$ rpki-client -vvf rpki.apnic.net/member_repository/A9175027/2505CEDC256811EBAC2CAC5AC4F9AE02/4XcstdOWUnbPTpjTdmtjDX4_gXg.mft File: 4XcstdOWUnbPTpjTdmtjDX4_gXg.mft (raw, json) Hash identifier: nPJkgn22Ec7Lgbf2uvo5K/8gOUoCjqvRk5isU1FeAtI= Subject key identifier: 46:70:AD:40:CB:15:60:77:7D:96:9C:15:51:50:50:65:64:D3:8E:3A Authority key identifier: E1:77:2C:B5:D3:96:52:76:CF:4E:98:D3:76:6B:63:0D:7E:3F:81:78 Certificate issuer: /CN=A9175027/serialNumber=E1772CB5D3965276CF4E98D3766B630D7E3F8178 Certificate serial: 0782 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XcstdOWUnbPTpjTdmtjDX4_gXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175027/2505CEDC256811EBAC2CAC5AC4F9AE02/4XcstdOWUnbPTpjTdmtjDX4_gXg.mft Manifest number: 0761 Signing time: Sun 04 May 2025 21:22:43 +0000 Manifest this update: Sun 04 May 2025 21:22:43 +0000 Manifest next update: Sun 11 May 2025 21:22:43 +0000 Files and hashes: 1: 4XcstdOWUnbPTpjTdmtjDX4_gXg.crl (hash: gJrvsN5orxPhNAHFp32UPestliHOk0n5oT68cKH5+6E=) 2: 12DBAD3CDAFF11ECA67DA10BC4F9AE02.roa (hash: 3/Y1r0LMBII6zW5USQairn62r7Znj5u8VXmSgbR98nY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175027/2505CEDC256811EBAC2CAC5AC4F9AE02/4XcstdOWUnbPTpjTdmtjDX4_gXg.crl rsync://rpki.apnic.net/member_repository/A9175027/2505CEDC256811EBAC2CAC5AC4F9AE02/4XcstdOWUnbPTpjTdmtjDX4_gXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XcstdOWUnbPTpjTdmtjDX4_gXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 21:22:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1922 (0x782) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175027, serialNumber=E1772CB5D3965276CF4E98D3766B630D7E3F8178 Validity Not Before: May 4 21:22:43 2025 GMT Not After : May 11 21:22:43 2025 GMT Subject: CN=6817daa3-c8e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:d5:f9:7b:19:2d:cb:dd:9f:db:b1:c6:32:f8: 52:82:19:0f:45:3d:db:b9:a0:f8:e8:53:da:a1:4e: dc:13:96:44:73:b8:9b:3c:aa:fa:3c:46:17:8c:e6: 9e:87:73:0a:4f:71:39:18:ed:d2:1b:ee:c5:df:01: 87:d3:9a:b6:41:90:e1:79:2b:7e:a7:3c:32:9f:8a: e2:61:cd:3f:d6:37:b4:3a:39:b6:ce:50:b5:5a:89: 23:54:6d:f5:01:c2:eb:82:e3:6c:63:c7:2c:45:69: d3:ca:04:4c:d9:e6:9b:7e:c5:f8:c3:27:e0:4e:96: bd:c3:b3:c5:aa:57:8c:a3:be:71:57:89:ea:71:7d: dc:ad:e7:b6:1e:52:0b:f5:10:31:ee:76:0c:56:a1: 37:3b:b0:7a:91:24:f9:03:df:59:09:3c:f8:ce:f6: 93:6b:f7:83:39:02:d4:29:31:58:b0:72:8f:80:49: 78:c9:62:29:53:97:61:24:17:43:5c:a4:24:8f:b0: 95:65:49:9e:54:94:f5:3e:26:2e:65:e2:78:7b:b9: 03:e8:51:05:0c:a3:d4:71:fc:66:49:51:aa:55:8a: 17:f7:6c:06:6b:d6:9f:f0:57:c9:37:0b:22:f6:a4: 0d:20:03:ff:00:50:21:0d:23:e2:c6:dd:e6:bc:ec: b3:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:70:AD:40:CB:15:60:77:7D:96:9C:15:51:50:50:65:64:D3:8E:3A X509v3 Authority Key Identifier: keyid:E1:77:2C:B5:D3:96:52:76:CF:4E:98:D3:76:6B:63:0D:7E:3F:81:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175027/2505CEDC256811EBAC2CAC5AC4F9AE02/4XcstdOWUnbPTpjTdmtjDX4_gXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XcstdOWUnbPTpjTdmtjDX4_gXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175027/2505CEDC256811EBAC2CAC5AC4F9AE02/4XcstdOWUnbPTpjTdmtjDX4_gXg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:18:1e:dc:28:85:42:e3:39:d8:c7:d4:b6:f6:6e:33:6f:c7: a5:34:a1:ea:07:9e:50:70:a9:8b:df:9c:84:27:e8:52:49:aa: dd:18:71:9c:4d:94:d8:f0:ac:76:67:0e:04:60:1a:a2:ad:6c: 0f:40:e4:61:e4:e8:98:62:48:08:39:db:c4:65:13:a6:16:99: 92:e5:b7:72:ab:ba:d7:d8:c8:37:a5:1a:37:69:19:22:76:cd: e2:2b:76:99:c3:3f:bb:ff:4a:84:43:11:08:1e:94:7e:38:4f: 36:ef:ff:e5:94:1b:bd:6f:07:13:a3:5f:0e:2f:92:b1:7b:7c: 7b:1c:e3:0d:8f:3f:82:9c:a1:31:45:c2:a2:81:4e:7c:48:61: 73:b4:aa:65:b6:ab:7e:58:c2:1f:7b:f7:a2:97:8d:61:98:eb: 2e:17:6c:5d:14:21:c7:4d:36:1c:e5:a0:8d:1d:14:26:6e:fc: 3e:81:3f:3e:47:cd:39:4d:0a:14:63:08:b8:16:6a:f0:41:de: 5d:69:4a:fc:5a:55:32:8d:40:95:ac:47:3d:26:68:58:39:bd: ae:d9:8a:95:67:52:10:3a:c7:24:c1:ff:43:50:89:86:7f:c0: 54:c3:36:65:eb:85:35:68:0c:8c:0a:1a:3d:21:04:51:14:c9: 68:0b:d4:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB4IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzUwMjcxMTAvBgNVBAUTKEUxNzcyQ0I1RDM5NjUyNzZDRjRFOThEMzc2NkI2MzBE N0UzRjgxNzgwHhcNMjUwNTA0MjEyMjQzWhcNMjUwNTExMjEyMjQzWjAYMRYwFAYD VQQDEw02ODE3ZGFhMy1jOGU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApdX5exkty92f27HGMvhSghkPRT3buaD46FPaoU7cE5ZEc7ibPKr6PEYXjOae h3MKT3E5GO3SG+7F3wGH05q2QZDheSt+pzwyn4riYc0/1je0Ojm2zlC1WokjVG31 AcLrguNsY8csRWnTygRM2eabfsX4wyfgTpa9w7PFqleMo75xV4nqcX3cree2HlIL 9RAx7nYMVqE3O7B6kST5A99ZCTz4zvaTa/eDOQLUKTFYsHKPgEl4yWIpU5dhJBdD XKQkj7CVZUmeVJT1PiYuZeJ4e7kD6FEFDKPUcfxmSVGqVYoX92wGa9af8FfJNwsi 9qQNIAP/AFAhDSPixt3mvOyzyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEZwrUDL FWB3fZacFVFQUGVk0446MB8GA1UdIwQYMBaAFOF3LLXTllJ2z06Y03ZrYw1+P4F4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTAyNy8yNTA1Q0VEQzI1 NjgxMUVCQUMyQ0FDNUFDNEY5QUUwMi80WGNzdGRPV1VuYlBUcGpUZG10akRYNF9n WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRYY3N0ZE9XVW5iUFRwalRkbXRqRFg0X2dYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTAyNy8yNTA1Q0VEQzI1NjgxMUVCQUMyQ0FDNUFDNEY5QUUwMi80WGNzdGRPV1Vu YlBUcGpUZG10akRYNF9nWGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsGB7cKIVC4znYx9S29m4zb8elNKHqB55QcKmL35yEJ+hSSardGHGc TZTY8Kx2Zw4EYBqirWwPQORh5OiYYkgIOdvEZROmFpmS5bdyq7rX2Mg3pRo3aRki ds3iK3aZwz+7/0qEQxEIHpR+OE827//llBu9bwcTo18OL5Kxe3x7HOMNjz+CnKEx RcKigU58SGFztKpltqt+WMIfe/eil41hmOsuF2xdFCHHTTYc5aCNHRQmbvw+gT8+ R805TQoUYwi4FmrwQd5daUr8WlUyjUCVrEc9JmhYOb2u2YqVZ1IQOsckwf9DUImG f8BUwzZl64U1aAyMCho9IQRRFMloC9Qv -----END CERTIFICATE-----Generated at Mon May 5 02:07:02 2025 by rpki-client