$ rpki-client -vvf rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.mft File: 4vB0KtgKnbsodRhO4N1elN11eEs.mft (raw, json) Hash identifier: SxrphgkH67gENWL7K0V3jacIQUGCjx6HLf3gytltMCA= Subject key identifier: 14:F6:35:6F:EE:00:26:F9:43:36:EA:CC:03:77:2F:C8:BC:04:4A:4D Authority key identifier: E2:F0:74:2A:D8:0A:9D:BB:28:75:18:4E:E0:DD:5E:94:DD:75:78:4B Certificate issuer: /CN=A91C23FE/serialNumber=E2F0742AD80A9DBB2875184EE0DD5E94DD75784B Certificate serial: 1BD5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vB0KtgKnbsodRhO4N1elN11eEs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.mft Manifest number: 1BCB Signing time: Mon 12 May 2025 16:11:45 +0000 Manifest this update: Mon 12 May 2025 16:11:44 +0000 Manifest next update: Mon 19 May 2025 16:11:44 +0000 Files and hashes: 1: 4vB0KtgKnbsodRhO4N1elN11eEs.crl (hash: QR8rTYljBeORH/ZPea1r92OX6z1o2KDhlCe2iN9lnZc=) 2: A88F22ECCC7011ED931BD15FC4F9AE02.roa (hash: BCcYD/VfHPlrE1idB6qMcYHXBoKVsq99H3ysbvhT4uw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.crl rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vB0KtgKnbsodRhO4N1elN11eEs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 16:11:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7125 (0x1bd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C23FE, serialNumber=E2F0742AD80A9DBB2875184EE0DD5E94DD75784B Validity Not Before: May 12 16:11:44 2025 GMT Not After : May 19 16:11:44 2025 GMT Subject: CN=68221dc1-6843 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:18:76:dc:92:bf:bd:6f:a3:71:a5:17:73:1b: 70:13:dc:5e:25:c8:d9:64:ae:16:9b:85:16:e3:18: bd:bd:58:20:1e:a6:f6:57:f5:f0:c1:13:59:0f:e5: 14:55:ba:4d:7a:0a:91:7e:ca:61:ba:77:6b:37:ed: 4a:88:a6:60:83:33:e6:7b:69:3c:51:d2:b5:8f:49: b0:b7:cc:08:bf:7a:17:dc:6c:ea:d3:ae:e4:0b:a8: 47:82:a4:5d:25:f9:44:d2:5e:e8:9d:1e:18:b0:42: f6:b1:54:a9:b7:68:12:47:21:e4:cf:1f:7a:16:c1: 1b:48:4d:09:cc:5e:4f:c4:7c:4c:a1:e9:85:4e:f8: 74:cc:67:a9:6d:90:56:75:30:bb:b2:0b:5b:ea:93: b0:5b:d3:47:9e:a0:d6:6f:df:59:13:86:db:2f:bb: bf:48:e9:c3:eb:a0:5c:b8:e9:24:7c:12:c9:d6:ee: 62:8d:37:e4:55:03:36:ac:fd:1d:87:4d:8b:04:84: a7:96:13:f9:3d:b9:00:bb:6d:b9:c6:cd:7b:d9:50: fb:cc:bc:28:ec:da:2f:86:2b:f5:dd:c5:ea:c8:8a: e9:f1:ff:75:bb:a8:9a:c2:5e:9d:e8:be:e5:b3:99: ef:ca:6e:09:f5:3c:0e:67:8d:d5:08:f6:73:a1:6b: 51:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:F6:35:6F:EE:00:26:F9:43:36:EA:CC:03:77:2F:C8:BC:04:4A:4D X509v3 Authority Key Identifier: keyid:E2:F0:74:2A:D8:0A:9D:BB:28:75:18:4E:E0:DD:5E:94:DD:75:78:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vB0KtgKnbsodRhO4N1elN11eEs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:63:63:c3:ad:5f:3c:9d:fc:7b:1d:48:80:e9:00:93:7f:e7: 87:75:29:51:7d:93:ee:04:54:f2:c8:7c:11:dd:e6:62:79:f3: fd:43:15:a6:55:34:1a:69:6b:7b:76:c3:a1:c0:86:d8:05:2a: d1:93:ef:47:3a:60:78:f6:4a:10:b6:76:84:19:db:1a:cb:00: 0d:9d:16:bb:95:b6:23:d3:1e:6f:72:83:a2:a0:12:1f:87:76: 66:55:84:0e:c4:d2:73:f1:6d:4e:1f:20:2c:a9:6a:48:f1:ac: 0b:d8:19:23:69:d9:18:71:33:56:e3:bb:6b:f6:64:76:1e:ba: e7:f6:07:ef:47:e7:c5:49:9c:f8:aa:4f:69:6f:2d:7c:72:34: 9b:76:66:5c:53:dc:53:8b:49:f5:6f:fd:d5:12:e7:0d:fe:56: 54:cf:3e:1e:03:62:76:c7:d8:08:08:3a:ec:93:13:d6:d1:57: f8:bd:6d:93:32:28:4d:3d:45:5d:af:25:53:38:60:ba:b6:65: c1:b1:6c:7f:b8:2b:34:41:02:49:2a:b4:18:f1:91:71:23:a4: 08:67:b3:96:ba:96:bb:f0:f9:05:ae:f0:66:48:92:ad:cb:91: 34:f7:20:a2:15:ce:d6:8b:6b:9b:e0:2d:2a:ed:2a:ab:1c:a5: cb:31:ad:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG9UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIzRkUxMTAvBgNVBAUTKEUyRjA3NDJBRDgwQTlEQkIyODc1MTg0RUUwREQ1RTk0 REQ3NTc4NEIwHhcNMjUwNTEyMTYxMTQ0WhcNMjUwNTE5MTYxMTQ0WjAYMRYwFAYD VQQDEw02ODIyMWRjMS02ODQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwhh23JK/vW+jcaUXcxtwE9xeJcjZZK4Wm4UW4xi9vVggHqb2V/XwwRNZD+UU VbpNegqRfsphundrN+1KiKZggzPme2k8UdK1j0mwt8wIv3oX3Gzq067kC6hHgqRd JflE0l7onR4YsEL2sVSpt2gSRyHkzx96FsEbSE0JzF5PxHxMoemFTvh0zGepbZBW dTC7sgtb6pOwW9NHnqDWb99ZE4bbL7u/SOnD66BcuOkkfBLJ1u5ijTfkVQM2rP0d h02LBISnlhP5PbkAu225xs172VD7zLwo7Novhiv13cXqyIrp8f91u6iawl6d6L7l s5nvym4J9TwOZ43VCPZzoWtRkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBT2NW/u ACb5QzbqzAN3L8i8BEpNMB8GA1UdIwQYMBaAFOLwdCrYCp27KHUYTuDdXpTddXhL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjNGRS84MjVDRTlBQUY5 RUIxMUU2QkRFN0E5NjhDNEY5QUUwMi80dkIwS3RnS25ic29kUmhPNE4xZWxOMTFl RXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR2QjBLdGdLbmJzb2RSaE80TjFlbE4xMWVFcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjNGRS84MjVDRTlBQUY5RUIxMUU2QkRFN0E5NjhDNEY5QUUwMi80dkIwS3RnS25i c29kUmhPNE4xZWxOMTFlRXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuY2PDrV88nfx7HUiA6QCTf+eHdSlRfZPuBFTyyHwR3eZiefP9QxWm VTQaaWt7dsOhwIbYBSrRk+9HOmB49koQtnaEGdsaywANnRa7lbYj0x5vcoOioBIf h3ZmVYQOxNJz8W1OHyAsqWpI8awL2BkjadkYcTNW47tr9mR2Hrrn9gfvR+fFSZz4 qk9pby18cjSbdmZcU9xTi0n1b/3VEucN/lZUzz4eA2J2x9gICDrskxPW0Vf4vW2T MihNPUVdryVTOGC6tmXBsWx/uCs0QQJJKrQY8ZFxI6QIZ7OWupa78PkFrvBmSJKt y5E09yCiFc7Wi2ub4C0q7SqrHKXLMa2N -----END CERTIFICATE-----Generated at Tue May 13 09:15:26 2025 by rpki-client