$ rpki-client -vvf rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft File: 4QZLtgGhMQh2G1RXofcVJMSky84.mft (raw, json) Hash identifier: 8zo/dmsZuC6ZpqwZzKfgHTFDiwA48FMQWCyWcesfTmM= Subject key identifier: FA:5E:DA:5A:09:C8:D1:C9:45:71:D2:7D:C5:2B:1A:09:07:CE:08:E9 Authority key identifier: E1:06:4B:B6:01:A1:31:08:76:1B:54:57:A1:F7:15:24:C4:A4:CB:CE Certificate issuer: /CN=A914B57F/serialNumber=E1064BB601A13108761B5457A1F71524C4A4CBCE Certificate serial: 0AD6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QZLtgGhMQh2G1RXofcVJMSky84.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft Manifest number: 0AD0 Signing time: Sat 14 Jun 2025 19:16:18 +0000 Manifest this update: Sat 14 Jun 2025 19:16:18 +0000 Manifest next update: Sat 21 Jun 2025 19:16:18 +0000 Files and hashes: 1: 4QZLtgGhMQh2G1RXofcVJMSky84.crl (hash: ejccwualcMQGAvkBL6cuOeYMbHp+lYvP1/Mw01gGC5M=) 2: 11685AAC4F0D11EAA161D143C4F9AE02.roa (hash: HpuZh21zVl0Ft40GZ9PsEwmlpNjswClEyYGJmu6x+ok=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.crl rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QZLtgGhMQh2G1RXofcVJMSky84.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 19:16:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2774 (0xad6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B57F, serialNumber=E1064BB601A13108761B5457A1F71524C4A4CBCE Validity Not Before: Jun 14 19:16:18 2025 GMT Not After : Jun 21 19:16:18 2025 GMT Subject: CN=684dca82-31c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:9c:76:5f:11:e3:e7:47:15:f0:44:4f:c7:cb: b0:dc:0f:76:59:d7:73:29:7d:55:b2:ea:3f:19:23: 34:58:48:e0:9f:36:bc:33:62:88:c7:a0:2c:31:5b: 3c:4a:a2:5e:d0:f9:60:50:93:ea:40:1d:8b:35:c2: 51:13:bb:e4:22:f0:65:d9:56:f7:fd:a9:62:78:be: cc:53:6d:0d:e2:86:17:8e:da:85:62:f0:06:1a:15: 3d:40:0c:7e:a3:1a:2e:7a:86:53:2c:af:38:df:27: 1a:86:ad:fb:15:00:35:0e:a1:7d:37:97:08:ad:ef: c5:08:cd:82:20:5a:4e:36:f7:d0:f3:95:1c:ca:1a: 44:7a:9e:a6:dd:81:8e:80:e1:be:90:22:53:47:ab: ff:3f:48:22:ab:a1:23:62:3e:1e:01:86:d4:be:8e: c4:1e:c2:c3:b3:2f:6b:e7:70:24:46:c7:e2:9f:6c: c5:b4:3e:46:9f:6f:e7:cf:fb:10:49:63:55:a2:31: 7d:f5:bf:48:04:7e:5a:2a:33:04:df:1f:bb:6b:fb: a1:b3:22:45:10:e6:80:f0:75:42:f8:09:13:94:77: ee:f7:45:65:4a:b6:88:e2:8e:1c:6f:30:95:20:dc: 06:83:35:1d:53:e3:8a:f5:7a:a9:af:c8:bf:51:3e: 62:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:5E:DA:5A:09:C8:D1:C9:45:71:D2:7D:C5:2B:1A:09:07:CE:08:E9 X509v3 Authority Key Identifier: keyid:E1:06:4B:B6:01:A1:31:08:76:1B:54:57:A1:F7:15:24:C4:A4:CB:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QZLtgGhMQh2G1RXofcVJMSky84.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:90:68:a7:39:53:d6:b1:b6:dc:ac:63:c0:95:e7:96:70:5b: 19:41:8c:8b:eb:a0:20:39:dd:16:66:a1:4d:1b:08:c7:4b:e0: 87:b2:b1:44:f1:a8:99:fd:e6:fa:2a:13:cd:a3:16:b5:da:99: e9:83:38:8a:5a:4e:c3:b0:82:e2:70:15:58:f7:c5:32:c9:cd: d4:f6:a9:29:4a:38:c6:c7:32:51:93:2b:8b:d9:ce:e5:f7:3a: 6f:65:fe:0e:33:b2:31:d6:3a:8b:ea:a7:90:57:10:cc:5f:4c: ee:14:65:5f:46:61:f9:fe:30:86:d8:b4:32:ac:a2:8f:b0:89: 15:43:89:65:4f:63:3a:bd:79:89:50:08:b2:cc:dd:56:58:fe: 5f:7f:f4:91:40:f1:e4:7e:21:73:81:36:2c:85:4b:35:2c:4e: 94:e1:3f:e5:ae:ab:66:26:01:78:71:71:cd:00:d3:99:e0:87: a8:d0:64:4d:1a:ac:10:36:c0:ac:3d:8d:55:58:a4:1b:47:0b: 1e:c3:49:15:97:9b:1a:45:e7:a5:13:58:75:64:2b:0c:20:ee: 00:65:d7:e0:6f:88:7b:ad:c9:46:1e:a3:35:c0:47:ad:6d:30: e3:ab:3d:16:25:15:1e:47:50:06:e2:1e:11:e0:1f:29:7b:85: ea:c0:48:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCtYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEI1N0YxMTAvBgNVBAUTKEUxMDY0QkI2MDFBMTMxMDg3NjFCNTQ1N0ExRjcxNTI0 QzRBNENCQ0UwHhcNMjUwNjE0MTkxNjE4WhcNMjUwNjIxMTkxNjE4WjAYMRYwFAYD VQQDEw02ODRkY2E4Mi0zMWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxZx2XxHj50cV8ERPx8uw3A92WddzKX1Vsuo/GSM0WEjgnza8M2KIx6AsMVs8 SqJe0PlgUJPqQB2LNcJRE7vkIvBl2Vb3/alieL7MU20N4oYXjtqFYvAGGhU9QAx+ oxoueoZTLK843ycahq37FQA1DqF9N5cIre/FCM2CIFpONvfQ85UcyhpEep6m3YGO gOG+kCJTR6v/P0giq6EjYj4eAYbUvo7EHsLDsy9r53AkRsfin2zFtD5Gn2/nz/sQ SWNVojF99b9IBH5aKjME3x+7a/uhsyJFEOaA8HVC+AkTlHfu90VlSraI4o4cbzCV INwGgzUdU+OK9Xqpr8i/UT5iYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPpe2loJ yNHJRXHSfcUrGgkHzgjpMB8GA1UdIwQYMBaAFOEGS7YBoTEIdhtUV6H3FSTEpMvO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjU3Ri9CMjQ1N0Q2QTRF NTkxMUVBOUVFOUUyMERDNEY5QUUwMi80UVpMdGdHaE1RaDJHMVJYb2ZjVkpNU2t5 ODQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRRWkx0Z0doTVFoMkcxUlhvZmNWSk1Ta3k4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjU3Ri9CMjQ1N0Q2QTRFNTkxMUVBOUVFOUUyMERDNEY5QUUwMi80UVpMdGdHaE1R aDJHMVJYb2ZjVkpNU2t5ODQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEkGinOVPWsbbcrGPAleeWcFsZQYyL66AgOd0WZqFNGwjHS+CHsrFE 8aiZ/eb6KhPNoxa12pnpgziKWk7DsILicBVY98Uyyc3U9qkpSjjGxzJRkyuL2c7l 9zpvZf4OM7Ix1jqL6qeQVxDMX0zuFGVfRmH5/jCG2LQyrKKPsIkVQ4llT2M6vXmJ UAiyzN1WWP5ff/SRQPHkfiFzgTYshUs1LE6U4T/lrqtmJgF4cXHNANOZ4Ieo0GRN GqwQNsCsPY1VWKQbRwsew0kVl5saReelE1h1ZCsMIO4AZdfgb4h7rclGHqM1wEet bTDjqz0WJRUeR1AG4h4R4B8pe4XqwEj6 -----END CERTIFICATE-----Generated at Sun Jun 15 09:44:40 2025 by rpki-client