$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft File: 4kPzvoJVabsWrLN0vJjavmkLF8E.mft (raw, json) Hash identifier: Uee/ITEVhgTQy+0d/4LLJwO/B0jvrpc5A5ieOPxeUG4= Subject key identifier: 77:73:54:D6:A5:BF:AA:64:C5:65:3F:C6:11:CB:F3:9A:2A:1F:85:F8 Authority key identifier: E2:43:F3:BE:82:55:69:BB:16:AC:B3:74:BC:98:DA:BE:69:0B:17:C1 Certificate issuer: /CN=A917E678/serialNumber=E243F3BE825569BB16ACB374BC98DABE690B17C1 Certificate serial: 0698 Authority info access: rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/4kPzvoJVabsWrLN0vJjavmkLF8E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft Manifest number: 0675 Signing time: Mon 12 May 2025 16:50:01 +0000 Manifest this update: Mon 12 May 2025 16:50:00 +0000 Manifest next update: Mon 19 May 2025 16:50:00 +0000 Files and hashes: 1: 4kPzvoJVabsWrLN0vJjavmkLF8E.crl (hash: ckc65vtPW5X+GCis22mgXJoRbtAdsDRiD72UOvgiOzM=) 2: 91E868D4902B11EF87435A54C4F9AE02.roa (hash: M9JBLSmTZK+WGHWP4PBl4vCGB8OpE/d5KiAWANLVB54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.crl rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/4kPzvoJVabsWrLN0vJjavmkLF8E.cer rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 16:50:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1688 (0x698) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=E243F3BE825569BB16ACB374BC98DABE690B17C1 Validity Not Before: May 12 16:50:00 2025 GMT Not After : May 19 16:50:00 2025 GMT Subject: CN=682226b9-c766 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:7e:1d:af:ba:cc:e1:8e:2d:c2:ed:23:51:6b: 3c:a0:75:da:52:c0:86:a2:3f:0b:ac:c8:27:93:eb: ea:1c:b6:94:35:03:53:ff:1d:6f:cb:5a:b2:b0:3e: 15:a2:d6:82:0b:23:e1:cb:23:4a:b8:15:78:d5:28: 8e:83:32:8f:9c:87:b6:7d:61:4b:7b:5c:61:b9:c4: 2a:94:08:fd:5d:b5:0d:50:88:b2:61:4f:1a:09:f3: 02:64:19:37:74:01:c4:b4:b5:d6:3d:3a:41:9a:d9: 8f:06:b6:21:21:fb:24:9b:fb:5e:35:30:c9:5c:f6: 1a:d1:6e:42:5a:ee:76:14:f0:cd:8c:ec:27:81:07: 5f:fe:c2:ef:9d:38:55:0e:4e:63:1f:fd:d7:2f:b4: 8e:82:c7:3d:8b:79:50:0d:65:ea:cd:dd:bb:68:4e: 10:a1:9b:e7:e8:8c:65:5c:77:a5:11:63:d7:56:b6: 81:a1:2b:92:a8:5f:7e:fe:ab:b8:09:28:9c:a3:91: fc:2f:c0:a2:76:47:f8:62:ee:f8:02:6b:7c:31:67: 7c:d1:45:f0:0f:0c:9c:07:80:0e:96:53:34:70:6e: 30:22:13:42:92:32:ed:81:43:3a:a0:3d:a7:f5:26: ae:99:44:87:b6:c6:51:e3:99:9b:79:ce:9b:15:51: a4:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:73:54:D6:A5:BF:AA:64:C5:65:3F:C6:11:CB:F3:9A:2A:1F:85:F8 X509v3 Authority Key Identifier: keyid:E2:43:F3:BE:82:55:69:BB:16:AC:B3:74:BC:98:DA:BE:69:0B:17:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/4kPzvoJVabsWrLN0vJjavmkLF8E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:bc:8c:2e:06:bd:fa:63:41:42:b3:a0:d7:43:19:e6:27:b5: a6:fd:e1:f7:9d:49:f7:87:4d:ba:e4:f7:7d:b2:e3:e4:93:f9: 0e:7c:47:90:ae:f7:3e:90:a1:8b:a3:14:08:dd:7f:e0:21:34: a2:a9:0d:f0:bb:36:8d:f0:ce:d0:80:8a:c0:a7:92:3d:07:7a: ff:59:d1:77:25:4a:bc:1c:1d:d0:7f:7e:4e:59:19:1e:c0:b0: ac:5f:e6:22:04:d5:4e:91:79:da:d0:c8:7d:e6:31:ab:ca:5f: cb:92:c2:a4:8f:a0:0f:7f:20:55:a0:df:39:36:07:fe:ec:c6: fc:ec:f5:58:3c:46:73:43:aa:76:99:67:62:6d:7f:59:97:7e: 08:b2:2c:06:a4:f0:f2:af:1c:82:d5:05:da:e7:cc:93:98:48: 95:d3:78:a4:33:45:63:c8:b6:b6:76:3c:a5:55:c3:ca:44:ba: 83:20:aa:44:a1:51:0d:b7:0e:c6:6c:80:67:fb:f9:3a:e6:88: c9:f1:b0:24:5b:22:71:9f:55:80:8c:c6:38:39:59:75:34:d0: e4:3e:71:95:ee:db:8b:67:c0:67:22:fe:01:24:db:b5:2c:09: c6:cf:1f:44:9b:c3:69:90:06:2c:17:30:34:5f:7f:8a:0e:d5: dc:06:09:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKEUyNDNGM0JFODI1NTY5QkIxNkFDQjM3NEJDOThEQUJF NjkwQjE3QzEwHhcNMjUwNTEyMTY1MDAwWhcNMjUwNTE5MTY1MDAwWjAYMRYwFAYD VQQDEw02ODIyMjZiOS1jNzY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApX4dr7rM4Y4twu0jUWs8oHXaUsCGoj8LrMgnk+vqHLaUNQNT/x1vy1qysD4V otaCCyPhyyNKuBV41SiOgzKPnIe2fWFLe1xhucQqlAj9XbUNUIiyYU8aCfMCZBk3 dAHEtLXWPTpBmtmPBrYhIfskm/teNTDJXPYa0W5CWu52FPDNjOwngQdf/sLvnThV Dk5jH/3XL7SOgsc9i3lQDWXqzd27aE4QoZvn6IxlXHelEWPXVraBoSuSqF9+/qu4 CSico5H8L8Cidkf4Yu74Amt8MWd80UXwDwycB4AOllM0cG4wIhNCkjLtgUM6oD2n 9SaumUSHtsZR45mbec6bFVGkWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHdzVNal v6pkxWU/xhHL85oqH4X4MB8GA1UdIwQYMBaAFOJD876CVWm7FqyzdLyY2r5pCxfB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC9CODk3QzU4MkEx OUMxMUVCOTJBMkRGMjlDNEY5QUUwMi80a1B6dm9KVmFic1dyTE4wdkpqYXZta0xG OEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I0QTFCRUE2MUQ2NjExRTJCMkNEOEI3Qzcy RkQxRkYyLzRrUHp2b0pWYWJzV3JMTjB2Smphdm1rTEY4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC9CODk3QzU4MkExOUMxMUVCOTJBMkRGMjlDNEY5QUUwMi80a1B6dm9KVmFi c1dyTE4wdkpqYXZta0xGOEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOvIwuBr36Y0FCs6DXQxnmJ7Wm/eH3nUn3h0265Pd9suPkk/kOfEeQ rvc+kKGLoxQI3X/gITSiqQ3wuzaN8M7QgIrAp5I9B3r/WdF3JUq8HB3Qf35OWRke wLCsX+YiBNVOkXna0Mh95jGryl/LksKkj6APfyBVoN85Ngf+7Mb87PVYPEZzQ6p2 mWdibX9Zl34IsiwGpPDyrxyC1QXa58yTmEiV03ikM0VjyLa2djylVcPKRLqDIKpE oVENtw7GbIBn+/k65ojJ8bAkWyJxn1WAjMY4OVl1NNDkPnGV7tuLZ8BnIv4BJNu1 LAnGzx9Em8NpkAYsFzA0X3+KDtXcBgmr -----END CERTIFICATE-----Generated at Tue May 13 19:43:23 2025 by rpki-client