$ rpki-client -vvf rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft File: 4AJb-TLnFuGh-K-QECEcQRCE_J0.mft (raw, json) Hash identifier: Knu8EhdfwnUf7K38SQKtOd3y2CtyfMpweIv3BahBlCo= Subject key identifier: BF:9A:35:3D:AF:87:5B:63:C8:D5:01:8C:0C:92:71:E1:55:20:DE:FE Authority key identifier: E0:02:5B:F9:32:E7:16:E1:A1:F8:AF:90:10:21:1C:41:10:84:FC:9D Certificate issuer: /CN=A9197FDB/serialNumber=E0025BF932E716E1A1F8AF9010211C411084FC9D Certificate serial: 0584 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft Manifest number: 057D Signing time: Thu 08 May 2025 23:08:01 +0000 Manifest this update: Thu 08 May 2025 23:08:00 +0000 Manifest next update: Thu 15 May 2025 23:08:00 +0000 Files and hashes: 1: 4AJb-TLnFuGh-K-QECEcQRCE_J0.crl (hash: slbKn50NKmCHdnSkopx5x+b/0zopGwlMt65kIdxXHO0=) 2: 0A1FAC405BB211EEAD06B243C4F9AE02.roa (hash: +Nf3CbeJiQCKoMqVOr8fCtBhRD9vFNzRUGK/YqqHHSM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.crl rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 May 2025 23:08:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1412 (0x584) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197FDB, serialNumber=E0025BF932E716E1A1F8AF9010211C411084FC9D Validity Not Before: May 8 23:08:00 2025 GMT Not After : May 15 23:08:00 2025 GMT Subject: CN=681d3951-6972 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:08:58:c9:38:07:3e:90:f9:3a:7f:24:db:9b: 13:10:f6:55:66:24:99:ed:9c:79:be:de:fb:7e:88: ae:6a:44:f7:7f:ee:3c:e8:b5:46:0e:94:59:85:13: ba:3d:2a:57:c8:b3:20:ff:cf:5b:51:20:cf:fc:97: ad:bb:0c:b3:d6:a5:08:30:34:fe:c1:2d:d7:2e:0e: 52:1d:aa:99:65:2c:b3:e8:e6:03:12:05:ee:4f:96: 03:99:91:c5:d3:a0:54:db:20:69:70:d5:70:62:42: fa:d8:aa:25:68:d5:fd:68:47:ae:7e:ea:fc:ff:42: 29:4b:27:06:52:cb:4b:c9:36:12:67:53:55:d4:cd: 4f:a4:61:cd:44:5b:dd:9a:f3:70:c6:4a:28:04:39: d1:29:14:23:a7:f9:41:d3:45:0f:54:96:0a:78:52: 4f:4a:08:0c:8b:40:62:c0:13:d6:ab:1b:8f:17:bb: 00:d3:ca:2d:31:89:6c:9d:43:c9:a3:1a:1c:e6:2d: ee:cd:9d:1f:3a:6b:10:3a:3b:47:12:d4:d8:d5:7b: 82:09:33:c6:09:85:0c:fa:c4:37:41:bd:bd:1a:3a: ed:10:6b:1e:dd:e2:72:13:eb:a6:46:7d:07:f6:40: 26:14:af:d4:af:dc:00:a8:cd:50:be:64:60:77:10: f7:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:9A:35:3D:AF:87:5B:63:C8:D5:01:8C:0C:92:71:E1:55:20:DE:FE X509v3 Authority Key Identifier: keyid:E0:02:5B:F9:32:E7:16:E1:A1:F8:AF:90:10:21:1C:41:10:84:FC:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:e0:28:76:c7:b5:84:50:b4:89:ce:cd:e7:84:84:22:96:cf: d4:f3:57:36:fb:01:7b:64:e1:7c:14:cb:71:37:b9:06:d7:71: 5e:e8:b1:97:0e:8c:ac:58:d3:a5:2b:3d:e8:82:d0:70:60:a5: 5f:70:1f:f8:54:a1:0b:8d:8f:63:f9:91:89:d1:f1:9b:d0:bc: 86:dd:c8:64:94:90:eb:98:5c:74:1d:96:ef:f5:70:f4:23:7d: f6:a3:cd:7d:02:5f:8b:86:f8:18:62:c8:0d:a4:da:51:8a:60: eb:8f:a3:6d:0e:a9:8e:fc:f0:03:b9:1e:c6:61:f5:b4:ba:16: cb:63:e3:38:42:5a:87:bd:b7:3c:9c:e9:d6:ba:6d:be:a4:d4: 47:79:8d:a7:1e:fa:28:69:6b:cd:eb:eb:97:fe:39:c0:c8:29: 53:f0:6b:6b:1a:83:bb:e4:96:95:df:f7:ad:d8:de:03:17:58: 1b:ac:86:c5:3d:40:ee:34:48:bd:ac:52:4f:c7:ee:6b:c9:00: 60:0e:6d:95:ae:d1:26:f4:5e:5e:ea:17:3a:fe:46:cd:5b:a7: b0:38:67:c4:06:3e:06:ff:71:10:73:d0:5b:7d:2a:e6:3e:cf: 51:78:08:e3:82:7b:45:58:0d:b5:48:22:a4:4b:55:93:ca:6d: b8:a0:ce:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdGREIxMTAvBgNVBAUTKEUwMDI1QkY5MzJFNzE2RTFBMUY4QUY5MDEwMjExQzQx MTA4NEZDOUQwHhcNMjUwNTA4MjMwODAwWhcNMjUwNTE1MjMwODAwWjAYMRYwFAYD VQQDEw02ODFkMzk1MS02OTcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzwhYyTgHPpD5On8k25sTEPZVZiSZ7Zx5vt77foiuakT3f+486LVGDpRZhRO6 PSpXyLMg/89bUSDP/Jetuwyz1qUIMDT+wS3XLg5SHaqZZSyz6OYDEgXuT5YDmZHF 06BU2yBpcNVwYkL62KolaNX9aEeufur8/0IpSycGUstLyTYSZ1NV1M1PpGHNRFvd mvNwxkooBDnRKRQjp/lB00UPVJYKeFJPSggMi0BiwBPWqxuPF7sA08otMYlsnUPJ oxoc5i3uzZ0fOmsQOjtHEtTY1XuCCTPGCYUM+sQ3Qb29GjrtEGse3eJyE+umRn0H 9kAmFK/Ur9wAqM1QvmRgdxD3mwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL+aNT2v h1tjyNUBjAySceFVIN7+MB8GA1UdIwQYMBaAFOACW/ky5xbhofivkBAhHEEQhPyd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0ZEQi82NTdFNDA3NERB MzYxMUVCODRFNkEzNDlDNEY5QUUwMi80QUpiLVRMbkZ1R2gtSy1RRUNFY1FSQ0Vf SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRBSmItVExuRnVHaC1LLVFFQ0VjUVJDRV9KMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0ZEQi82NTdFNDA3NERBMzYxMUVCODRFNkEzNDlDNEY5QUUwMi80QUpiLVRMbkZ1 R2gtSy1RRUNFY1FSQ0VfSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAT4Ch2x7WEULSJzs3nhIQils/U81c2+wF7ZOF8FMtxN7kG13Fe6LGX DoysWNOlKz3ogtBwYKVfcB/4VKELjY9j+ZGJ0fGb0LyG3chklJDrmFx0HZbv9XD0 I332o819Al+LhvgYYsgNpNpRimDrj6NtDqmO/PADuR7GYfW0uhbLY+M4QlqHvbc8 nOnWum2+pNRHeY2nHvooaWvN6+uX/jnAyClT8GtrGoO75JaV3/et2N4DF1gbrIbF PUDuNEi9rFJPx+5ryQBgDm2VrtEm9F5e6hc6/kbNW6ewOGfEBj4G/3EQc9BbfSrm Ps9ReAjjgntFWA21SCKkS1WTym24oM52 -----END CERTIFICATE-----Generated at Sat May 10 13:17:02 2025 by rpki-client