$ rpki-client -vvf rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/4JlhFVCKOtWZFdurzLaW26C0zHI.mft File: 4JlhFVCKOtWZFdurzLaW26C0zHI.mft (raw, json) Hash identifier: eRRdgzMR9GqRd4uiS1EhMQySYyhF9aAcXK5yTvvlwV8= Subject key identifier: 91:1D:A9:91:4C:67:F3:80:4B:D3:D7:73:FB:5A:B3:85:AB:F3:70:19 Authority key identifier: E0:99:61:15:50:8A:3A:D5:99:15:DB:AB:CC:B6:96:DB:A0:B4:CC:72 Certificate issuer: /CN=A9153CE9/serialNumber=E0996115508A3AD59915DBABCCB696DBA0B4CC72 Certificate serial: 0561 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4JlhFVCKOtWZFdurzLaW26C0zHI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/4JlhFVCKOtWZFdurzLaW26C0zHI.mft Manifest number: 0542 Signing time: Thu 24 Apr 2025 23:17:37 +0000 Manifest this update: Thu 24 Apr 2025 23:17:37 +0000 Manifest next update: Thu 01 May 2025 23:17:37 +0000 Files and hashes: 1: 4JlhFVCKOtWZFdurzLaW26C0zHI.crl (hash: bX+qzM0JaF0bFRNwBURZljIKk6ic1vpu2/pMObV+2VA=) 2: BA758AE2212711F0A7DCCB5BC4F9AE02.roa (hash: m8lEVsnh3DvG0KEPCp4MW7Ow9L5MLhKDggw4WLNqc68=) 3: 03C7AA80F01111ED9C345840C4F9AE02.roa (hash: Am8OlNfTP5V8Kx5g/Dv+15S2O7P9HWujy6NfIY4x9VA=) 4: 04E8D402F01111ED9C345840C4F9AE02.roa (hash: aw0GsE7/msiXwaZd5f0HibklFhBHtqZY6llDRI4HTZY=) 5: F650791EF01411ED9210D060C4F9AE02.roa (hash: 4IZfBEYxdxWId8yUiHx63z7AlPcjMCqr2gmuQDYBUpU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/4JlhFVCKOtWZFdurzLaW26C0zHI.crl rsync://rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/4JlhFVCKOtWZFdurzLaW26C0zHI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4JlhFVCKOtWZFdurzLaW26C0zHI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:17:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1377 (0x561) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153CE9, serialNumber=E0996115508A3AD59915DBABCCB696DBA0B4CC72 Validity Not Before: Apr 24 23:17:37 2025 GMT Not After : May 1 23:17:37 2025 GMT Subject: CN=680ac691-85f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:94:21:f8:c7:b5:a6:65:11:a2:36:88:24:63: 8d:7f:04:e5:73:2b:61:85:02:e9:8b:43:59:5e:16: ea:29:c1:d5:da:1e:92:84:7f:8a:2d:29:7a:15:96: 5a:8e:01:cf:aa:cf:c8:21:8b:5b:61:d1:05:40:57: e9:83:08:ae:d2:6f:04:38:64:79:63:46:d0:a5:95: 10:b9:1c:73:c0:8f:84:77:e1:02:2a:62:70:50:a9: 44:6c:3e:4a:3e:56:87:da:b4:fc:6c:c0:d2:93:0c: dd:47:1f:f7:b6:1f:cc:5b:16:be:87:7a:d5:57:a5: 12:3b:42:9b:ee:11:32:ab:e6:b9:48:17:11:c5:ba: f4:d4:8d:57:07:63:58:e0:8b:26:08:30:4c:fd:fd: 60:ce:4f:20:59:87:56:b2:7a:c7:6b:28:96:82:9a: 72:cf:42:b8:f5:35:96:7f:60:50:0a:e2:09:5c:38: d6:48:41:04:48:4d:d5:7d:f9:f4:e9:3e:3f:e3:91: 44:a5:a7:39:64:2b:5a:0f:f2:71:df:1b:41:c2:6a: 62:06:7a:57:dd:8f:6d:e1:38:e7:a0:3b:89:bf:06: fc:42:0f:4b:a6:bc:d0:1c:3d:49:85:40:9f:71:da: b9:10:09:86:1b:2d:28:5a:f9:05:a3:f1:b0:e5:fc: 54:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:1D:A9:91:4C:67:F3:80:4B:D3:D7:73:FB:5A:B3:85:AB:F3:70:19 X509v3 Authority Key Identifier: keyid:E0:99:61:15:50:8A:3A:D5:99:15:DB:AB:CC:B6:96:DB:A0:B4:CC:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/4JlhFVCKOtWZFdurzLaW26C0zHI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4JlhFVCKOtWZFdurzLaW26C0zHI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/4JlhFVCKOtWZFdurzLaW26C0zHI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:30:54:d0:f8:e3:d7:af:51:b2:89:90:2d:b2:59:43:02:ea: 5b:22:bc:09:df:23:08:1b:fb:09:b2:c9:63:a6:bf:e1:c5:22: e9:f7:24:04:74:57:c3:29:3e:ff:d6:ed:73:88:1b:d9:cd:fc: 6b:1c:f3:b4:dc:48:c1:10:b7:da:e4:c8:30:23:14:4e:2c:e2: 63:c5:91:d3:59:e4:65:16:f5:58:00:48:09:46:c3:d6:54:c1: 35:08:42:87:83:a4:b0:69:3f:88:e3:12:a3:7c:d0:d1:66:e7: 3d:0e:1a:2c:c8:23:dc:31:d2:9c:0b:2a:d5:2e:d3:2d:05:3f: 5e:8f:2b:5c:37:42:4c:8a:c4:b8:c0:3e:f6:ac:a3:c0:ef:32: 09:2f:27:da:d6:81:c9:6a:3b:50:46:b7:df:ae:28:8f:a0:2a: ec:d1:f6:4f:68:65:87:55:a8:9f:43:b1:d8:71:a3:48:d8:42: d2:25:a6:a3:30:9c:28:09:68:55:fa:cc:5b:76:e4:39:a8:be: 37:7e:71:bf:57:8e:ca:84:9d:6a:50:71:3c:10:07:1b:23:d8: 68:05:f6:01:50:eb:8f:9b:30:f3:e6:e4:e4:3c:69:ef:87:42: 48:40:3d:e1:a9:9f:08:8b:9e:03:cf:e5:35:00:c8:5b:8e:f0: 88:3b:8b:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNDRTkxMTAvBgNVBAUTKEUwOTk2MTE1NTA4QTNBRDU5OTE1REJBQkNDQjY5NkRC QTBCNENDNzIwHhcNMjUwNDI0MjMxNzM3WhcNMjUwNTAxMjMxNzM3WjAYMRYwFAYD VQQDEw02ODBhYzY5MS04NWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyZQh+Me1pmURojaIJGONfwTlcythhQLpi0NZXhbqKcHV2h6ShH+KLSl6FZZa jgHPqs/IIYtbYdEFQFfpgwiu0m8EOGR5Y0bQpZUQuRxzwI+Ed+ECKmJwUKlEbD5K PlaH2rT8bMDSkwzdRx/3th/MWxa+h3rVV6USO0Kb7hEyq+a5SBcRxbr01I1XB2NY 4IsmCDBM/f1gzk8gWYdWsnrHayiWgppyz0K49TWWf2BQCuIJXDjWSEEESE3Vffn0 6T4/45FEpac5ZCtaD/Jx3xtBwmpiBnpX3Y9t4TjnoDuJvwb8Qg9LprzQHD1JhUCf cdq5EAmGGy0oWvkFo/Gw5fxUFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJEdqZFM Z/OAS9PXc/tas4Wr83AZMB8GA1UdIwQYMBaAFOCZYRVQijrVmRXbq8y2ltugtMxy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0NFOS8wQUIxRDM5NkY1 MTUxMUVCOUVGRTA3NTBDNEY5QUUwMi80SmxoRlZDS090V1pGZHVyekxhVzI2QzB6 SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRKbGhGVkNLT3RXWkZkdXJ6TGFXMjZDMHpISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0NFOS8wQUIxRDM5NkY1MTUxMUVCOUVGRTA3NTBDNEY5QUUwMi80SmxoRlZDS090 V1pGZHVyekxhVzI2QzB6SEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABMFTQ+OPXr1GyiZAtsllDAupbIrwJ3yMIG/sJssljpr/hxSLp9yQE dFfDKT7/1u1ziBvZzfxrHPO03EjBELfa5MgwIxROLOJjxZHTWeRlFvVYAEgJRsPW VME1CEKHg6SwaT+I4xKjfNDRZuc9DhosyCPcMdKcCyrVLtMtBT9ejytcN0JMisS4 wD72rKPA7zIJLyfa1oHJajtQRrffriiPoCrs0fZPaGWHVaifQ7HYcaNI2ELSJaaj MJwoCWhV+sxbduQ5qL43fnG/V47KhJ1qUHE8EAcbI9hoBfYBUOuPmzDz5uTkPGnv h0JIQD3hqZ8Ii54Dz+U1AMhbjvCIO4s2 -----END CERTIFICATE-----Generated at Sat Apr 26 12:34:35 2025 by rpki-client