$ rpki-client -vvf rpki.apnic.net/member_repository/A9177E33/A80ECE481D8611E2BE930ADE08B02CD2/4klmeNb9TiLorA6f9s1YENb7eU0.mft File: 4klmeNb9TiLorA6f9s1YENb7eU0.mft (raw, json) Hash identifier: tGzbdVw/bjvw9kfaTeoL6cN84MCjgz67Q5q3iBajVpY= Subject key identifier: DA:38:6E:AF:95:01:B6:3F:CF:2E:DD:CC:03:9E:EB:6F:BC:D7:CA:F1 Authority key identifier: E2:49:66:78:D6:FD:4E:22:E8:AC:0E:9F:F6:CD:58:10:D6:FB:79:4D Certificate issuer: /CN=A9177E33/serialNumber=E2496678D6FD4E22E8AC0E9FF6CD5810D6FB794D Certificate serial: 3473 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4klmeNb9TiLorA6f9s1YENb7eU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9177E33/A80ECE481D8611E2BE930ADE08B02CD2/4klmeNb9TiLorA6f9s1YENb7eU0.mft Manifest number: 3472 Signing time: Thu 24 Apr 2025 14:26:57 +0000 Manifest this update: Thu 24 Apr 2025 14:26:57 +0000 Manifest next update: Thu 01 May 2025 14:26:57 +0000 Files and hashes: 1: 4klmeNb9TiLorA6f9s1YENb7eU0.crl (hash: H8rECNX9iPhzns68dSgBJ61Hhaw0GmBAOoI5urlXKOI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9177E33/A80ECE481D8611E2BE930ADE08B02CD2/4klmeNb9TiLorA6f9s1YENb7eU0.crl rsync://rpki.apnic.net/member_repository/A9177E33/A80ECE481D8611E2BE930ADE08B02CD2/4klmeNb9TiLorA6f9s1YENb7eU0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4klmeNb9TiLorA6f9s1YENb7eU0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:26:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13427 (0x3473) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9177E33, serialNumber=E2496678D6FD4E22E8AC0E9FF6CD5810D6FB794D Validity Not Before: Apr 24 14:26:57 2025 GMT Not After : May 1 14:26:57 2025 GMT Subject: CN=680a4a31-7824 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:c6:e7:b6:44:4c:fb:92:21:9e:37:58:db:28: 1a:03:fb:e8:f2:d8:32:fe:4f:f2:6a:d3:8e:83:40: 01:8c:de:dc:dd:17:8f:0f:9b:97:1d:c7:12:2e:2d: c3:4b:9a:f4:c7:54:9e:42:0e:f5:47:c8:23:ab:0f: f7:09:96:cf:0c:73:72:1f:e2:4e:5d:a7:a5:65:20: 9e:61:a3:2c:bc:41:f7:34:8c:93:1d:f8:95:4b:aa: 28:a1:8a:5a:c4:83:1b:7e:14:a4:cc:94:04:c2:f1: 25:8d:26:d5:d8:0d:6c:1e:d0:39:3d:db:8d:61:78: bd:fd:8f:29:b9:00:29:8f:11:15:f2:4e:ba:6a:84: ce:74:7e:66:f6:8d:68:03:7e:44:3c:31:36:51:52: 08:e6:d7:d1:f6:9a:40:7e:07:03:a4:90:f6:21:d7: ae:32:68:c0:a8:6d:53:dd:cd:2b:34:02:fb:95:27: e7:25:6c:a2:35:cb:3f:ef:ce:6a:c0:b2:19:bf:3c: 55:c8:f0:30:78:fc:8a:cd:6a:0a:52:b3:51:38:79: c6:81:ba:16:9d:69:79:8a:b9:8f:1f:92:73:f5:44: 26:71:1f:74:c3:54:45:39:4c:54:af:18:50:5e:55: 5d:6a:b6:44:27:47:88:bd:e1:b4:c6:7c:ec:3d:ad: ab:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:38:6E:AF:95:01:B6:3F:CF:2E:DD:CC:03:9E:EB:6F:BC:D7:CA:F1 X509v3 Authority Key Identifier: keyid:E2:49:66:78:D6:FD:4E:22:E8:AC:0E:9F:F6:CD:58:10:D6:FB:79:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9177E33/A80ECE481D8611E2BE930ADE08B02CD2/4klmeNb9TiLorA6f9s1YENb7eU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4klmeNb9TiLorA6f9s1YENb7eU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9177E33/A80ECE481D8611E2BE930ADE08B02CD2/4klmeNb9TiLorA6f9s1YENb7eU0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:94:3f:cb:1e:d3:0e:35:b9:6b:26:29:a3:14:71:67:10:49: 63:21:b5:10:a2:34:74:01:47:40:9a:4c:c1:39:7f:57:73:ca: 5e:ba:f1:43:7a:26:70:9e:88:ff:4b:c7:15:0b:fd:1f:ed:b9: 0f:fd:4b:aa:fb:c0:65:ee:2c:aa:75:a2:2e:5e:1f:73:73:37: 2f:f4:fd:e8:f6:26:a8:f8:d5:7b:62:d5:fc:80:0b:88:0e:51: 3c:1c:e0:97:19:7e:e2:10:95:2f:dd:f7:7f:d9:4a:32:6c:6e: 30:14:e9:b9:8b:f2:62:c4:d0:c8:46:d0:13:c0:db:5b:1b:14: 3f:18:94:68:e4:5a:e3:e9:e9:cc:af:24:93:4e:29:19:84:41: d3:27:05:70:a8:ba:c1:39:df:fa:fc:fc:f3:4c:42:bd:93:7c: 79:11:24:76:cd:e9:bf:fb:28:1f:25:ca:54:b5:bc:af:17:9e: e9:35:dc:75:0a:33:db:31:08:c0:8d:50:12:e0:a6:b8:cf:8a: cd:d4:04:3d:bd:e1:33:82:79:92:49:aa:36:00:0e:68:fa:0f: 83:c7:66:33:30:28:b0:68:a3:b5:a0:2b:92:3d:91:ea:da:39: e3:e3:b2:79:d4:06:42:ed:f2:7a:f3:92:c4:d9:76:e2:69:4d: b2:b3:32:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNHMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzdFMzMxMTAvBgNVBAUTKEUyNDk2Njc4RDZGRDRFMjJFOEFDMEU5RkY2Q0Q1ODEw RDZGQjc5NEQwHhcNMjUwNDI0MTQyNjU3WhcNMjUwNTAxMTQyNjU3WjAYMRYwFAYD VQQDEw02ODBhNGEzMS03ODI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3sbntkRM+5IhnjdY2ygaA/vo8tgy/k/yatOOg0ABjN7c3RePD5uXHccSLi3D S5r0x1SeQg71R8gjqw/3CZbPDHNyH+JOXaelZSCeYaMsvEH3NIyTHfiVS6oooYpa xIMbfhSkzJQEwvEljSbV2A1sHtA5PduNYXi9/Y8puQApjxEV8k66aoTOdH5m9o1o A35EPDE2UVII5tfR9ppAfgcDpJD2IdeuMmjAqG1T3c0rNAL7lSfnJWyiNcs/785q wLIZvzxVyPAwePyKzWoKUrNROHnGgboWnWl5irmPH5Jz9UQmcR90w1RFOUxUrxhQ XlVdarZEJ0eIveG0xnzsPa2ryQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNo4bq+V AbY/zy7dzAOe62+818rxMB8GA1UdIwQYMBaAFOJJZnjW/U4i6KwOn/bNWBDW+3lN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3N0UzMy9BODBFQ0U0ODFE ODYxMUUyQkU5MzBBREUwOEIwMkNEMi80a2xtZU5iOVRpTG9yQTZmOXMxWUVOYjdl VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRrbG1lTmI5VGlMb3JBNmY5czFZRU5iN2VVMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 N0UzMy9BODBFQ0U0ODFEODYxMUUyQkU5MzBBREUwOEIwMkNEMi80a2xtZU5iOVRp TG9yQTZmOXMxWUVOYjdlVTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxlD/LHtMONblrJimjFHFnEEljIbUQojR0AUdAmkzBOX9Xc8peuvFD eiZwnoj/S8cVC/0f7bkP/Uuq+8Bl7iyqdaIuXh9zczcv9P3o9iao+NV7YtX8gAuI DlE8HOCXGX7iEJUv3fd/2UoybG4wFOm5i/JixNDIRtATwNtbGxQ/GJRo5Frj6enM rySTTikZhEHTJwVwqLrBOd/6/PzzTEK9k3x5ESR2zem/+ygfJcpUtbyvF57pNdx1 CjPbMQjAjVAS4Ka4z4rN1AQ9veEzgnmSSao2AA5o+g+Dx2YzMCiwaKO1oCuSPZHq 2jnj47J51AZC7fJ685LE2XbiaU2yszIL -----END CERTIFICATE-----Generated at Sat Apr 26 16:04:26 2025 by rpki-client