$ rpki-client -vvf rpki.apnic.net/member_repository/A91513B0/138E1430144F11EC8917D00CC4F9AE02/AZgxEf1vCyfiQEY7aKehmEXHuwo.mft File: AZgxEf1vCyfiQEY7aKehmEXHuwo.mft (raw, json) Hash identifier: w8ZYL7HE9sMeoMGC0ZCgJD7OGiUNS3dbDdt0tJF0GdU= Subject key identifier: 04:17:4F:A9:00:83:D6:6C:42:E7:06:D8:44:C0:1A:33:32:64:F8:20 Authority key identifier: 01:98:31:11:FD:6F:0B:27:E2:40:46:3B:68:A7:A1:98:45:C7:BB:0A Certificate issuer: /CN=A91513B0/serialNumber=01983111FD6F0B27E240463B68A7A19845C7BB0A Certificate serial: 04FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AZgxEf1vCyfiQEY7aKehmEXHuwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91513B0/138E1430144F11EC8917D00CC4F9AE02/AZgxEf1vCyfiQEY7aKehmEXHuwo.mft Manifest number: 04EE Signing time: Sun 04 May 2025 23:22:30 +0000 Manifest this update: Sun 04 May 2025 23:22:30 +0000 Manifest next update: Sun 11 May 2025 23:22:30 +0000 Files and hashes: 1: AZgxEf1vCyfiQEY7aKehmEXHuwo.crl (hash: H3x35rEvDzAx9Nu4b8Hd0kZGh/HO3nPZvByZzIyA7Qg=) 2: 4FE459C8B97211EFA7B7E47DC4F9AE02.roa (hash: m7WV1VKI7ClZpgbpWthM6Ip2WNf7bXuqABVjburQENc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91513B0/138E1430144F11EC8917D00CC4F9AE02/AZgxEf1vCyfiQEY7aKehmEXHuwo.crl rsync://rpki.apnic.net/member_repository/A91513B0/138E1430144F11EC8917D00CC4F9AE02/AZgxEf1vCyfiQEY7aKehmEXHuwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AZgxEf1vCyfiQEY7aKehmEXHuwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 23:22:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1276 (0x4fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91513B0, serialNumber=01983111FD6F0B27E240463B68A7A19845C7BB0A Validity Not Before: May 4 23:22:30 2025 GMT Not After : May 11 23:22:30 2025 GMT Subject: CN=6817f6b6-ff25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:03:74:86:9f:46:bf:75:c4:a6:0a:6f:f1:34: c6:c2:a1:27:a3:42:bb:97:ad:fe:ec:da:77:e8:c0: 2d:02:3d:ce:4b:b5:05:03:e1:98:4d:9b:78:1a:6c: bd:b3:15:49:26:b7:5d:f4:1e:2a:d5:3c:62:19:83: 01:5c:0c:d8:2b:82:2f:f8:b0:0a:d9:8b:33:d1:51: a3:c0:08:9a:48:b8:43:d4:f3:9e:35:72:1b:96:98: 5c:7c:87:20:69:79:32:6a:f8:61:53:59:be:1f:df: a1:45:8e:f3:cc:51:c6:33:22:c0:7e:96:f1:75:d7: 8c:d6:e5:f3:b5:12:03:f3:ee:63:ce:f8:e1:62:b1: dc:8c:08:f5:68:d8:c5:0f:43:8c:27:9e:59:ef:ee: 5e:47:0d:52:bf:52:95:f9:ab:eb:1e:e7:a6:c6:e9: 5c:a7:98:01:d8:9b:bf:16:fe:39:4a:81:e2:cf:dd: 19:3d:09:35:8a:a5:5d:a8:30:18:73:dd:48:76:07: 7a:de:fe:33:da:c7:45:60:fd:6a:95:cb:fe:76:41: 6e:04:eb:d0:40:78:1c:d3:4c:f6:b8:50:6b:1c:b3: 0e:16:06:03:af:8e:c7:f3:17:25:b7:8f:61:20:41: a1:13:0b:fa:1a:2f:51:a9:74:cb:ba:20:e4:73:c1: 74:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:17:4F:A9:00:83:D6:6C:42:E7:06:D8:44:C0:1A:33:32:64:F8:20 X509v3 Authority Key Identifier: keyid:01:98:31:11:FD:6F:0B:27:E2:40:46:3B:68:A7:A1:98:45:C7:BB:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91513B0/138E1430144F11EC8917D00CC4F9AE02/AZgxEf1vCyfiQEY7aKehmEXHuwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AZgxEf1vCyfiQEY7aKehmEXHuwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91513B0/138E1430144F11EC8917D00CC4F9AE02/AZgxEf1vCyfiQEY7aKehmEXHuwo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:e7:f5:20:a5:d9:98:05:92:28:36:cc:07:b5:e2:e9:c5:6a: 6b:0d:55:1a:f6:61:9a:f1:5f:23:4b:71:89:53:e0:9b:03:24: da:69:12:4c:66:3b:2a:d1:a4:ee:a9:a1:5f:72:bd:c8:d4:a9: a8:99:dd:0a:90:4f:0d:64:53:16:df:f1:30:36:3e:de:9a:f6: 48:36:25:cf:25:35:2f:c1:66:46:e5:5c:7f:6d:7e:36:40:10: 23:a6:75:24:b8:b6:45:80:2b:40:41:8c:d0:ba:33:ee:34:e0: e9:27:29:2c:5c:b8:7c:7e:f9:68:97:1c:a0:c1:16:02:16:2d: 09:ce:83:c4:7f:0d:d7:a6:36:04:a0:30:e6:27:00:64:90:5c: fb:3c:5b:b5:a0:a7:97:ec:55:27:bb:c7:c7:9f:86:af:db:24: 57:cf:95:5c:28:cf:66:a6:c7:c4:17:f8:33:16:21:e4:fb:95: 26:42:9c:10:b9:f8:d6:45:d1:93:fd:5d:9c:ed:e6:5e:56:ef: 5d:0f:f6:ca:7b:8b:8e:83:f2:1c:43:0c:20:18:75:1f:9b:0d: 55:88:8e:ca:0e:20:4f:b1:e3:29:1f:68:bc:88:5e:7a:06:44: 41:18:9d:34:49:a8:15:46:b6:d3:b3:d8:7f:66:3a:84:cd:81: 40:75:18:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTEzQjAxMTAvBgNVBAUTKDAxOTgzMTExRkQ2RjBCMjdFMjQwNDYzQjY4QTdBMTk4 NDVDN0JCMEEwHhcNMjUwNTA0MjMyMjMwWhcNMjUwNTExMjMyMjMwWjAYMRYwFAYD VQQDEw02ODE3ZjZiNi1mZjI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnAN0hp9Gv3XEpgpv8TTGwqEno0K7l63+7Np36MAtAj3OS7UFA+GYTZt4Gmy9 sxVJJrdd9B4q1TxiGYMBXAzYK4Iv+LAK2Ysz0VGjwAiaSLhD1POeNXIblphcfIcg aXkyavhhU1m+H9+hRY7zzFHGMyLAfpbxddeM1uXztRID8+5jzvjhYrHcjAj1aNjF D0OMJ55Z7+5eRw1Sv1KV+avrHuemxulcp5gB2Ju/Fv45SoHiz90ZPQk1iqVdqDAY c91Idgd63v4z2sdFYP1qlcv+dkFuBOvQQHgc00z2uFBrHLMOFgYDr47H8xclt49h IEGhEwv6Gi9RqXTLuiDkc8F0vwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAQXT6kA g9ZsQucG2ETAGjMyZPggMB8GA1UdIwQYMBaAFAGYMRH9bwsn4kBGO2inoZhFx7sK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTNCMC8xMzhFMTQzMDE0 NEYxMUVDODkxN0QwMENDNEY5QUUwMi9BWmd4RWYxdkN5ZmlRRVk3YUtlaG1FWEh1 d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FaZ3hFZjF2Q3lmaVFFWTdhS2VobUVYSHV3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTNCMC8xMzhFMTQzMDE0NEYxMUVDODkxN0QwMENDNEY5QUUwMi9BWmd4RWYxdkN5 ZmlRRVk3YUtlaG1FWEh1d28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC65/UgpdmYBZIoNswHteLpxWprDVUa9mGa8V8jS3GJU+CbAyTaaRJM Zjsq0aTuqaFfcr3I1Kmomd0KkE8NZFMW3/EwNj7emvZINiXPJTUvwWZG5Vx/bX42 QBAjpnUkuLZFgCtAQYzQujPuNODpJyksXLh8fvlolxygwRYCFi0JzoPEfw3XpjYE oDDmJwBkkFz7PFu1oKeX7FUnu8fHn4av2yRXz5VcKM9mpsfEF/gzFiHk+5UmQpwQ ufjWRdGT/V2c7eZeVu9dD/bKe4uOg/IcQwwgGHUfmw1ViI7KDiBPseMpH2i8iF56 BkRBGJ00SagVRrbTs9h/ZjqEzYFAdRjK -----END CERTIFICATE-----Generated at Mon May 5 12:23:37 2025 by rpki-client