$ rpki-client -vvf rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.mft File: 4xZnlgSAzwfjwi15DeTiAe9wQNs.mft (raw, json) Hash identifier: NoR1nwzOls/fkGS5ADOU2yQwrX8pLkJ/pYfv2ShqN+U= Subject key identifier: F1:DC:6E:CF:5C:18:08:B3:12:5E:C6:26:8B:9A:E9:3C:C7:11:55:77 Authority key identifier: E3:16:67:96:04:80:CF:07:E3:C2:2D:79:0D:E4:E2:01:EF:70:40:DB Certificate issuer: /CN=A911B310/serialNumber=E31667960480CF07E3C22D790DE4E201EF7040DB Certificate serial: 01C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4xZnlgSAzwfjwi15DeTiAe9wQNs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.mft Manifest number: 01BA Signing time: Fri 13 Jun 2025 02:09:55 +0000 Manifest this update: Fri 13 Jun 2025 02:09:54 +0000 Manifest next update: Fri 20 Jun 2025 02:09:54 +0000 Files and hashes: 1: 4xZnlgSAzwfjwi15DeTiAe9wQNs.crl (hash: j84m+umhpmQpzMCO39sN0kz0R7UJ7i+MA1RH+kBS9qE=) 2: F2A9D4BAC36211ED9D79ED6FC4F9AE02.roa (hash: 4d2KlklIZM7tVEP8ubOJA37PmKcvU69K0Aouv/dc9Vg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.crl rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4xZnlgSAzwfjwi15DeTiAe9wQNs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 02:09:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 452 (0x1c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B310, serialNumber=E31667960480CF07E3C22D790DE4E201EF7040DB Validity Not Before: Jun 13 02:09:54 2025 GMT Not After : Jun 20 02:09:54 2025 GMT Subject: CN=684b8873-df46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:3d:4e:28:7d:f5:20:d9:0f:50:99:cc:5e:7e: d4:19:30:ba:94:65:80:b9:ca:a9:8f:a5:21:55:1f: 50:c2:4d:3c:e8:74:e0:f4:9c:e2:f7:3a:e2:18:29: 42:6e:44:09:52:ac:74:f3:f0:fb:56:16:3e:d0:69: 95:e2:89:24:2a:25:93:92:e8:e4:bd:10:a3:19:02: 5b:3f:07:d4:a3:f2:29:db:a4:ff:c9:ba:73:a2:73: 6e:72:ef:b9:f2:5c:c7:bf:e4:2a:5f:f6:8f:6d:1c: 86:a7:43:7e:81:77:80:fa:2f:d6:be:77:79:3b:4e: b0:aa:bf:93:33:c5:35:40:71:07:04:5e:01:46:48: 52:aa:59:eb:83:67:c4:8c:9e:57:7e:57:39:89:05: 36:f6:97:75:ed:53:7d:07:6d:32:9f:b5:cc:34:cc: 73:92:7c:20:89:48:26:0e:02:e6:c6:a9:dd:14:be: 2e:55:c2:6f:f1:14:5b:95:87:b2:37:f2:da:d5:f9: 26:6c:c4:25:4f:b2:d6:94:e4:b2:09:7c:b3:95:c2: 58:a5:3e:7f:fb:b6:31:ef:6a:30:29:ab:f5:99:83: 4f:88:41:e8:04:6c:c8:8b:76:a5:be:b6:d2:ec:74: a8:fd:0f:68:56:64:33:44:7e:f5:8f:4f:4f:9b:40: 11:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:DC:6E:CF:5C:18:08:B3:12:5E:C6:26:8B:9A:E9:3C:C7:11:55:77 X509v3 Authority Key Identifier: keyid:E3:16:67:96:04:80:CF:07:E3:C2:2D:79:0D:E4:E2:01:EF:70:40:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4xZnlgSAzwfjwi15DeTiAe9wQNs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:7f:00:bf:13:05:68:72:5e:ed:f8:b5:9b:a5:e0:d5:aa:99: 9a:61:59:62:b3:a9:1f:ea:13:c1:ef:8f:43:65:62:3b:f1:e3: 49:d4:3a:80:f5:c1:bd:05:df:8f:1c:0e:2d:98:6a:ac:cb:9c: ef:1f:0e:1d:e5:f6:c9:2a:23:60:f0:df:dd:1e:aa:d8:af:91: 90:03:65:9b:b9:28:f8:aa:4e:d9:67:79:5c:06:6a:8d:2e:5a: 15:af:b7:94:cc:96:83:2e:e2:89:4c:c6:42:f2:7f:f9:43:56: 90:24:c0:dd:59:b8:1b:b8:4c:b8:18:63:c6:48:ed:b7:2a:1c: 91:48:1a:b8:65:3a:dd:27:ed:20:ad:c6:37:8d:19:68:82:ac: 47:7d:e5:96:37:84:15:65:33:7f:ac:53:e7:d5:d9:cc:53:23: eb:f7:ca:20:a7:07:37:6c:f8:a4:e8:7f:20:68:91:e1:34:48: b7:5e:b2:a6:b1:57:8b:49:a3:1f:0d:09:75:ea:03:61:3a:b3: 3e:ea:06:5f:f9:5f:67:d1:58:7f:33:2b:da:58:b1:e7:80:ea: a1:9f:2b:fe:a3:91:9f:9b:1d:02:b9:af:b2:7b:df:b4:8e:04: 6e:a2:e8:f7:5f:9f:db:36:ec:e9:e8:14:ce:4f:7e:3e:05:92: 94:da:65:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUIzMTAxMTAvBgNVBAUTKEUzMTY2Nzk2MDQ4MENGMDdFM0MyMkQ3OTBERTRFMjAx RUY3MDQwREIwHhcNMjUwNjEzMDIwOTU0WhcNMjUwNjIwMDIwOTU0WjAYMRYwFAYD VQQDEw02ODRiODg3My1kZjQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0D1OKH31INkPUJnMXn7UGTC6lGWAucqpj6UhVR9Qwk086HTg9Jzi9zriGClC bkQJUqx08/D7VhY+0GmV4okkKiWTkujkvRCjGQJbPwfUo/Ip26T/ybpzonNucu+5 8lzHv+QqX/aPbRyGp0N+gXeA+i/Wvnd5O06wqr+TM8U1QHEHBF4BRkhSqlnrg2fE jJ5Xflc5iQU29pd17VN9B20yn7XMNMxzknwgiUgmDgLmxqndFL4uVcJv8RRblYey N/La1fkmbMQlT7LWlOSyCXyzlcJYpT5/+7Yx72owKav1mYNPiEHoBGzIi3alvrbS 7HSo/Q9oVmQzRH71j09Pm0ARewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPHcbs9c GAizEl7GJoua6TzHEVV3MB8GA1UdIwQYMBaAFOMWZ5YEgM8H48IteQ3k4gHvcEDb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjMxMC8zRUJEMTdDMkFE MTAxMUVEODU0QTNFMURDNEY5QUUwMi80eFpubGdTQXp3Zmp3aTE1RGVUaUFlOXdR TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR4Wm5sZ1NBendmandpMTVEZVRpQWU5d1FOcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjMxMC8zRUJEMTdDMkFEMTAxMUVEODU0QTNFMURDNEY5QUUwMi80eFpubGdTQXp3 Zmp3aTE1RGVUaUFlOXdRTnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWfwC/EwVocl7t+LWbpeDVqpmaYVlis6kf6hPB749DZWI78eNJ1DqA 9cG9Bd+PHA4tmGqsy5zvHw4d5fbJKiNg8N/dHqrYr5GQA2WbuSj4qk7ZZ3lcBmqN LloVr7eUzJaDLuKJTMZC8n/5Q1aQJMDdWbgbuEy4GGPGSO23KhyRSBq4ZTrdJ+0g rcY3jRlogqxHfeWWN4QVZTN/rFPn1dnMUyPr98ogpwc3bPik6H8gaJHhNEi3XrKm sVeLSaMfDQl16gNhOrM+6gZf+V9n0Vh/MyvaWLHngOqhnyv+o5Gfmx0Cua+ye9+0 jgRuouj3X5/bNuzp6BTOT34+BZKU2mW6 -----END CERTIFICATE-----Generated at Sat Jun 14 18:51:44 2025 by rpki-client