$ rpki-client -vvf rpki.apnic.net/member_repository/A916A31E/C1FA082CC8CB11E790A88138C4F9AE02/4bseYl2967MiD_kjzWoRos4kUZY.mft File: 4bseYl2967MiD_kjzWoRos4kUZY.mft (raw, json) Hash identifier: exdDMaJh+2Uh7UrYlaxDi0igTqqiS8H897wzQ+0e7IU= Subject key identifier: D8:EA:32:C8:7E:AA:63:00:51:33:7F:A6:DE:8B:37:DC:C4:7D:8A:07 Authority key identifier: E1:BB:1E:62:5D:BD:EB:B3:22:0F:F9:23:CD:6A:11:A2:CE:24:51:96 Certificate issuer: /CN=A916A31E/serialNumber=E1BB1E625DBDEBB3220FF923CD6A11A2CE245196 Certificate serial: 17ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bseYl2967MiD_kjzWoRos4kUZY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A31E/C1FA082CC8CB11E790A88138C4F9AE02/4bseYl2967MiD_kjzWoRos4kUZY.mft Manifest number: 17B3 Signing time: Thu 24 Apr 2025 16:36:26 +0000 Manifest this update: Thu 24 Apr 2025 16:36:26 +0000 Manifest next update: Thu 01 May 2025 16:36:26 +0000 Files and hashes: 1: 4bseYl2967MiD_kjzWoRos4kUZY.crl (hash: uJGpYsgZpF5HL3Odd4IGzgbDq7FLCcPOyhAl7xvrC3Y=) 2: FA2CCDCCDE6111E88BFD7810C4F9AE02.roa (hash: wcQu6qDmYL8RSwTWQdHq8swDuqsLZ/b+WksTXiVZeUI=) 3: 2B04CC143D9F11EEACFF646FC4F9AE02.roa (hash: ukI4z4ZMWUWet1XkTlAm00Pda4+ffxxraVEq+pStj8k=) 4: 2A3161763D9F11EEACFF646FC4F9AE02.roa (hash: mm0VJeRGh/+0foB6ENfn+0Td2KUkG+rfML9gCL5EGhk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A31E/C1FA082CC8CB11E790A88138C4F9AE02/4bseYl2967MiD_kjzWoRos4kUZY.crl rsync://rpki.apnic.net/member_repository/A916A31E/C1FA082CC8CB11E790A88138C4F9AE02/4bseYl2967MiD_kjzWoRos4kUZY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bseYl2967MiD_kjzWoRos4kUZY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:36:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6125 (0x17ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A31E, serialNumber=E1BB1E625DBDEBB3220FF923CD6A11A2CE245196 Validity Not Before: Apr 24 16:36:26 2025 GMT Not After : May 1 16:36:26 2025 GMT Subject: CN=680a688a-ff93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:85:b5:01:d3:2b:82:11:bf:7b:3c:fc:81:8f: 03:16:86:35:94:14:73:51:27:7c:4a:aa:85:3d:60: 08:db:2e:4e:cf:ad:2c:26:6f:44:27:e8:e7:e4:e7: 92:8a:bb:2b:d6:48:9a:7d:ce:d4:7e:00:b8:a1:0b: 46:a7:0c:ec:c9:c5:f6:1b:0f:23:fa:e5:d2:9d:35: 3d:41:3b:cc:e4:44:ae:6f:50:41:e2:3b:b7:35:a7: 19:c0:ca:30:0b:2e:52:4c:de:a7:64:f6:66:80:9e: 1e:e6:6a:ad:18:7f:6f:6a:05:68:07:28:65:2f:d1: 45:93:8e:a2:20:1b:01:11:20:59:62:72:c2:c1:ca: 9b:09:20:5c:f5:18:a3:ca:0e:13:38:4c:dd:cd:9a: a5:5d:0c:40:60:a0:a1:d8:13:f1:21:b4:b6:53:33: a8:35:ab:9f:41:45:16:32:91:d0:66:67:7b:f8:12: 87:44:38:02:e3:65:ac:cd:6f:a4:df:a6:d4:66:2a: a6:7e:c9:7f:b0:82:b1:71:30:d7:36:2c:61:c6:58: e9:97:6b:2d:3d:6a:90:15:d8:6a:3a:d4:19:61:1f: a4:d4:9a:a1:53:2d:30:63:26:ff:40:dc:ee:b6:66: 4c:57:9a:29:e3:54:d4:87:ce:2a:c0:75:8e:82:6f: 6a:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:EA:32:C8:7E:AA:63:00:51:33:7F:A6:DE:8B:37:DC:C4:7D:8A:07 X509v3 Authority Key Identifier: keyid:E1:BB:1E:62:5D:BD:EB:B3:22:0F:F9:23:CD:6A:11:A2:CE:24:51:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A31E/C1FA082CC8CB11E790A88138C4F9AE02/4bseYl2967MiD_kjzWoRos4kUZY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bseYl2967MiD_kjzWoRos4kUZY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A31E/C1FA082CC8CB11E790A88138C4F9AE02/4bseYl2967MiD_kjzWoRos4kUZY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:e6:63:b2:44:85:cf:eb:cb:2d:97:bc:cc:41:b8:30:68:c4: 0b:90:b0:f0:16:38:a9:85:4d:d2:51:12:a9:59:11:96:18:0b: 36:5c:ad:55:70:d4:92:cc:2c:9e:fd:46:14:d3:29:4b:7e:5c: b5:36:46:c9:86:1b:9d:bd:62:45:e7:68:ab:75:c5:20:cf:0c: c5:8b:5b:4a:ed:e3:3b:cf:bf:2f:de:96:37:55:bc:83:63:9e: 40:f7:d2:0b:82:af:f1:14:91:b8:7c:03:e5:f0:b6:2d:cb:77: 2d:d1:fc:f1:bc:2d:fe:10:99:5f:d3:e6:01:70:74:c4:fb:ff: 94:6f:1f:22:c4:aa:08:9a:43:d3:d6:32:59:ad:c5:53:9e:64: 08:06:e1:59:66:ba:ae:be:82:66:b2:8d:57:e2:b9:e5:86:76: 19:a6:da:ca:82:c4:45:52:b0:58:e2:80:eb:89:f0:d9:41:b6: 13:a6:5e:a8:a0:c1:f1:4e:14:c0:65:6f:e9:91:17:dd:fb:b0: c9:f4:6a:4f:fd:0e:dc:e8:ce:b9:7d:b8:57:f2:67:f6:84:db: cb:5b:0e:29:b1:7f:68:20:bf:13:56:e0:d5:73:9c:81:48:a6: 35:6c:6b:43:7f:0d:4a:25:81:1d:4b:49:c6:34:3e:5e:8c:a2: 32:4b:37:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF+0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEzMUUxMTAvBgNVBAUTKEUxQkIxRTYyNURCREVCQjMyMjBGRjkyM0NENkExMUEy Q0UyNDUxOTYwHhcNMjUwNDI0MTYzNjI2WhcNMjUwNTAxMTYzNjI2WjAYMRYwFAYD VQQDEw02ODBhNjg4YS1mZjkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyoW1AdMrghG/ezz8gY8DFoY1lBRzUSd8SqqFPWAI2y5Oz60sJm9EJ+jn5OeS irsr1kiafc7UfgC4oQtGpwzsycX2Gw8j+uXSnTU9QTvM5ESub1BB4ju3NacZwMow Cy5STN6nZPZmgJ4e5mqtGH9vagVoByhlL9FFk46iIBsBESBZYnLCwcqbCSBc9Rij yg4TOEzdzZqlXQxAYKCh2BPxIbS2UzOoNaufQUUWMpHQZmd7+BKHRDgC42WszW+k 36bUZiqmfsl/sIKxcTDXNixhxljpl2stPWqQFdhqOtQZYR+k1JqhUy0wYyb/QNzu tmZMV5op41TUh84qwHWOgm9qowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNjqMsh+ qmMAUTN/pt6LN9zEfYoHMB8GA1UdIwQYMBaAFOG7HmJdveuzIg/5I81qEaLOJFGW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTMxRS9DMUZBMDgyQ0M4 Q0IxMUU3OTBBODgxMzhDNEY5QUUwMi80YnNlWWwyOTY3TWlEX2tqeldvUm9zNGtV WlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRic2VZbDI5NjdNaURfa2p6V29Sb3M0a1VaWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTMxRS9DMUZBMDgyQ0M4Q0IxMUU3OTBBODgxMzhDNEY5QUUwMi80YnNlWWwyOTY3 TWlEX2tqeldvUm9zNGtVWlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCI5mOyRIXP68stl7zMQbgwaMQLkLDwFjiphU3SURKpWRGWGAs2XK1V cNSSzCye/UYU0ylLfly1NkbJhhudvWJF52irdcUgzwzFi1tK7eM7z78v3pY3VbyD Y55A99ILgq/xFJG4fAPl8LYty3ct0fzxvC3+EJlf0+YBcHTE+/+Ubx8ixKoImkPT 1jJZrcVTnmQIBuFZZrquvoJmso1X4rnlhnYZptrKgsRFUrBY4oDrifDZQbYTpl6o oMHxThTAZW/pkRfd+7DJ9GpP/Q7c6M65fbhX8mf2hNvLWw4psX9oIL8TVuDVc5yB SKY1bGtDfw1KJYEdS0nGND5ejKIySzek -----END CERTIFICATE-----Generated at Sat Apr 26 14:36:59 2025 by rpki-client