$ rpki-client -vvf rpki.apnic.net/member_repository/A914E1C1/DBE5F2CA10C711ED8BB3B75DC4F9AE02/4_MVTZiCdqL1QeXqYoGMdwu7gOo.mft File: 4_MVTZiCdqL1QeXqYoGMdwu7gOo.mft (raw, json) Hash identifier: CoY9QvZmjyqWJtGpnW4EAAjnCUOCEi3LmDIZxYeGFts= Subject key identifier: FA:B0:B4:97:40:30:5C:F7:72:FC:88:BC:98:E4:51:E7:F4:55:99:B4 Authority key identifier: E3:F3:15:4D:98:82:76:A2:F5:41:E5:EA:62:81:8C:77:0B:BB:80:EA Certificate issuer: /CN=A914E1C1/serialNumber=E3F3154D988276A2F541E5EA62818C770BBB80EA Certificate serial: 0265 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4_MVTZiCdqL1QeXqYoGMdwu7gOo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E1C1/DBE5F2CA10C711ED8BB3B75DC4F9AE02/4_MVTZiCdqL1QeXqYoGMdwu7gOo.mft Manifest number: 025F Signing time: Fri 25 Apr 2025 01:33:08 +0000 Manifest this update: Fri 25 Apr 2025 01:33:07 +0000 Manifest next update: Fri 02 May 2025 01:33:07 +0000 Files and hashes: 1: 4_MVTZiCdqL1QeXqYoGMdwu7gOo.crl (hash: XrZNwzbfAuf/FRhnwpMcGcx7WkrIufpKFGyPYgi9fTQ=) 2: 2541D62A7F9811ED93508538C4F9AE02.roa (hash: FUd/qskXH7I3VsZeo9p50JOxxkxMPP4+8p2jo1T6M4o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E1C1/DBE5F2CA10C711ED8BB3B75DC4F9AE02/4_MVTZiCdqL1QeXqYoGMdwu7gOo.crl rsync://rpki.apnic.net/member_repository/A914E1C1/DBE5F2CA10C711ED8BB3B75DC4F9AE02/4_MVTZiCdqL1QeXqYoGMdwu7gOo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4_MVTZiCdqL1QeXqYoGMdwu7gOo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:33:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 613 (0x265) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E1C1, serialNumber=E3F3154D988276A2F541E5EA62818C770BBB80EA Validity Not Before: Apr 25 01:33:07 2025 GMT Not After : May 2 01:33:07 2025 GMT Subject: CN=680ae654-62a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:e1:81:db:74:af:da:87:10:b0:e4:2a:c7:80: f9:77:7e:f8:56:2a:d1:18:74:ef:4e:b1:72:aa:d8: 8c:55:02:31:f1:a5:2c:d8:ed:3f:f5:b6:a6:31:dd: 52:bc:5e:05:54:da:cd:19:8d:d7:c3:8b:84:77:69: f3:67:d9:9f:5f:88:8e:d3:c2:c3:3d:43:ee:97:e3: cf:41:49:18:5c:ca:9e:a4:ad:8b:ac:f6:dc:bc:83: f4:d5:82:e6:3c:6a:f4:90:28:d2:8b:62:56:d4:91: 46:dc:a0:d1:af:c4:f1:52:33:b9:4f:71:a6:3b:66: 77:7f:b6:e0:5c:de:0e:dc:80:9a:5c:ca:c5:3f:d1: 05:de:5d:6c:31:94:93:75:92:dd:58:d6:4f:a5:1a: 5a:7b:fe:95:5c:8b:c7:87:ed:0e:47:e0:55:98:29: 19:25:ae:48:dc:df:12:68:37:b2:fb:e4:57:69:60: d8:68:62:89:b6:79:3e:e7:b7:4a:eb:64:6f:75:89: 09:df:5f:47:21:d3:61:7b:f5:56:ad:86:3b:19:35: ac:04:65:3c:d0:3c:95:cd:46:8c:87:2c:76:62:b5: 20:1a:55:e9:dc:99:4a:74:a9:10:09:d4:f0:b6:7f: 6e:a3:00:ef:e2:df:e5:64:64:8c:cc:4b:9b:36:b2: 1f:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:B0:B4:97:40:30:5C:F7:72:FC:88:BC:98:E4:51:E7:F4:55:99:B4 X509v3 Authority Key Identifier: keyid:E3:F3:15:4D:98:82:76:A2:F5:41:E5:EA:62:81:8C:77:0B:BB:80:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E1C1/DBE5F2CA10C711ED8BB3B75DC4F9AE02/4_MVTZiCdqL1QeXqYoGMdwu7gOo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4_MVTZiCdqL1QeXqYoGMdwu7gOo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E1C1/DBE5F2CA10C711ED8BB3B75DC4F9AE02/4_MVTZiCdqL1QeXqYoGMdwu7gOo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:e8:7c:97:fe:dd:c7:bc:a9:e1:02:af:59:4a:08:73:9e:ad: 03:85:6d:64:27:b4:18:c7:68:f9:78:d0:1a:73:1c:3e:2e:3c: b7:09:a5:dc:e3:78:1f:c6:65:99:fa:bd:53:f2:b0:ac:69:5a: 0e:2b:2b:40:d4:77:64:ba:67:11:a3:87:44:be:4a:a8:35:20: 59:51:20:aa:7d:29:5d:50:04:d6:bc:69:98:f4:13:d2:7c:e8: 2e:e5:79:59:28:e8:53:98:37:29:1a:82:cd:06:2a:08:85:1d: 89:fc:c3:4a:c2:ef:ce:61:61:19:2f:ab:49:f5:32:a9:88:81: 7d:e6:4f:d9:a9:85:99:b2:04:19:99:67:2e:36:f6:cd:52:4f: b3:41:49:a3:b8:26:50:6a:7a:c0:6c:ec:59:24:50:16:e8:3d: 7c:0e:c5:e9:67:2b:f7:fe:67:15:d7:3a:58:3f:65:d6:f0:5e: 61:c2:82:c4:87:a7:8e:12:62:34:89:3f:50:2d:b7:ed:e3:0f: 05:de:8e:25:77:cd:a9:54:4a:00:01:9e:c2:5d:92:c0:0e:c5: 61:5e:a6:df:0a:9a:5a:a7:4a:e8:f1:d5:d9:1a:38:b6:39:73: a2:d3:8a:2d:cd:b7:3e:b2:fd:4b:f6:92:78:f3:60:a4:96:d2: 44:46:80:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUxQzExMTAvBgNVBAUTKEUzRjMxNTREOTg4Mjc2QTJGNTQxRTVFQTYyODE4Qzc3 MEJCQjgwRUEwHhcNMjUwNDI1MDEzMzA3WhcNMjUwNTAyMDEzMzA3WjAYMRYwFAYD VQQDEw02ODBhZTY1NC02MmE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1uGB23Sv2ocQsOQqx4D5d374VirRGHTvTrFyqtiMVQIx8aUs2O0/9bamMd1S vF4FVNrNGY3Xw4uEd2nzZ9mfX4iO08LDPUPul+PPQUkYXMqepK2LrPbcvIP01YLm PGr0kCjSi2JW1JFG3KDRr8TxUjO5T3GmO2Z3f7bgXN4O3ICaXMrFP9EF3l1sMZST dZLdWNZPpRpae/6VXIvHh+0OR+BVmCkZJa5I3N8SaDey++RXaWDYaGKJtnk+57dK 62RvdYkJ319HIdNhe/VWrYY7GTWsBGU80DyVzUaMhyx2YrUgGlXp3JlKdKkQCdTw tn9uowDv4t/lZGSMzEubNrIf7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPqwtJdA MFz3cvyIvJjkUef0VZm0MB8GA1UdIwQYMBaAFOPzFU2Ygnai9UHl6mKBjHcLu4Dq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTFDMS9EQkU1RjJDQTEw QzcxMUVEOEJCM0I3NURDNEY5QUUwMi80X01WVFppQ2RxTDFRZVhxWW9HTWR3dTdn T28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRfTVZUWmlDZHFMMVFlWHFZb0dNZHd1N2dPby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTFDMS9EQkU1RjJDQTEwQzcxMUVEOEJCM0I3NURDNEY5QUUwMi80X01WVFppQ2Rx TDFRZVhxWW9HTWR3dTdnT28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBu6HyX/t3HvKnhAq9ZSghznq0DhW1kJ7QYx2j5eNAacxw+Ljy3CaXc 43gfxmWZ+r1T8rCsaVoOKytA1HdkumcRo4dEvkqoNSBZUSCqfSldUATWvGmY9BPS fOgu5XlZKOhTmDcpGoLNBioIhR2J/MNKwu/OYWEZL6tJ9TKpiIF95k/ZqYWZsgQZ mWcuNvbNUk+zQUmjuCZQanrAbOxZJFAW6D18DsXpZyv3/mcV1zpYP2XW8F5hwoLE h6eOEmI0iT9QLbft4w8F3o4ld82pVEoAAZ7CXZLADsVhXqbfCppap0ro8dXZGji2 OXOi04otzbc+sv1L9pJ482CkltJERoCb -----END CERTIFICATE-----Generated at Sat Apr 26 13:41:24 2025 by rpki-client