$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3493/49A2EE6C368511EC80F52035C4F9AE02/4USmzKVqqTEokShNJidwYk784uw.mft File: 4USmzKVqqTEokShNJidwYk784uw.mft (raw, json) Hash identifier: 3nVE2dtZdYsggv8j9UHytx5vln6BUSQq7uLr6RMRTU0= Subject key identifier: 14:95:FD:B1:F1:B5:9B:39:3C:AE:2E:EE:18:DD:84:C9:89:C7:DE:D8 Authority key identifier: E1:44:A6:CC:A5:6A:A9:31:28:91:28:4D:26:27:70:62:4E:FC:E2:EC Certificate issuer: /CN=A91E3493/serialNumber=E144A6CCA56AA9312891284D262770624EFCE2EC Certificate serial: 0497 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4USmzKVqqTEokShNJidwYk784uw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3493/49A2EE6C368511EC80F52035C4F9AE02/4USmzKVqqTEokShNJidwYk784uw.mft Manifest number: 0493 Signing time: Sat 10 May 2025 23:35:08 +0000 Manifest this update: Sat 10 May 2025 23:35:07 +0000 Manifest next update: Sat 17 May 2025 23:35:07 +0000 Files and hashes: 1: 4USmzKVqqTEokShNJidwYk784uw.crl (hash: 4+yA4c4pe7V4SWqtamfWcAp6FmR3DhQpo8bUCHyqiII=) 2: E7BC076E368A11EC9109BC30C4F9AE02.roa (hash: KvBasDBfRwAoH2EYsCxUrezIZS6Rx7LxrBNPNRo5D98=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3493/49A2EE6C368511EC80F52035C4F9AE02/4USmzKVqqTEokShNJidwYk784uw.crl rsync://rpki.apnic.net/member_repository/A91E3493/49A2EE6C368511EC80F52035C4F9AE02/4USmzKVqqTEokShNJidwYk784uw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4USmzKVqqTEokShNJidwYk784uw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 23:35:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1175 (0x497) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3493, serialNumber=E144A6CCA56AA9312891284D262770624EFCE2EC Validity Not Before: May 10 23:35:07 2025 GMT Not After : May 17 23:35:07 2025 GMT Subject: CN=681fe2ab-944c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:07:2e:4f:6a:d2:39:9b:1a:8a:53:ca:3f:6f: df:f5:8e:23:ce:25:ca:f1:78:8c:65:88:18:2c:be: f6:af:8a:b2:42:a5:d7:ab:e6:36:b6:8e:d2:c3:a1: 11:2b:08:46:dc:62:2e:bb:c8:96:99:93:9c:b3:ac: d3:37:75:2e:76:84:ec:87:a9:16:7c:a6:22:3f:eb: ae:7b:84:f5:95:6c:d1:7d:4b:bb:f8:65:79:5f:75: eb:50:c7:32:da:5f:a1:c6:26:18:ed:1c:79:73:1c: 61:6f:1b:14:71:02:39:7b:20:9d:81:2a:bd:73:bb: 79:80:f6:c5:0e:68:a1:d2:95:75:19:06:14:36:bd: 29:7c:b1:1a:b1:92:2e:d3:74:26:b3:81:38:6e:f6: 4e:89:10:0b:69:71:1a:a5:06:59:50:70:38:aa:a7: 41:af:ca:8e:4d:df:c1:ff:eb:4b:b9:cb:27:b7:13: 45:bf:ca:ff:36:df:41:c8:22:73:22:a2:f1:8d:ee: da:45:01:c0:24:f6:41:17:27:4a:02:8d:bd:5e:bc: bc:0f:e6:1e:cf:20:2c:a7:4f:38:22:10:84:03:cb: 98:bc:87:4f:fc:e5:68:f7:3a:80:be:5c:5c:7b:7c: 3d:e1:e8:5b:d7:26:df:80:69:22:fa:38:d9:e9:de: 0a:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:95:FD:B1:F1:B5:9B:39:3C:AE:2E:EE:18:DD:84:C9:89:C7:DE:D8 X509v3 Authority Key Identifier: keyid:E1:44:A6:CC:A5:6A:A9:31:28:91:28:4D:26:27:70:62:4E:FC:E2:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3493/49A2EE6C368511EC80F52035C4F9AE02/4USmzKVqqTEokShNJidwYk784uw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4USmzKVqqTEokShNJidwYk784uw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3493/49A2EE6C368511EC80F52035C4F9AE02/4USmzKVqqTEokShNJidwYk784uw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:78:b1:89:38:f2:f8:13:0e:62:a8:46:d0:79:e4:b2:90:ca: ff:98:6d:02:23:f6:66:3f:8a:70:9a:c1:c5:d4:7c:ca:dd:0e: d0:62:2d:bf:29:18:3b:2c:94:9f:58:e4:47:c4:80:83:7e:5f: 4e:6d:8c:93:38:b6:80:51:bd:3d:4f:0e:1d:d0:d4:46:58:29: 90:e2:2f:71:47:19:33:a7:ce:09:13:55:6e:cc:09:84:43:28: f8:e1:73:9e:e4:be:1f:ab:a6:19:a4:27:3b:c2:de:5c:ee:86: 6e:e7:7b:ff:be:27:f2:2d:65:82:32:01:54:b3:d0:0e:4d:16: a0:2f:31:d4:d7:7d:d0:73:05:b4:4a:ad:e3:2c:8d:a7:80:68: 2f:01:a1:dc:17:91:ea:9a:98:f7:cb:cd:d8:f2:c5:53:79:72: 4b:4a:f4:9f:8e:51:2f:50:3f:6d:41:a9:ad:c4:21:91:da:96: d5:b4:9b:f2:90:29:d4:9a:f6:17:a8:7e:f8:f1:06:3e:4b:df: d0:a4:19:32:90:b2:cf:ab:23:14:d8:5d:e0:c9:89:9c:53:30: 48:bc:22:62:c9:00:d8:19:03:b2:1c:1e:75:7b:f9:25:cb:a5: 64:b3:e9:e6:ba:41:6c:bc:1b:c9:f9:56:f5:42:ba:34:26:09: 3b:f5:e5:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM0OTMxMTAvBgNVBAUTKEUxNDRBNkNDQTU2QUE5MzEyODkxMjg0RDI2Mjc3MDYy NEVGQ0UyRUMwHhcNMjUwNTEwMjMzNTA3WhcNMjUwNTE3MjMzNTA3WjAYMRYwFAYD VQQDEw02ODFmZTJhYi05NDRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAogcuT2rSOZsailPKP2/f9Y4jziXK8XiMZYgYLL72r4qyQqXXq+Y2to7Sw6ER KwhG3GIuu8iWmZOcs6zTN3UudoTsh6kWfKYiP+uue4T1lWzRfUu7+GV5X3XrUMcy 2l+hxiYY7Rx5cxxhbxsUcQI5eyCdgSq9c7t5gPbFDmih0pV1GQYUNr0pfLEasZIu 03Qms4E4bvZOiRALaXEapQZZUHA4qqdBr8qOTd/B/+tLucsntxNFv8r/Nt9ByCJz IqLxje7aRQHAJPZBFydKAo29Xry8D+YezyAsp084IhCEA8uYvIdP/OVo9zqAvlxc e3w94ehb1ybfgGki+jjZ6d4KkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBSV/bHx tZs5PK4u7hjdhMmJx97YMB8GA1UdIwQYMBaAFOFEpsylaqkxKJEoTSYncGJO/OLs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzQ5My80OUEyRUU2QzM2 ODUxMUVDODBGNTIwMzVDNEY5QUUwMi80VVNtektWcXFURW9rU2hOSmlkd1lrNzg0 dXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRVU216S1ZxcVRFb2tTaE5KaWR3WWs3ODR1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzQ5My80OUEyRUU2QzM2ODUxMUVDODBGNTIwMzVDNEY5QUUwMi80VVNtektWcXFU RW9rU2hOSmlkd1lrNzg0dXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCueLGJOPL4Ew5iqEbQeeSykMr/mG0CI/ZmP4pwmsHF1HzK3Q7QYi2/ KRg7LJSfWORHxICDfl9ObYyTOLaAUb09Tw4d0NRGWCmQ4i9xRxkzp84JE1VuzAmE Qyj44XOe5L4fq6YZpCc7wt5c7oZu53v/vifyLWWCMgFUs9AOTRagLzHU133QcwW0 Sq3jLI2ngGgvAaHcF5Hqmpj3y83Y8sVTeXJLSvSfjlEvUD9tQamtxCGR2pbVtJvy kCnUmvYXqH748QY+S9/QpBkykLLPqyMU2F3gyYmcUzBIvCJiyQDYGQOyHB51e/kl y6Vks+nmukFsvBvJ+Vb1Qro0Jgk79eUv -----END CERTIFICATE-----Generated at Mon May 12 15:54:27 2025 by rpki-client