$ rpki-client -vvf rpki.apnic.net/member_repository/A916814B/02A2D970162F11E8B8DE2669C4F9AE02/4YMttqUeSiWekP7IHkfFRpxSpok.mft File: 4YMttqUeSiWekP7IHkfFRpxSpok.mft (raw, json) Hash identifier: M/j3BE9f+wAvoe95lwUyB5OCSOyRZEm1Wmm0sKk4ybQ= Subject key identifier: B8:BD:FA:A6:CC:D5:A5:C0:2A:84:F9:C7:2E:48:36:C4:85:B3:B2:9B Authority key identifier: E1:83:2D:B6:A5:1E:4A:25:9E:90:FE:C8:1E:47:C5:46:9C:52:A6:89 Certificate issuer: /CN=A916814B/serialNumber=E1832DB6A51E4A259E90FEC81E47C5469C52A689 Certificate serial: 160B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YMttqUeSiWekP7IHkfFRpxSpok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916814B/02A2D970162F11E8B8DE2669C4F9AE02/4YMttqUeSiWekP7IHkfFRpxSpok.mft Manifest number: 15FF Signing time: Mon 12 May 2025 16:40:26 +0000 Manifest this update: Mon 12 May 2025 16:40:26 +0000 Manifest next update: Mon 19 May 2025 16:40:26 +0000 Files and hashes: 1: 4YMttqUeSiWekP7IHkfFRpxSpok.crl (hash: TfQHZnrmd+L2My6hCob33WmMeZIGSoYiwNSQ2A1vzsg=) 2: B4FED5FC8E5311EBB81E6C70C4F9AE02.roa (hash: kDacZR8moKTX56aD4xPOhhoyt0qIcn1U0w7VaT9wQjo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916814B/02A2D970162F11E8B8DE2669C4F9AE02/4YMttqUeSiWekP7IHkfFRpxSpok.crl rsync://rpki.apnic.net/member_repository/A916814B/02A2D970162F11E8B8DE2669C4F9AE02/4YMttqUeSiWekP7IHkfFRpxSpok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YMttqUeSiWekP7IHkfFRpxSpok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 16:40:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5643 (0x160b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916814B, serialNumber=E1832DB6A51E4A259E90FEC81E47C5469C52A689 Validity Not Before: May 12 16:40:26 2025 GMT Not After : May 19 16:40:26 2025 GMT Subject: CN=6822247a-e953 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:a4:95:d6:cf:62:7b:95:db:72:26:f0:2e:e2: 7e:0f:8b:7f:8c:13:87:d1:89:cd:e2:f3:37:e5:33: e0:39:a6:bd:13:6b:ff:24:73:8b:2b:58:e4:c9:45: 5a:64:25:17:27:b1:99:36:b3:19:96:d5:5a:24:2e: 3c:52:3e:d4:34:db:57:92:c6:37:76:9f:3f:15:4f: 49:4e:18:35:ee:be:5a:9c:91:b0:f3:88:a7:fa:9c: 31:b5:c9:f9:a4:4a:5e:16:29:b4:e9:f7:d2:05:3c: 7e:12:bf:46:c2:f0:34:67:db:3c:5d:4d:16:f1:e3: cf:c9:c9:3e:fc:97:45:de:43:01:0c:5c:78:9a:56: 5e:f4:1b:5f:8d:a0:27:74:07:95:68:a1:10:37:1c: f7:af:b7:1c:63:3d:17:25:ac:07:32:1e:95:05:c2: c0:cf:e9:ac:0f:17:69:e9:f7:72:e7:8d:91:23:16: 5e:0a:17:9e:fd:9f:f6:cb:b5:df:fb:50:6b:33:bf: 91:eb:b7:e1:ad:0f:a2:74:53:40:bd:26:a2:56:58: 66:f7:a6:71:33:ba:c7:87:80:bc:3f:5b:b7:02:3b: 95:c1:0f:47:ff:5d:48:1b:86:37:19:5d:1c:c1:6d: a9:50:18:49:5f:6f:09:6b:68:33:14:d2:58:f3:c2: 73:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:BD:FA:A6:CC:D5:A5:C0:2A:84:F9:C7:2E:48:36:C4:85:B3:B2:9B X509v3 Authority Key Identifier: keyid:E1:83:2D:B6:A5:1E:4A:25:9E:90:FE:C8:1E:47:C5:46:9C:52:A6:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916814B/02A2D970162F11E8B8DE2669C4F9AE02/4YMttqUeSiWekP7IHkfFRpxSpok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YMttqUeSiWekP7IHkfFRpxSpok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916814B/02A2D970162F11E8B8DE2669C4F9AE02/4YMttqUeSiWekP7IHkfFRpxSpok.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:63:cb:f3:13:d4:f6:6d:bd:10:a8:0c:67:36:06:84:9a:56: 90:88:c2:76:3a:4b:1c:09:66:b1:f5:f3:a9:21:df:b2:25:8d: 12:74:5b:c0:62:39:b2:12:90:c6:95:bc:1f:7c:2b:28:12:42: 93:89:47:ce:48:37:66:88:01:3d:de:a5:4b:43:a3:20:05:11: d1:41:32:8d:cf:9a:99:27:db:b1:87:5e:17:2b:69:49:ce:ea: f9:9f:03:a6:39:0f:78:0b:03:b7:b8:f2:39:b1:5b:01:37:f4: e5:60:80:ac:a4:9a:20:88:c7:3e:fb:06:a4:80:28:40:f9:26: 20:f1:2c:0b:b8:16:63:8a:ad:dc:8c:2e:cf:86:63:12:e0:23: 82:8b:ea:22:d7:79:3b:ef:ed:9c:d5:ea:d9:b4:a5:02:da:16: 52:b6:53:7f:ee:4f:7b:7c:b1:2d:3a:c2:8f:3d:29:c8:1c:89: ff:f1:17:17:a8:99:12:28:7c:c5:2d:01:1b:c6:7a:2b:32:78: 7f:e2:17:4b:a1:2c:d1:44:f3:27:4b:13:90:cf:bf:e1:d0:6e: be:3d:8e:dd:26:a4:4c:22:3f:b1:a2:30:f6:5e:69:88:3a:52: a7:a1:55:f6:77:06:c2:3c:50:3a:a5:c2:19:53:7f:3e:70:9a: ae:76:dd:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFgswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjgxNEIxMTAvBgNVBAUTKEUxODMyREI2QTUxRTRBMjU5RTkwRkVDODFFNDdDNTQ2 OUM1MkE2ODkwHhcNMjUwNTEyMTY0MDI2WhcNMjUwNTE5MTY0MDI2WjAYMRYwFAYD VQQDEw02ODIyMjQ3YS1lOTUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7qSV1s9ie5XbcibwLuJ+D4t/jBOH0YnN4vM35TPgOaa9E2v/JHOLK1jkyUVa ZCUXJ7GZNrMZltVaJC48Uj7UNNtXksY3dp8/FU9JThg17r5anJGw84in+pwxtcn5 pEpeFim06ffSBTx+Er9GwvA0Z9s8XU0W8ePPyck+/JdF3kMBDFx4mlZe9BtfjaAn dAeVaKEQNxz3r7ccYz0XJawHMh6VBcLAz+msDxdp6fdy542RIxZeChee/Z/2y7Xf +1BrM7+R67fhrQ+idFNAvSaiVlhm96ZxM7rHh4C8P1u3AjuVwQ9H/11IG4Y3GV0c wW2pUBhJX28Ja2gzFNJY88JzWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLi9+qbM 1aXAKoT5xy5INsSFs7KbMB8GA1UdIwQYMBaAFOGDLbalHkolnpD+yB5HxUacUqaJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODE0Qi8wMkEyRDk3MDE2 MkYxMUU4QjhERTI2NjlDNEY5QUUwMi80WU10dHFVZVNpV2VrUDdJSGtmRlJweFNw b2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRZTXR0cVVlU2lXZWtQN0lIa2ZGUnB4U3Bvay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODE0Qi8wMkEyRDk3MDE2MkYxMUU4QjhERTI2NjlDNEY5QUUwMi80WU10dHFVZVNp V2VrUDdJSGtmRlJweFNwb2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkY8vzE9T2bb0QqAxnNgaEmlaQiMJ2OkscCWax9fOpId+yJY0SdFvA YjmyEpDGlbwffCsoEkKTiUfOSDdmiAE93qVLQ6MgBRHRQTKNz5qZJ9uxh14XK2lJ zur5nwOmOQ94CwO3uPI5sVsBN/TlYICspJogiMc++wakgChA+SYg8SwLuBZjiq3c jC7PhmMS4COCi+oi13k77+2c1erZtKUC2hZStlN/7k97fLEtOsKPPSnIHIn/8RcX qJkSKHzFLQEbxnorMnh/4hdLoSzRRPMnSxOQz7/h0G6+PY7dJqRMIj+xojD2XmmI OlKnoVX2dwbCPFA6pcIZU38+cJqudt3c -----END CERTIFICATE-----Generated at Tue May 13 04:02:56 2025 by rpki-client