$ rpki-client -vvf rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft File: 4dFD2djqAiJMHLDJFey4TuKLWqo.mft (raw, json) Hash identifier: h4pcXJQYI5vmccxBa+HXVBFQ/SgCPsQJsnvpuGymDec= Subject key identifier: AB:36:3F:71:98:84:CC:EB:F1:93:A1:91:01:F6:96:0E:45:68:0D:EA Authority key identifier: E1:D1:43:D9:D8:EA:02:22:4C:1C:B0:C9:15:EC:B8:4E:E2:8B:5A:AA Certificate issuer: /CN=A9170C53/serialNumber=E1D143D9D8EA02224C1CB0C915ECB84EE28B5AAA Certificate serial: 01AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft Manifest number: 01A2 Signing time: Tue 01 Jul 2025 03:44:30 +0000 Manifest this update: Tue 01 Jul 2025 03:44:29 +0000 Manifest next update: Tue 08 Jul 2025 03:44:29 +0000 Files and hashes: 1: 4dFD2djqAiJMHLDJFey4TuKLWqo.crl (hash: K/TElHvloDhEZ7Tu5ir75zMsPFK57a4K3Bh/apMtAmA=) 2: 916EFEE0DA6011ED9BC6175FC4F9AE02.roa (hash: RDPi47SZcDAz4xmQe0PzevESUJOCnp77k9KEsG3kOPw=) 3: 9283C1F8DA6011ED9BC6175FC4F9AE02.roa (hash: 4ZxnpGjaykPQCM8pL2N1CRQo3+QNzrfE6n7zpJytINg=) 4: 90AE648CDA6011ED9BC6175FC4F9AE02.roa (hash: +lHlOLbl/5RnNOcPx8/sJld2TYpyfZTtFIxadDBZYdU=) 5: 91FAB1ECDA6011ED9BC6175FC4F9AE02.roa (hash: v8W7oHHzaQTWG5Q9zg44OzZnUjsO7rk1vnHeE+xeDvw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.crl rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 03:44:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 431 (0x1af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170C53, serialNumber=E1D143D9D8EA02224C1CB0C915ECB84EE28B5AAA Validity Not Before: Jul 1 03:44:29 2025 GMT Not After : Jul 8 03:44:29 2025 GMT Subject: CN=6863599d-584d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:59:85:6d:ce:4d:16:96:ce:ad:12:16:c9:3e: 9a:cd:0d:9a:4c:f7:78:7c:ca:6e:87:ec:0a:63:e9: 19:00:e8:7c:e9:6b:55:ba:3d:98:d5:8b:ad:8f:81: a4:8a:a2:8e:5d:36:88:6f:81:3e:0f:f8:00:ea:db: a6:fb:70:6b:72:01:3e:5c:6c:d1:d2:83:7a:3c:07: e4:ed:3e:4f:ad:4f:f0:69:30:b0:90:f6:89:40:4b: 5f:94:41:3f:c1:76:53:b7:b1:01:d5:46:6a:52:f3: 8d:9e:3c:7a:9b:96:a9:2f:ac:74:69:22:a8:de:d3: 84:d6:95:68:79:1c:16:53:0c:3f:82:17:61:cf:bf: cb:e3:71:4c:ac:61:55:f0:69:db:bf:74:d5:8c:74: d4:34:ae:84:94:fe:00:24:86:8c:74:51:9c:4e:a4: d8:b1:94:c3:ee:fb:9a:12:12:37:dd:f0:3a:58:a3: 1a:54:c6:42:20:a6:6a:5d:f3:b9:5c:ab:75:f8:89: 50:7b:d3:86:3e:02:4d:ca:fd:76:e0:e1:7c:df:45: 6f:96:ae:90:62:45:be:1e:13:d1:f9:78:84:8c:b7: a0:97:62:06:26:d5:7b:7a:7b:6d:bd:f4:98:54:88: 48:a5:23:d2:53:dd:c7:24:98:8e:0d:1e:26:05:20: f8:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:36:3F:71:98:84:CC:EB:F1:93:A1:91:01:F6:96:0E:45:68:0D:EA X509v3 Authority Key Identifier: keyid:E1:D1:43:D9:D8:EA:02:22:4C:1C:B0:C9:15:EC:B8:4E:E2:8B:5A:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:cc:f2:7a:09:52:29:7d:f4:57:e7:a6:40:59:6f:10:24:ee: 3d:dc:2e:5b:65:86:bb:32:2d:c6:69:b2:63:71:a0:c9:de:3b: 7c:6a:62:98:67:09:ac:45:a4:72:be:09:f7:a4:b8:c2:77:0c: 33:be:a0:eb:f7:d8:c2:30:06:4a:0c:f1:66:d1:9c:c8:8b:aa: b3:44:2a:19:90:82:ac:f5:ec:20:db:0d:a9:3b:c5:94:c4:dd: 4b:46:a8:2b:5a:17:68:b7:a3:9a:6e:89:ad:f0:ae:6f:c1:73: 51:df:73:a0:fc:b3:67:c0:3e:5b:97:8c:c0:06:54:32:5e:f8: 93:59:01:0b:9c:02:fd:4f:da:08:0f:23:9f:2a:9b:67:48:ea: 82:78:39:9f:31:66:cf:28:ef:4e:cf:2d:80:e3:af:11:27:2f: 92:80:e9:01:cd:29:cf:3c:8a:e7:6f:c2:84:ff:7b:e1:43:0e: 38:3c:b2:24:7c:24:b2:cd:a8:4b:fb:ff:30:28:6c:ac:90:a4: 5e:d6:f9:36:d8:69:ea:5a:d1:fb:ac:94:9c:ad:ab:0b:b0:a9: d0:d6:99:f6:8e:19:30:46:51:f3:72:56:c1:e8:09:76:da:1a: e8:21:f4:c7:1d:cd:f5:48:d9:a8:37:62:07:5b:5f:74:96:5a: 2c:3f:49:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAa8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBDNTMxMTAvBgNVBAUTKEUxRDE0M0Q5RDhFQTAyMjI0QzFDQjBDOTE1RUNCODRF RTI4QjVBQUEwHhcNMjUwNzAxMDM0NDI5WhcNMjUwNzA4MDM0NDI5WjAYMRYwFAYD VQQDEw02ODYzNTk5ZC01ODRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7VmFbc5NFpbOrRIWyT6azQ2aTPd4fMpuh+wKY+kZAOh86WtVuj2Y1Yutj4Gk iqKOXTaIb4E+D/gA6tum+3BrcgE+XGzR0oN6PAfk7T5PrU/waTCwkPaJQEtflEE/ wXZTt7EB1UZqUvONnjx6m5apL6x0aSKo3tOE1pVoeRwWUww/ghdhz7/L43FMrGFV 8Gnbv3TVjHTUNK6ElP4AJIaMdFGcTqTYsZTD7vuaEhI33fA6WKMaVMZCIKZqXfO5 XKt1+IlQe9OGPgJNyv124OF830Vvlq6QYkW+HhPR+XiEjLegl2IGJtV7enttvfSY VIhIpSPSU93HJJiODR4mBSD4FwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKs2P3GY hMzr8ZOhkQH2lg5FaA3qMB8GA1UdIwQYMBaAFOHRQ9nY6gIiTBywyRXsuE7ii1qq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEM1My9DRTQ0NUJEMERB NUIxMUVEOTY3NDdDNUFDNEY5QUUwMi80ZEZEMmRqcUFpSk1ITERKRmV5NFR1S0xX cW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRkRkQyZGpxQWlKTUhMREpGZXk0VHVLTFdxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEM1My9DRTQ0NUJEMERBNUIxMUVEOTY3NDdDNUFDNEY5QUUwMi80ZEZEMmRqcUFp Sk1ITERKRmV5NFR1S0xXcW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJzPJ6CVIpffRX56ZAWW8QJO493C5bZYa7Mi3GabJjcaDJ3jt8amKY ZwmsRaRyvgn3pLjCdwwzvqDr99jCMAZKDPFm0ZzIi6qzRCoZkIKs9ewg2w2pO8WU xN1LRqgrWhdot6Oabomt8K5vwXNR33Og/LNnwD5bl4zABlQyXviTWQELnAL9T9oI DyOfKptnSOqCeDmfMWbPKO9Ozy2A468RJy+SgOkBzSnPPIrnb8KE/3vhQw44PLIk fCSyzahL+/8wKGyskKRe1vk22GnqWtH7rJScrasLsKnQ1pn2jhkwRlHzclbB6Al2 2hroIfTHHc31SNmoN2IHW190llosP0ka -----END CERTIFICATE-----Generated at Thu Jul 3 01:19:53 2025 by rpki-client