$ rpki-client -vvf rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/4hlMc0IL1P2sKL9jO7OvjNcg0LE.mft File: 4hlMc0IL1P2sKL9jO7OvjNcg0LE.mft (raw, json) Hash identifier: 2AN7J6E1ayPSjFTltJRj4V7Ac+bEijPOJdhH+zSwvzg= Subject key identifier: 4B:A7:18:D1:95:DE:1D:16:FA:BB:1F:E0:A8:32:FB:22:86:30:A6:67 Authority key identifier: E2:19:4C:73:42:0B:D4:FD:AC:28:BF:63:3B:B3:AF:8C:D7:20:D0:B1 Certificate issuer: /CN=A91536B7/serialNumber=E2194C73420BD4FDAC28BF633BB3AF8CD720D0B1 Certificate serial: 39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hlMc0IL1P2sKL9jO7OvjNcg0LE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/4hlMc0IL1P2sKL9jO7OvjNcg0LE.mft Manifest number: 5002 Signing time: Thu 24 Apr 2025 16:25:13 +0000 Manifest this update: Thu 24 Apr 2025 16:25:13 +0000 Manifest next update: Thu 01 May 2025 16:25:12 +0000 Files and hashes: 1: 4hlMc0IL1P2sKL9jO7OvjNcg0LE.crl (hash: rC90IPudmopXXXyk5oa8PMppDLvysqzNCmEgloyXnfk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/4hlMc0IL1P2sKL9jO7OvjNcg0LE.crl rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/4hlMc0IL1P2sKL9jO7OvjNcg0LE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hlMc0IL1P2sKL9jO7OvjNcg0LE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:25:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57 (0x39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91536B7, serialNumber=E2194C73420BD4FDAC28BF633BB3AF8CD720D0B1 Validity Not Before: Apr 24 16:25:13 2025 GMT Not After : May 1 16:25:12 2025 GMT Subject: CN=680a65e9-64e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ff:a8:69:a4:b4:ea:86:d5:0a:0c:a1:00:dc: bf:f3:7e:1e:e1:73:81:01:89:c2:fc:97:71:5d:1d: 6d:01:fc:2a:7a:95:bc:51:ec:48:50:3b:66:d8:e7: db:d6:b8:57:44:26:9c:7f:f5:1a:e1:ca:07:09:27: fe:73:bf:ef:bc:55:aa:da:1d:d5:5c:42:d8:8a:62: ba:3d:e1:f0:9f:4a:6e:13:f0:c5:c2:04:6b:0e:da: f1:ee:57:bc:84:71:ea:c8:1a:82:7b:dd:86:3e:df: 96:e2:42:46:58:9b:5d:18:8c:e3:06:cb:4c:f8:02: fe:52:8a:50:cb:80:8b:de:88:6a:c7:58:e5:4d:d1: 24:78:b0:00:e5:b7:6b:6b:3c:87:20:3a:8f:dc:31: 4c:b1:95:13:c4:00:21:d2:47:2f:2a:13:1d:af:65: 18:e6:10:89:64:94:ab:c4:8a:c3:0b:50:6b:9a:db: b5:23:8d:cb:4c:4f:4d:1e:16:fa:8d:f0:21:0c:b5: b7:81:70:04:77:38:c8:d3:bd:7f:90:5d:ba:ee:86: 9c:6e:96:86:8a:63:1b:55:57:7d:8f:a2:c2:4f:87: f4:cf:8c:e9:29:56:2d:6d:0f:9d:c0:74:b9:30:d1: af:bb:db:13:9f:b1:99:87:32:35:b0:0e:86:bc:ad: 33:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:A7:18:D1:95:DE:1D:16:FA:BB:1F:E0:A8:32:FB:22:86:30:A6:67 X509v3 Authority Key Identifier: keyid:E2:19:4C:73:42:0B:D4:FD:AC:28:BF:63:3B:B3:AF:8C:D7:20:D0:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/4hlMc0IL1P2sKL9jO7OvjNcg0LE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hlMc0IL1P2sKL9jO7OvjNcg0LE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/4hlMc0IL1P2sKL9jO7OvjNcg0LE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:62:7e:d0:50:a7:61:44:0b:26:83:b3:06:d8:d5:51:f1:93: 3b:2a:66:cf:88:b2:bf:b7:3f:31:b0:2f:5b:d5:b4:04:28:0f: dc:94:bb:71:54:70:ce:42:f2:2d:aa:d4:1b:95:02:44:ae:eb: 42:8a:80:d5:80:3d:40:b9:7c:9f:16:84:de:69:80:23:82:e5: 43:52:1e:24:09:af:fa:a5:8b:11:cd:e1:20:59:39:eb:14:5f: 34:67:e3:58:1c:88:4f:a9:82:f7:bb:a6:06:aa:fe:d6:1e:e8: 2e:1a:d1:50:26:62:bf:e6:b7:54:46:00:85:00:df:cf:13:35: 2b:50:86:11:14:9f:cc:ab:0e:14:b6:35:96:95:4b:eb:0d:02: 65:da:8f:10:37:6f:bc:73:1f:b1:49:19:a8:a6:5a:e7:59:d3: f2:89:ba:45:4c:0e:dc:6c:c9:77:8f:9b:7b:ce:55:7e:e2:2b: c5:af:e1:68:32:65:79:94:cb:a1:81:46:0d:a5:89:02:f1:33: f0:42:42:52:a2:09:62:b6:11:91:46:3e:ee:f8:be:83:e9:42: 7e:b4:89:07:b1:39:4f:a2:6f:c5:14:3b:42:a3:72:1e:ec:c8: 87:13:19:61:3f:5d:65:87:35:88:e4:43:47:2d:c5:33:20:99: 0c:2a:51:86 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 MzZCNzExMC8GA1UEBRMoRTIxOTRDNzM0MjBCRDRGREFDMjhCRjYzM0JCM0FGOENE NzIwRDBCMTAeFw0yNTA0MjQxNjI1MTNaFw0yNTA1MDExNjI1MTJaMBgxFjAUBgNV BAMTDTY4MGE2NWU5LTY0ZTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDG/6hppLTqhtUKDKEA3L/zfh7hc4EBicL8l3FdHW0B/Cp6lbxR7EhQO2bY59vW uFdEJpx/9RrhygcJJ/5zv++8VaraHdVcQtiKYro94fCfSm4T8MXCBGsO2vHuV7yE cerIGoJ73YY+35biQkZYm10YjOMGy0z4Av5SilDLgIveiGrHWOVN0SR4sADlt2tr PIcgOo/cMUyxlRPEACHSRy8qEx2vZRjmEIlklKvEisMLUGua27UjjctMT00eFvqN 8CEMtbeBcAR3OMjTvX+QXbruhpxuloaKYxtVV32PosJPh/TPjOkpVi1tD53AdLkw 0a+72xOfsZmHMjWwDoa8rTOTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUS6cY0ZXe HRb6ux/gqDL7IoYwpmcwHwYDVR0jBBgwFoAU4hlMc0IL1P2sKL9jO7OvjNcg0LEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUzNkI3L0YxQ0QyN0I0NzNB RDExRTdBQ0JEMDI1RUM0RjlBRTAyLzRobE1jMElMMVAyc0tMOWpPN092ak5jZzBM RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNGhsTWMwSUwxUDJzS0w5ak83T3ZqTmNnMExFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUz NkI3L0YxQ0QyN0I0NzNBRDExRTdBQ0JEMDI1RUM0RjlBRTAyLzRobE1jMElMMVAy c0tMOWpPN092ak5jZzBMRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAB9iftBQp2FECyaDswbY1VHxkzsqZs+Isr+3PzGwL1vVtAQoD9yUu3FU cM5C8i2q1BuVAkSu60KKgNWAPUC5fJ8WhN5pgCOC5UNSHiQJr/qlixHN4SBZOesU XzRn41gciE+pgve7pgaq/tYe6C4a0VAmYr/mt1RGAIUA388TNStQhhEUn8yrDhS2 NZaVS+sNAmXajxA3b7xzH7FJGaimWudZ0/KJukVMDtxsyXePm3vOVX7iK8Wv4Wgy ZXmUy6GBRg2liQLxM/BCQlKiCWK2EZFGPu74voPpQn60iQexOU+ib8UUO0Kjch7s yIcTGWE/XWWHNYjkQ0ctxTMgmQwqUYY= -----END CERTIFICATE-----Generated at Sat Apr 26 04:20:59 2025 by rpki-client