$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2C53/E78E416E049811EBB1FEE85DC4F9AE02/4-snntAeg57yRYBuBFH8FVAJJqI.mft File: 4-snntAeg57yRYBuBFH8FVAJJqI.mft (raw, json) Hash identifier: Vr3pqnlBEoBUq4m3Tu41N7uJ59W9t/phzebWQn/NkkA= Subject key identifier: E7:2F:32:80:9F:17:8E:C7:61:DA:95:26:72:F0:71:83:8F:D4:A8:18 Authority key identifier: E3:EB:27:9E:D0:1E:83:9E:F2:45:80:6E:04:51:FC:15:50:09:26:A2 Certificate issuer: /CN=A91B2C53/serialNumber=E3EB279ED01E839EF245806E0451FC15500926A2 Certificate serial: 07AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4-snntAeg57yRYBuBFH8FVAJJqI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2C53/E78E416E049811EBB1FEE85DC4F9AE02/4-snntAeg57yRYBuBFH8FVAJJqI.mft Manifest number: 07A2 Signing time: Wed 14 May 2025 21:22:41 +0000 Manifest this update: Wed 14 May 2025 21:22:41 +0000 Manifest next update: Wed 21 May 2025 21:22:41 +0000 Files and hashes: 1: 4-snntAeg57yRYBuBFH8FVAJJqI.crl (hash: 7e4xQJ0gZrptRx0gqgWpRpiKREHVrtMMNyJ/g4Gaz8A=) 2: EBD94A14049A11EBB73A8663C4F9AE02.roa (hash: wMcaf6KjNyS0A+6aPLv02H8xkgAGjk1qWQXSXwZEtXM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2C53/E78E416E049811EBB1FEE85DC4F9AE02/4-snntAeg57yRYBuBFH8FVAJJqI.crl rsync://rpki.apnic.net/member_repository/A91B2C53/E78E416E049811EBB1FEE85DC4F9AE02/4-snntAeg57yRYBuBFH8FVAJJqI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4-snntAeg57yRYBuBFH8FVAJJqI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 21:22:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1964 (0x7ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2C53, serialNumber=E3EB279ED01E839EF245806E0451FC15500926A2 Validity Not Before: May 14 21:22:41 2025 GMT Not After : May 21 21:22:41 2025 GMT Subject: CN=682509a1-d1dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:7b:27:85:6c:c1:a7:0e:23:ea:8d:51:26:97: 53:48:1f:04:b8:55:65:5b:32:b4:c1:2c:a0:9c:56: 1e:28:e1:4c:2d:22:ab:d9:05:7e:6d:74:30:01:cc: a0:91:ea:17:bf:18:b7:d0:93:5a:e1:d1:4c:5b:af: ef:7f:3d:d2:d8:40:6f:76:e2:b1:fb:65:07:d7:84: d8:71:1b:60:75:7a:04:30:8f:83:1e:42:0f:e2:4a: 0b:d8:2a:07:be:2b:c2:a7:75:fd:2c:0d:d6:65:42: d4:43:e9:bd:20:b4:c0:38:91:37:1d:b2:69:2d:ca: b3:b0:c9:70:0c:bc:ed:f7:12:fd:73:3e:41:81:11: df:c7:2e:cc:c2:c1:6c:1c:cc:65:c9:f5:73:44:3d: 07:de:ed:69:e5:3e:8a:ea:25:d2:3d:94:dc:53:f2: 80:05:9c:8f:19:99:87:03:a3:d0:cd:cc:3f:49:26: dd:3d:cf:32:53:04:1e:dc:b1:4f:28:ce:33:c1:97: f3:4b:36:17:0a:81:52:b1:e1:08:64:fd:92:40:1f: 71:ef:ae:e3:6e:e2:6d:21:07:eb:9b:86:45:14:46: c9:55:82:0c:4e:9f:e0:c4:17:85:46:73:7d:30:f6: fd:51:07:c9:1d:a4:37:b6:bc:ea:a0:ac:f6:d4:e2: dd:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:2F:32:80:9F:17:8E:C7:61:DA:95:26:72:F0:71:83:8F:D4:A8:18 X509v3 Authority Key Identifier: keyid:E3:EB:27:9E:D0:1E:83:9E:F2:45:80:6E:04:51:FC:15:50:09:26:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2C53/E78E416E049811EBB1FEE85DC4F9AE02/4-snntAeg57yRYBuBFH8FVAJJqI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4-snntAeg57yRYBuBFH8FVAJJqI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2C53/E78E416E049811EBB1FEE85DC4F9AE02/4-snntAeg57yRYBuBFH8FVAJJqI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:eb:4d:a0:b7:fc:9c:c8:3d:24:e9:dc:5a:34:32:08:68:c2: 0b:b2:49:ba:63:98:42:f6:b4:32:80:e8:d7:11:39:8a:0f:17: b6:90:3b:27:f4:9f:a8:30:1e:cc:a6:bf:c4:98:99:c2:a6:12: 54:43:3b:e2:98:88:d3:1c:46:69:98:68:99:84:f5:04:71:77: 91:9b:f5:28:8e:97:fb:a7:b1:e5:ce:66:fc:db:d3:84:a9:80: 72:0d:06:b1:49:de:29:b9:9f:7f:77:1d:51:ad:fe:2c:4c:b8: 47:f6:0c:98:80:4b:25:f7:4a:f3:e6:51:72:3d:b4:4e:0b:a3: 7b:54:4c:82:f9:42:eb:ee:dd:96:3d:05:50:1c:66:cd:df:6d: ae:6a:5d:0b:0e:e3:2d:1f:72:3d:b0:60:91:d1:d9:1a:af:95: 68:20:09:37:e4:eb:00:ed:c6:70:a8:8e:a0:b5:09:89:4e:6f: 99:b2:08:00:f5:7b:04:ca:a1:41:01:43:d8:09:d0:e2:0d:e7: b3:69:98:6b:70:e2:8d:c8:de:64:39:fa:95:32:e8:b7:e2:32: df:a6:73:ae:71:44:79:88:d5:9f:ee:48:ec:22:f0:1d:e0:ae: 19:a6:75:90:55:94:00:2a:f3:f8:fa:1a:ec:3e:06:2c:71:cd: cd:43:15:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB6wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjJDNTMxMTAvBgNVBAUTKEUzRUIyNzlFRDAxRTgzOUVGMjQ1ODA2RTA0NTFGQzE1 NTAwOTI2QTIwHhcNMjUwNTE0MjEyMjQxWhcNMjUwNTIxMjEyMjQxWjAYMRYwFAYD VQQDEw02ODI1MDlhMS1kMWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvnsnhWzBpw4j6o1RJpdTSB8EuFVlWzK0wSygnFYeKOFMLSKr2QV+bXQwAcyg keoXvxi30JNa4dFMW6/vfz3S2EBvduKx+2UH14TYcRtgdXoEMI+DHkIP4koL2CoH vivCp3X9LA3WZULUQ+m9ILTAOJE3HbJpLcqzsMlwDLzt9xL9cz5BgRHfxy7MwsFs HMxlyfVzRD0H3u1p5T6K6iXSPZTcU/KABZyPGZmHA6PQzcw/SSbdPc8yUwQe3LFP KM4zwZfzSzYXCoFSseEIZP2SQB9x767jbuJtIQfrm4ZFFEbJVYIMTp/gxBeFRnN9 MPb9UQfJHaQ3trzqoKz21OLdcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOcvMoCf F47HYdqVJnLwcYOP1KgYMB8GA1UdIwQYMBaAFOPrJ57QHoOe8kWAbgRR/BVQCSai MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMkM1My9FNzhFNDE2RTA0 OTgxMUVCQjFGRUU4NURDNEY5QUUwMi80LXNubnRBZWc1N3lSWUJ1QkZIOEZWQUpK cUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQtc25udEFlZzU3eVJZQnVCRkg4RlZBSkpxSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MkM1My9FNzhFNDE2RTA0OTgxMUVCQjFGRUU4NURDNEY5QUUwMi80LXNubnRBZWc1 N3lSWUJ1QkZIOEZWQUpKcUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/602gt/ycyD0k6dxaNDIIaMILskm6Y5hC9rQygOjXETmKDxe2kDsn 9J+oMB7Mpr/EmJnCphJUQzvimIjTHEZpmGiZhPUEcXeRm/Uojpf7p7Hlzmb829OE qYByDQaxSd4puZ9/dx1Rrf4sTLhH9gyYgEsl90rz5lFyPbROC6N7VEyC+ULr7t2W PQVQHGbN322ual0LDuMtH3I9sGCR0dkar5VoIAk35OsA7cZwqI6gtQmJTm+ZsggA 9XsEyqFBAUPYCdDiDeezaZhrcOKNyN5kOfqVMui34jLfpnOucUR5iNWf7kjsIvAd 4K4ZpnWQVZQAKvP4+hrsPgYscc3NQxXV -----END CERTIFICATE-----Generated at Fri May 16 12:03:10 2025 by rpki-client