$ rpki-client -vvf rpki.apnic.net/member_repository/A916DED9/DF15B3B8852911EEAFD04C84C4F9AE02/4W5PZeLjl-n84FeFomXGGXyCIMk.mft File: 4W5PZeLjl-n84FeFomXGGXyCIMk.mft (raw, json) Hash identifier: yOH+rfUyQnICr0mpbKfBiqq4YPcV6g45Kq0BRiTy3VY= Subject key identifier: DA:CB:FD:34:5B:84:DA:6F:15:45:B1:7C:5B:BF:20:5B:7B:98:CB:7F Authority key identifier: E1:6E:4F:65:E2:E3:97:E9:FC:E0:57:85:A2:65:C6:19:7C:82:20:C9 Certificate issuer: /CN=A916DED9/serialNumber=E16E4F65E2E397E9FCE05785A265C6197C8220C9 Certificate serial: 0117 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4W5PZeLjl-n84FeFomXGGXyCIMk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916DED9/DF15B3B8852911EEAFD04C84C4F9AE02/4W5PZeLjl-n84FeFomXGGXyCIMk.mft Manifest number: 0115 Signing time: Sun 11 May 2025 03:41:52 +0000 Manifest this update: Sun 11 May 2025 03:41:51 +0000 Manifest next update: Sun 18 May 2025 03:41:51 +0000 Files and hashes: 1: 4W5PZeLjl-n84FeFomXGGXyCIMk.crl (hash: ZBoWCmYF+QQPyRvVGvEWzoypwukSWXZ23JQtb608B4c=) 2: 880E53BC852A11EE8B988A85C4F9AE02.roa (hash: SuIwbjVFIiO//MYlkWAI7JLL+Gi6my0EIFtFpMkp/oM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916DED9/DF15B3B8852911EEAFD04C84C4F9AE02/4W5PZeLjl-n84FeFomXGGXyCIMk.crl rsync://rpki.apnic.net/member_repository/A916DED9/DF15B3B8852911EEAFD04C84C4F9AE02/4W5PZeLjl-n84FeFomXGGXyCIMk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4W5PZeLjl-n84FeFomXGGXyCIMk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 03:41:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 279 (0x117) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916DED9, serialNumber=E16E4F65E2E397E9FCE05785A265C6197C8220C9 Validity Not Before: May 11 03:41:51 2025 GMT Not After : May 18 03:41:51 2025 GMT Subject: CN=68201c80-d19b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:bd:e4:7a:dc:61:6b:a2:d3:02:6d:44:15:3e: 6c:43:43:75:3e:b2:4e:dd:c3:32:f9:96:3c:92:89: 7d:b8:ae:12:60:ef:5a:60:8a:c7:44:fc:7f:2a:8c: 68:37:04:1b:2b:a0:df:d8:b4:3a:bf:cf:75:76:8f: 83:3e:53:e5:9b:b1:17:4b:84:53:49:86:34:47:80: 6c:22:ac:d0:b0:8e:0a:30:59:bc:87:10:6d:5e:ed: 05:cf:ff:04:1c:c3:83:12:96:72:2a:8e:33:63:f3: ad:69:68:8d:f9:77:19:a3:88:f3:0e:46:e2:78:67: 1a:5b:87:84:30:a2:1b:3a:c8:17:76:38:18:47:c4: 68:7e:ca:5e:d4:5f:15:30:cf:28:67:bb:99:39:35: 38:d9:00:01:0e:3a:14:77:0c:2b:b2:ad:26:b2:23: cc:f3:ed:6e:46:bf:7f:3d:7a:09:33:56:6f:a0:38: 37:24:26:4c:b7:5a:d2:25:ff:38:73:61:3c:7d:8e: ce:85:fc:c8:f0:4f:17:44:17:55:21:fd:32:82:d3: 36:85:64:3f:25:64:53:2f:bb:b9:9e:8b:2a:df:40: 21:cb:4a:a6:50:20:49:53:6c:73:7d:97:af:03:b4: 54:b5:e8:7e:07:8b:fa:aa:a1:37:78:c9:dc:a2:eb: 94:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:CB:FD:34:5B:84:DA:6F:15:45:B1:7C:5B:BF:20:5B:7B:98:CB:7F X509v3 Authority Key Identifier: keyid:E1:6E:4F:65:E2:E3:97:E9:FC:E0:57:85:A2:65:C6:19:7C:82:20:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916DED9/DF15B3B8852911EEAFD04C84C4F9AE02/4W5PZeLjl-n84FeFomXGGXyCIMk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4W5PZeLjl-n84FeFomXGGXyCIMk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916DED9/DF15B3B8852911EEAFD04C84C4F9AE02/4W5PZeLjl-n84FeFomXGGXyCIMk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:62:da:94:ae:a2:6d:d0:cf:bb:eb:00:3e:31:93:92:2d:be: e0:30:2d:be:5c:8e:ee:34:a1:6b:ff:d9:ea:f1:68:6e:e8:ce: 81:f5:32:57:2c:ba:9a:6d:96:da:b2:1a:38:8d:9c:a3:30:dd: 5b:4e:49:dd:68:83:8f:8c:59:a2:ed:83:50:f6:ab:02:a5:f3: e8:46:98:73:a1:15:94:d5:42:a1:b7:d3:b3:9a:ff:4f:0c:7b: 4d:95:ff:8f:7d:5c:aa:ec:d8:22:fd:53:54:80:74:e2:64:ce: 77:28:de:0a:1d:02:c4:e7:15:38:6b:da:6e:d8:c9:5a:da:af: e0:7c:54:ed:b6:a2:7f:7a:61:e0:60:91:6e:94:02:14:24:0f: a2:2d:f0:00:4b:c4:fe:45:43:c8:47:af:6f:2b:05:0b:d7:9d: 23:6f:f7:80:93:b6:50:d5:57:4b:fa:e5:a5:8a:64:a1:a5:6e: ac:1d:e1:ce:ab:6f:58:f1:d9:f0:d6:e4:3c:ee:ab:e2:e4:1a: 77:54:f1:6c:b4:76:35:42:59:1f:7a:59:8c:4d:8f:9b:10:2a: 11:b8:cb:81:10:0d:4a:4d:f7:67:57:67:4c:a2:e1:53:87:14: 52:f0:7b:56:2c:26:32:a6:16:32:37:4d:c1:8e:6c:a6:b4:4e: 3f:a8:cf:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkRFRDkxMTAvBgNVBAUTKEUxNkU0RjY1RTJFMzk3RTlGQ0UwNTc4NUEyNjVDNjE5 N0M4MjIwQzkwHhcNMjUwNTExMDM0MTUxWhcNMjUwNTE4MDM0MTUxWjAYMRYwFAYD VQQDEw02ODIwMWM4MC1kMTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq73ketxha6LTAm1EFT5sQ0N1PrJO3cMy+ZY8kol9uK4SYO9aYIrHRPx/Koxo NwQbK6Df2LQ6v891do+DPlPlm7EXS4RTSYY0R4BsIqzQsI4KMFm8hxBtXu0Fz/8E HMODEpZyKo4zY/OtaWiN+XcZo4jzDkbieGcaW4eEMKIbOsgXdjgYR8Rofspe1F8V MM8oZ7uZOTU42QABDjoUdwwrsq0msiPM8+1uRr9/PXoJM1ZvoDg3JCZMt1rSJf84 c2E8fY7OhfzI8E8XRBdVIf0ygtM2hWQ/JWRTL7u5nosq30Ahy0qmUCBJU2xzfZev A7RUteh+B4v6qqE3eMncouuURQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNrL/TRb hNpvFUWxfFu/IFt7mMt/MB8GA1UdIwQYMBaAFOFuT2Xi45fp/OBXhaJlxhl8giDJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2REVEOS9ERjE1QjNCODg1 MjkxMUVFQUZEMDRDODRDNEY5QUUwMi80VzVQWmVMamwtbjg0RmVGb21YR0dYeUNJ TWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRXNVBaZUxqbC1uODRGZUZvbVhHR1h5Q0lNay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 REVEOS9ERjE1QjNCODg1MjkxMUVFQUZEMDRDODRDNEY5QUUwMi80VzVQWmVMamwt bjg0RmVGb21YR0dYeUNJTWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8YtqUrqJt0M+76wA+MZOSLb7gMC2+XI7uNKFr/9nq8Whu6M6B9TJX LLqabZbasho4jZyjMN1bTkndaIOPjFmi7YNQ9qsCpfPoRphzoRWU1UKht9Ozmv9P DHtNlf+PfVyq7Ngi/VNUgHTiZM53KN4KHQLE5xU4a9pu2Mla2q/gfFTttqJ/emHg YJFulAIUJA+iLfAAS8T+RUPIR69vKwUL150jb/eAk7ZQ1VdL+uWlimShpW6sHeHO q29Y8dnw1uQ87qvi5Bp3VPFstHY1QlkfelmMTY+bECoRuMuBEA1KTfdnV2dMouFT hxRS8HtWLCYyphYyN03BjmymtE4/qM+g -----END CERTIFICATE-----Generated at Mon May 12 04:38:01 2025 by rpki-client