$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft File: 4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft (raw, json) Hash identifier: 6iAD4fa14Up2UryWrL5t1BXMs7l8iSrtbnWoOh0LM5w= Subject key identifier: 92:33:A9:BD:37:87:38:23:67:23:DB:68:0C:A4:62:E0:D7:34:46:8C Authority key identifier: E2:1F:24:E0:C5:4D:BB:93:F6:67:81:44:02:D6:6A:D4:08:07:11:14 Certificate issuer: /CN=A91C4060/serialNumber=E21F24E0C54DBB93F667814402D66AD408071114 Certificate serial: 0717 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft Manifest number: 0710 Signing time: Sat 10 May 2025 21:30:47 +0000 Manifest this update: Sat 10 May 2025 21:30:46 +0000 Manifest next update: Sat 17 May 2025 21:30:46 +0000 Files and hashes: 1: 4h8k4MVNu5P2Z4FEAtZq1AgHERQ.crl (hash: Q4HAj+BcXbz8C6apl98PQR2pvMuGCz1uNbYjnJwhhZ8=) 2: 71C26BD039D211EB84B9FD6BC4F9AE02.roa (hash: 1uZF2QAxlIwO0QnFgrG3CrAusMfAKjQaAjjZhLnhprI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.crl rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 21:30:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1815 (0x717) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4060, serialNumber=E21F24E0C54DBB93F667814402D66AD408071114 Validity Not Before: May 10 21:30:46 2025 GMT Not After : May 17 21:30:46 2025 GMT Subject: CN=681fc586-4d2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:b5:30:2c:49:39:72:7e:ab:02:18:ef:d5:2f: 40:c3:a9:18:d2:9c:10:65:cf:8d:ff:64:88:59:bc: 56:bb:db:2d:2a:84:f2:df:81:c1:f3:d3:94:b6:7e: 00:6d:4d:ac:8d:08:9f:85:6b:0f:1a:08:7a:04:9e: f8:e7:34:9a:88:84:2c:a2:50:1a:60:27:e4:7e:74: ea:88:9b:02:40:e7:96:86:41:e4:48:e5:15:85:f3: 1c:17:08:00:45:f7:3c:41:42:5f:d2:fe:c6:d6:72: df:33:d8:96:6c:a9:dc:31:cb:34:ef:51:19:b3:80: 9b:1b:d8:ed:55:92:ad:a0:7d:07:43:68:fc:a0:10: 7f:7f:a7:1a:ae:b6:79:07:49:da:f1:c5:f9:73:95: f9:05:4f:df:99:8b:ce:5d:21:64:d3:dc:f1:b5:21: 31:66:bc:18:ac:15:94:9b:24:5f:74:53:38:13:68: 12:24:84:7a:3d:c3:dc:e4:02:4b:99:21:c4:50:00: e8:4d:97:cc:c2:00:9f:a0:1f:fb:ce:e0:aa:f2:a3: f5:eb:89:e7:c8:67:a3:08:82:d8:6e:eb:ad:25:ee: e8:c6:e9:20:9d:51:bc:73:23:93:4c:11:49:d9:5a: d4:e1:d1:f5:ea:35:e4:05:bb:25:c1:27:6d:81:1b: 65:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:33:A9:BD:37:87:38:23:67:23:DB:68:0C:A4:62:E0:D7:34:46:8C X509v3 Authority Key Identifier: keyid:E2:1F:24:E0:C5:4D:BB:93:F6:67:81:44:02:D6:6A:D4:08:07:11:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:16:dd:e3:7b:1a:7b:2c:17:dd:17:41:d1:40:ca:88:cf:20: 42:e8:61:ad:4b:7d:0f:f4:77:be:23:62:e4:c8:35:a4:0f:08: 2a:f2:84:66:63:48:39:28:c5:24:49:7e:81:bd:fe:95:1f:d4: fa:32:f6:43:14:83:7a:e6:33:8f:4c:af:17:fb:8a:50:fb:7d: 96:b6:6e:09:15:c2:e1:a2:2b:6c:42:6c:49:22:d3:d3:1a:92: 87:09:b7:50:9a:e0:72:7d:9d:e4:01:79:25:4e:c2:00:54:ab: aa:89:87:58:c2:10:18:6f:bc:f7:e2:ab:6e:a9:96:d0:47:f3: d3:c9:bc:9c:98:f3:ca:cc:24:59:6b:83:ee:5e:b5:b2:3d:6e: 7f:69:48:77:be:e5:16:d8:70:75:76:fc:3c:b4:a2:76:3b:8f: 11:05:c7:20:5b:75:03:51:c1:fa:56:86:b1:9e:1d:31:10:36: 29:1f:5b:e6:a7:aa:16:f6:4a:45:64:ab:0f:96:de:49:4c:91: 50:c1:51:0d:2b:71:39:69:59:34:9c:7c:91:cf:5e:fa:7a:71: 1e:c2:70:eb:30:c7:b3:ee:6b:a4:ea:3e:af:82:af:30:29:65: da:50:b0:18:c9:de:4f:4c:4f:24:8b:c2:ba:81:35:41:01:82: 5d:4a:38:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBxcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQwNjAxMTAvBgNVBAUTKEUyMUYyNEUwQzU0REJCOTNGNjY3ODE0NDAyRDY2QUQ0 MDgwNzExMTQwHhcNMjUwNTEwMjEzMDQ2WhcNMjUwNTE3MjEzMDQ2WjAYMRYwFAYD VQQDEw02ODFmYzU4Ni00ZDJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0rUwLEk5cn6rAhjv1S9Aw6kY0pwQZc+N/2SIWbxWu9stKoTy34HB89OUtn4A bU2sjQifhWsPGgh6BJ745zSaiIQsolAaYCfkfnTqiJsCQOeWhkHkSOUVhfMcFwgA Rfc8QUJf0v7G1nLfM9iWbKncMcs071EZs4CbG9jtVZKtoH0HQ2j8oBB/f6carrZ5 B0na8cX5c5X5BU/fmYvOXSFk09zxtSExZrwYrBWUmyRfdFM4E2gSJIR6PcPc5AJL mSHEUADoTZfMwgCfoB/7zuCq8qP164nnyGejCILYbuutJe7oxukgnVG8cyOTTBFJ 2VrU4dH16jXkBbslwSdtgRtlEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJIzqb03 hzgjZyPbaAykYuDXNEaMMB8GA1UdIwQYMBaAFOIfJODFTbuT9meBRALWatQIBxEU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDA2MC81NjkzODlGRTM5 RDAxMUVCOEY0NzE1NjlDNEY5QUUwMi80aDhrNE1WTnU1UDJaNEZFQXRacTFBZ0hF UlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRoOGs0TVZOdTVQMlo0RkVBdFpxMUFnSEVSUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDA2MC81NjkzODlGRTM5RDAxMUVCOEY0NzE1NjlDNEY5QUUwMi80aDhrNE1WTnU1 UDJaNEZFQXRacTFBZ0hFUlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMFt3jexp7LBfdF0HRQMqIzyBC6GGtS30P9He+I2LkyDWkDwgq8oRm Y0g5KMUkSX6Bvf6VH9T6MvZDFIN65jOPTK8X+4pQ+32Wtm4JFcLhoitsQmxJItPT GpKHCbdQmuByfZ3kAXklTsIAVKuqiYdYwhAYb7z34qtuqZbQR/PTybycmPPKzCRZ a4PuXrWyPW5/aUh3vuUW2HB1dvw8tKJ2O48RBccgW3UDUcH6Voaxnh0xEDYpH1vm p6oW9kpFZKsPlt5JTJFQwVENK3E5aVk0nHyRz176enEewnDrMMez7muk6j6vgq8w KWXaULAYyd5PTE8ki8K6gTVBAYJdSjhu -----END CERTIFICATE-----Generated at Mon May 12 04:04:21 2025 by rpki-client