$ rpki-client -vvf rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.mft File: 4l_Nm3clhTlCeRpi1HXs_tfAP2Q.mft (raw, json) Hash identifier: 0/6rQFQBSKdyhA3hFCSfCX93lvZmC7zeP/U9r/nc/X0= Subject key identifier: 8B:EC:19:91:F9:A4:83:4F:3E:55:F6:A5:5F:B1:A6:91:B0:DE:76:C7 Authority key identifier: E2:5F:CD:9B:77:25:85:39:42:79:1A:62:D4:75:EC:FE:D7:C0:3F:64 Certificate issuer: /CN=A91F59A6/serialNumber=E25FCD9B7725853942791A62D475ECFED7C03F64 Certificate serial: 086C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.mft Manifest number: 0855 Signing time: Mon 12 May 2025 17:59:57 +0000 Manifest this update: Mon 12 May 2025 17:59:56 +0000 Manifest next update: Mon 19 May 2025 17:59:56 +0000 Files and hashes: 1: 4l_Nm3clhTlCeRpi1HXs_tfAP2Q.crl (hash: sN4RicEkJIEpOd7yr6BfkZFPEcDEWO+nmJRgGldqjoc=) 2: 18B1B5361CE611EBB543881CC4F9AE02.roa (hash: qnuam7WR9nNoSALeN6aIELormJYa9PcytIxvW+OP1aE=) 3: 19B0BAAE1CE611EBB543881CC4F9AE02.roa (hash: /kIJQGWq5uSGzv2Hlgx55daJuqaTWlcXb9ZHCo//sns=) 4: D385E420314711EBA579873DC4F9AE02.roa (hash: o1Hw/spcKOOb0VVRRR+YO5Yydeov4PBZjAAS3/6uAVI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.crl rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 17:59:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2156 (0x86c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F59A6, serialNumber=E25FCD9B7725853942791A62D475ECFED7C03F64 Validity Not Before: May 12 17:59:56 2025 GMT Not After : May 19 17:59:56 2025 GMT Subject: CN=6822371d-ea64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ac:80:b1:b7:de:80:89:03:c9:55:f0:8d:19: 02:d5:87:9a:b4:33:a8:09:ea:5c:01:6e:7a:ce:e2: c2:97:d3:06:5d:60:31:bb:00:62:17:4b:58:67:69: 85:04:3f:90:a1:35:d1:74:f4:4f:fd:dd:6c:78:c4: 8f:bd:cc:31:48:f7:fa:bc:eb:21:c5:90:77:11:6a: 92:6c:12:a3:30:dc:d4:2f:9d:7b:69:40:b2:aa:4e: 40:e7:ff:7e:06:2a:62:08:95:0d:79:f5:82:c9:06: b3:62:ef:f1:1b:7a:ea:0c:5e:1e:8b:0a:a2:6c:50: 29:bd:2b:c8:8f:4c:2d:09:0f:34:96:c2:0c:62:79: c2:42:c8:d9:88:6e:5a:99:f6:e3:3a:76:30:5b:54: bf:57:f0:d3:a1:6b:1d:ce:be:62:af:63:2f:c0:bd: 4c:9f:9c:c1:7b:b7:56:e6:da:d4:82:55:b2:1f:ba: 1b:8d:db:a9:1d:0e:99:8e:9f:40:ce:cf:8e:de:a3: f1:8d:7d:9f:5a:46:d3:75:94:a8:5c:1b:3a:d6:8e: da:fa:83:16:b2:ca:70:fd:be:89:c1:15:09:83:f0: b2:00:23:1e:db:a4:d6:b8:ba:ee:d2:73:db:e1:c0: 4e:5c:4a:ee:1c:a0:5a:f9:64:c9:ec:4a:8e:fc:04: 02:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:EC:19:91:F9:A4:83:4F:3E:55:F6:A5:5F:B1:A6:91:B0:DE:76:C7 X509v3 Authority Key Identifier: keyid:E2:5F:CD:9B:77:25:85:39:42:79:1A:62:D4:75:EC:FE:D7:C0:3F:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:19:44:eb:b2:aa:e1:0f:e1:76:06:f0:36:e2:2b:de:25:16: 1a:68:e2:39:a1:19:eb:3c:64:c1:8b:81:6d:cb:bd:58:47:91: 9e:72:5e:d0:b0:6f:fb:d8:29:a5:ae:cd:39:db:75:71:3d:86: 7d:b8:05:a6:c9:03:39:d2:bb:92:66:bb:cc:21:1c:8f:5b:d7: 02:2f:c2:00:79:e1:d7:c3:d1:97:c7:3a:36:f8:60:32:cd:29: 4a:79:1d:b5:48:16:f6:a0:06:8d:9c:f9:30:fa:b8:d4:06:10: c1:ca:e1:8b:9f:40:5c:12:8d:ad:3d:33:8a:9f:e4:ce:c2:d0: de:4c:2f:8a:e2:4e:7f:73:c9:36:33:8b:ac:f7:94:ef:2c:d5: 47:4b:19:cf:a8:fe:ce:db:32:aa:00:38:c5:12:e3:2a:b7:7b: f2:34:69:e8:27:10:44:4b:22:66:7e:53:02:ed:54:b0:c9:9b: da:06:3f:74:7c:59:4e:69:1d:76:3d:89:1c:91:aa:d5:fc:b2: 39:87:e0:5c:0f:98:fe:a1:af:bc:c2:a5:11:68:c5:4e:4a:70: 1e:09:4f:81:1b:95:58:36:59:9f:63:50:c0:9b:48:9a:94:66: db:1b:9d:ae:ee:2c:8b:42:c1:7e:dd:5e:3e:5e:a9:ca:dc:58: 84:22:90:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCGwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU5QTYxMTAvBgNVBAUTKEUyNUZDRDlCNzcyNTg1Mzk0Mjc5MUE2MkQ0NzVFQ0ZF RDdDMDNGNjQwHhcNMjUwNTEyMTc1OTU2WhcNMjUwNTE5MTc1OTU2WjAYMRYwFAYD VQQDEw02ODIyMzcxZC1lYTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzqyAsbfegIkDyVXwjRkC1YeatDOoCepcAW56zuLCl9MGXWAxuwBiF0tYZ2mF BD+QoTXRdPRP/d1seMSPvcwxSPf6vOshxZB3EWqSbBKjMNzUL517aUCyqk5A5/9+ BipiCJUNefWCyQazYu/xG3rqDF4eiwqibFApvSvIj0wtCQ80lsIMYnnCQsjZiG5a mfbjOnYwW1S/V/DToWsdzr5ir2MvwL1Mn5zBe7dW5trUglWyH7objdupHQ6Zjp9A zs+O3qPxjX2fWkbTdZSoXBs61o7a+oMWsspw/b6JwRUJg/CyACMe26TWuLru0nPb 4cBOXEruHKBa+WTJ7EqO/AQCUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIvsGZH5 pINPPlX2pV+xppGw3nbHMB8GA1UdIwQYMBaAFOJfzZt3JYU5QnkaYtR17P7XwD9k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTlBNi9FNEVEQUMxOENC MUExMUVBODdDRDU1NDRDNEY5QUUwMi80bF9ObTNjbGhUbENlUnBpMUhYc190ZkFQ MlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzRsX05tM2NsaFRsQ2VScGkxSFhzX3RmQVAyUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTlBNi9FNEVEQUMxOENCMUExMUVBODdDRDU1NDRDNEY5QUUwMi80bF9ObTNjbGhU bENlUnBpMUhYc190ZkFQMlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiGUTrsqrhD+F2BvA24iveJRYaaOI5oRnrPGTBi4Fty71YR5Gecl7Q sG/72Cmlrs0523VxPYZ9uAWmyQM50ruSZrvMIRyPW9cCL8IAeeHXw9GXxzo2+GAy zSlKeR21SBb2oAaNnPkw+rjUBhDByuGLn0BcEo2tPTOKn+TOwtDeTC+K4k5/c8k2 M4us95TvLNVHSxnPqP7O2zKqADjFEuMqt3vyNGnoJxBESyJmflMC7VSwyZvaBj90 fFlOaR12PYkckarV/LI5h+BcD5j+oa+8wqURaMVOSnAeCU+BG5VYNlmfY1DAm0ia lGbbG52u7iyLQsF+3V4+XqnK3FiEIpDN -----END CERTIFICATE-----Generated at Tue May 13 00:29:13 2025 by rpki-client