$ rpki-client -vvf rpki.apnic.net/member_repository/A917336A/86D7B8625AEA11EF94E93D6EC4F9AE02/4LYIr1NBS29ZfRjK56IUSD6KZZ4.mft File: 4LYIr1NBS29ZfRjK56IUSD6KZZ4.mft (raw, json) Hash identifier: 4e30wAuCppsszT1xmRoEu9m8cmtoGUVTr8mK6TlKgvE= Subject key identifier: 59:26:FF:98:02:D7:B0:8C:AE:B4:32:7F:CC:D1:53:EA:26:1B:3B:D3 Authority key identifier: E0:B6:08:AF:53:41:4B:6F:59:7D:18:CA:E7:A2:14:48:3E:8A:65:9E Certificate issuer: /CN=A917336A/serialNumber=E0B608AF53414B6F597D18CAE7A214483E8A659E Certificate serial: 87 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4LYIr1NBS29ZfRjK56IUSD6KZZ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917336A/86D7B8625AEA11EF94E93D6EC4F9AE02/4LYIr1NBS29ZfRjK56IUSD6KZZ4.mft Manifest number: 86 Signing time: Fri 25 Apr 2025 05:34:07 +0000 Manifest this update: Fri 25 Apr 2025 05:34:06 +0000 Manifest next update: Fri 02 May 2025 05:34:06 +0000 Files and hashes: 1: 4LYIr1NBS29ZfRjK56IUSD6KZZ4.crl (hash: IoLVxkNKWdKKX3KS4EwpZbp6ynLuwBrsX/sMhCL4S/s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917336A/86D7B8625AEA11EF94E93D6EC4F9AE02/4LYIr1NBS29ZfRjK56IUSD6KZZ4.crl rsync://rpki.apnic.net/member_repository/A917336A/86D7B8625AEA11EF94E93D6EC4F9AE02/4LYIr1NBS29ZfRjK56IUSD6KZZ4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4LYIr1NBS29ZfRjK56IUSD6KZZ4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:34:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 135 (0x87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917336A, serialNumber=E0B608AF53414B6F597D18CAE7A214483E8A659E Validity Not Before: Apr 25 05:34:06 2025 GMT Not After : May 2 05:34:06 2025 GMT Subject: CN=680b1ecf-b5f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:4b:72:1d:2b:b2:3c:cb:6f:63:ce:6a:f6:0e: 64:b9:b2:16:2a:08:64:92:39:0c:21:50:90:f3:18: 5d:28:38:ee:0c:41:6a:db:65:e3:3d:21:29:b4:54: 18:3f:03:ac:9d:6a:b2:ef:e4:a3:8b:a3:64:72:90: e3:a7:97:dd:cc:4f:99:b8:e4:9a:6c:eb:36:f3:9e: 3b:9a:88:eb:08:6d:1e:38:65:d1:90:ee:7a:c5:35: 37:f7:ff:ea:3c:8d:e9:b1:c7:ab:f0:bc:21:08:dc: 66:14:b8:0c:86:8c:f0:f6:ab:66:3d:e0:19:07:fd: e6:bc:74:bd:0e:9f:db:b4:70:99:80:3d:c8:f9:00: 3e:8a:24:f3:1c:18:e3:b7:88:5b:17:15:c3:27:9e: 1c:b3:25:51:3a:b4:74:fa:01:ce:59:28:20:28:72: 03:42:f1:19:0f:53:3e:bd:d2:09:94:31:82:ba:13: 4b:0d:82:bd:5d:2e:15:39:f8:2b:4e:50:ff:59:cd: d2:97:43:b7:8a:b6:f1:17:b8:28:de:83:d6:2f:0d: 89:77:a3:19:8e:5d:9b:02:c4:fe:1d:28:08:84:e1: f1:96:72:16:ac:c8:aa:2d:7c:ef:93:d0:0e:72:ac: 35:4f:86:eb:22:2d:b6:a4:96:2d:7a:fc:d2:62:b4: 8e:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:26:FF:98:02:D7:B0:8C:AE:B4:32:7F:CC:D1:53:EA:26:1B:3B:D3 X509v3 Authority Key Identifier: keyid:E0:B6:08:AF:53:41:4B:6F:59:7D:18:CA:E7:A2:14:48:3E:8A:65:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917336A/86D7B8625AEA11EF94E93D6EC4F9AE02/4LYIr1NBS29ZfRjK56IUSD6KZZ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4LYIr1NBS29ZfRjK56IUSD6KZZ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917336A/86D7B8625AEA11EF94E93D6EC4F9AE02/4LYIr1NBS29ZfRjK56IUSD6KZZ4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:20:0e:58:71:65:40:bd:a7:e7:c4:7e:0c:65:fa:28:9d:ee: d8:12:b1:b6:8f:31:b1:5e:cb:e2:2f:b3:14:3c:f6:1f:e0:4c: 47:8b:20:d0:ba:be:ae:c4:62:99:e6:b7:db:2b:5a:5a:3c:b5: 55:40:30:8f:70:97:40:f3:c7:6d:99:02:6c:a0:34:08:67:c4: c4:96:64:38:7a:6d:dc:12:fd:8b:e6:25:6d:0c:02:ae:25:23: db:53:fc:46:a6:ce:91:51:ee:ec:1a:a6:bd:bd:e0:5f:a3:cc: d5:44:c0:1e:56:9c:38:1f:3a:ca:08:54:a5:fc:ef:de:bd:c3: 1c:a8:17:c9:08:59:64:f0:ef:f4:04:c1:9b:13:c8:91:22:f4: 93:25:93:e8:66:b8:f8:99:19:02:8a:ab:92:dc:fb:18:a0:d0: 85:51:76:8a:b7:4d:a0:2c:37:d9:55:ce:ff:cc:9a:66:3d:30: 01:1e:de:07:71:d3:09:70:6f:c6:39:39:97:f2:74:8b:de:f7: 1b:30:48:d6:0f:b8:a2:ee:33:ac:b4:d4:34:11:e5:77:06:15: 42:d5:26:a9:f1:7d:0a:67:1d:d1:13:a6:d2:3a:ab:d1:86:c1: 12:f2:d5:a7:7b:bf:6e:d2:be:3b:80:61:9c:e8:ab:9f:5e:88: 5e:40:8e:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzMzNkExMTAvBgNVBAUTKEUwQjYwOEFGNTM0MTRCNkY1OTdEMThDQUU3QTIxNDQ4 M0U4QTY1OUUwHhcNMjUwNDI1MDUzNDA2WhcNMjUwNTAyMDUzNDA2WjAYMRYwFAYD VQQDEw02ODBiMWVjZi1iNWY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu0tyHSuyPMtvY85q9g5kubIWKghkkjkMIVCQ8xhdKDjuDEFq22XjPSEptFQY PwOsnWqy7+Sji6NkcpDjp5fdzE+ZuOSabOs28547mojrCG0eOGXRkO56xTU39//q PI3pscer8LwhCNxmFLgMhozw9qtmPeAZB/3mvHS9Dp/btHCZgD3I+QA+iiTzHBjj t4hbFxXDJ54csyVROrR0+gHOWSggKHIDQvEZD1M+vdIJlDGCuhNLDYK9XS4VOfgr TlD/Wc3Sl0O3irbxF7go3oPWLw2Jd6MZjl2bAsT+HSgIhOHxlnIWrMiqLXzvk9AO cqw1T4brIi22pJYtevzSYrSOAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFkm/5gC 17CMrrQyf8zRU+omGzvTMB8GA1UdIwQYMBaAFOC2CK9TQUtvWX0YyueiFEg+imWe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzM2QS84NkQ3Qjg2MjVB RUExMUVGOTRFOTNENkVDNEY5QUUwMi80TFlJcjFOQlMyOVpmUmpLNTZJVVNENkta WjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzRMWUlyMU5CUzI5WmZSaks1NklVU0Q2S1paNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzM2QS84NkQ3Qjg2MjVBRUExMUVGOTRFOTNENkVDNEY5QUUwMi80TFlJcjFOQlMy OVpmUmpLNTZJVVNENktaWjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiIA5YcWVAvafnxH4MZfoone7YErG2jzGxXsviL7MUPPYf4ExHiyDQ ur6uxGKZ5rfbK1paPLVVQDCPcJdA88dtmQJsoDQIZ8TElmQ4em3cEv2L5iVtDAKu JSPbU/xGps6RUe7sGqa9veBfo8zVRMAeVpw4HzrKCFSl/O/evcMcqBfJCFlk8O/0 BMGbE8iRIvSTJZPoZrj4mRkCiquS3PsYoNCFUXaKt02gLDfZVc7/zJpmPTABHt4H cdMJcG/GOTmX8nSL3vcbMEjWD7ii7jOstNQ0EeV3BhVC1Sap8X0KZx3RE6bSOqvR hsES8tWne79u0r47gGGc6KufXoheQI6S -----END CERTIFICATE-----Generated at Sat Apr 26 15:10:28 2025 by rpki-client