$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft File: 4Y-ehXQ6vsrARiuP30On20pij_k.mft (raw, json) Hash identifier: KmfVUItHr9YE8ASVKuy8gQEjJK90AmdkwOM7gazg+vE= Subject key identifier: 0C:C6:32:13:6D:D5:AE:C4:5A:50:6A:57:07:2B:E4:25:9C:A6:E7:F5 Authority key identifier: E1:8F:9E:85:74:3A:BE:CA:C0:46:2B:8F:DF:43:A7:DB:4A:62:8F:F9 Certificate issuer: /CN=A91C9A8D/serialNumber=E18F9E85743ABECAC0462B8FDF43A7DB4A628FF9 Certificate serial: 03DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y-ehXQ6vsrARiuP30On20pij_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft Manifest number: 0407 Signing time: Wed 07 May 2025 00:27:56 +0000 Manifest this update: Wed 07 May 2025 00:27:55 +0000 Manifest next update: Wed 14 May 2025 00:27:55 +0000 Files and hashes: 1: 4Y-ehXQ6vsrARiuP30On20pij_k.crl (hash: zq21MH7E/ckJULBrYv3kA0tHSkQbgBQDe5xASjwEIDQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.crl rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y-ehXQ6vsrARiuP30On20pij_k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 14 May 2025 00:27:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 987 (0x3db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9A8D, serialNumber=E18F9E85743ABECAC0462B8FDF43A7DB4A628FF9 Validity Not Before: May 7 00:27:55 2025 GMT Not After : May 14 00:27:55 2025 GMT Subject: CN=681aa90c-a56e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:5a:db:7b:6e:2d:ec:d0:30:b1:ce:98:bf:89: 26:b3:4a:51:7d:1d:b5:08:ba:2b:b2:f5:45:75:50: 12:04:14:9b:79:71:ec:0e:49:28:a1:b8:94:7f:4b: 57:b4:ca:1a:cd:cf:10:6e:24:93:de:fd:0d:80:bd: 4d:c6:3e:22:ef:4a:0f:99:3b:69:f4:e6:35:58:8a: 7d:65:73:27:5c:3f:9d:f0:bf:2d:0b:1f:8e:03:8f: 4e:83:7a:5d:87:b1:e7:8a:e2:0d:45:5d:7e:ba:37: a4:11:b7:f9:c8:50:d1:02:09:36:90:65:93:99:d3: 82:ea:01:d3:81:03:0d:23:26:0e:32:4a:e2:f4:55: 23:9a:d0:f0:e1:4c:31:4a:63:fa:ff:22:c8:96:ed: 0b:26:f5:db:67:2b:7e:8f:af:5e:2c:40:00:f3:f4: 34:06:32:55:2f:55:de:a6:6f:32:ca:f3:04:af:55: f0:53:87:1b:33:8f:a7:d4:93:73:1e:27:dd:91:67: 75:49:93:ea:51:09:92:3a:50:05:6c:33:c2:d2:67: c4:ac:4e:35:7a:27:05:ca:39:88:60:f3:e5:55:08: 70:eb:c5:d1:5d:eb:77:75:0b:09:d9:3e:f3:9c:93: e7:00:82:5a:41:39:80:f2:4f:d9:ab:02:03:27:f4: 10:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:C6:32:13:6D:D5:AE:C4:5A:50:6A:57:07:2B:E4:25:9C:A6:E7:F5 X509v3 Authority Key Identifier: keyid:E1:8F:9E:85:74:3A:BE:CA:C0:46:2B:8F:DF:43:A7:DB:4A:62:8F:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y-ehXQ6vsrARiuP30On20pij_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:8d:ee:6d:b0:99:33:aa:2c:fe:bf:1b:10:b3:b5:34:32:9e: 83:f5:75:50:fb:67:3d:d5:77:e4:90:86:f1:3e:5b:83:41:62: 2c:74:32:88:92:6b:18:2a:c7:ab:e8:c3:05:b6:04:4a:17:c3: 94:e1:dc:cc:30:15:fb:dc:f6:b6:38:1f:f0:5e:7a:02:04:2c: 91:40:06:24:87:f9:17:33:bd:4f:af:85:db:09:4f:3b:2b:c2: 69:c0:a5:c8:d0:f5:63:bd:a3:53:ba:de:f0:df:f6:0d:07:a5: d8:21:31:31:02:87:18:9f:56:6f:8d:c2:ea:df:94:d0:25:89: 4e:2f:96:30:05:5b:5f:ac:9f:a9:98:9c:6e:ca:da:af:69:c9: 74:18:e7:4e:3f:9a:79:a8:84:10:c0:8b:c6:78:bf:37:59:40: a2:a0:6f:24:fe:0d:71:0f:ca:b1:04:8a:ab:65:fe:40:f4:da: cf:e2:df:b6:6b:41:be:26:30:20:87:de:a3:d4:1f:e2:58:bc: a0:14:0e:7f:fc:a7:95:72:dc:ee:39:41:86:3c:29:9b:8f:bb: 4a:ec:6d:7e:78:b6:35:72:15:35:4d:33:1d:4c:7f:cb:e5:7d: a1:3a:91:bc:86:a7:89:85:df:1b:b1:ea:8a:de:d0:ee:b2:95: 86:e8:0e:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlBOEQxMTAvBgNVBAUTKEUxOEY5RTg1NzQzQUJFQ0FDMDQ2MkI4RkRGNDNBN0RC NEE2MjhGRjkwHhcNMjUwNTA3MDAyNzU1WhcNMjUwNTE0MDAyNzU1WjAYMRYwFAYD VQQDEw02ODFhYTkwYy1hNTZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6lrbe24t7NAwsc6Yv4kms0pRfR21CLorsvVFdVASBBSbeXHsDkkoobiUf0tX tMoazc8QbiST3v0NgL1Nxj4i70oPmTtp9OY1WIp9ZXMnXD+d8L8tCx+OA49Og3pd h7HniuINRV1+ujekEbf5yFDRAgk2kGWTmdOC6gHTgQMNIyYOMkri9FUjmtDw4Uwx SmP6/yLIlu0LJvXbZyt+j69eLEAA8/Q0BjJVL1Xepm8yyvMEr1XwU4cbM4+n1JNz HifdkWd1SZPqUQmSOlAFbDPC0mfErE41eicFyjmIYPPlVQhw68XRXet3dQsJ2T7z nJPnAIJaQTmA8k/ZqwIDJ/QQmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAzGMhNt 1a7EWlBqVwcr5CWcpuf1MB8GA1UdIwQYMBaAFOGPnoV0Or7KwEYrj99Dp9tKYo/5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUE4RC8zMkYxRjRDMjgz RTkxMUVDQjg3M0M4NzFDNEY5QUUwMi80WS1laFhRNnZzckFSaXVQMzBPbjIwcGlq X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRZLWVoWFE2dnNyQVJpdVAzME9uMjBwaWpfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUE4RC8zMkYxRjRDMjgzRTkxMUVDQjg3M0M4NzFDNEY5QUUwMi80WS1laFhRNnZz ckFSaXVQMzBPbjIwcGlqX2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEje5tsJkzqiz+vxsQs7U0Mp6D9XVQ+2c91XfkkIbxPluDQWIsdDKI kmsYKser6MMFtgRKF8OU4dzMMBX73Pa2OB/wXnoCBCyRQAYkh/kXM71Pr4XbCU87 K8JpwKXI0PVjvaNTut7w3/YNB6XYITExAocYn1ZvjcLq35TQJYlOL5YwBVtfrJ+p mJxuytqvacl0GOdOP5p5qIQQwIvGeL83WUCioG8k/g1xD8qxBIqrZf5A9NrP4t+2 a0G+JjAgh96j1B/iWLygFA5//KeVctzuOUGGPCmbj7tK7G1+eLY1chU1TTMdTH/L 5X2hOpG8hqeJhd8bseqK3tDuspWG6A6s -----END CERTIFICATE-----Generated at Thu May 8 17:30:26 2025 by rpki-client