$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7F47/330A008CCE5911E9A0908287C4F9AE02/4wpM3fbCaay6OcpYqpWS2JhkAfQ.mft File: 4wpM3fbCaay6OcpYqpWS2JhkAfQ.mft (raw, json) Hash identifier: 5zkc72J8sqIQIGQt59LZOXA3A0mhJD5vE1thWl8eVCc= Subject key identifier: C6:84:05:D2:E0:01:76:F8:B4:BA:01:6D:52:CA:86:C2:79:BD:D1:A6 Authority key identifier: E3:0A:4C:DD:F6:C2:69:AC:BA:39:CA:58:AA:95:92:D8:98:64:01:F4 Certificate issuer: /CN=A91B7F47/serialNumber=E30A4CDDF6C269ACBA39CA58AA9592D8986401F4 Certificate serial: 0D84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4wpM3fbCaay6OcpYqpWS2JhkAfQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7F47/330A008CCE5911E9A0908287C4F9AE02/4wpM3fbCaay6OcpYqpWS2JhkAfQ.mft Manifest number: 0D6B Signing time: Mon 12 May 2025 17:52:46 +0000 Manifest this update: Mon 12 May 2025 17:52:46 +0000 Manifest next update: Mon 19 May 2025 17:52:45 +0000 Files and hashes: 1: 4wpM3fbCaay6OcpYqpWS2JhkAfQ.crl (hash: uiaRyox/BYxBZ9NE6htYthhY/l/RY2P4PD3ujAflL7c=) 2: 4E98421A162311EB90D1657AC4F9AE02.roa (hash: 1jUxwWAX6KnigOFs20Vg85yLzTjyxdO59rmGUv5qs2k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7F47/330A008CCE5911E9A0908287C4F9AE02/4wpM3fbCaay6OcpYqpWS2JhkAfQ.crl rsync://rpki.apnic.net/member_repository/A91B7F47/330A008CCE5911E9A0908287C4F9AE02/4wpM3fbCaay6OcpYqpWS2JhkAfQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4wpM3fbCaay6OcpYqpWS2JhkAfQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 17:52:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3460 (0xd84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7F47, serialNumber=E30A4CDDF6C269ACBA39CA58AA9592D8986401F4 Validity Not Before: May 12 17:52:46 2025 GMT Not After : May 19 17:52:45 2025 GMT Subject: CN=6822356e-e230 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:6c:38:b0:9c:3a:88:09:6e:27:ef:2c:11:3b: 94:08:ad:f2:08:71:ac:0a:b5:e5:0b:f6:f2:9a:9a: 0f:9d:ff:c6:26:34:99:df:e2:b5:f4:1e:9d:06:b4: 37:76:55:ac:23:a7:59:0b:83:74:9d:c4:c6:f7:9f: 23:57:70:b3:4f:5f:1e:d3:f5:78:14:bb:50:a9:9e: ad:e1:96:6b:c2:5d:d8:8d:85:60:27:2c:f8:8f:fd: 24:e5:af:5b:f8:3c:d3:6e:84:8e:da:98:50:1a:21: fb:fa:95:29:6b:06:69:e2:8c:0d:54:2e:7e:45:e8: 5e:88:ee:40:5b:81:0c:05:be:b5:ac:97:fa:64:f0: cd:06:72:63:33:ae:c4:c2:a8:76:5b:35:30:d5:3a: 2e:dd:e2:59:a2:d6:7d:15:aa:ae:e9:37:ea:2c:e3: c6:b4:90:7e:57:50:c0:a0:71:16:a0:ef:89:d0:cc: 46:69:15:0a:4c:0b:02:d6:fe:64:6f:a3:5d:22:4f: d3:d0:88:ad:e5:e6:1c:fb:97:e1:1f:63:89:87:00: 89:e7:b7:39:f3:45:7f:07:67:81:8a:35:33:b2:fb: 51:2c:ea:b6:e4:2f:c5:fc:00:74:68:01:dd:b7:d4: 95:6c:a2:18:60:f2:e8:7c:09:5a:03:93:ae:34:1f: 90:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:84:05:D2:E0:01:76:F8:B4:BA:01:6D:52:CA:86:C2:79:BD:D1:A6 X509v3 Authority Key Identifier: keyid:E3:0A:4C:DD:F6:C2:69:AC:BA:39:CA:58:AA:95:92:D8:98:64:01:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7F47/330A008CCE5911E9A0908287C4F9AE02/4wpM3fbCaay6OcpYqpWS2JhkAfQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4wpM3fbCaay6OcpYqpWS2JhkAfQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7F47/330A008CCE5911E9A0908287C4F9AE02/4wpM3fbCaay6OcpYqpWS2JhkAfQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:86:e2:d3:94:61:5a:b8:b6:72:6e:fd:7d:89:ed:60:68:99: e3:c8:a4:7b:01:ae:59:36:db:8f:b0:03:06:22:95:db:d1:5e: 23:0f:cb:6e:32:f8:70:a4:80:09:5d:41:3c:4a:20:c8:a3:d9: 0c:0e:6f:73:49:34:65:4d:95:28:4b:f0:15:94:d4:8b:45:bb: 20:c8:fc:9b:cd:00:2e:3e:29:93:2a:ef:b7:8a:b3:7c:76:97: 09:03:83:77:1a:2e:fb:47:7a:f8:86:55:f0:b1:ae:12:89:ba: e4:2d:1e:b2:ed:d3:f4:41:bc:50:83:7d:e5:2b:80:11:39:a1: 22:49:9a:54:00:2b:9e:cf:91:af:2c:7c:a3:ab:98:a5:58:3c: 94:80:a9:58:c5:d0:db:0e:0f:7e:59:92:2e:c6:b1:fa:c5:3b: f3:7f:22:9a:3e:65:82:26:5d:4e:e2:14:6a:9e:d6:e1:b2:9d: 04:5c:48:d6:fa:ac:4e:06:7e:4f:0e:1c:7d:78:2b:92:eb:ff: cc:cf:2a:cf:e0:cf:46:16:8d:04:e5:d9:c2:4f:4a:05:1d:55: fe:64:05:37:36:b6:8d:3f:95:ca:bc:f5:58:34:ba:9e:34:b7: 59:ec:6c:7f:74:05:af:e4:6e:ab:96:db:61:84:72:37:c3:ab: 6d:70:a9:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDYQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdGNDcxMTAvBgNVBAUTKEUzMEE0Q0RERjZDMjY5QUNCQTM5Q0E1OEFBOTU5MkQ4 OTg2NDAxRjQwHhcNMjUwNTEyMTc1MjQ2WhcNMjUwNTE5MTc1MjQ1WjAYMRYwFAYD VQQDEw02ODIyMzU2ZS1lMjMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxWw4sJw6iAluJ+8sETuUCK3yCHGsCrXlC/bympoPnf/GJjSZ3+K19B6dBrQ3 dlWsI6dZC4N0ncTG958jV3CzT18e0/V4FLtQqZ6t4ZZrwl3YjYVgJyz4j/0k5a9b +DzTboSO2phQGiH7+pUpawZp4owNVC5+ReheiO5AW4EMBb61rJf6ZPDNBnJjM67E wqh2WzUw1Tou3eJZotZ9Faqu6TfqLOPGtJB+V1DAoHEWoO+J0MxGaRUKTAsC1v5k b6NdIk/T0Iit5eYc+5fhH2OJhwCJ57c580V/B2eBijUzsvtRLOq25C/F/AB0aAHd t9SVbKIYYPLofAlaA5OuNB+QjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMaEBdLg AXb4tLoBbVLKhsJ5vdGmMB8GA1UdIwQYMBaAFOMKTN32wmmsujnKWKqVktiYZAH0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0Y0Ny8zMzBBMDA4Q0NF NTkxMUU5QTA5MDgyODdDNEY5QUUwMi80d3BNM2ZiQ2FheTZPY3BZcXBXUzJKaGtB ZlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR3cE0zZmJDYWF5Nk9jcFlxcFdTMkpoa0FmUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC N0Y0Ny8zMzBBMDA4Q0NFNTkxMUU5QTA5MDgyODdDNEY5QUUwMi80d3BNM2ZiQ2Fh eTZPY3BZcXBXUzJKaGtBZlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLhuLTlGFauLZybv19ie1gaJnjyKR7Aa5ZNtuPsAMGIpXb0V4jD8tu MvhwpIAJXUE8SiDIo9kMDm9zSTRlTZUoS/AVlNSLRbsgyPybzQAuPimTKu+3irN8 dpcJA4N3Gi77R3r4hlXwsa4SibrkLR6y7dP0QbxQg33lK4AROaEiSZpUACuez5Gv LHyjq5ilWDyUgKlYxdDbDg9+WZIuxrH6xTvzfyKaPmWCJl1O4hRqntbhsp0EXEjW +qxOBn5PDhx9eCuS6//MzyrP4M9GFo0E5dnCT0oFHVX+ZAU3NraNP5XKvPVYNLqe NLdZ7Gx/dAWv5G6rltthhHI3w6ttcKlm -----END CERTIFICATE-----Generated at Tue May 13 14:14:01 2025 by rpki-client