$ rpki-client -vvf rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft File: 4AJb-TLnFuGh-K-QECEcQRCE_J0.mft (raw, json) Hash identifier: 05OJ3FFnxd7lSMGUB7/pBO4kGaCBVla8BASZCTmeoig= Subject key identifier: 46:1E:01:A3:96:C3:67:A0:E7:B6:C7:9C:84:2B:C0:A1:46:78:22:A9 Authority key identifier: E0:02:5B:F9:32:E7:16:E1:A1:F8:AF:90:10:21:1C:41:10:84:FC:9D Certificate issuer: /CN=A9197FDB/serialNumber=E0025BF932E716E1A1F8AF9010211C411084FC9D Certificate serial: 057D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft Manifest number: 0576 Signing time: Thu 24 Apr 2025 23:07:25 +0000 Manifest this update: Thu 24 Apr 2025 23:07:24 +0000 Manifest next update: Thu 01 May 2025 23:07:24 +0000 Files and hashes: 1: 4AJb-TLnFuGh-K-QECEcQRCE_J0.crl (hash: bgcn2CFR3P/QUd//daEynTlJGOQmDNqQZHr0SRTGfbU=) 2: 0A1FAC405BB211EEAD06B243C4F9AE02.roa (hash: +Nf3CbeJiQCKoMqVOr8fCtBhRD9vFNzRUGK/YqqHHSM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.crl rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:07:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1405 (0x57d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197FDB, serialNumber=E0025BF932E716E1A1F8AF9010211C411084FC9D Validity Not Before: Apr 24 23:07:24 2025 GMT Not After : May 1 23:07:24 2025 GMT Subject: CN=680ac42d-396f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:6b:a9:b5:e4:b0:77:5e:0b:20:89:a0:04:a9: f4:90:da:e4:10:a2:22:bd:31:d5:66:08:68:2d:9f: a8:55:6e:10:54:44:fe:cd:89:81:19:43:37:e4:4c: 72:20:46:f2:a4:92:66:e7:e7:4d:ea:09:5a:50:01: 24:fe:5c:b7:30:19:d0:62:36:83:5a:0d:09:26:40: d9:50:a3:db:eb:80:c3:34:01:28:c1:00:f6:68:a8: 78:e2:29:e7:ac:78:c6:ed:dc:a5:55:12:82:dd:6c: 65:1d:81:24:3b:58:17:49:61:66:2e:ef:2c:0b:74: bb:58:f7:35:c7:f4:00:2b:5a:da:a9:bf:16:86:86: 3e:4c:04:d0:cb:c1:ff:b1:49:fa:d7:68:ba:36:69: 3a:ba:a9:e8:3d:51:8a:71:b2:c6:3c:28:2d:68:d1: 5e:9a:28:2b:e7:00:7b:a1:a5:00:2a:fe:17:01:93: 86:67:2a:25:d0:24:9f:f3:4f:26:20:bd:25:19:67: 90:5f:be:9f:20:99:6a:9e:89:6b:62:a2:71:d8:fa: 2c:55:97:e7:ad:02:34:50:b8:6a:a1:37:ce:4d:2b: 7a:4f:9b:8c:78:d4:57:b6:75:cb:0b:4c:32:36:20: 32:5d:03:2f:62:f7:e6:16:78:18:04:21:e6:a4:1c: d3:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:1E:01:A3:96:C3:67:A0:E7:B6:C7:9C:84:2B:C0:A1:46:78:22:A9 X509v3 Authority Key Identifier: keyid:E0:02:5B:F9:32:E7:16:E1:A1:F8:AF:90:10:21:1C:41:10:84:FC:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:ef:6e:d9:32:5d:ae:0b:65:25:96:1e:33:69:d3:47:cb:83: 84:c1:96:56:bf:d4:b3:a6:ed:82:51:45:09:4b:cf:d1:63:cc: c7:87:0e:c9:21:4c:57:5d:d3:66:dd:1e:ec:d5:11:96:81:c1: 35:e9:77:59:e6:b9:6f:c4:e2:3b:3d:52:63:9b:32:44:2f:c2: 94:46:8d:c2:cb:7a:81:4a:46:82:d7:53:8f:6e:85:db:81:50: 32:49:71:71:58:21:14:07:e9:cb:78:0d:51:02:43:2e:84:8d: c5:e4:f8:66:ca:a9:6b:3e:ca:da:c9:97:22:56:b7:05:00:02: 8b:a5:2b:76:60:a4:de:84:e0:98:f0:c9:0f:7f:a3:0c:9d:8d: 1f:3c:5a:62:ec:67:d0:31:89:dd:c8:85:c7:de:42:91:1d:bb: 2f:9f:13:2a:f1:ee:ee:2b:e9:0a:25:cd:dc:e6:11:3f:d9:c0: 85:b2:cb:3c:67:4b:de:f0:7f:01:3a:c4:ad:d2:27:c0:6c:63: f5:5d:a3:2a:ac:a4:6d:22:80:c1:5b:63:10:58:6c:c2:e0:e1: c1:f6:d9:72:b6:98:91:27:db:79:4b:92:59:f8:33:98:97:fd: e9:e8:a8:a1:23:d7:42:ca:36:b3:4b:13:a2:8a:6d:c6:9c:f2: db:13:92:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBX0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdGREIxMTAvBgNVBAUTKEUwMDI1QkY5MzJFNzE2RTFBMUY4QUY5MDEwMjExQzQx MTA4NEZDOUQwHhcNMjUwNDI0MjMwNzI0WhcNMjUwNTAxMjMwNzI0WjAYMRYwFAYD VQQDEw02ODBhYzQyZC0zOTZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAymupteSwd14LIImgBKn0kNrkEKIivTHVZghoLZ+oVW4QVET+zYmBGUM35Exy IEbypJJm5+dN6glaUAEk/ly3MBnQYjaDWg0JJkDZUKPb64DDNAEowQD2aKh44inn rHjG7dylVRKC3WxlHYEkO1gXSWFmLu8sC3S7WPc1x/QAK1raqb8WhoY+TATQy8H/ sUn612i6Nmk6uqnoPVGKcbLGPCgtaNFemigr5wB7oaUAKv4XAZOGZyol0CSf808m IL0lGWeQX76fIJlqnolrYqJx2PosVZfnrQI0ULhqoTfOTSt6T5uMeNRXtnXLC0wy NiAyXQMvYvfmFngYBCHmpBzTmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEYeAaOW w2eg57bHnIQrwKFGeCKpMB8GA1UdIwQYMBaAFOACW/ky5xbhofivkBAhHEEQhPyd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0ZEQi82NTdFNDA3NERB MzYxMUVCODRFNkEzNDlDNEY5QUUwMi80QUpiLVRMbkZ1R2gtSy1RRUNFY1FSQ0Vf SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRBSmItVExuRnVHaC1LLVFFQ0VjUVJDRV9KMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0ZEQi82NTdFNDA3NERBMzYxMUVCODRFNkEzNDlDNEY5QUUwMi80QUpiLVRMbkZ1 R2gtSy1RRUNFY1FSQ0VfSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAv727ZMl2uC2Ullh4zadNHy4OEwZZWv9Szpu2CUUUJS8/RY8zHhw7J IUxXXdNm3R7s1RGWgcE16XdZ5rlvxOI7PVJjmzJEL8KURo3Cy3qBSkaC11OPboXb gVAySXFxWCEUB+nLeA1RAkMuhI3F5PhmyqlrPsrayZciVrcFAAKLpSt2YKTehOCY 8MkPf6MMnY0fPFpi7GfQMYndyIXH3kKRHbsvnxMq8e7uK+kKJc3c5hE/2cCFsss8 Z0ve8H8BOsSt0ifAbGP1XaMqrKRtIoDBW2MQWGzC4OHB9tlytpiRJ9t5S5JZ+DOY l/3p6KihI9dCyjazSxOiim3GnPLbE5LN -----END CERTIFICATE-----Generated at Sat Apr 26 04:20:58 2025 by rpki-client