$ rpki-client -vvf rpki.apnic.net/member_repository/A918036A/433AF78C46C711E9ADE9D424C4F9AE02/V4QPtEHSs0yO5pnSZHErSl4P7Y0.mft File: V4QPtEHSs0yO5pnSZHErSl4P7Y0.mft (raw, json) Hash identifier: n1IsIJ/XHs803CQ82/VSAzDzx3keW3GbtymC5Kk3+qI= Subject key identifier: 4B:79:50:B0:98:1E:69:35:1D:27:EC:25:D4:1C:5A:5F:D4:6C:74:E2 Authority key identifier: 57:84:0F:B4:41:D2:B3:4C:8E:E6:99:D2:64:71:2B:4A:5E:0F:ED:8D Certificate issuer: /CN=A918036A/serialNumber=57840FB441D2B34C8EE699D264712B4A5E0FED8D Certificate serial: 1029 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V4QPtEHSs0yO5pnSZHErSl4P7Y0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918036A/433AF78C46C711E9ADE9D424C4F9AE02/V4QPtEHSs0yO5pnSZHErSl4P7Y0.mft Manifest number: 100D Signing time: Thu 24 Apr 2025 17:27:07 +0000 Manifest this update: Thu 24 Apr 2025 17:27:07 +0000 Manifest next update: Thu 01 May 2025 17:27:07 +0000 Files and hashes: 1: V4QPtEHSs0yO5pnSZHErSl4P7Y0.crl (hash: W97sqxqsup7XTUyUGjbnAYBYTWL9UkpXNxa86cdf8Jg=) 2: E2846570135E11EB9D58482CC4F9AE02.roa (hash: bXgEyT98R8thRPsYUWy4Fp7WrzYnlZBS5iobweOZ0lw=) 3: BFF3C17CD23A11EB8E7BA35DC4F9AE02.roa (hash: C95dcxmbgG9m0J5QHw9VXXRl9oV1Z68MXGZ2KXxsrFI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918036A/433AF78C46C711E9ADE9D424C4F9AE02/V4QPtEHSs0yO5pnSZHErSl4P7Y0.crl rsync://rpki.apnic.net/member_repository/A918036A/433AF78C46C711E9ADE9D424C4F9AE02/V4QPtEHSs0yO5pnSZHErSl4P7Y0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V4QPtEHSs0yO5pnSZHErSl4P7Y0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:27:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4137 (0x1029) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918036A, serialNumber=57840FB441D2B34C8EE699D264712B4A5E0FED8D Validity Not Before: Apr 24 17:27:07 2025 GMT Not After : May 1 17:27:07 2025 GMT Subject: CN=680a746b-101f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:93:0b:1f:17:44:b1:b8:d3:30:f6:42:c7:a4: 37:b9:0d:6e:b5:82:91:76:cc:92:ff:61:ce:35:b5: 80:5b:00:94:78:2a:33:fe:f6:4d:84:bc:16:d3:e7: ef:3c:0f:22:b4:4c:2f:8f:7d:b4:36:d0:20:df:e5: 7c:77:ce:56:72:6b:1e:aa:39:30:20:14:b5:9a:97: 9f:aa:b6:1c:49:cc:67:1c:fb:e7:96:71:83:dc:f5: fb:07:c5:5e:32:aa:ad:83:8a:1e:cd:6f:88:47:a9: 74:a9:05:3a:63:89:d7:d4:f0:0e:f5:5c:5b:b3:de: e9:d3:ea:86:53:68:ee:7d:36:71:2b:23:a3:9a:f0: 5f:fe:6a:55:b7:03:0e:e3:ab:ea:0a:33:7f:0d:3d: 53:73:f8:24:ac:d3:09:d8:59:2a:11:70:66:af:42: cc:a7:1a:fd:6c:ce:b7:fa:59:a6:4c:4f:8a:65:fe: e1:2c:37:4e:27:3c:a1:e3:30:9e:aa:22:92:dd:7c: ce:47:a8:45:12:38:4b:f2:89:36:b0:f2:4a:3c:50: 9c:05:09:47:76:6d:c4:05:f7:12:fe:3a:36:f1:ae: 6a:7d:a0:36:72:51:4b:7e:b9:59:d3:92:e8:bf:f3: 1d:6c:7e:73:cf:1d:37:a9:08:f0:69:37:72:e7:1d: e5:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:79:50:B0:98:1E:69:35:1D:27:EC:25:D4:1C:5A:5F:D4:6C:74:E2 X509v3 Authority Key Identifier: keyid:57:84:0F:B4:41:D2:B3:4C:8E:E6:99:D2:64:71:2B:4A:5E:0F:ED:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918036A/433AF78C46C711E9ADE9D424C4F9AE02/V4QPtEHSs0yO5pnSZHErSl4P7Y0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V4QPtEHSs0yO5pnSZHErSl4P7Y0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918036A/433AF78C46C711E9ADE9D424C4F9AE02/V4QPtEHSs0yO5pnSZHErSl4P7Y0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:3d:1a:0b:8e:35:69:1d:0a:00:02:39:49:83:35:22:f0:a1: b0:0e:a3:45:e6:82:37:44:4a:ce:ad:ec:21:58:06:f4:67:0c: 41:c2:c8:d0:d9:58:2c:ad:1a:81:72:8a:da:b0:66:fa:13:1f: 0b:06:8e:19:aa:40:3c:bd:18:95:41:75:fc:42:f4:ee:5a:2f: fd:e9:37:50:bd:ab:7d:64:15:1d:22:a4:93:c6:79:37:fd:71: 8a:f8:73:8f:d5:0f:79:56:ea:b9:7c:a7:ae:b2:2a:c3:7b:6d: ce:69:b0:d3:e0:fd:ed:de:ea:a8:27:c4:c5:b7:a4:6d:78:4f: 31:69:bd:44:2f:d4:c0:63:7c:9e:be:2b:46:48:0d:93:d1:ac: b1:7d:3e:32:90:07:b6:53:63:be:33:98:f2:e0:43:9a:82:11: cc:af:8c:78:16:7c:0d:8d:08:2a:8a:0d:4f:28:c8:83:55:f0: f2:b8:7b:90:53:13:d8:40:d0:fd:96:65:25:b9:76:f5:37:18: ab:b0:07:99:ee:72:a2:f2:b6:65:ef:96:cf:3d:ad:08:3d:f7: 7e:0e:6b:77:f7:43:ec:32:5a:d0:3a:5e:6c:2e:47:2e:0b:7c: 51:d8:39:48:2b:1e:59:f0:a1:3f:38:6e:c4:80:a9:fe:d0:79: 37:9a:79:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICECkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAzNkExMTAvBgNVBAUTKDU3ODQwRkI0NDFEMkIzNEM4RUU2OTlEMjY0NzEyQjRB NUUwRkVEOEQwHhcNMjUwNDI0MTcyNzA3WhcNMjUwNTAxMTcyNzA3WjAYMRYwFAYD VQQDEw02ODBhNzQ2Yi0xMDFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy5MLHxdEsbjTMPZCx6Q3uQ1utYKRdsyS/2HONbWAWwCUeCoz/vZNhLwW0+fv PA8itEwvj320NtAg3+V8d85WcmseqjkwIBS1mpefqrYcScxnHPvnlnGD3PX7B8Ve Mqqtg4oezW+IR6l0qQU6Y4nX1PAO9Vxbs97p0+qGU2jufTZxKyOjmvBf/mpVtwMO 46vqCjN/DT1Tc/gkrNMJ2FkqEXBmr0LMpxr9bM63+lmmTE+KZf7hLDdOJzyh4zCe qiKS3XzOR6hFEjhL8ok2sPJKPFCcBQlHdm3EBfcS/jo28a5qfaA2clFLfrlZ05Lo v/MdbH5zzx03qQjwaTdy5x3lSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEt5ULCY Hmk1HSfsJdQcWl/UbHTiMB8GA1UdIwQYMBaAFFeED7RB0rNMjuaZ0mRxK0peD+2N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDM2QS80MzNBRjc4QzQ2 QzcxMUU5QURFOUQ0MjRDNEY5QUUwMi9WNFFQdEVIU3MweU81cG5TWkhFclNsNFA3 WTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Y0UVB0RUhTczB5TzVwblNaSEVyU2w0UDdZMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDM2QS80MzNBRjc4QzQ2QzcxMUU5QURFOUQ0MjRDNEY5QUUwMi9WNFFQdEVIU3Mw eU81cG5TWkhFclNsNFA3WTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBePRoLjjVpHQoAAjlJgzUi8KGwDqNF5oI3RErOrewhWAb0ZwxBwsjQ 2VgsrRqBcorasGb6Ex8LBo4ZqkA8vRiVQXX8QvTuWi/96TdQvat9ZBUdIqSTxnk3 /XGK+HOP1Q95Vuq5fKeusirDe23OabDT4P3t3uqoJ8TFt6RteE8xab1EL9TAY3ye vitGSA2T0ayxfT4ykAe2U2O+M5jy4EOaghHMr4x4FnwNjQgqig1PKMiDVfDyuHuQ UxPYQND9lmUluXb1NxirsAeZ7nKi8rZl75bPPa0IPfd+Dmt390PsMlrQOl5sLkcu C3xR2DlIKx5Z8KE/OG7EgKn+0Hk3mnns -----END CERTIFICATE-----Generated at Sat Apr 26 03:37:20 2025 by rpki-client