$ rpki-client -vvf rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft File: 4bzIEhAO1GAiFweJMk8cw6-_aq0.mft (raw, json) Hash identifier: Bs5q1vbHL6qqObOgCxfOMbp1n8HQk8JWINbnJX+kujg= Subject key identifier: 27:C8:99:85:18:CA:85:4D:77:D3:DE:67:0C:CE:69:E0:77:17:FA:D7 Authority key identifier: E1:BC:C8:12:10:0E:D4:60:22:17:07:89:32:4F:1C:C3:AF:BF:6A:AD Certificate issuer: /CN=A916AAFF/serialNumber=E1BCC812100ED46022170789324F1CC3AFBF6AAD Certificate serial: FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bzIEhAO1GAiFweJMk8cw6-_aq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft Manifest number: F5 Signing time: Fri 25 Apr 2025 04:24:52 +0000 Manifest this update: Fri 25 Apr 2025 04:24:51 +0000 Manifest next update: Fri 02 May 2025 04:24:51 +0000 Files and hashes: 1: 4bzIEhAO1GAiFweJMk8cw6-_aq0.crl (hash: vKrm+K9iDpLvNin0uvDub+tAWJi1MWX0BGsgDcdsYmk=) 2: 69E8AC12555811EFA88AEA24C4F9AE02.roa (hash: rp2KgXfSmtmZKYQY55JUof6yTTeOYpzuHhK8PCwpS0Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.crl rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bzIEhAO1GAiFweJMk8cw6-_aq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:24:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 252 (0xfc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916AAFF, serialNumber=E1BCC812100ED46022170789324F1CC3AFBF6AAD Validity Not Before: Apr 25 04:24:51 2025 GMT Not After : May 2 04:24:51 2025 GMT Subject: CN=680b0e93-5350 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:2d:76:30:02:c6:67:f5:37:93:68:f0:39:ea: 6e:98:6c:98:09:cb:31:ce:c6:2e:f1:9d:fd:2b:ff: ba:8d:e8:66:09:7d:30:5a:4e:10:1e:a2:a2:2f:86: a3:46:cf:c0:0a:26:c3:17:31:6c:08:86:41:0d:f2: 27:f6:be:b4:4a:80:07:a0:dc:c1:70:42:5c:2d:e8: 49:c3:e2:17:5a:2e:ea:01:62:19:3c:0f:8f:b0:2d: b4:69:b4:fa:14:c5:37:f6:d7:a2:dd:a1:f6:8e:ac: f5:8d:fd:8b:59:97:f1:8a:29:8a:89:1f:04:6f:c8: 5c:13:6f:4d:0a:61:cc:1f:f6:bf:13:96:62:32:6a: 06:4e:2d:c1:82:4b:ec:3f:b9:55:1b:2a:19:43:de: f7:6e:5e:fa:15:12:2f:b7:d2:d8:be:fe:93:41:22: 0e:fc:9d:8b:72:8d:55:1b:86:92:62:fc:d9:b3:01: 65:df:8a:88:36:fb:c1:46:b5:18:48:f8:13:66:2c: 39:3e:0f:6f:9d:f6:6a:58:7b:d7:79:fe:d0:a6:83: b0:6c:6b:d7:f1:fb:e7:fb:65:fa:72:22:09:d8:1b: c7:c9:6c:03:7a:d4:f8:bf:b0:49:bd:43:37:b1:83: cf:4d:0c:28:55:ca:39:b6:60:22:07:4b:1f:f9:f2: 6e:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:C8:99:85:18:CA:85:4D:77:D3:DE:67:0C:CE:69:E0:77:17:FA:D7 X509v3 Authority Key Identifier: keyid:E1:BC:C8:12:10:0E:D4:60:22:17:07:89:32:4F:1C:C3:AF:BF:6A:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bzIEhAO1GAiFweJMk8cw6-_aq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:c6:09:be:b5:b4:34:a6:4a:85:7b:b3:3a:77:3d:0b:c9:73: 2e:f9:60:b3:08:80:9f:f8:28:83:b8:64:9d:49:8e:14:f0:23: e6:a1:e4:91:64:01:29:79:79:e1:d4:f6:2e:03:3d:29:12:31: 57:b6:ef:a1:bd:df:b0:5c:bc:de:3d:74:66:f4:3c:dc:72:92: 14:38:e1:21:23:01:c7:ee:aa:5b:e9:cc:86:af:45:3a:d6:fb: 23:e3:e3:6d:4a:85:d5:78:f6:b1:bb:f7:41:ac:ee:08:00:90: 50:b9:0c:1f:22:15:15:8f:df:97:7e:ca:d3:bc:ff:51:23:cd: cd:e3:bf:92:bc:0d:8a:ff:2c:3f:19:41:13:91:e5:b5:40:f1: 59:a6:ef:27:3e:0c:4e:06:8e:41:b0:d1:a9:32:a2:b3:09:8f: 3e:6a:6f:bc:dd:3b:53:4a:04:9c:49:5f:a0:c5:76:04:57:28: a2:1c:72:15:86:6c:87:c5:3b:f3:4a:a1:ff:46:ad:67:e6:a4: 7f:4a:4b:56:79:7b:fb:b3:2a:a1:04:43:bd:83:48:6a:82:e5: be:38:cb:d9:1f:ef:49:48:95:fc:3e:a5:cd:f1:ee:9c:d5:a5: 23:04:04:93:67:85:ca:c2:b6:84:8d:16:a8:ee:bb:a4:66:41: 5e:6e:f2:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkFBRkYxMTAvBgNVBAUTKEUxQkNDODEyMTAwRUQ0NjAyMjE3MDc4OTMyNEYxQ0Mz QUZCRjZBQUQwHhcNMjUwNDI1MDQyNDUxWhcNMjUwNTAyMDQyNDUxWjAYMRYwFAYD VQQDEw02ODBiMGU5My01MzUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxy12MALGZ/U3k2jwOepumGyYCcsxzsYu8Z39K/+6jehmCX0wWk4QHqKiL4aj Rs/ACibDFzFsCIZBDfIn9r60SoAHoNzBcEJcLehJw+IXWi7qAWIZPA+PsC20abT6 FMU39tei3aH2jqz1jf2LWZfxiimKiR8Eb8hcE29NCmHMH/a/E5ZiMmoGTi3Bgkvs P7lVGyoZQ973bl76FRIvt9LYvv6TQSIO/J2Lco1VG4aSYvzZswFl34qINvvBRrUY SPgTZiw5Pg9vnfZqWHvXef7QpoOwbGvX8fvn+2X6ciIJ2BvHyWwDetT4v7BJvUM3 sYPPTQwoVco5tmAiB0sf+fJu1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCfImYUY yoVNd9PeZwzOaeB3F/rXMB8GA1UdIwQYMBaAFOG8yBIQDtRgIhcHiTJPHMOvv2qt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QUFGRi83QkI4QkE2Q0JC M0ExMUVFODdDNjZCMEZDNEY5QUUwMi80YnpJRWhBTzFHQWlGd2VKTWs4Y3c2LV9h cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRieklFaEFPMUdBaUZ3ZUpNazhjdzYtX2FxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QUFGRi83QkI4QkE2Q0JCM0ExMUVFODdDNjZCMEZDNEY5QUUwMi80YnpJRWhBTzFH QWlGd2VKTWs4Y3c2LV9hcTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdxgm+tbQ0pkqFe7M6dz0LyXMu+WCzCICf+CiDuGSdSY4U8CPmoeSR ZAEpeXnh1PYuAz0pEjFXtu+hvd+wXLzePXRm9DzccpIUOOEhIwHH7qpb6cyGr0U6 1vsj4+NtSoXVePaxu/dBrO4IAJBQuQwfIhUVj9+XfsrTvP9RI83N47+SvA2K/yw/ GUETkeW1QPFZpu8nPgxOBo5BsNGpMqKzCY8+am+83TtTSgScSV+gxXYEVyiiHHIV hmyHxTvzSqH/Rq1n5qR/SktWeXv7syqhBEO9g0hqguW+OMvZH+9JSJX8PqXN8e6c 1aUjBASTZ4XKwraEjRao7rukZkFebvLO -----END CERTIFICATE-----Generated at Sat Apr 26 04:27:14 2025 by rpki-client