$ rpki-client -vvf rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/4JlhFVCKOtWZFdurzLaW26C0zHI.mft File: 4JlhFVCKOtWZFdurzLaW26C0zHI.mft (raw, json) Hash identifier: mqIXZMJB2YdyOBcR0JFXpAUDM11FHdiZn4wiXGPHtCM= Subject key identifier: 2D:7F:E8:1B:51:82:B8:53:F3:E1:F8:FF:47:45:D2:96:51:C1:72:CC Authority key identifier: E0:99:61:15:50:8A:3A:D5:99:15:DB:AB:CC:B6:96:DB:A0:B4:CC:72 Certificate issuer: /CN=A9153CE9/serialNumber=E0996115508A3AD59915DBABCCB696DBA0B4CC72 Certificate serial: 057A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4JlhFVCKOtWZFdurzLaW26C0zHI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/4JlhFVCKOtWZFdurzLaW26C0zHI.mft Manifest number: 055B Signing time: Sat 14 Jun 2025 23:10:04 +0000 Manifest this update: Sat 14 Jun 2025 23:10:03 +0000 Manifest next update: Sat 21 Jun 2025 23:10:03 +0000 Files and hashes: 1: 4JlhFVCKOtWZFdurzLaW26C0zHI.crl (hash: D98gFUFwlZQxO6JFZ3NVmthY9kOpHc3GAP8gH52LveE=) 2: BA758AE2212711F0A7DCCB5BC4F9AE02.roa (hash: m8lEVsnh3DvG0KEPCp4MW7Ow9L5MLhKDggw4WLNqc68=) 3: 03C7AA80F01111ED9C345840C4F9AE02.roa (hash: Am8OlNfTP5V8Kx5g/Dv+15S2O7P9HWujy6NfIY4x9VA=) 4: 04E8D402F01111ED9C345840C4F9AE02.roa (hash: aw0GsE7/msiXwaZd5f0HibklFhBHtqZY6llDRI4HTZY=) 5: F650791EF01411ED9210D060C4F9AE02.roa (hash: 4IZfBEYxdxWId8yUiHx63z7AlPcjMCqr2gmuQDYBUpU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/4JlhFVCKOtWZFdurzLaW26C0zHI.crl rsync://rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/4JlhFVCKOtWZFdurzLaW26C0zHI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4JlhFVCKOtWZFdurzLaW26C0zHI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 23:10:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1402 (0x57a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153CE9, serialNumber=E0996115508A3AD59915DBABCCB696DBA0B4CC72 Validity Not Before: Jun 14 23:10:03 2025 GMT Not After : Jun 21 23:10:03 2025 GMT Subject: CN=684e014b-e83a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:2e:9d:b3:55:65:d6:77:73:e1:f1:b1:e6:72: f0:e2:c5:33:29:59:42:84:21:c3:b3:e9:4a:aa:10: c7:c8:0a:21:f1:cd:57:00:9d:f6:db:97:da:ee:87: 32:8e:72:1c:92:00:dd:e5:03:d8:a6:38:03:22:1b: c4:22:e0:bd:b3:f0:36:ee:6d:c6:91:aa:e5:da:59: e8:f1:17:c3:8a:02:fa:83:e5:64:7c:97:b9:73:06: 67:a9:d0:28:e1:05:1d:99:92:b9:ed:09:46:8b:1a: 93:08:05:0a:eb:51:8d:9f:7c:0a:3b:9d:4d:29:86: da:b5:1c:eb:de:a0:4e:05:12:61:b4:af:36:8c:0b: e4:75:22:14:1c:f8:19:47:8b:67:bb:ab:f8:c1:30: b5:dc:56:1a:0a:db:89:89:5f:e8:e5:3e:62:4c:10: d5:79:39:a7:59:ad:0e:ca:83:cd:28:55:e2:84:2e: d5:63:cc:a4:6d:70:e7:45:e0:a9:7a:0c:ed:9e:de: 93:bf:78:43:c9:77:77:3f:11:a9:5d:84:85:c5:48: 1d:2f:36:92:0f:91:cc:7c:d8:b4:08:5d:c7:de:03: 89:e5:20:cc:36:a0:c8:d6:0b:98:70:40:8f:f9:57: e3:2f:5d:ef:54:e2:a2:31:b6:d5:24:ee:cb:a8:e5: 61:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:7F:E8:1B:51:82:B8:53:F3:E1:F8:FF:47:45:D2:96:51:C1:72:CC X509v3 Authority Key Identifier: keyid:E0:99:61:15:50:8A:3A:D5:99:15:DB:AB:CC:B6:96:DB:A0:B4:CC:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/4JlhFVCKOtWZFdurzLaW26C0zHI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4JlhFVCKOtWZFdurzLaW26C0zHI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/4JlhFVCKOtWZFdurzLaW26C0zHI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:59:df:58:61:b3:75:4c:cd:ec:e0:1a:7f:ed:fe:ce:e6:82: b9:6a:6c:b0:30:08:7c:c1:2d:c7:d4:bf:43:d1:54:fd:95:d8: 0b:66:f7:8f:6e:56:39:3f:40:76:a9:a7:2b:71:ed:6b:e8:ee: c9:78:46:60:6e:a2:3a:0a:df:77:c5:a8:04:de:32:77:89:b0: 61:3f:d8:b3:66:e5:d8:e1:43:75:00:b1:51:13:63:58:4a:42: 8e:ff:f1:50:f4:37:0a:57:29:57:a6:f0:51:b3:c0:0a:8e:fd: 63:6d:29:71:3d:a0:07:5c:ee:50:39:e2:41:10:c6:13:3d:69: 3a:d3:9d:c4:13:8f:15:3d:df:0f:3f:06:89:82:74:70:52:52: f6:5e:7d:87:f3:6d:78:e5:61:3c:10:4b:5a:88:89:f6:22:45: c5:75:41:52:35:af:e9:43:a3:27:77:50:37:1a:6e:1f:eb:3e: 2e:98:11:3a:22:85:c1:a5:ed:b9:c4:bd:37:8a:26:a0:75:ff: af:14:89:8e:e3:ef:0a:10:27:e9:2e:8a:9f:8e:f5:a3:24:3a: 2a:b0:90:c1:d1:97:c2:8e:32:10:e0:d1:7b:fb:52:31:98:6a: 8b:a4:e5:8d:53:33:27:91:1c:c8:2b:13:34:d3:7d:3e:8a:81: 71:c0:15:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNDRTkxMTAvBgNVBAUTKEUwOTk2MTE1NTA4QTNBRDU5OTE1REJBQkNDQjY5NkRC QTBCNENDNzIwHhcNMjUwNjE0MjMxMDAzWhcNMjUwNjIxMjMxMDAzWjAYMRYwFAYD VQQDEw02ODRlMDE0Yi1lODNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkS6ds1Vl1ndz4fGx5nLw4sUzKVlChCHDs+lKqhDHyAoh8c1XAJ3225fa7ocy jnIckgDd5QPYpjgDIhvEIuC9s/A27m3Gkarl2lno8RfDigL6g+VkfJe5cwZnqdAo 4QUdmZK57QlGixqTCAUK61GNn3wKO51NKYbatRzr3qBOBRJhtK82jAvkdSIUHPgZ R4tnu6v4wTC13FYaCtuJiV/o5T5iTBDVeTmnWa0OyoPNKFXihC7VY8ykbXDnReCp egztnt6Tv3hDyXd3PxGpXYSFxUgdLzaSD5HMfNi0CF3H3gOJ5SDMNqDI1guYcECP +VfjL13vVOKiMbbVJO7LqOVhBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC1/6BtR grhT8+H4/0dF0pZRwXLMMB8GA1UdIwQYMBaAFOCZYRVQijrVmRXbq8y2ltugtMxy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0NFOS8wQUIxRDM5NkY1 MTUxMUVCOUVGRTA3NTBDNEY5QUUwMi80SmxoRlZDS090V1pGZHVyekxhVzI2QzB6 SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRKbGhGVkNLT3RXWkZkdXJ6TGFXMjZDMHpISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0NFOS8wQUIxRDM5NkY1MTUxMUVCOUVGRTA3NTBDNEY5QUUwMi80SmxoRlZDS090 V1pGZHVyekxhVzI2QzB6SEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCWd9YYbN1TM3s4Bp/7f7O5oK5amywMAh8wS3H1L9D0VT9ldgLZveP blY5P0B2qacrce1r6O7JeEZgbqI6Ct93xagE3jJ3ibBhP9izZuXY4UN1ALFRE2NY SkKO//FQ9DcKVylXpvBRs8AKjv1jbSlxPaAHXO5QOeJBEMYTPWk6053EE48VPd8P PwaJgnRwUlL2Xn2H82145WE8EEtaiIn2IkXFdUFSNa/pQ6Mnd1A3Gm4f6z4umBE6 IoXBpe25xL03iiagdf+vFImO4+8KECfpLoqfjvWjJDoqsJDB0ZfCjjIQ4NF7+1Ix mGqLpOWNUzMnkRzIKxM0030+ioFxwBW1 -----END CERTIFICATE-----Generated at Sun Jun 15 09:53:54 2025 by rpki-client