c4:98:28:e8:84:20:08:82: cb:6a:50:50:67:d3:96:0b:f9:96:b2:98:ac:4a:83:9e:ca:c0: 4c:0d:98:52:65:bf:7b:c4:9b:1f:09:ed:ad:74:f8:bf:6f:93: 58:16:15:4a:a2:31:e8:bd:11:b2:62:4d:cc:51:db:74:bf:95: d8:7c:66:99:2e:58:4f:ac:5c:95:85:03:f6:a2:7a:59:83:b7: 58:f4:4f:12:79:95:43:91:e1:8d:89:35:6f:df:d8:75:bc:d5: b2:7a:bd:f7:94:05:2e:b7:c3:9b:3f:e7:e0:21:e1:96:01:5e: 5f:50:77:d4:0d:08:8b:dc:65:2f:1a:54:d8:51:db:3d:f1:1c: f0:66:7c:10:b0:3b:08:ac:bb:02:e1:bc:0f:ef:19:1a:8c:92: 68:f8:a5:a8:ef:fa:0b:59:e7:2a:7f:79:d1:b6:ca:76:36:20: 75:3e:65:69:49:7c:e1:f2:47:6d:7f:8e:8e:a7:d0:da:27:f9: 59:a0:89:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUwQjYxMTAvBgNVBAUTKEUwMTk0QUE1M0I1ODIxQjlCRDBDNUM3QjgzNTJCQjEz ODE4NTNGOUQwHhcNMjUwNTE1MDQzNzIyWhcNMjUwNTIyMDQzNzIyWjAYMRYwFAYD VQQDEw02ODI1NmY4My1mM2ZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApLX71pns6yIYTy1E24qPNu0ZHK7LXKuCuYeLoyEW4LPHLzHRsAMV4S+ce+/W ROCa/uNnPldZ6JZTrQ7t8gBOZygD1HzXjndhbnNGxDitNNq7BNMjj6QMxoZQMaU2 LGWzclWsAQg0y1jGs5g3vG/mfgLACR0Q+BqI8dSDcBzwxG/mH3yZCSSXDD+x9o9S nA4KJQZdE+W5VyxSDv5XD26pMAZ8SyL6+hR6cV4Sg8utbzaV7r9lcrL+eZtAYWL6 tPBi3oWsoRWLwUDPm8hn1RXj8ZRoiG8yu7hjSSo0a4gB0xe7ccjaQB7fJbtzDS6i yh/Vtp6Qoufxtw3zgI1+s0fKqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPTcWNHE M8k/+UG2fyswifx4nWsPMB8GA1UdIwQYMBaAFOAZSqU7WCG5vQxce4NSuxOBhT+d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTBCNi82OTU2QUUzRUJG MzAxMUVFQkU0RjNDMUVDNEY5QUUwMi80QmxLcFR0WUlibTlERng3ZzFLN0U0R0ZQ NTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRCbEtwVHRZSWJtOURGeDdnMUs3RTRHRlA1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTBCNi82OTU2QUUzRUJGMzAxMUVFQkU0RjNDMUVDNEY5QUUwMi80QmxLcFR0WUli bTlERng3ZzFLN0U0R0ZQNTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEvzA5nz1GGCBH46l1l3qoINm7Q1FZwbMP438NL6pHMt0I5HTYe+V4 qLvCgi91axcxL4RIyMuLDd4rpI0LUb9ixJgo6IQgCILLalBQZ9OWC/mWspisSoOe ysBMDZhSZb97xJsfCe2tdPi/b5NYFhVKojHovRGyYk3MUdt0v5XYfGaZLlhPrFyV hQP2onpZg7dY9E8SeZVDkeGNiTVv39h1vNWyer33lAUut8ObP+fgIeGWAV5fUHfU DQiL3GUvGlTYUds98RzwZnwQsDsIrLsC4bwP7xkajJJo+KWo7/oLWecqf3nRtsp2 NiB1PmVpSXzh8kdtf46Op9DaJ/lZoIkA -----END CERTIFICATE-----Generated at Thu May 15 06:45:32 2025 by rpki-client