$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft File: 4bgHrCt0Vfux4xYGjR0BcSYLscc.mft (raw, json) Hash identifier: 4nWi0qe8H98pT5N63aVMfpNal5FjRTUSnQTf46HDxhE= Subject key identifier: 55:0A:5E:CC:8D:70:E3:7C:C4:59:40:6E:2A:D3:DA:DF:E5:11:6E:AF Authority key identifier: E1:B8:07:AC:2B:74:55:FB:B1:E3:16:06:8D:1D:01:71:26:0B:B1:C7 Certificate issuer: /CN=A9157DAE/serialNumber=E1B807AC2B7455FBB1E316068D1D0171260BB1C7 Certificate serial: 1302 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft Manifest number: 1284 Signing time: Thu 24 Apr 2025 17:08:19 +0000 Manifest this update: Thu 24 Apr 2025 17:08:19 +0000 Manifest next update: Thu 01 May 2025 17:08:19 +0000 Files and hashes: 1: 4bgHrCt0Vfux4xYGjR0BcSYLscc.crl (hash: 2cJNlrJ1nnFh8m0ym13I5W4E8EE3OiM49iGzjiXpubE=) 2: A6A4A20E89B911EC8FDB572DC4F9AE02.roa (hash: jk5NfHi6Ak10G3qvwwRLBuA+9+MuEQTJVNCIOpp4ijc=) 3: A8949F64D86E11E982BA0712C4F9AE02.roa (hash: o0TBqHxczgW2iXEBGTx5nw86Q8zs7jfB/2ZiH2tcXBM=) 4: 1F8378E6BCBD11EBAC9A4744C4F9AE02.roa (hash: J5LxjosxnnfdXaMAoaZ/PL1BfkizkN1e40crDyxzXgM=) 5: 9EE31802996B11E9B3FEED46C4F9AE02.roa (hash: GdNQEvmzlHfA6Ec8mmP8z6x+jIWG7iAnHlvJMuf8oD8=) 6: F6EBC724B24211EF99C46E64C4F9AE02.roa (hash: q2Nqb/hrcV90WNVexwR/NHfj/Q0Tv7rC0yL9DHC6X3M=) 7: D17E9426B24211EFBBDC2164C4F9AE02.roa (hash: 08uSCXwlwYJnGMem9e+DAMnS4EN8A9/G3dvb9XlzVbk=) 8: 161983C2B9EB11EDB53AC21BC4F9AE02.roa (hash: 21MmIK/xKiS7JETWE4m4JFsmki6dx7l2EGE0grkpOo4=) 9: C2E189AC7F8C11EF94FCB676C4F9AE02.roa (hash: RAc63GKSag+ebIvPIiKjuswG8wAgmCrcqifdzue1EA8=) 10: FDB29514452511E98F23AE4FC4F9AE02.roa (hash: pyXuQQMaaHpRKrd64JzrpDvcZINK8BGOr87BtX8mKCw=) 11: 8E6CF9C8E59911E98D355932C4F9AE02.roa (hash: duhPOulpnnqLJOw021zARLEkW5qMCDlozjaUuWOU1CE=) 12: F99AFAFE1D5411EA921E0351C4F9AE02.roa (hash: RBZSewamTngEQkgjLa0OkH4nQrMAppxSjX91nS2Wpzo=) 13: C21FA1CE080511EAA9457C67C4F9AE02.roa (hash: PiSgVIn+A3YVcVJ8J1LY1Q9+m55+zt9vsCjTvJtZIKc=) 14: 0038D872072E11EB8914E540C4F9AE02.roa (hash: bM9HkA9Kov8pVlsp7/+B8Lhib1zUTj1baRTYw1iNq78=) 15: D8E0EC82927711E985E0423AC4F9AE02.roa (hash: +fJoTern1FEL3hWeQl1ij5UIzJGzXQGhkR014UlHjWU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.crl rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:08:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4866 (0x1302) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE, serialNumber=E1B807AC2B7455FBB1E316068D1D0171260BB1C7 Validity Not Before: Apr 24 17:08:19 2025 GMT Not After : May 1 17:08:19 2025 GMT Subject: CN=680a7003-691a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:bd:f6:8c:00:82:19:5d:82:42:8b:3a:da:17: 5d:55:4e:ff:17:09:90:67:f9:9b:cd:5e:d8:d1:d1: c3:00:e5:ff:55:ea:33:44:37:8a:a7:a9:71:f1:22: 45:0a:ef:82:5d:57:b5:d0:66:52:59:ad:ab:f1:98: 89:23:c1:91:db:ea:e7:40:3b:c6:38:97:ee:f2:d5: 33:3c:cd:8d:f8:4f:49:a6:9d:2b:78:5b:95:97:86: dd:ac:e6:da:d3:07:01:41:43:54:56:c2:ca:f7:65: 67:8a:43:e4:ee:6c:cd:6e:3a:cd:8b:0d:65:a6:20: ff:0d:00:e5:7e:57:18:dc:52:60:07:68:46:cc:1a: af:94:97:c0:43:e0:c6:0f:dd:45:f0:50:ad:5c:f6: ea:72:c8:77:85:09:50:ef:dd:13:47:af:68:0d:e7: 85:37:c8:c8:64:42:46:26:c9:75:2f:7e:55:79:f0: b4:64:c0:ce:90:f7:75:84:e3:19:9d:9b:fb:90:2d: 3e:b4:e0:e0:24:0d:ff:bd:7b:ea:34:be:78:16:68: 3e:04:d2:72:56:b9:87:26:4f:b0:98:e9:ed:56:c8: d8:8e:ff:0a:21:89:e2:ba:88:f0:d2:58:7f:ee:bb: 7b:3a:e9:46:5b:22:60:57:71:8b:98:cb:8d:62:ad: 0d:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:0A:5E:CC:8D:70:E3:7C:C4:59:40:6E:2A:D3:DA:DF:E5:11:6E:AF X509v3 Authority Key Identifier: keyid:E1:B8:07:AC:2B:74:55:FB:B1:E3:16:06:8D:1D:01:71:26:0B:B1:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:42:ff:88:79:ce:f4:b9:07:91:32:1a:39:16:b8:ab:2f:ee: 40:55:5e:bd:64:75:0a:29:0a:cd:01:f4:73:70:37:2c:0f:57: 0e:6d:77:8f:0b:d3:ff:d7:04:8a:0a:79:b9:f8:9b:13:4c:a8: e2:7c:09:3d:00:29:c9:89:ba:6b:57:e6:db:fc:26:f0:5b:0a: ac:55:b6:65:d2:c7:15:5f:a5:9d:87:fb:ca:6a:f2:7a:a7:88: b6:35:2c:78:9d:94:9d:c9:2b:3b:73:1d:5f:f0:28:5c:09:71: 27:77:85:71:51:d8:07:e1:fe:e0:46:e5:ba:a9:00:33:d7:e5: e2:ee:15:8a:db:b8:78:02:a1:54:59:b0:f5:11:d1:94:0d:cb: e6:71:0f:0a:a0:bd:ff:86:98:05:74:c3:a2:d5:8f:86:61:7b: cd:37:ad:72:2c:1f:e2:3c:57:23:41:09:65:e4:eb:3d:c1:cf: 13:7d:a3:42:20:e1:8e:2f:65:04:95:91:82:71:c7:9b:ad:5e: b7:c0:e3:b0:3f:8d:5f:76:4a:83:4f:e0:cf:3f:d5:a8:0f:aa: 67:d6:6f:71:40:06:51:95:6c:de:0a:e3:b8:23:a3:d3:88:c8: 63:ed:d2:e0:5f:e2:32:a9:c3:65:d1:f6:0f:1d:c9:41:ed:c4: 45:46:b3:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEwIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQUUxMTAvBgNVBAUTKEUxQjgwN0FDMkI3NDU1RkJCMUUzMTYwNjhEMUQwMTcx MjYwQkIxQzcwHhcNMjUwNDI0MTcwODE5WhcNMjUwNTAxMTcwODE5WjAYMRYwFAYD VQQDEw02ODBhNzAwMy02OTFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt732jACCGV2CQos62hddVU7/FwmQZ/mbzV7Y0dHDAOX/VeozRDeKp6lx8SJF Cu+CXVe10GZSWa2r8ZiJI8GR2+rnQDvGOJfu8tUzPM2N+E9Jpp0reFuVl4bdrOba 0wcBQUNUVsLK92VnikPk7mzNbjrNiw1lpiD/DQDlflcY3FJgB2hGzBqvlJfAQ+DG D91F8FCtXPbqcsh3hQlQ790TR69oDeeFN8jIZEJGJsl1L35VefC0ZMDOkPd1hOMZ nZv7kC0+tODgJA3/vXvqNL54Fmg+BNJyVrmHJk+wmOntVsjYjv8KIYniuojw0lh/ 7rt7OulGWyJgV3GLmMuNYq0NHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFUKXsyN cON8xFlAbirT2t/lEW6vMB8GA1UdIwQYMBaAFOG4B6wrdFX7seMWBo0dAXEmC7HH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS82MTY2NkMwRUQ2 ODkxMUU4QjY4MTE0MzNDNEY5QUUwMi80YmdIckN0MFZmdXg0eFlHalIwQmNTWUxz Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRiZ0hyQ3QwVmZ1eDR4WUdqUjBCY1NZTHNjYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBRS82MTY2NkMwRUQ2ODkxMUU4QjY4MTE0MzNDNEY5QUUwMi80YmdIckN0MFZm dXg0eFlHalIwQmNTWUxzY2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlQv+Iec70uQeRMho5FrirL+5AVV69ZHUKKQrNAfRzcDcsD1cObXeP C9P/1wSKCnm5+JsTTKjifAk9ACnJibprV+bb/CbwWwqsVbZl0scVX6Wdh/vKavJ6 p4i2NSx4nZSdySs7cx1f8ChcCXEnd4VxUdgH4f7gRuW6qQAz1+Xi7hWK27h4AqFU WbD1EdGUDcvmcQ8KoL3/hpgFdMOi1Y+GYXvNN61yLB/iPFcjQQll5Os9wc8TfaNC IOGOL2UElZGCccebrV63wOOwP41fdkqDT+DPP9WoD6pn1m9xQAZRlWzeCuO4I6PT iMhj7dLgX+IyqcNl0fYPHclB7cRFRrMm -----END CERTIFICATE-----Generated at Sat Apr 26 17:04:49 2025 by rpki-client