$ rpki-client -vvf rpki.apnic.net/member_repository/A913F8B5/239D2A42FFF911EBA8F74360C4F9AE02/E4-ajPIH2gCLQBxt6NkTEP4l6kw.mft File: E4-ajPIH2gCLQBxt6NkTEP4l6kw.mft (raw, json) Hash identifier: FQ2CUmjwqeActgE3rGMdnyNCaujSxE6bsj+UajT6nqc= Subject key identifier: 1D:63:8F:40:6C:9F:2A:88:8F:E7:30:5D:D1:14:4A:8A:C4:C7:3A:F6 Authority key identifier: 13:8F:9A:8C:F2:07:DA:00:8B:40:1C:6D:E8:D9:13:10:FE:25:EA:4C Certificate issuer: /CN=A913F8B5/serialNumber=138F9A8CF207DA008B401C6DE8D91310FE25EA4C Certificate serial: 051A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E4-ajPIH2gCLQBxt6NkTEP4l6kw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F8B5/239D2A42FFF911EBA8F74360C4F9AE02/E4-ajPIH2gCLQBxt6NkTEP4l6kw.mft Manifest number: 0513 Signing time: Thu 24 Apr 2025 23:23:40 +0000 Manifest this update: Thu 24 Apr 2025 23:23:39 +0000 Manifest next update: Thu 01 May 2025 23:23:39 +0000 Files and hashes: 1: E4-ajPIH2gCLQBxt6NkTEP4l6kw.crl (hash: WnCsZ7snuNqSR4zLtYJmVuZOfHA0bTeT5/cT8qF2BXQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F8B5/239D2A42FFF911EBA8F74360C4F9AE02/E4-ajPIH2gCLQBxt6NkTEP4l6kw.crl rsync://rpki.apnic.net/member_repository/A913F8B5/239D2A42FFF911EBA8F74360C4F9AE02/E4-ajPIH2gCLQBxt6NkTEP4l6kw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E4-ajPIH2gCLQBxt6NkTEP4l6kw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:23:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1306 (0x51a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F8B5, serialNumber=138F9A8CF207DA008B401C6DE8D91310FE25EA4C Validity Not Before: Apr 24 23:23:39 2025 GMT Not After : May 1 23:23:39 2025 GMT Subject: CN=680ac7fb-2b64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:20:66:1c:da:57:fe:bb:75:4a:4f:81:99:14: 76:39:2d:00:2f:eb:0f:b0:56:02:25:3c:94:1a:40: 6e:a0:05:47:74:f1:6a:a5:d6:4a:6b:a5:66:97:8d: 89:d2:74:8a:31:b0:ca:0d:4b:91:74:34:a1:24:99: 8d:4d:11:7c:89:59:a7:ad:ba:72:92:ae:7e:9c:d6: 28:c7:f8:d7:e4:43:94:e5:5d:57:95:f5:fc:a7:29: 80:c8:71:8c:7e:c2:95:e8:70:9a:9a:87:b0:68:5e: fb:43:41:c6:6a:51:12:e9:79:3f:d4:fd:1b:8d:0a: 2c:40:f5:12:03:68:05:1f:5b:cc:b4:f3:bf:73:b1: 6b:5a:f9:d5:9e:9f:fc:cc:1f:02:c0:54:8b:f7:51: 7b:f9:19:cd:f0:6d:9b:f4:b9:9f:94:63:d0:eb:a5: 46:95:d4:67:a4:62:61:20:e4:a1:ac:b5:ef:3c:45: 02:6c:c6:55:3c:10:19:3f:74:13:64:23:71:86:79: bf:70:bd:48:b0:b6:dd:db:b8:fc:96:0c:cc:af:87: 1f:6d:fb:a2:0d:3d:c4:7d:38:a4:56:05:8a:41:de: 95:4e:a8:64:ef:81:7d:09:7f:2a:09:cd:c5:d0:29: 06:fd:ef:59:13:59:4f:b2:9d:ef:f9:c2:3b:65:34: ae:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:63:8F:40:6C:9F:2A:88:8F:E7:30:5D:D1:14:4A:8A:C4:C7:3A:F6 X509v3 Authority Key Identifier: keyid:13:8F:9A:8C:F2:07:DA:00:8B:40:1C:6D:E8:D9:13:10:FE:25:EA:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F8B5/239D2A42FFF911EBA8F74360C4F9AE02/E4-ajPIH2gCLQBxt6NkTEP4l6kw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E4-ajPIH2gCLQBxt6NkTEP4l6kw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F8B5/239D2A42FFF911EBA8F74360C4F9AE02/E4-ajPIH2gCLQBxt6NkTEP4l6kw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:6d:68:29:93:5e:e5:00:c2:d9:c2:84:d4:cf:bc:bd:86:4a: 5b:df:16:bd:75:fa:7c:cb:f1:ec:c8:53:89:37:e4:26:1b:f4: 4e:4a:81:a0:f3:c9:fe:cf:2f:f0:4f:f8:a6:7e:3e:c0:12:82: b5:d8:a0:8d:4f:5f:cd:8d:21:ed:d7:f2:20:48:2b:e5:8b:21: de:d6:3e:ab:ea:b3:23:11:fd:66:cb:b4:c2:63:b2:5f:fc:b4: 6d:80:2f:fa:d3:51:8d:6f:39:53:75:bf:c2:15:37:41:5f:c4: 34:fe:18:27:ba:1f:d2:8a:d9:53:8b:e5:95:59:e9:5f:46:47: 34:ad:a6:e8:d0:a2:98:e0:41:8d:05:e6:4e:46:da:a0:03:e3: 41:4a:52:b0:bf:e0:41:13:aa:62:39:b7:ca:c0:a6:14:6f:0c: aa:09:9b:b9:e4:38:67:82:e9:94:64:df:d6:ad:20:15:59:40: 42:d4:f7:d5:db:50:14:1c:a2:44:52:f5:9f:e4:a1:04:7c:f1: 75:8c:9c:0a:3d:a8:8a:3d:c5:b3:93:9a:46:50:6a:86:7c:64: 87:ae:32:36:c3:f7:5f:9e:95:57:94:23:2d:57:b1:c3:04:be: 12:63:0a:ff:8c:fa:14:fb:9c:6e:b4:a0:04:32:8a:6c:8a:e3: ec:b4:df:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Y4QjUxMTAvBgNVBAUTKDEzOEY5QThDRjIwN0RBMDA4QjQwMUM2REU4RDkxMzEw RkUyNUVBNEMwHhcNMjUwNDI0MjMyMzM5WhcNMjUwNTAxMjMyMzM5WjAYMRYwFAYD VQQDEw02ODBhYzdmYi0yYjY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzCBmHNpX/rt1Sk+BmRR2OS0AL+sPsFYCJTyUGkBuoAVHdPFqpdZKa6Vml42J 0nSKMbDKDUuRdDShJJmNTRF8iVmnrbpykq5+nNYox/jX5EOU5V1XlfX8pymAyHGM fsKV6HCamoewaF77Q0HGalES6Xk/1P0bjQosQPUSA2gFH1vMtPO/c7FrWvnVnp/8 zB8CwFSL91F7+RnN8G2b9LmflGPQ66VGldRnpGJhIOShrLXvPEUCbMZVPBAZP3QT ZCNxhnm/cL1IsLbd27j8lgzMr4cfbfuiDT3EfTikVgWKQd6VTqhk74F9CX8qCc3F 0CkG/e9ZE1lPsp3v+cI7ZTSuIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB1jj0Bs nyqIj+cwXdEUSorExzr2MB8GA1UdIwQYMBaAFBOPmozyB9oAi0AcbejZExD+JepM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjhCNS8yMzlEMkE0MkZG RjkxMUVCQThGNzQzNjBDNEY5QUUwMi9FNC1halBJSDJnQ0xRQnh0Nk5rVEVQNGw2 a3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0U0LWFqUElIMmdDTFFCeHQ2TmtURVA0bDZrdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjhCNS8yMzlEMkE0MkZGRjkxMUVCQThGNzQzNjBDNEY5QUUwMi9FNC1halBJSDJn Q0xRQnh0Nk5rVEVQNGw2a3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFbWgpk17lAMLZwoTUz7y9hkpb3xa9dfp8y/HsyFOJN+QmG/ROSoGg 88n+zy/wT/imfj7AEoK12KCNT1/NjSHt1/IgSCvliyHe1j6r6rMjEf1my7TCY7Jf /LRtgC/601GNbzlTdb/CFTdBX8Q0/hgnuh/SitlTi+WVWelfRkc0rabo0KKY4EGN BeZORtqgA+NBSlKwv+BBE6piObfKwKYUbwyqCZu55DhngumUZN/WrSAVWUBC1PfV 21AUHKJEUvWf5KEEfPF1jJwKPaiKPcWzk5pGUGqGfGSHrjI2w/dfnpVXlCMtV7HD BL4SYwr/jPoU+5xutKAEMopsiuPstN+C -----END CERTIFICATE-----Generated at Sat Apr 26 16:10:34 2025 by rpki-client