$ rpki-client -vvf rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.mft File: 4MiSj5RRUg5k0d7VjwcZa1hhsoY.mft (raw, json) Hash identifier: dvC1MJ70CAlBI/xawGNsKYg1lSJxllDLNomkx76BOWo= Subject key identifier: 7A:05:B0:B6:59:33:F1:E0:83:0F:8D:17:08:F5:7B:72:7C:5A:14:83 Authority key identifier: E0:C8:92:8F:94:51:52:0E:64:D1:DE:D5:8F:07:19:6B:58:61:B2:86 Certificate issuer: /CN=A917D4C4/serialNumber=E0C8928F9451520E64D1DED58F07196B5861B286 Certificate serial: 064E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4MiSj5RRUg5k0d7VjwcZa1hhsoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.mft Manifest number: 064A Signing time: Sat 10 May 2025 14:46:18 +0000 Manifest this update: Sat 10 May 2025 14:46:17 +0000 Manifest next update: Sat 17 May 2025 14:46:17 +0000 Files and hashes: 1: 4MiSj5RRUg5k0d7VjwcZa1hhsoY.crl (hash: jOuSuVrlIGbKPEF9TdSid6Lp9pWOa/CuhQm4GCJ3FkY=) 2: 6E325DBC0E2F11EDB4659653C4F9AE02.roa (hash: NS8IXL+/osy1aonTB1YcjpMFwDzkEpu3g9yC5lM136w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.crl rsync://rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4MiSj5RRUg5k0d7VjwcZa1hhsoY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 14:46:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1614 (0x64e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D4C4, serialNumber=E0C8928F9451520E64D1DED58F07196B5861B286 Validity Not Before: May 10 14:46:17 2025 GMT Not After : May 17 14:46:17 2025 GMT Subject: CN=681f66ba-4681 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:30:ad:83:e7:a2:23:29:99:18:04:5c:23:b8: e7:cc:94:71:91:8e:2c:f8:5f:dc:14:d1:a7:a4:95: 86:76:5e:4b:f0:e3:60:70:61:1d:62:ad:d8:f5:fe: 8c:9d:db:21:7d:8e:76:d3:4b:25:7e:91:a3:8f:c5: fd:55:a3:80:d8:3a:a0:0c:6a:74:41:22:e2:96:14: aa:08:0c:18:e1:e5:9b:e8:47:ab:a8:a7:6a:6a:45: 8c:74:e7:fe:2f:b7:be:18:d4:c0:7b:df:6e:16:6a: 70:40:84:ed:e2:7c:44:57:03:6c:d0:f6:d3:e9:b4: 15:1d:ef:6e:12:4c:3a:27:4a:65:65:55:80:8e:3e: 18:b0:7b:14:e6:ca:63:6a:99:30:a7:58:50:6d:fa: bf:37:49:86:ee:7c:08:e4:58:2e:b7:d7:a6:78:ed: 5e:67:8f:fa:fe:84:1c:39:34:4c:ad:fe:5b:6d:10: 65:9b:03:fc:29:37:ab:a1:6c:94:94:3f:12:e6:3a: 10:d9:e7:90:1c:9c:22:40:ad:98:00:fe:f6:db:b0: e2:93:84:6d:f4:6c:92:d1:aa:81:0d:22:96:47:1d: ec:ef:7b:c9:22:fd:f3:33:69:b5:98:20:ea:dc:53: ef:a9:5b:68:1b:96:5b:f6:37:19:3e:f1:c2:0f:e0: 9d:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:05:B0:B6:59:33:F1:E0:83:0F:8D:17:08:F5:7B:72:7C:5A:14:83 X509v3 Authority Key Identifier: keyid:E0:C8:92:8F:94:51:52:0E:64:D1:DE:D5:8F:07:19:6B:58:61:B2:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4MiSj5RRUg5k0d7VjwcZa1hhsoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:60:59:35:fe:2d:b6:22:67:0c:a1:4f:15:3c:da:0d:d8:08: 84:f6:d5:48:02:90:34:1e:cc:45:92:c6:c0:17:dd:d0:6d:95: 30:3e:9d:35:cb:44:b4:54:65:58:13:05:50:d8:90:6a:f0:0d: fb:d7:59:76:50:78:ef:f3:0b:96:55:7b:b7:8b:c5:30:5b:68: 7a:8c:e6:1a:5c:2f:9f:21:42:03:2a:65:4a:44:7f:36:10:59: 63:c7:5e:48:a9:0c:c6:0b:92:86:60:d7:10:9f:09:73:86:35: 24:fd:11:23:51:0e:bf:3e:4b:c8:14:21:ad:e1:02:b1:13:67: 4d:95:aa:26:30:13:96:df:7a:3a:ed:7c:4f:dc:13:e7:9f:77: bc:4a:f9:53:34:eb:91:d4:26:f4:4f:f8:8b:7f:9b:6a:84:2b: 62:47:53:6e:f8:79:d4:f8:09:1f:74:74:a9:81:53:ab:7d:0d: d6:af:f7:33:28:06:de:a1:56:b4:75:fa:8c:85:71:96:61:51: 4e:96:83:7b:d6:b1:50:a6:6e:d2:2e:72:94:2c:4c:8f:7e:6e: fe:2e:cf:ff:f0:a9:68:80:b3:93:7d:2d:52:44:d5:f5:f5:b7: 9c:69:fa:59:76:0f:09:6c:bf:ba:1a:67:c2:6b:b1:45:55:0d: 67:fd:51:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBk4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q0QzQxMTAvBgNVBAUTKEUwQzg5MjhGOTQ1MTUyMEU2NEQxREVENThGMDcxOTZC NTg2MUIyODYwHhcNMjUwNTEwMTQ0NjE3WhcNMjUwNTE3MTQ0NjE3WjAYMRYwFAYD VQQDEw02ODFmNjZiYS00NjgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0DCtg+eiIymZGARcI7jnzJRxkY4s+F/cFNGnpJWGdl5L8ONgcGEdYq3Y9f6M ndshfY5200slfpGjj8X9VaOA2DqgDGp0QSLilhSqCAwY4eWb6EerqKdqakWMdOf+ L7e+GNTAe99uFmpwQITt4nxEVwNs0PbT6bQVHe9uEkw6J0plZVWAjj4YsHsU5spj apkwp1hQbfq/N0mG7nwI5Fgut9emeO1eZ4/6/oQcOTRMrf5bbRBlmwP8KTeroWyU lD8S5joQ2eeQHJwiQK2YAP7227Dik4Rt9GyS0aqBDSKWRx3s73vJIv3zM2m1mCDq 3FPvqVtoG5Zb9jcZPvHCD+CdlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHoFsLZZ M/Hggw+NFwj1e3J8WhSDMB8GA1UdIwQYMBaAFODIko+UUVIOZNHe1Y8HGWtYYbKG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDRDNC80MzlDRjg3QzhE N0IxMUVCOEQ4QkQ2MEJDNEY5QUUwMi80TWlTajVSUlVnNWswZDdWandjWmExaGhz b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRNaVNqNVJSVWc1azBkN1Zqd2NaYTFoaHNvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDRDNC80MzlDRjg3QzhEN0IxMUVCOEQ4QkQ2MEJDNEY5QUUwMi80TWlTajVSUlVn NWswZDdWandjWmExaGhzb1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0YFk1/i22ImcMoU8VPNoN2AiE9tVIApA0HsxFksbAF93QbZUwPp01 y0S0VGVYEwVQ2JBq8A3711l2UHjv8wuWVXu3i8UwW2h6jOYaXC+fIUIDKmVKRH82 EFljx15IqQzGC5KGYNcQnwlzhjUk/REjUQ6/PkvIFCGt4QKxE2dNlaomMBOW33o6 7XxP3BPnn3e8SvlTNOuR1Cb0T/iLf5tqhCtiR1Nu+HnU+AkfdHSpgVOrfQ3Wr/cz KAbeoVa0dfqMhXGWYVFOloN71rFQpm7SLnKULEyPfm7+Ls//8KlogLOTfS1SRNX1 9becafpZdg8JbL+6GmfCa7FFVQ1n/VGQ -----END CERTIFICATE-----Generated at Mon May 12 04:17:44 2025 by rpki-client