$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft File: 4bgHrCt0Vfux4xYGjR0BcSYLscc.mft (raw, json) Hash identifier: RUjdWpF/szOIc3ts4FC1LcpOrI6+L4KdmMjkF51PLEQ= Subject key identifier: 73:5C:1B:8C:76:A2:EB:A8:C2:6D:C4:D3:8E:23:E5:E4:D3:AF:C8:A1 Authority key identifier: E1:B8:07:AC:2B:74:55:FB:B1:E3:16:06:8D:1D:01:71:26:0B:B1:C7 Certificate issuer: /CN=A9157DAE/serialNumber=E1B807AC2B7455FBB1E316068D1D0171260BB1C7 Certificate serial: 130C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft Manifest number: 128E Signing time: Wed 14 May 2025 17:12:12 +0000 Manifest this update: Wed 14 May 2025 17:12:11 +0000 Manifest next update: Wed 21 May 2025 17:12:11 +0000 Files and hashes: 1: 4bgHrCt0Vfux4xYGjR0BcSYLscc.crl (hash: ag09XPlsZwsedlintytm1MMhoN0Tr1xP6ejczgBaYOo=) 2: A6A4A20E89B911EC8FDB572DC4F9AE02.roa (hash: jk5NfHi6Ak10G3qvwwRLBuA+9+MuEQTJVNCIOpp4ijc=) 3: A8949F64D86E11E982BA0712C4F9AE02.roa (hash: o0TBqHxczgW2iXEBGTx5nw86Q8zs7jfB/2ZiH2tcXBM=) 4: 1F8378E6BCBD11EBAC9A4744C4F9AE02.roa (hash: J5LxjosxnnfdXaMAoaZ/PL1BfkizkN1e40crDyxzXgM=) 5: 9EE31802996B11E9B3FEED46C4F9AE02.roa (hash: GdNQEvmzlHfA6Ec8mmP8z6x+jIWG7iAnHlvJMuf8oD8=) 6: F6EBC724B24211EF99C46E64C4F9AE02.roa (hash: q2Nqb/hrcV90WNVexwR/NHfj/Q0Tv7rC0yL9DHC6X3M=) 7: D17E9426B24211EFBBDC2164C4F9AE02.roa (hash: 08uSCXwlwYJnGMem9e+DAMnS4EN8A9/G3dvb9XlzVbk=) 8: 161983C2B9EB11EDB53AC21BC4F9AE02.roa (hash: 21MmIK/xKiS7JETWE4m4JFsmki6dx7l2EGE0grkpOo4=) 9: C2E189AC7F8C11EF94FCB676C4F9AE02.roa (hash: RAc63GKSag+ebIvPIiKjuswG8wAgmCrcqifdzue1EA8=) 10: FDB29514452511E98F23AE4FC4F9AE02.roa (hash: pyXuQQMaaHpRKrd64JzrpDvcZINK8BGOr87BtX8mKCw=) 11: 8E6CF9C8E59911E98D355932C4F9AE02.roa (hash: duhPOulpnnqLJOw021zARLEkW5qMCDlozjaUuWOU1CE=) 12: F99AFAFE1D5411EA921E0351C4F9AE02.roa (hash: RBZSewamTngEQkgjLa0OkH4nQrMAppxSjX91nS2Wpzo=) 13: C21FA1CE080511EAA9457C67C4F9AE02.roa (hash: PiSgVIn+A3YVcVJ8J1LY1Q9+m55+zt9vsCjTvJtZIKc=) 14: 0038D872072E11EB8914E540C4F9AE02.roa (hash: bM9HkA9Kov8pVlsp7/+B8Lhib1zUTj1baRTYw1iNq78=) 15: D8E0EC82927711E985E0423AC4F9AE02.roa (hash: +fJoTern1FEL3hWeQl1ij5UIzJGzXQGhkR014UlHjWU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.crl rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 17:12:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4876 (0x130c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE, serialNumber=E1B807AC2B7455FBB1E316068D1D0171260BB1C7 Validity Not Before: May 14 17:12:11 2025 GMT Not After : May 21 17:12:11 2025 GMT Subject: CN=6824ceeb-a469 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:e4:4a:fe:b9:ec:70:10:fe:3d:4e:f3:3b:ec: 18:5c:05:50:eb:66:47:27:aa:d8:59:0c:b6:ab:f6: 75:9e:20:51:4d:f6:78:0a:fb:15:e5:7a:cf:73:7a: bf:ac:11:a3:e9:bd:9f:ce:c0:34:49:64:f8:93:50: 8b:34:d0:01:70:6a:6f:86:14:7c:00:2d:c9:db:b9: 41:84:4c:97:a2:c6:1d:50:1b:67:c9:d0:2a:c1:4c: 2c:3b:1c:f5:fc:ad:b5:79:a8:e5:7d:e9:3b:dd:82: 3a:57:43:b7:66:cf:e9:dd:0c:ff:8f:38:06:39:34: 07:ad:fe:8a:c6:ab:2d:fe:1d:b9:0d:96:70:22:3d: 1f:69:01:47:9c:f0:d4:67:34:de:e0:6f:74:03:14: 61:f6:ee:eb:98:15:64:c9:57:ac:fd:54:ef:51:23: 76:f1:17:e9:6a:7f:d5:9d:41:c8:95:25:18:8d:f5: 2d:cc:91:90:c3:e4:bb:58:2e:53:12:7e:0d:b0:5b: 13:ee:a1:34:b3:0c:73:42:1c:ab:8b:73:22:07:ca: 4e:0a:2f:22:c6:bd:a2:d5:ba:42:65:d2:98:24:40: 73:73:79:2d:db:0d:42:56:a0:d2:03:58:7e:f9:05: 7d:2b:7b:41:32:21:18:b5:57:f5:94:8b:13:27:25: da:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:5C:1B:8C:76:A2:EB:A8:C2:6D:C4:D3:8E:23:E5:E4:D3:AF:C8:A1 X509v3 Authority Key Identifier: keyid:E1:B8:07:AC:2B:74:55:FB:B1:E3:16:06:8D:1D:01:71:26:0B:B1:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:69:fa:ea:59:42:ad:f2:53:93:c1:02:6d:b6:1c:03:3d:8a: 37:39:bc:f6:63:a9:a3:dd:53:88:7e:55:e0:ac:47:53:aa:85: 53:7d:ac:00:c6:ee:5c:a3:3b:98:36:51:c3:84:2a:a5:0d:d3: 68:70:aa:d0:30:70:a1:0f:88:17:a4:7c:b0:c5:56:7e:d5:8a: f2:b5:26:c5:21:7b:8c:b5:3f:28:a4:f7:85:04:3f:9d:87:9c: 13:65:c4:86:65:f6:00:40:eb:78:1e:5a:c5:11:b4:c3:4d:e6: b0:05:1e:ba:88:03:94:49:04:47:ee:3d:54:be:48:95:bf:f1: 54:25:bf:11:e1:06:e9:cd:a3:46:82:b9:90:54:ea:61:23:a6: bf:80:98:f7:e0:39:53:98:89:4b:63:d3:10:fe:ad:0e:7c:bf: cb:2c:d1:cd:97:d2:73:7c:7c:3e:ba:32:15:2b:ca:2d:fa:1a: f3:f1:e4:2b:ba:7b:c3:83:5e:99:8e:bc:43:b4:8e:40:cf:ba: 3c:b8:7e:d3:d4:d8:86:d0:05:89:80:95:90:65:dd:7e:18:42: fb:82:02:04:af:53:86:cb:cf:c9:be:2d:aa:ac:d2:d9:1a:28: 3c:b7:b6:cf:6e:2c:15:21:ec:ef:0b:86:ba:37:5d:83:48:48: 74:1b:cb:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEwwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQUUxMTAvBgNVBAUTKEUxQjgwN0FDMkI3NDU1RkJCMUUzMTYwNjhEMUQwMTcx MjYwQkIxQzcwHhcNMjUwNTE0MTcxMjExWhcNMjUwNTIxMTcxMjExWjAYMRYwFAYD VQQDEw02ODI0Y2VlYi1hNDY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1ORK/rnscBD+PU7zO+wYXAVQ62ZHJ6rYWQy2q/Z1niBRTfZ4CvsV5XrPc3q/ rBGj6b2fzsA0SWT4k1CLNNABcGpvhhR8AC3J27lBhEyXosYdUBtnydAqwUwsOxz1 /K21eajlfek73YI6V0O3Zs/p3Qz/jzgGOTQHrf6Kxqst/h25DZZwIj0faQFHnPDU ZzTe4G90AxRh9u7rmBVkyVes/VTvUSN28Rfpan/VnUHIlSUYjfUtzJGQw+S7WC5T En4NsFsT7qE0swxzQhyri3MiB8pOCi8ixr2i1bpCZdKYJEBzc3kt2w1CVqDSA1h+ +QV9K3tBMiEYtVf1lIsTJyXaqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHNcG4x2 ouuowm3E044j5eTTr8ihMB8GA1UdIwQYMBaAFOG4B6wrdFX7seMWBo0dAXEmC7HH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS82MTY2NkMwRUQ2 ODkxMUU4QjY4MTE0MzNDNEY5QUUwMi80YmdIckN0MFZmdXg0eFlHalIwQmNTWUxz Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRiZ0hyQ3QwVmZ1eDR4WUdqUjBCY1NZTHNjYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBRS82MTY2NkMwRUQ2ODkxMUU4QjY4MTE0MzNDNEY5QUUwMi80YmdIckN0MFZm dXg0eFlHalIwQmNTWUxzY2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5afrqWUKt8lOTwQJtthwDPYo3Obz2Y6mj3VOIflXgrEdTqoVTfawA xu5cozuYNlHDhCqlDdNocKrQMHChD4gXpHywxVZ+1YrytSbFIXuMtT8opPeFBD+d h5wTZcSGZfYAQOt4HlrFEbTDTeawBR66iAOUSQRH7j1UvkiVv/FUJb8R4QbpzaNG grmQVOphI6a/gJj34DlTmIlLY9MQ/q0OfL/LLNHNl9JzfHw+ujIVK8ot+hrz8eQr unvDg16ZjrxDtI5Az7o8uH7T1NiG0AWJgJWQZd1+GEL7ggIEr1OGy8/Jvi2qrNLZ Gig8t7bPbiwVIezvC4a6N12DSEh0G8sX -----END CERTIFICATE-----Generated at Thu May 15 21:05:01 2025 by rpki-client