$ rpki-client -vvf rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.mft File: 4RQ3jak0hhRp9JXZdZjg8AKJwzA.mft (raw, json) Hash identifier: uGjrLlF2fQ7wp9nvjOJr/uly2aGLUOcP9l/V69UVzPk= Subject key identifier: 67:B6:6F:2D:53:A9:E2:26:C0:40:6E:3A:CF:B6:D8:25:AA:B0:C4:9B Authority key identifier: E1:14:37:8D:A9:34:86:14:69:F4:95:D9:75:98:E0:F0:02:89:C3:30 Certificate issuer: /CN=A917F0AF/serialNumber=E114378DA934861469F495D97598E0F00289C330 Certificate serial: 53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RQ3jak0hhRp9JXZdZjg8AKJwzA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.mft Manifest number: 52 Signing time: Fri 13 Jun 2025 06:08:30 +0000 Manifest this update: Fri 13 Jun 2025 06:08:29 +0000 Manifest next update: Fri 20 Jun 2025 06:08:29 +0000 Files and hashes: 1: 4RQ3jak0hhRp9JXZdZjg8AKJwzA.crl (hash: wxm4G3DSN7xi1uu2Plt+nN+6AQ5Mvlz9dKppJCD3YMs=) 2: 27E5184CCC6211EFA20BEE1BC4F9AE02.roa (hash: Nfq9gOVsvHp+sAvDqwlNp+Rm9HqcCv4rXARNazxofGE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.crl rsync://rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RQ3jak0hhRp9JXZdZjg8AKJwzA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 06:08:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 83 (0x53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F0AF, serialNumber=E114378DA934861469F495D97598E0F00289C330 Validity Not Before: Jun 13 06:08:29 2025 GMT Not After : Jun 20 06:08:29 2025 GMT Subject: CN=684bc05e-e282 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:a9:c3:05:25:a5:d2:dc:09:ca:4c:0e:c0:70: 83:21:9c:b4:6d:6d:9e:92:17:ac:0e:f7:03:c7:4d: b1:18:79:e8:db:9b:21:27:27:e9:ff:ec:83:ee:97: d7:25:41:0e:bd:42:70:3c:b7:1a:0e:c6:a4:2d:63: be:2b:4c:6c:41:a0:22:f1:24:1a:eb:32:4d:c8:a5: 1b:b8:a4:df:5b:7f:ad:e9:09:2b:fe:53:e5:36:51: d4:e4:2d:6d:59:45:e9:ea:a1:91:84:64:59:ad:ba: 21:b2:59:06:21:86:9e:64:cf:ad:41:42:72:7c:80: d6:28:40:e0:41:4e:62:9d:1c:74:5b:f6:a5:ca:ca: 71:53:d4:8a:88:e6:39:ab:54:10:7c:30:4a:ab:f7: 17:eb:b9:51:91:4f:2c:99:22:3b:d2:00:d1:e2:b3: 67:ba:08:02:67:d2:ec:63:3f:85:80:dc:cc:45:33: f6:fb:b1:36:f8:18:8a:e5:12:68:b8:9a:d0:4c:ce: 44:a9:39:ba:9c:be:41:7d:b6:b1:3c:d4:1e:e5:92: 21:2a:99:e8:5a:2d:a6:3a:f6:07:80:ab:3e:99:0e: 37:b9:41:bb:28:58:68:b4:cd:41:84:ba:b3:1b:15: 2a:8f:e3:bd:4a:a2:e0:f7:d1:05:a0:0a:61:14:0d: 17:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:B6:6F:2D:53:A9:E2:26:C0:40:6E:3A:CF:B6:D8:25:AA:B0:C4:9B X509v3 Authority Key Identifier: keyid:E1:14:37:8D:A9:34:86:14:69:F4:95:D9:75:98:E0:F0:02:89:C3:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RQ3jak0hhRp9JXZdZjg8AKJwzA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:cc:9b:c0:ed:93:1e:d3:d4:ab:c4:7f:34:c5:a0:7a:c9:da: 88:80:7f:49:9f:2b:22:41:34:ef:60:01:e2:fa:d1:f8:1e:be: ac:ee:5c:29:a3:a6:4d:2e:5a:e6:34:c8:11:47:8e:09:83:c5: 8e:fb:a4:5b:59:e7:d7:8e:0c:37:28:c5:fc:a8:f7:1c:4e:bb: 29:20:f8:fc:71:e7:63:5f:1b:63:41:15:c7:09:6b:4e:88:af: e4:ab:99:0d:6f:cc:5d:03:61:91:8e:30:46:fd:8d:ed:16:81: e2:80:e1:76:d3:2a:3f:4d:fe:43:df:be:c6:a4:cf:b4:de:19: f9:76:8c:13:59:c2:98:a4:24:6c:c2:2c:60:dd:44:98:da:dd: 97:97:04:da:9a:86:b3:52:3a:b6:9c:38:96:b6:b1:43:ba:51: ff:f3:f7:1c:49:95:db:78:f1:25:5d:19:a7:6f:c5:8c:6f:30: 44:89:8f:aa:69:2d:1e:62:0b:34:b2:a8:8a:3d:5a:18:c3:a7: ef:6e:af:9c:1a:22:8c:68:f4:2c:4f:1c:de:3b:a6:aa:bc:c1: bd:36:c0:f8:9f:f0:9a:82:ea:87:03:c4:ae:b5:8b:fe:7d:d1: 59:e9:96:14:e5:b3:43:29:02:62:69:14:f4:65:62:56:12:ae: 53:4b:21:c5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RjBBRjExMC8GA1UEBRMoRTExNDM3OERBOTM0ODYxNDY5RjQ5NUQ5NzU5OEUwRjAw Mjg5QzMzMDAeFw0yNTA2MTMwNjA4MjlaFw0yNTA2MjAwNjA4MjlaMBgxFjAUBgNV BAMTDTY4NGJjMDVlLWUyODIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCrqcMFJaXS3AnKTA7AcIMhnLRtbZ6SF6wO9wPHTbEYeejbmyEnJ+n/7IPul9cl QQ69QnA8txoOxqQtY74rTGxBoCLxJBrrMk3IpRu4pN9bf63pCSv+U+U2UdTkLW1Z RenqoZGEZFmtuiGyWQYhhp5kz61BQnJ8gNYoQOBBTmKdHHRb9qXKynFT1IqI5jmr VBB8MEqr9xfruVGRTyyZIjvSANHis2e6CAJn0uxjP4WA3MxFM/b7sTb4GIrlEmi4 mtBMzkSpObqcvkF9trE81B7lkiEqmehaLaY69geAqz6ZDje5QbsoWGi0zUGEurMb FSqP471KouD30QWgCmEUDRd/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZ7ZvLVOp 4ibAQG46z7bYJaqwxJswHwYDVR0jBBgwFoAU4RQ3jak0hhRp9JXZdZjg8AKJwzAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdGMEFGLzJEN0E3RTBFQ0M0 RjExRUZBODlBOEYxNEM0RjlBRTAyLzRSUTNqYWswaGhScDlKWFpkWmpnOEFLSnd6 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNFJRM2phazBoaFJwOUpYWmRaamc4QUtKd3pBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdG MEFGLzJEN0E3RTBFQ0M0RjExRUZBODlBOEYxNEM0RjlBRTAyLzRSUTNqYWswaGhS cDlKWFpkWmpnOEFLSnd6QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADjMm8Dtkx7T1KvEfzTFoHrJ2oiAf0mfKyJBNO9gAeL60fgevqzuXCmj pk0uWuY0yBFHjgmDxY77pFtZ59eODDcoxfyo9xxOuykg+Pxx52NfG2NBFccJa06I r+SrmQ1vzF0DYZGOMEb9je0WgeKA4XbTKj9N/kPfvsakz7TeGfl2jBNZwpikJGzC LGDdRJja3ZeXBNqahrNSOracOJa2sUO6Uf/z9xxJldt48SVdGadvxYxvMESJj6pp LR5iCzSyqIo9WhjDp+9ur5waIoxo9CxPHN47pqq8wb02wPif8JqC6ocDxK61i/59 0VnplhTls0MpAmJpFPRlYlYSrlNLIcU= -----END CERTIFICATE-----Generated at Sat Jun 14 19:01:06 2025 by rpki-client