$ rpki-client -vvf rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft File: 4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft (raw, json) Hash identifier: T2BV5HUKpM6jo3U6lRDm0kCVFjgxldkiEl1th4HzOf0= Subject key identifier: 1E:7F:02:FF:AD:15:2F:E3:E0:E5:13:2B:FF:CE:E3:03:A8:B7:C9:0F Authority key identifier: E0:2B:EE:E8:8D:83:5B:D0:E4:25:4C:A0:8D:7C:03:BC:57:19:74:84 Certificate issuer: /CN=A915E005/serialNumber=E02BEEE88D835BD0E4254CA08D7C03BC57197484 Certificate serial: 21F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft Manifest number: 21E0 Signing time: Thu 24 Apr 2025 15:54:28 +0000 Manifest this update: Thu 24 Apr 2025 15:54:27 +0000 Manifest next update: Thu 01 May 2025 15:54:27 +0000 Files and hashes: 1: 4Cvu6I2DW9DkJUygjXwDvFcZdIQ.crl (hash: McS7lRXW6UTGoNjCt9Y5SE3h308eijoDMFd8/vo+TTQ=) 2: CD4CD0B654F311E7AC64ED3AC4F9AE02.roa (hash: iH2xmS1GVsSNNCZWscwdxJt8FMGLF9Yh7e5xIVsXSm8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.crl rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:54:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8688 (0x21f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E005, serialNumber=E02BEEE88D835BD0E4254CA08D7C03BC57197484 Validity Not Before: Apr 24 15:54:27 2025 GMT Not After : May 1 15:54:27 2025 GMT Subject: CN=680a5eb4-1917 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:b4:0f:85:ff:8e:1d:37:9a:22:0a:2d:c6:30: 2c:b5:4d:55:28:9c:02:fc:7a:7f:67:98:1e:7e:68: 8f:35:e7:83:5d:26:cc:62:90:ba:aa:07:df:ff:8c: bc:38:94:a6:6b:19:1b:e6:b8:22:6d:1a:9d:36:f8: 20:97:d2:be:36:81:b0:22:c8:7d:21:93:f8:ed:49: 25:d4:7f:43:2d:b7:7c:f1:01:25:f2:da:db:24:f1: fb:84:8e:5f:f1:ff:e5:a4:0a:bd:b1:a7:3a:05:cf: e1:ba:04:6a:38:8b:99:a5:aa:fe:63:9a:66:89:13: 02:b8:2a:9e:2a:64:80:ce:aa:ec:e9:d2:66:bd:86: a4:d5:f0:6c:3f:7a:fa:8f:0d:42:c9:f0:d9:e0:39: c6:6f:8f:01:4c:81:d5:6b:85:95:37:81:10:c7:04: 93:a4:09:8e:fd:d1:6f:b1:e9:44:81:06:aa:3b:1f: 47:6b:f9:9c:27:61:93:f7:ec:14:15:23:be:06:9c: 85:6e:db:29:60:15:5d:f3:4e:98:1e:ff:a8:23:e9: a1:19:52:34:65:0c:e6:cf:48:d6:db:46:a5:56:29: f3:c7:b8:2a:26:a9:fc:dd:a2:af:29:38:5f:b5:77: 3a:fc:d5:97:47:61:4b:ce:21:fe:e0:24:1a:f3:35: a8:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:7F:02:FF:AD:15:2F:E3:E0:E5:13:2B:FF:CE:E3:03:A8:B7:C9:0F X509v3 Authority Key Identifier: keyid:E0:2B:EE:E8:8D:83:5B:D0:E4:25:4C:A0:8D:7C:03:BC:57:19:74:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:49:71:c7:5c:f0:35:79:bb:08:64:33:21:b2:ec:30:77:3b: 4f:5d:05:79:28:7f:0a:ba:22:9e:76:ca:8d:b5:10:8f:06:f9: 70:ef:b3:f4:58:17:32:95:e8:21:ed:fc:c3:c6:32:d0:b8:91: 27:63:61:69:22:0f:69:b8:53:e9:ad:2d:da:1c:90:97:fd:db: e3:09:72:86:14:f4:72:19:e4:07:76:8f:a8:51:c4:a8:35:be: e8:a3:92:94:00:d5:f4:8e:e4:6d:57:9c:1e:27:72:57:cb:c2: ed:ce:93:08:fc:81:41:4e:82:6a:6c:49:31:31:4d:09:6e:ed: 81:38:9d:ef:15:74:3f:5f:b4:48:45:18:02:77:eb:3a:bd:02: 19:89:aa:40:76:5d:2b:0a:fd:ac:78:c2:36:c2:c7:9a:0f:5c: 47:58:28:3c:ac:a3:9f:49:1a:38:cf:10:e3:37:c5:2f:52:17: cd:fd:e4:ca:a2:41:fe:ba:1c:83:a0:37:67:ba:e3:be:f3:a0: a5:62:6c:cb:9c:df:8c:f3:bc:5d:f9:2f:ec:bb:b9:e3:e3:bb: 07:e9:3e:0a:05:40:09:25:07:43:6d:5d:9e:09:14:c2:08:4a: f4:32:8c:70:68:b3:ec:45:dc:c7:09:06:11:20:f6:f8:1f:85: 37:cb:27:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIfAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUUwMDUxMTAvBgNVBAUTKEUwMkJFRUU4OEQ4MzVCRDBFNDI1NENBMDhEN0MwM0JD NTcxOTc0ODQwHhcNMjUwNDI0MTU1NDI3WhcNMjUwNTAxMTU1NDI3WjAYMRYwFAYD VQQDEw02ODBhNWViNC0xOTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA87QPhf+OHTeaIgotxjAstU1VKJwC/Hp/Z5gefmiPNeeDXSbMYpC6qgff/4y8 OJSmaxkb5rgibRqdNvggl9K+NoGwIsh9IZP47Ukl1H9DLbd88QEl8trbJPH7hI5f 8f/lpAq9sac6Bc/hugRqOIuZpar+Y5pmiRMCuCqeKmSAzqrs6dJmvYak1fBsP3r6 jw1CyfDZ4DnGb48BTIHVa4WVN4EQxwSTpAmO/dFvselEgQaqOx9Ha/mcJ2GT9+wU FSO+BpyFbtspYBVd806YHv+oI+mhGVI0ZQzmz0jW20alVinzx7gqJqn83aKvKThf tXc6/NWXR2FLziH+4CQa8zWoRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB5/Av+t FS/j4OUTK//O4wOot8kPMB8GA1UdIwQYMBaAFOAr7uiNg1vQ5CVMoI18A7xXGXSE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTAwNS85QkU3ODFGRUM2 OTkxMUU1QjBBRkU1NEVDNEY5QUUwMi80Q3Z1NkkyRFc5RGtKVXlnalh3RHZGY1pk SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRDdnU2STJEVzlEa0pVeWdqWHdEdkZjWmRJUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RTAwNS85QkU3ODFGRUM2OTkxMUU1QjBBRkU1NEVDNEY5QUUwMi80Q3Z1NkkyRFc5 RGtKVXlnalh3RHZGY1pkSVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqSXHHXPA1ebsIZDMhsuwwdztPXQV5KH8KuiKedsqNtRCPBvlw77P0 WBcylegh7fzDxjLQuJEnY2FpIg9puFPprS3aHJCX/dvjCXKGFPRyGeQHdo+oUcSo Nb7oo5KUANX0juRtV5weJ3JXy8LtzpMI/IFBToJqbEkxMU0Jbu2BOJ3vFXQ/X7RI RRgCd+s6vQIZiapAdl0rCv2seMI2wseaD1xHWCg8rKOfSRo4zxDjN8UvUhfN/eTK okH+uhyDoDdnuuO+86ClYmzLnN+M87xd+S/su7nj47sH6T4KBUAJJQdDbV2eCRTC CEr0MoxwaLPsRdzHCQYRIPb4H4U3yydm -----END CERTIFICATE-----Generated at Sat Apr 26 13:36:25 2025 by rpki-client