$ rpki-client -vvf rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft File: 4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft (raw, json) Hash identifier: EIzG/8CwZLJX675vq2OuY1bvKRHXSPfQU0O1CfvkzWU= Subject key identifier: A8:32:4D:58:75:B9:E2:B5:67:0B:85:6C:F6:94:24:5A:37:B0:5A:3A Authority key identifier: E2:44:9E:31:22:20:13:1E:2E:76:C4:2C:7C:CC:6D:D1:93:51:07:07 Certificate issuer: /CN=A914CBF3/serialNumber=E2449E312220131E2E76C42C7CCC6DD193510707 Certificate serial: 0C21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft Manifest number: 0C00 Signing time: Thu 24 Apr 2025 18:40:36 +0000 Manifest this update: Thu 24 Apr 2025 18:40:36 +0000 Manifest next update: Thu 01 May 2025 18:40:36 +0000 Files and hashes: 1: 4kSeMSIgEx4udsQsfMxt0ZNRBwc.crl (hash: hDueM4/in6q/vSnYsf1clzt/INFSARYD/37dTagoMpU=) 2: 183DE570057A11EC822F230EC4F9AE02.roa (hash: bEfFzY9ERkUCouk5XoaucvDsVkrzcwabTIVAnbK3Eko=) 3: B32668C4D98C11EB905D7281C4F9AE02.roa (hash: +CpW1CaKQXu6MhTzl4JHCslaYOAYJXQr9xAkDiD0lq0=) 4: 140E693613BF11ECA64D821AC4F9AE02.roa (hash: BLN1lKtFOEI4I4kMREMJqKNdevJbMvO6FDfATzwYDjw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.crl rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:40:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3105 (0xc21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CBF3, serialNumber=E2449E312220131E2E76C42C7CCC6DD193510707 Validity Not Before: Apr 24 18:40:36 2025 GMT Not After : May 1 18:40:36 2025 GMT Subject: CN=680a85a4-5fb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:24:a5:63:2a:49:6d:9a:d1:64:e6:24:2f:c0: 75:1b:85:eb:fa:be:97:b4:da:00:c2:d6:d2:86:e4: 9b:19:8a:ac:ce:27:bf:f9:b5:a1:d3:5a:ec:32:74: 9b:7a:6c:ec:96:5f:f5:62:59:25:ba:2b:0f:45:60: 7e:d6:1d:de:d1:1e:13:c0:87:80:b0:7b:b7:22:cc: c6:73:51:48:ba:13:80:c3:7a:fd:0f:0f:e8:db:55: a8:bb:e7:c9:f1:f5:d6:8f:4c:0f:ce:58:e8:70:34: 8b:94:9e:3f:34:6e:40:d5:8b:3f:97:a4:f4:8d:20: 66:d9:42:47:da:e9:a0:98:8b:36:53:24:31:a6:44: 9c:8e:00:ce:ca:8c:2b:a4:18:35:9d:ac:40:fc:7e: 61:a4:59:c3:ec:de:5c:c6:1e:4f:59:f0:7a:ce:9e: bb:1c:ca:03:b6:f9:69:25:dd:99:a4:80:91:10:62: 52:2f:43:c3:ba:7f:3e:70:93:fe:05:b2:c2:ce:f8: 86:1a:fe:cb:bb:59:5c:d0:31:94:50:c5:31:90:a6: 1c:3c:4d:af:b6:5c:c9:25:c3:a5:1e:d1:c1:47:9b: 7f:2b:f0:97:cd:6c:9a:4d:bc:0b:aa:86:ab:ed:c6: 76:a3:3f:a0:0a:fc:62:d4:27:a9:81:59:45:46:56: a7:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:32:4D:58:75:B9:E2:B5:67:0B:85:6C:F6:94:24:5A:37:B0:5A:3A X509v3 Authority Key Identifier: keyid:E2:44:9E:31:22:20:13:1E:2E:76:C4:2C:7C:CC:6D:D1:93:51:07:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:61:fd:d6:61:74:90:86:20:d5:20:93:ac:63:f1:bc:6c:c5: c9:58:40:7d:d7:7b:bb:2d:63:ef:60:f8:26:54:60:4e:f4:9e: cc:91:57:ed:3e:f1:4e:b0:ac:1c:d6:9b:be:7e:cf:7b:ab:5c: 37:f2:a2:87:ca:3a:33:37:10:42:cd:9c:e8:bb:9d:f4:11:31: 19:f3:bc:f5:ef:71:d6:79:3f:0f:82:5c:8e:76:fa:71:1a:f4: 49:4c:af:49:b7:00:09:81:ad:ca:49:2b:8f:94:09:9d:f4:b5: d0:7b:a7:ed:4d:49:3a:5c:e5:58:09:42:b4:72:c6:d5:23:b3: 6a:f5:76:82:4f:5b:13:e7:fa:6d:45:7e:79:cd:dd:d1:1d:21: b0:bf:d9:97:ed:36:08:e6:7d:bb:b2:d5:f3:4a:d1:55:c9:5b: cf:23:29:45:f3:49:a0:a0:e7:c9:13:4a:b7:d8:63:70:08:a8: 7d:5f:43:c1:46:bb:a5:e5:5d:9a:74:a5:a6:91:37:5e:c0:06: 07:a6:05:5b:9a:41:61:31:02:f9:90:21:c0:2e:ad:a5:ae:32: fd:c9:52:b0:29:a8:f9:fc:5a:0a:16:62:6a:00:70:0b:ed:30: fe:94:ee:72:30:65:6d:a7:96:81:90:6b:ff:ae:fa:92:4c:3b: 35:5a:97:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENCRjMxMTAvBgNVBAUTKEUyNDQ5RTMxMjIyMDEzMUUyRTc2QzQyQzdDQ0M2REQx OTM1MTA3MDcwHhcNMjUwNDI0MTg0MDM2WhcNMjUwNTAxMTg0MDM2WjAYMRYwFAYD VQQDEw02ODBhODVhNC01ZmIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzySlYypJbZrRZOYkL8B1G4Xr+r6XtNoAwtbShuSbGYqszie/+bWh01rsMnSb emzsll/1YlkluisPRWB+1h3e0R4TwIeAsHu3IszGc1FIuhOAw3r9Dw/o21Wou+fJ 8fXWj0wPzljocDSLlJ4/NG5A1Ys/l6T0jSBm2UJH2umgmIs2UyQxpkScjgDOyowr pBg1naxA/H5hpFnD7N5cxh5PWfB6zp67HMoDtvlpJd2ZpICREGJSL0PDun8+cJP+ BbLCzviGGv7Lu1lc0DGUUMUxkKYcPE2vtlzJJcOlHtHBR5t/K/CXzWyaTbwLqoar 7cZ2oz+gCvxi1CepgVlFRlanxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKgyTVh1 ueK1ZwuFbPaUJFo3sFo6MB8GA1UdIwQYMBaAFOJEnjEiIBMeLnbELHzMbdGTUQcH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0JGMy8xQkM2RUIyMDEx RTcxMUVBQjkwM0FBNzlDNEY5QUUwMi80a1NlTVNJZ0V4NHVkc1FzZk14dDBaTlJC d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRrU2VNU0lnRXg0dWRzUXNmTXh0MFpOUkJ3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Q0JGMy8xQkM2RUIyMDExRTcxMUVBQjkwM0FBNzlDNEY5QUUwMi80a1NlTVNJZ0V4 NHVkc1FzZk14dDBaTlJCd2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4Yf3WYXSQhiDVIJOsY/G8bMXJWEB913u7LWPvYPgmVGBO9J7MkVft PvFOsKwc1pu+fs97q1w38qKHyjozNxBCzZzou530ETEZ87z173HWeT8PglyOdvpx GvRJTK9JtwAJga3KSSuPlAmd9LXQe6ftTUk6XOVYCUK0csbVI7Nq9XaCT1sT5/pt RX55zd3RHSGwv9mX7TYI5n27stXzStFVyVvPIylF80mgoOfJE0q32GNwCKh9X0PB Rrul5V2adKWmkTdewAYHpgVbmkFhMQL5kCHALq2lrjL9yVKwKaj5/FoKFmJqAHAL 7TD+lO5yMGVtp5aBkGv/rvqSTDs1WpeU -----END CERTIFICATE-----Generated at Sat Apr 26 14:48:02 2025 by rpki-client