$ rpki-client -vvf rpki.apnic.net/member_repository/A916DED9/DF15B3B8852911EEAFD04C84C4F9AE02/4W5PZeLjl-n84FeFomXGGXyCIMk.mft File: 4W5PZeLjl-n84FeFomXGGXyCIMk.mft (raw, json) Hash identifier: yOvwhVq4SKa2zPld8lutSxGY7R9ewx4GhukG3hbhHmA= Subject key identifier: 49:96:1F:8B:C9:6F:C9:50:F3:35:6F:9D:D1:FE:D0:B1:B9:B6:46:D2 Authority key identifier: E1:6E:4F:65:E2:E3:97:E9:FC:E0:57:85:A2:65:C6:19:7C:82:20:C9 Certificate issuer: /CN=A916DED9/serialNumber=E16E4F65E2E397E9FCE05785A265C6197C8220C9 Certificate serial: 0130 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4W5PZeLjl-n84FeFomXGGXyCIMk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916DED9/DF15B3B8852911EEAFD04C84C4F9AE02/4W5PZeLjl-n84FeFomXGGXyCIMk.mft Manifest number: 012E Signing time: Tue 01 Jul 2025 05:01:42 +0000 Manifest this update: Tue 01 Jul 2025 05:01:42 +0000 Manifest next update: Tue 08 Jul 2025 05:01:42 +0000 Files and hashes: 1: 4W5PZeLjl-n84FeFomXGGXyCIMk.crl (hash: RDeDS7h9OoOnqltxOHSNaYz175uVrbGWH2/EHboRWhE=) 2: 880E53BC852A11EE8B988A85C4F9AE02.roa (hash: SuIwbjVFIiO//MYlkWAI7JLL+Gi6my0EIFtFpMkp/oM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916DED9/DF15B3B8852911EEAFD04C84C4F9AE02/4W5PZeLjl-n84FeFomXGGXyCIMk.crl rsync://rpki.apnic.net/member_repository/A916DED9/DF15B3B8852911EEAFD04C84C4F9AE02/4W5PZeLjl-n84FeFomXGGXyCIMk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4W5PZeLjl-n84FeFomXGGXyCIMk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 05:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 304 (0x130) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916DED9, serialNumber=E16E4F65E2E397E9FCE05785A265C6197C8220C9 Validity Not Before: Jul 1 05:01:42 2025 GMT Not After : Jul 8 05:01:42 2025 GMT Subject: CN=68636bb6-f900 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:3b:c5:ca:ec:3f:f0:cc:86:ed:14:07:95:cc: de:85:5e:f0:d0:65:69:a9:9f:8a:a7:34:14:93:1a: e9:b6:02:30:99:72:fe:b5:76:12:b1:b3:8a:d6:09: f9:65:94:a7:e0:98:78:ad:c2:48:b5:f4:74:2e:36: 8f:17:4d:32:cb:3d:7b:ad:54:ec:ca:9c:29:24:2d: 87:e9:4d:16:41:07:d3:95:f7:18:84:b2:fd:ad:3c: 38:60:db:9e:b6:cf:e1:dc:5e:d8:ca:d9:9f:3a:3e: 73:b8:2c:14:46:b0:1b:75:5b:3c:46:1e:4c:2f:0b: 93:2b:ec:36:f7:d7:2c:80:97:9c:79:78:77:98:2a: 67:40:37:40:b6:0f:a8:bb:ae:1e:de:7f:69:de:16: ab:ca:2d:bd:14:33:11:3d:5b:f6:c3:ac:f6:7f:ed: cb:53:22:39:a7:37:f9:cd:cd:c4:f9:a6:fc:3b:82: 69:78:22:99:a4:4b:bc:e4:84:6a:54:a4:4f:79:a0: 87:ef:46:c1:5f:d4:87:bf:44:62:30:d5:ea:29:9a: e6:90:e4:5f:d7:2c:2f:64:7e:2d:9b:e6:ce:e7:e3: 29:33:d4:d2:f8:a7:ce:6e:b9:dc:c7:0f:61:1f:85: 8d:50:85:b2:ef:28:67:fe:3e:03:04:7f:57:a3:5b: 3f:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:96:1F:8B:C9:6F:C9:50:F3:35:6F:9D:D1:FE:D0:B1:B9:B6:46:D2 X509v3 Authority Key Identifier: keyid:E1:6E:4F:65:E2:E3:97:E9:FC:E0:57:85:A2:65:C6:19:7C:82:20:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916DED9/DF15B3B8852911EEAFD04C84C4F9AE02/4W5PZeLjl-n84FeFomXGGXyCIMk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4W5PZeLjl-n84FeFomXGGXyCIMk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916DED9/DF15B3B8852911EEAFD04C84C4F9AE02/4W5PZeLjl-n84FeFomXGGXyCIMk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:6f:0c:ab:62:04:07:b7:84:68:0b:1d:da:fd:3e:56:29:15: 45:5e:0f:ba:58:85:8e:84:fb:98:ec:8e:de:4e:59:1f:2d:8c: 21:e7:ba:8f:e9:40:7d:f9:1a:82:99:1d:de:c6:db:93:23:18: 09:ba:e5:a3:02:28:9c:a6:24:6a:00:c0:ee:c7:92:a7:31:04: 86:76:ad:01:4a:8a:76:a5:37:e7:ae:97:fc:e1:8f:48:52:20: b5:eb:78:1b:2f:d4:5a:39:b0:e5:1c:8a:9a:34:11:04:7a:0d: 70:e4:07:8d:e2:8e:8e:fd:30:fc:2f:63:6d:db:a3:7a:cd:c7: ac:c2:81:d2:f7:58:d8:f4:cf:3d:4b:8f:37:39:db:d1:92:d7: fb:84:fc:72:0c:4a:44:29:53:20:99:13:ee:b4:66:55:b2:eb: 4b:88:e6:cd:7c:76:fd:f3:a1:cc:bc:5b:e8:dc:92:b1:df:2d: a3:80:e8:72:70:0e:c6:09:47:c2:4e:c1:be:84:9b:17:06:b2: c2:c7:74:03:ad:d3:5e:4e:ef:10:5e:63:f7:11:2a:09:25:7d: 8e:85:f2:74:3d:9e:ba:4e:4a:49:30:e1:4d:10:a7:85:b3:53: fb:22:46:ac:4f:78:79:49:b6:6a:0f:8b:15:af:2e:26:99:bc: 7f:25:20:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkRFRDkxMTAvBgNVBAUTKEUxNkU0RjY1RTJFMzk3RTlGQ0UwNTc4NUEyNjVDNjE5 N0M4MjIwQzkwHhcNMjUwNzAxMDUwMTQyWhcNMjUwNzA4MDUwMTQyWjAYMRYwFAYD VQQDEw02ODYzNmJiNi1mOTAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArjvFyuw/8MyG7RQHlczehV7w0GVpqZ+KpzQUkxrptgIwmXL+tXYSsbOK1gn5 ZZSn4Jh4rcJItfR0LjaPF00yyz17rVTsypwpJC2H6U0WQQfTlfcYhLL9rTw4YNue ts/h3F7YytmfOj5zuCwURrAbdVs8Rh5MLwuTK+w299csgJeceXh3mCpnQDdAtg+o u64e3n9p3haryi29FDMRPVv2w6z2f+3LUyI5pzf5zc3E+ab8O4JpeCKZpEu85IRq VKRPeaCH70bBX9SHv0RiMNXqKZrmkORf1ywvZH4tm+bO5+MpM9TS+KfObrncxw9h H4WNUIWy7yhn/j4DBH9Xo1s/nQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEmWH4vJ b8lQ8zVvndH+0LG5tkbSMB8GA1UdIwQYMBaAFOFuT2Xi45fp/OBXhaJlxhl8giDJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2REVEOS9ERjE1QjNCODg1 MjkxMUVFQUZEMDRDODRDNEY5QUUwMi80VzVQWmVMamwtbjg0RmVGb21YR0dYeUNJ TWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRXNVBaZUxqbC1uODRGZUZvbVhHR1h5Q0lNay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 REVEOS9ERjE1QjNCODg1MjkxMUVFQUZEMDRDODRDNEY5QUUwMi80VzVQWmVMamwt bjg0RmVGb21YR0dYeUNJTWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5bwyrYgQHt4RoCx3a/T5WKRVFXg+6WIWOhPuY7I7eTlkfLYwh57qP 6UB9+RqCmR3extuTIxgJuuWjAiicpiRqAMDux5KnMQSGdq0BSop2pTfnrpf84Y9I UiC163gbL9RaObDlHIqaNBEEeg1w5AeN4o6O/TD8L2Nt26N6zceswoHS91jY9M89 S483OdvRktf7hPxyDEpEKVMgmRPutGZVsutLiObNfHb986HMvFvo3JKx3y2jgOhy cA7GCUfCTsG+hJsXBrLCx3QDrdNeTu8QXmP3ESoJJX2OhfJ0PZ66TkpJMOFNEKeF s1P7IkasT3h5SbZqD4sVry4mmbx/JSDX -----END CERTIFICATE-----Generated at Wed Jul 2 15:58:25 2025 by rpki-client