$ rpki-client -vvf rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.mft File: Tf7DQ3yQv0FNBRiLSCx4SObzFhs.mft (raw, json) Hash identifier: jJXoDld5lxeQggZRCbpFV58TnRlZZnJNEFwsqOdGiB0= Subject key identifier: 50:D1:E7:A0:FF:1D:E0:94:04:85:06:EB:66:1B:12:8F:AC:8F:D1:85 Authority key identifier: 4D:FE:C3:43:7C:90:BF:41:4D:05:18:8B:48:2C:78:48:E6:F3:16:1B Certificate issuer: /CN=A916C4BC/serialNumber=4DFEC3437C90BF414D05188B482C7848E6F3161B Certificate serial: 0451 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.mft Manifest number: 044D Signing time: Fri 09 May 2025 00:00:46 +0000 Manifest this update: Fri 09 May 2025 00:00:45 +0000 Manifest next update: Fri 16 May 2025 00:00:45 +0000 Files and hashes: 1: Tf7DQ3yQv0FNBRiLSCx4SObzFhs.crl (hash: Z1eo432lSI0TNgyfL3KaA0C/SU8OFx61yr6F765jqK0=) 2: F593443851B011ECB5188E24C4F9AE02.roa (hash: CA35rH85+j+YJMr1xe8QwPujExClO3AIGNQ5xuf0vDw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.crl rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 00:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1105 (0x451) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C4BC, serialNumber=4DFEC3437C90BF414D05188B482C7848E6F3161B Validity Not Before: May 9 00:00:45 2025 GMT Not After : May 16 00:00:45 2025 GMT Subject: CN=681d45ad-a31a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:74:26:f4:3a:38:2d:7b:f2:73:77:a2:a3:1e: 09:84:25:a9:27:11:b6:21:77:17:b8:0f:17:7b:bc: 86:83:fa:3d:2d:fd:58:24:7c:64:51:7c:dd:fa:b9: d9:61:1a:64:50:8c:07:56:0c:b0:ce:f6:5e:2a:e0: 82:7b:81:34:d1:94:67:4d:77:31:cc:1b:50:97:67: ea:7a:84:07:69:4c:3e:cc:e1:a3:a5:0b:dd:60:d6: 3b:41:98:a5:7d:10:35:70:89:3f:7e:4c:31:a8:25: bc:eb:ac:26:b1:8f:12:d9:16:a6:f8:90:ec:f0:c5: bb:3d:f7:45:de:28:02:75:7b:f5:d8:79:82:84:69: 72:07:6e:2e:d7:4a:b2:fa:36:13:1e:5f:07:03:8a: 87:d3:75:89:19:e5:62:97:20:83:29:b8:8d:a5:86: 47:3b:f8:2d:9a:b2:80:76:4f:14:23:48:d6:5e:b9: 09:45:b3:a6:8a:d4:83:33:ff:d4:f5:88:49:e7:f7: 0c:61:40:ba:59:71:c3:dc:da:d0:cf:96:4f:bd:e1: bf:58:9e:41:2a:dc:e1:0a:60:b5:2b:47:9d:5a:e2: ad:cf:4f:f9:b0:e2:f9:54:e2:de:15:14:5d:52:e4: 69:c0:25:95:07:e8:37:18:2a:ce:b0:d8:97:84:ab: 67:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:D1:E7:A0:FF:1D:E0:94:04:85:06:EB:66:1B:12:8F:AC:8F:D1:85 X509v3 Authority Key Identifier: keyid:4D:FE:C3:43:7C:90:BF:41:4D:05:18:8B:48:2C:78:48:E6:F3:16:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:82:c5:28:15:4f:9b:40:26:85:a8:f9:5c:a2:a8:f0:7d:50: ab:f4:44:fb:0e:ae:fc:13:1c:3e:99:a4:a8:18:82:df:8f:61: e9:62:02:e4:f7:54:86:95:72:27:f8:59:9f:00:80:d7:fa:35: dc:be:24:1d:25:65:21:1d:e8:09:f2:5c:f8:bb:be:2d:c4:52: 1b:17:e4:f3:20:b3:2e:17:f1:82:5b:6d:d4:05:ae:7e:89:d8: 92:2d:2b:5f:6e:ac:13:ab:f1:5a:ca:c1:c6:6d:c0:9e:6e:b6: db:6d:ef:c2:55:45:4b:ef:d1:6d:31:12:51:0d:80:eb:3d:6d: 93:64:9d:1b:06:20:cb:9f:19:6e:44:65:e3:7a:0e:46:f1:96: 2b:62:03:9e:7e:6e:1d:7d:51:f3:5e:6b:72:f4:8d:dc:df:a9: a1:ce:52:99:4a:5f:cd:60:3e:34:60:cf:08:b1:5d:b8:e6:e5: 56:64:40:96:c5:f2:59:35:af:80:49:13:0b:66:5a:3b:ac:55: ab:7d:15:27:92:3b:cb:73:93:8b:07:85:b8:b3:0b:6e:f9:54: 10:e9:48:dc:01:b1:00:b3:91:2c:7d:df:da:f8:8e:95:4f:9b: 47:58:36:71:46:97:6b:4f:13:a0:48:da:0d:47:f4:2d:c9:fe: b4:b7:a3:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM0QkMxMTAvBgNVBAUTKDRERkVDMzQzN0M5MEJGNDE0RDA1MTg4QjQ4MkM3ODQ4 RTZGMzE2MUIwHhcNMjUwNTA5MDAwMDQ1WhcNMjUwNTE2MDAwMDQ1WjAYMRYwFAYD VQQDEw02ODFkNDVhZC1hMzFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt3Qm9Do4LXvyc3eiox4JhCWpJxG2IXcXuA8Xe7yGg/o9Lf1YJHxkUXzd+rnZ YRpkUIwHVgywzvZeKuCCe4E00ZRnTXcxzBtQl2fqeoQHaUw+zOGjpQvdYNY7QZil fRA1cIk/fkwxqCW866wmsY8S2Ram+JDs8MW7PfdF3igCdXv12HmChGlyB24u10qy +jYTHl8HA4qH03WJGeVilyCDKbiNpYZHO/gtmrKAdk8UI0jWXrkJRbOmitSDM//U 9YhJ5/cMYUC6WXHD3NrQz5ZPveG/WJ5BKtzhCmC1K0edWuKtz0/5sOL5VOLeFRRd UuRpwCWVB+g3GCrOsNiXhKtnCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFDR56D/ HeCUBIUG62YbEo+sj9GFMB8GA1UdIwQYMBaAFE3+w0N8kL9BTQUYi0gseEjm8xYb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzRCQy9BOTcwQjJFQzUx QUMxMUVDOUVEOTA0MUJDNEY5QUUwMi9UZjdEUTN5UXYwRk5CUmlMU0N4NFNPYnpG aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RmN0RRM3lRdjBGTkJSaUxTQ3g0U09iekZocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzRCQy9BOTcwQjJFQzUxQUMxMUVDOUVEOTA0MUJDNEY5QUUwMi9UZjdEUTN5UXYw Rk5CUmlMU0N4NFNPYnpGaHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDAgsUoFU+bQCaFqPlcoqjwfVCr9ET7Dq78Exw+maSoGILfj2HpYgLk 91SGlXIn+FmfAIDX+jXcviQdJWUhHegJ8lz4u74txFIbF+TzILMuF/GCW23UBa5+ idiSLStfbqwTq/FaysHGbcCebrbbbe/CVUVL79FtMRJRDYDrPW2TZJ0bBiDLnxlu RGXjeg5G8ZYrYgOefm4dfVHzXmty9I3c36mhzlKZSl/NYD40YM8IsV245uVWZECW xfJZNa+ASRMLZlo7rFWrfRUnkjvLc5OLB4W4swtu+VQQ6UjcAbEAs5Esfd/a+I6V T5tHWDZxRpdrTxOgSNoNR/Qtyf60t6Of -----END CERTIFICATE-----Generated at Sat May 10 16:43:33 2025 by rpki-client