$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft File: ck4fZGxFGwGeHNo21DRq25tf2_g.mft (raw, json) Hash identifier: 5rw4c0EhcWTWFr+yYkBgoDNWrN+/gOvy19DG53PyFQQ= Subject key identifier: 5E:75:1C:F8:E8:51:7C:66:23:96:5F:80:E4:78:66:BB:E9:D5:DB:B0 Authority key identifier: 72:4E:1F:64:6C:45:1B:01:9E:1C:DA:36:D4:34:6A:DB:9B:5F:DB:F8 Certificate issuer: /CN=A91B8E38/serialNumber=724E1F646C451B019E1CDA36D4346ADB9B5FDBF8 Certificate serial: 01EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck4fZGxFGwGeHNo21DRq25tf2_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft Manifest number: 01EC Signing time: Sun 11 May 2025 01:36:08 +0000 Manifest this update: Sun 11 May 2025 01:36:07 +0000 Manifest next update: Sun 18 May 2025 01:36:07 +0000 Files and hashes: 1: ck4fZGxFGwGeHNo21DRq25tf2_g.crl (hash: 4IIc4FiCwP/g65R1jjgVgGXHMzv8Ugb86bUHHwtmCCs=) 2: A6789038400211ED808CCF0DC4F9AE02.roa (hash: AFcbY0/3GFwr3EcAHIPw3DWr7uIr3rpZ3pX3o3qycLQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.crl rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck4fZGxFGwGeHNo21DRq25tf2_g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 01:36:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 495 (0x1ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8E38, serialNumber=724E1F646C451B019E1CDA36D4346ADB9B5FDBF8 Validity Not Before: May 11 01:36:07 2025 GMT Not After : May 18 01:36:07 2025 GMT Subject: CN=681fff08-b0bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:a2:98:ac:f7:b2:bf:f9:b8:34:04:dd:28:0e: 22:bd:51:d9:ac:0f:74:3c:a1:72:2d:10:28:d4:8a: 5c:16:74:51:58:96:ff:e2:ca:2a:9b:57:11:42:a5: f5:f2:b5:d1:a5:b2:96:02:59:0f:47:9a:08:7b:c2: fa:d7:21:42:91:b3:b1:25:ee:50:dd:60:c6:50:bc: 3b:7e:c2:4b:9e:cf:04:46:0f:46:20:ba:53:8f:3a: 33:93:22:d9:21:85:63:20:29:a4:0b:15:40:c9:9f: ae:78:aa:0e:27:97:1c:be:3a:fb:25:c8:47:64:71: fd:24:ee:70:6d:f9:bc:75:ea:8e:a1:0d:35:a5:39: c2:f9:99:26:92:1c:f2:42:b3:28:b3:9a:57:d3:7f: fb:f8:f6:56:c4:3f:c0:63:8a:70:80:47:31:cf:00: f5:e3:22:cb:18:42:db:b4:a6:01:f8:a0:cf:2e:31: 91:f3:08:ff:6a:fa:40:5a:af:33:21:64:e9:7a:35: 6a:81:52:88:3f:e1:10:64:d7:96:fd:89:6b:2a:90: dc:02:1c:af:50:1c:fc:7b:20:48:d7:89:81:f6:f4: 9b:df:72:5d:85:03:2c:c2:16:a3:ac:c3:09:3c:db: 5d:12:1b:82:c5:19:94:d9:c9:62:a5:7a:a1:11:73: 1f:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:75:1C:F8:E8:51:7C:66:23:96:5F:80:E4:78:66:BB:E9:D5:DB:B0 X509v3 Authority Key Identifier: keyid:72:4E:1F:64:6C:45:1B:01:9E:1C:DA:36:D4:34:6A:DB:9B:5F:DB:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck4fZGxFGwGeHNo21DRq25tf2_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:b2:cf:3e:a8:ab:9e:dc:a2:7b:28:c8:79:f6:28:89:15:ab: 7e:be:09:60:9b:e3:99:3a:d4:66:85:ae:38:7e:95:39:65:52: ba:59:6c:23:2a:97:a0:38:cd:5c:93:44:ba:14:af:ec:3b:61: e1:08:f1:cb:dc:08:dd:40:92:01:ed:51:4b:0c:17:eb:02:9a: 2b:a2:81:9d:38:e3:f2:b8:73:98:b4:18:b9:27:fc:39:f4:4d: 90:70:00:0c:bb:35:92:e1:42:cf:68:db:d4:24:e3:9d:28:50: 52:1a:9f:38:b8:91:6b:b5:f9:0e:e7:ca:a1:0f:88:d0:e7:f4: b9:9b:3d:14:41:97:a6:90:16:ef:1a:6a:d6:9f:21:90:9b:ae: 0d:d4:3c:d5:b6:45:e3:ee:d5:8c:8b:0f:fe:82:48:47:47:ff: 6b:3d:47:aa:21:97:1b:fb:59:dd:e3:f8:0f:80:79:6d:46:c4: 60:c7:de:16:04:5e:46:4c:79:df:b6:39:f1:96:aa:db:9d:fb: 81:23:07:d3:af:ab:c1:04:0f:ce:8b:64:39:a8:8d:32:c5:9e: fd:5c:b2:2e:f9:b7:dc:65:c6:14:66:f7:66:18:ea:68:2d:4d: 9f:1f:3a:e5:33:83:37:69:1c:89:9f:fc:36:77:a3:f5:fd:6e: 60:85:1e:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAe8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhFMzgxMTAvBgNVBAUTKDcyNEUxRjY0NkM0NTFCMDE5RTFDREEzNkQ0MzQ2QURC OUI1RkRCRjgwHhcNMjUwNTExMDEzNjA3WhcNMjUwNTE4MDEzNjA3WjAYMRYwFAYD VQQDEw02ODFmZmYwOC1iMGJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArKKYrPeyv/m4NATdKA4ivVHZrA90PKFyLRAo1IpcFnRRWJb/4soqm1cRQqX1 8rXRpbKWAlkPR5oIe8L61yFCkbOxJe5Q3WDGULw7fsJLns8ERg9GILpTjzozkyLZ IYVjICmkCxVAyZ+ueKoOJ5ccvjr7JchHZHH9JO5wbfm8deqOoQ01pTnC+Zkmkhzy QrMos5pX03/7+PZWxD/AY4pwgEcxzwD14yLLGELbtKYB+KDPLjGR8wj/avpAWq8z IWTpejVqgVKIP+EQZNeW/YlrKpDcAhyvUBz8eyBI14mB9vSb33JdhQMswhajrMMJ PNtdEhuCxRmU2clipXqhEXMfgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF51HPjo UXxmI5ZfgOR4Zrvp1duwMB8GA1UdIwQYMBaAFHJOH2RsRRsBnhzaNtQ0atubX9v4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEUzOC81MUYwREIzQzNG RkUxMUVEOUE4N0EzMTVDNEY5QUUwMi9jazRmWkd4Rkd3R2VITm8yMURScTI1dGYy X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NrNGZaR3hGR3dHZUhObzIxRFJxMjV0ZjJfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEUzOC81MUYwREIzQzNGRkUxMUVEOUE4N0EzMTVDNEY5QUUwMi9jazRmWkd4Rkd3 R2VITm8yMURScTI1dGYyX2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANss8+qKue3KJ7KMh59iiJFat+vglgm+OZOtRmha44fpU5ZVK6WWwj KpegOM1ck0S6FK/sO2HhCPHL3AjdQJIB7VFLDBfrAporooGdOOPyuHOYtBi5J/w5 9E2QcAAMuzWS4ULPaNvUJOOdKFBSGp84uJFrtfkO58qhD4jQ5/S5mz0UQZemkBbv GmrWnyGQm64N1DzVtkXj7tWMiw/+gkhHR/9rPUeqIZcb+1nd4/gPgHltRsRgx94W BF5GTHnftjnxlqrbnfuBIwfTr6vBBA/Oi2Q5qI0yxZ79XLIu+bfcZcYUZvdmGOpo LU2fHzrlM4M3aRyJn/w2d6P1/W5ghR6m -----END CERTIFICATE-----Generated at Mon May 12 18:18:57 2025 by rpki-client