$ rpki-client -vvf rpki.apnic.net/member_repository/A914E600/221BAEBE77F111EFAC112942C4F9AE02/4LlFj2mCX_gpOHsTnoj9O9Z0AIc.mft File: 4LlFj2mCX_gpOHsTnoj9O9Z0AIc.mft (raw, json) Hash identifier: 0VBHDc++2jk9ASIG84rVh/pwRTBmyZ3/qCDwjfzAMTI= Subject key identifier: 0D:A2:5E:AB:4E:A8:B4:D7:3E:EE:0F:4F:43:35:88:4A:63:15:0E:43 Authority key identifier: E0:B9:45:8F:69:82:5F:F8:29:38:7B:13:9E:88:FD:3B:D6:74:00:87 Certificate issuer: /CN=A914E600/serialNumber=E0B9458F69825FF829387B139E88FD3BD6740087 Certificate serial: 7B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4LlFj2mCX_gpOHsTnoj9O9Z0AIc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E600/221BAEBE77F111EFAC112942C4F9AE02/4LlFj2mCX_gpOHsTnoj9O9Z0AIc.mft Manifest number: 7A Signing time: Sun 11 May 2025 05:29:34 +0000 Manifest this update: Sun 11 May 2025 05:29:33 +0000 Manifest next update: Sun 18 May 2025 05:29:33 +0000 Files and hashes: 1: 4LlFj2mCX_gpOHsTnoj9O9Z0AIc.crl (hash: 9Ih3iYt+2emCe1VvYoGzbvhLP+2AmeBdcym8nPM+RJ0=) 2: D86268E877F111EFADAB6362C4F9AE02.roa (hash: vFQI0/WMzcqMUL954AE6vlA2OPOfqfsgIiFbV+UqtL4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E600/221BAEBE77F111EFAC112942C4F9AE02/4LlFj2mCX_gpOHsTnoj9O9Z0AIc.crl rsync://rpki.apnic.net/member_repository/A914E600/221BAEBE77F111EFAC112942C4F9AE02/4LlFj2mCX_gpOHsTnoj9O9Z0AIc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4LlFj2mCX_gpOHsTnoj9O9Z0AIc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 05:29:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 123 (0x7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E600, serialNumber=E0B9458F69825FF829387B139E88FD3BD6740087 Validity Not Before: May 11 05:29:33 2025 GMT Not After : May 18 05:29:33 2025 GMT Subject: CN=682035bd-5342 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:c0:4c:4e:df:c9:59:df:38:e6:a9:12:3f:51: 77:e9:bc:45:15:ae:50:fe:3f:4b:d8:1a:2e:59:ad: fc:ad:71:13:04:de:4f:0a:38:d3:58:6d:1a:c1:d6: c4:4a:e4:42:25:34:13:86:0f:8c:d7:91:1a:5f:7b: da:98:f2:28:71:48:19:a9:62:6e:4a:e4:66:c6:de: 8d:5b:b1:df:2a:bc:94:d9:2a:af:49:0e:1a:f8:19: da:eb:6b:41:1e:38:29:18:ce:e3:5f:17:1c:47:66: 12:73:3d:ea:66:d2:5e:84:be:2e:04:fa:5e:82:06: 3d:5f:02:24:6b:01:5e:1a:90:95:6c:e8:79:cb:7e: 4f:98:9b:9d:56:6f:1f:c0:ed:6d:b9:82:67:61:66: a8:19:57:aa:cf:2e:07:ae:6e:84:6d:e6:7a:ec:c2: 48:16:0f:53:ec:34:ce:3e:3e:49:22:86:7f:a0:5d: 9e:49:58:d9:ec:7b:58:89:40:2c:15:55:6c:71:fe: ab:d6:d0:07:00:4a:01:ca:bc:61:59:ed:cc:50:37: e5:d4:f2:04:7a:08:7a:6d:d1:37:7c:23:c8:a8:0f: 05:04:4f:ea:d2:b4:da:e7:64:14:3d:8f:3f:e0:20: 74:8a:34:f0:ed:ef:cb:99:cf:41:ed:99:52:49:5e: f9:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:A2:5E:AB:4E:A8:B4:D7:3E:EE:0F:4F:43:35:88:4A:63:15:0E:43 X509v3 Authority Key Identifier: keyid:E0:B9:45:8F:69:82:5F:F8:29:38:7B:13:9E:88:FD:3B:D6:74:00:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E600/221BAEBE77F111EFAC112942C4F9AE02/4LlFj2mCX_gpOHsTnoj9O9Z0AIc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4LlFj2mCX_gpOHsTnoj9O9Z0AIc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E600/221BAEBE77F111EFAC112942C4F9AE02/4LlFj2mCX_gpOHsTnoj9O9Z0AIc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:af:9a:a1:75:ab:1f:1d:b4:f6:ce:df:7a:16:c9:ce:59:04: 4e:7a:a5:55:6a:f7:f4:7b:f0:60:c5:06:c5:12:b0:f1:d6:64: 5a:32:71:8b:06:cc:01:25:f7:1c:1f:e7:b6:55:43:6d:2e:99: c5:22:44:82:50:b2:fc:2b:46:23:c0:9f:6b:fa:f1:37:3a:3f: 72:26:77:6b:1a:66:14:af:e5:e9:8b:25:93:26:f5:16:dd:90: 67:37:e1:c5:0d:2c:87:bc:45:b4:5b:22:f4:f4:a1:bf:5b:02: fd:55:81:89:e5:5e:56:06:af:b0:68:00:bd:db:e8:78:93:ca: 0b:a9:55:db:41:47:3d:6a:18:d3:31:38:73:36:18:73:99:4e: 59:b7:2c:ec:38:00:16:37:12:97:c6:cb:ca:82:df:af:73:e7: 70:04:5e:7a:1a:52:b3:a7:19:5b:74:17:3a:05:3f:db:57:b3: b8:43:cd:c2:aa:4f:92:da:7a:3c:0f:20:c9:bb:f8:d7:e5:29: 84:d1:fe:95:b3:d0:4f:eb:60:27:64:e6:31:32:bd:b5:c0:17: 47:58:de:9b:54:79:e5:f5:e8:19:31:d3:7e:95:ef:1a:62:b2: f3:f8:31:a8:a9:c8:44:62:95:77:f8:c6:62:11:9c:cf:b2:52: d0:dc:49:51 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBezANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 RTYwMDExMC8GA1UEBRMoRTBCOTQ1OEY2OTgyNUZGODI5Mzg3QjEzOUU4OEZEM0JE Njc0MDA4NzAeFw0yNTA1MTEwNTI5MzNaFw0yNTA1MTgwNTI5MzNaMBgxFjAUBgNV BAMTDTY4MjAzNWJkLTUzNDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCmwExO38lZ3zjmqRI/UXfpvEUVrlD+P0vYGi5ZrfytcRME3k8KONNYbRrB1sRK 5EIlNBOGD4zXkRpfe9qY8ihxSBmpYm5K5GbG3o1bsd8qvJTZKq9JDhr4Gdrra0Ee OCkYzuNfFxxHZhJzPepm0l6Evi4E+l6CBj1fAiRrAV4akJVs6HnLfk+Ym51Wbx/A 7W25gmdhZqgZV6rPLgeuboRt5nrswkgWD1PsNM4+Pkkihn+gXZ5JWNnse1iJQCwV VWxx/qvW0AcASgHKvGFZ7cxQN+XU8gR6CHpt0Td8I8ioDwUET+rStNrnZBQ9jz/g IHSKNPDt78uZz0HtmVJJXvlPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUDaJeq06o tNc+7g9PQzWISmMVDkMwHwYDVR0jBBgwFoAU4LlFj2mCX/gpOHsTnoj9O9Z0AIcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRFNjAwLzIyMUJBRUJFNzdG MTExRUZBQzExMjk0MkM0RjlBRTAyLzRMbEZqMm1DWF9ncE9Ic1Rub2o5TzlaMEFJ Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNExsRmoybUNYX2dwT0hzVG5vajlPOVowQUljLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRF NjAwLzIyMUJBRUJFNzdGMTExRUZBQzExMjk0MkM0RjlBRTAyLzRMbEZqMm1DWF9n cE9Ic1Rub2o5TzlaMEFJYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIuvmqF1qx8dtPbO33oWyc5ZBE56pVVq9/R78GDFBsUSsPHWZFoycYsG zAEl9xwf57ZVQ20umcUiRIJQsvwrRiPAn2v68Tc6P3Imd2saZhSv5emLJZMm9Rbd kGc34cUNLIe8RbRbIvT0ob9bAv1VgYnlXlYGr7BoAL3b6HiTygupVdtBRz1qGNMx OHM2GHOZTlm3LOw4ABY3EpfGy8qC369z53AEXnoaUrOnGVt0FzoFP9tXs7hDzcKq T5LaejwPIMm7+NflKYTR/pWz0E/rYCdk5jEyvbXAF0dY3ptUeeX16Bkx036V7xpi svP4MaipyERilXf4xmIRnM+yUtDcSVE= -----END CERTIFICATE-----Generated at Tue May 13 06:39:34 2025 by rpki-client