$ rpki-client -vvf rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.mft File: n4LbyUZjEsW6LpISeTAkAJVqmCo.mft (raw, json) Hash identifier: NGcZzTRksM3gpPyEnJ0vRVfm/z7qB5cAo2W5msA4HoI= Subject key identifier: F2:F4:4B:73:71:44:2E:69:1B:23:C1:D7:39:0B:9C:CA:D8:85:98:F9 Authority key identifier: 9F:82:DB:C9:46:63:12:C5:BA:2E:92:12:79:30:24:00:95:6A:98:2A Certificate issuer: /CN=A91697FA/serialNumber=9F82DBC9466312C5BA2E921279302400956A982A Certificate serial: 3595 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.mft Manifest number: 34B7 Signing time: Thu 24 Apr 2025 14:22:01 +0000 Manifest this update: Thu 24 Apr 2025 14:22:00 +0000 Manifest next update: Thu 01 May 2025 14:22:00 +0000 Files and hashes: 1: n4LbyUZjEsW6LpISeTAkAJVqmCo.crl (hash: nTx2jZvuzjnp53pkal+4vCDjlGSkFVCIytovfRwbgII=) 2: 1827B7E0605411EFA8069323C4F9AE02.roa (hash: f3ZnVyGboZ3Akbin4yXhLknrh3afmJ+B8J3RZmmaopQ=) 3: 439638A88DB811E98ACC9F7EC4F9AE02.roa (hash: tJj1Fysd0xDWoVakE+OSdSVBLD/VndaJXIUaElpuDlU=) 4: 4D21FB36F7DB11EE92D1E11FC4F9AE02.roa (hash: mkqJnfjAyC1y3JZ3S/aqxyvN2bSQ/y7HbUZRZ5455Yo=) 5: EBD5A3CA6B8711EFB0476280C4F9AE02.roa (hash: fA+kqaKk3JYJ5L1SCxggXVF38dEFRQWvBBK35ZGIubk=) 6: 4107DF748DB811E98ACC9F7EC4F9AE02.roa (hash: gyGZW8SRrhVaNuiEThQUlAOFPVRZ4pRi/unEVqDLonc=) 7: F6D9C45E7B1811EF82C90D2AC4F9AE02.roa (hash: AfBe49D3Yjx5Xz+auV8iqKW+ThAbYjOi5aUSfgO+bI8=) 8: 4A71D7E08DB811E98ACC9F7EC4F9AE02.roa (hash: E7yqhdrwljkTSOgbnaG+ysHeOquc8SyVIcLUBLYl/Ds=) 9: 4EE07E481F7F11ECA7242F6CC4F9AE02.roa (hash: TA9EFDfSdd7+EEK/5RjdrLiMORuBq9ygTpVOMFIYOcU=) 10: 42EBE8D08DB811E98ACC9F7EC4F9AE02.roa (hash: FSsmkLJ70j/LoQlK6EvnfSTcsUCXKKUSfAS4HphN87g=) 11: CEC68F44973211E9954F0565C4F9AE02.roa (hash: 1JZ1OOenzlz7dOVNT0ysjgGRJusSE3+1Rk7pSgH2Okk=) 12: 9DB6EBB4972E11E9B776A755C4F9AE02.roa (hash: F9o71AH8ui5/aDIyX2EvjpYqZFlu7QiC2robUaKm7Ww=) 13: 471E9C908DB811E98ACC9F7EC4F9AE02.roa (hash: dhSNGV7WN5Gdy2FxgxjeunIC6meweUvz6hG+CLphccQ=) 14: 482C95F68DB811E98ACC9F7EC4F9AE02.roa (hash: zEScPtSmfxNjAFuYUiCbjBlCrAeiT/w5Td2/JrWEkDk=) 15: 3ED710C68DB811E98ACC9F7EC4F9AE02.roa (hash: nCFG+bk+dqsOuGFESr8+Ya9a1BnYrZYntqhV2PYzrJ0=) 16: F3A41ADEC0E411EFA19F644CC4F9AE02.roa (hash: ACVLyZykAztEdUIVBfhutPukbcuitqKmSjWINXZwcgQ=) 17: 47A6C8E08DB811E98ACC9F7EC4F9AE02.roa (hash: TGN+p1ofbtkEaQ7GXRuZyKCw4vYy+9mP3K55Olf1oRk=) 18: B2FF274A00EC11EDBC60AA4FC4F9AE02.roa (hash: SB4SEPfrJcU4bAaiYGmkUQemcbi1AfCVHBrodW3eBtk=) 19: 402418C08DB811E98ACC9F7EC4F9AE02.roa (hash: u9VQpLnmNPRlXjoztXx96YhTp7IciEzLswD4rNTXg90=) 20: 441E60E88DB811E98ACC9F7EC4F9AE02.roa (hash: uq5spO8r//Mx5XkVnf0Z6fnNcxxWQ62LgeziZF4eNPE=) 21: A3601D70C2A511EBB2025B36C4F9AE02.roa (hash: y0DwpoBfHHEL957f/ttZlyeIHwIEba7rVVTz2uU5AGY=) 22: EC8209420EB411EFAE1CF63BC4F9AE02.roa (hash: NhE6BhdvNa2vpC+KQiezMi0MSOcKQeq7OmkH62Iv3CM=) 23: B580AA94013D11EBBC81306AC4F9AE02.roa (hash: Mw8xJZC8kTBbi9VQc48nB8qn9ni0B4gLN8NhE9LyvLM=) 24: 46800A948DB811E98ACC9F7EC4F9AE02.roa (hash: HDowV0jxfkJYeFr+sT32cXrZ6tZ57Cd3d2XNwlRtI04=) 25: 5B917C28A2E011E9A98B0235C4F9AE02.roa (hash: nL1G6QX9sO47hs0tQUmWNASOgl/VhJm0a/th8GsoFuE=) 26: F7318C2CBA3E11ECA0543F6BC4F9AE02.roa (hash: MeS1DOyTdCwke/RbgIIQT3rBZNWyYB2mfEuyQ/lkLGY=) 27: 4AEE35608DB811E98ACC9F7EC4F9AE02.roa (hash: fkmpdzQWy7yxmakJ09stjz11PIAgWGUDm5gwI5DEe7k=) 28: 48ED106A8DB811E98ACC9F7EC4F9AE02.roa (hash: mkmvnGvUB9LKYbrwKSr+DiBXHGZP38l2ItEGjYEGTms=) 29: 453F8E988DB811E98ACC9F7EC4F9AE02.roa (hash: jQRT5PlFbI2u576tkmy6PzP4OP+SK4T1Hzx4zOkrIWw=) 30: 1BA16D001F8211EC8FC82E73C4F9AE02.roa (hash: DDC+5+VXBnfrx9wWnbESqssm0Yt82gNbLRVKOAlPMNQ=) 31: 49EECD288DB811E98ACC9F7EC4F9AE02.roa (hash: x7dEeBeojoDb2WMyQhh46vqt838katbavZyk3phE4cQ=) 32: 4495856A8DB811E98ACC9F7EC4F9AE02.roa (hash: a14/2406/c/Vc+e673jRH7rbdHirwb+sw7UAVsW6UA8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.crl rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:22:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13717 (0x3595) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91697FA, serialNumber=9F82DBC9466312C5BA2E921279302400956A982A Validity Not Before: Apr 24 14:22:00 2025 GMT Not After : May 1 14:22:00 2025 GMT Subject: CN=680a4909-668a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:d2:8c:56:24:30:d1:f5:8e:e6:57:53:66:d3: 73:3b:da:9e:d6:77:c3:95:42:83:7e:a2:67:11:eb: 43:de:a0:ab:c4:fc:3c:28:99:7a:16:87:37:c4:ed: ad:7c:4b:52:41:05:c0:ee:7f:f8:22:68:f1:68:30: 6a:27:e2:ed:ce:4f:e7:d2:7f:0c:5b:57:a8:3e:12: 9f:61:98:83:ab:55:0c:94:ae:ef:df:7a:32:aa:64: 83:7d:a5:2d:c1:cc:20:e4:ba:56:33:01:29:73:e9: 44:a5:64:c3:4b:0e:d3:28:32:eb:5e:9d:c1:6e:c1: f6:7a:93:7a:e7:01:7e:4c:a4:8d:26:06:49:bd:5c: da:8c:3b:e8:2c:57:29:d7:99:7f:fb:98:89:bd:96: 32:fa:7b:b1:f4:62:89:34:6e:64:69:d1:61:de:ce: fa:bd:3b:eb:db:7e:d1:17:e5:5f:af:b8:67:5a:d5: db:05:ca:ef:62:6a:0d:ea:74:16:0d:08:a4:a9:00: 41:11:a4:66:4d:c6:3f:bc:4d:26:e3:d3:85:ad:45: 9c:aa:31:a6:30:a5:99:91:4d:a4:06:36:a8:61:74: 26:06:4b:6f:9e:64:c2:56:b1:83:ae:c7:d1:ba:05: 00:88:24:41:25:1a:4c:d7:83:41:81:80:dd:68:25: 69:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:F4:4B:73:71:44:2E:69:1B:23:C1:D7:39:0B:9C:CA:D8:85:98:F9 X509v3 Authority Key Identifier: keyid:9F:82:DB:C9:46:63:12:C5:BA:2E:92:12:79:30:24:00:95:6A:98:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:25:cb:72:1e:95:e1:e5:cc:01:b3:af:f6:e4:22:1d:3c:35: 77:0f:13:6f:f2:75:94:95:cb:3a:f6:f1:16:95:2b:ae:a1:c7: 7f:69:95:53:bf:45:b7:78:5d:b8:73:e3:04:95:a1:61:43:58: d3:e2:7f:9c:65:6a:ef:fb:d5:ad:f0:b9:e0:33:fc:28:68:98: 3a:09:b1:66:65:34:62:cc:54:5d:b2:ed:4d:a8:eb:c4:32:98: 7c:7a:67:1f:c7:3b:5d:bb:08:f1:e6:e0:6c:37:58:3c:9d:4a: 28:7f:37:3f:97:24:43:5a:d9:2f:05:6a:c1:ee:69:db:8f:c6: d0:31:17:b3:a3:48:d7:97:4f:d0:b4:d4:ed:83:e1:20:1c:50: e7:8a:e0:8a:38:c2:74:f0:5f:81:a6:74:42:3c:78:1f:ef:b7: 38:1c:e3:ca:c0:c7:79:21:4f:46:bd:56:07:30:a3:7a:85:0d: ac:10:f6:2c:e7:49:7b:6d:6a:94:c1:40:77:0c:9b:ea:dd:3b: 9c:26:31:35:e1:ee:69:d0:6d:f5:60:17:38:21:f0:3a:09:95: 47:5d:90:5c:54:4c:29:25:49:0a:77:09:8b:f1:ec:7f:04:e5: 14:59:0b:69:87:51:d1:81:a9:a8:cb:ca:61:5d:e1:94:ac:46: c0:2a:90:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNZUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk3RkExMTAvBgNVBAUTKDlGODJEQkM5NDY2MzEyQzVCQTJFOTIxMjc5MzAyNDAw OTU2QTk4MkEwHhcNMjUwNDI0MTQyMjAwWhcNMjUwNTAxMTQyMjAwWjAYMRYwFAYD VQQDEw02ODBhNDkwOS02NjhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq9KMViQw0fWO5ldTZtNzO9qe1nfDlUKDfqJnEetD3qCrxPw8KJl6Foc3xO2t fEtSQQXA7n/4ImjxaDBqJ+Ltzk/n0n8MW1eoPhKfYZiDq1UMlK7v33oyqmSDfaUt wcwg5LpWMwEpc+lEpWTDSw7TKDLrXp3BbsH2epN65wF+TKSNJgZJvVzajDvoLFcp 15l/+5iJvZYy+nux9GKJNG5kadFh3s76vTvr237RF+Vfr7hnWtXbBcrvYmoN6nQW DQikqQBBEaRmTcY/vE0m49OFrUWcqjGmMKWZkU2kBjaoYXQmBktvnmTCVrGDrsfR ugUAiCRBJRpM14NBgYDdaCVprQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPL0S3Nx RC5pGyPB1zkLnMrYhZj5MB8GA1UdIwQYMBaAFJ+C28lGYxLFui6SEnkwJACVapgq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTdGQS8yN0Y4M0I3MDFE ODMxMUUyOTMyOTIxRDgwOEIwMkNEMi9uNExieVVaakVzVzZMcElTZVRBa0FKVnFt Q28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL240TGJ5VVpqRXNXNkxwSVNlVEFrQUpWcW1Dby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OTdGQS8yN0Y4M0I3MDFEODMxMUUyOTMyOTIxRDgwOEIwMkNEMi9uNExieVVaakVz VzZMcElTZVRBa0FKVnFtQ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsJctyHpXh5cwBs6/25CIdPDV3DxNv8nWUlcs69vEWlSuuocd/aZVT v0W3eF24c+MElaFhQ1jT4n+cZWrv+9Wt8LngM/woaJg6CbFmZTRizFRdsu1NqOvE Mph8emcfxztduwjx5uBsN1g8nUoofzc/lyRDWtkvBWrB7mnbj8bQMRezo0jXl0/Q tNTtg+EgHFDniuCKOMJ08F+BpnRCPHgf77c4HOPKwMd5IU9GvVYHMKN6hQ2sEPYs 50l7bWqUwUB3DJvq3TucJjE14e5p0G31YBc4IfA6CZVHXZBcVEwpJUkKdwmL8ex/ BOUUWQtph1HRgamoy8phXeGUrEbAKpDu -----END CERTIFICATE-----Generated at Sat Apr 26 13:41:31 2025 by rpki-client