$ rpki-client -vvf rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft File: 4AJb-TLnFuGh-K-QECEcQRCE_J0.mft (raw, json) Hash identifier: WqdVxbchO90O5XhhsMfcyuo4ReoX8Q492Ezo84XFa/E= Subject key identifier: 39:67:D2:7F:21:D0:01:9D:07:F4:37:DD:EB:AC:AB:FF:65:34:95:94 Authority key identifier: E0:02:5B:F9:32:E7:16:E1:A1:F8:AF:90:10:21:1C:41:10:84:FC:9D Certificate issuer: /CN=A9197FDB/serialNumber=E0025BF932E716E1A1F8AF9010211C411084FC9D Certificate serial: 0595 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft Manifest number: 058E Signing time: Thu 12 Jun 2025 22:52:33 +0000 Manifest this update: Thu 12 Jun 2025 22:52:33 +0000 Manifest next update: Thu 19 Jun 2025 22:52:33 +0000 Files and hashes: 1: 4AJb-TLnFuGh-K-QECEcQRCE_J0.crl (hash: 9A1BcQ481KywwMPSEAMrfnohd7GsRyMeNqKBJeZbBQo=) 2: 0A1FAC405BB211EEAD06B243C4F9AE02.roa (hash: +Nf3CbeJiQCKoMqVOr8fCtBhRD9vFNzRUGK/YqqHHSM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.crl rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 22:52:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1429 (0x595) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197FDB, serialNumber=E0025BF932E716E1A1F8AF9010211C411084FC9D Validity Not Before: Jun 12 22:52:33 2025 GMT Not After : Jun 19 22:52:33 2025 GMT Subject: CN=684b5a31-4562 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:6d:97:19:e0:7b:de:07:83:b9:60:4d:40:f0: bd:ee:cf:48:f2:43:87:b3:cd:21:1f:4a:c9:7a:da: 86:b6:bf:ad:81:f9:55:a1:2c:4a:4b:51:93:04:ed: 71:7f:92:6c:57:0e:07:4d:3a:a5:bb:5d:46:25:63: 02:18:76:d0:94:cc:cb:ef:52:18:8f:0f:2b:70:c7: 2d:7d:0c:56:fc:e1:dd:61:96:ec:69:86:41:8c:e1: fd:5a:fe:23:dc:35:ba:ef:ed:76:9b:6f:ad:9a:9b: 2f:b7:65:88:3b:42:79:72:8c:09:c2:c2:17:43:48: cc:32:0a:80:37:a7:10:61:cd:58:4b:0d:ee:72:cf: 26:1d:f6:31:fa:67:5b:e1:52:70:ee:5b:46:3b:d0: 39:6b:00:da:9e:ff:de:ec:53:2c:d0:7c:88:b2:2d: ef:e1:c3:e8:f1:f1:23:4c:76:31:aa:6d:1f:1e:49: 94:6b:d2:71:29:d3:bd:53:b1:d5:2f:2b:1c:9f:d0: 27:5e:ab:0b:e3:ee:34:38:2e:f4:96:b3:aa:19:e4: f8:be:45:45:f8:de:b7:8f:4a:b7:bd:8b:92:30:3e: 5e:8a:dd:e7:e9:69:1d:d7:e8:ae:12:b8:f9:5b:93: ed:6e:68:2a:9f:ee:66:94:9d:d4:bf:31:6d:ab:46: d3:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:67:D2:7F:21:D0:01:9D:07:F4:37:DD:EB:AC:AB:FF:65:34:95:94 X509v3 Authority Key Identifier: keyid:E0:02:5B:F9:32:E7:16:E1:A1:F8:AF:90:10:21:1C:41:10:84:FC:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:8d:fc:a7:fa:26:52:84:1b:e8:11:23:40:6e:c4:b4:f4:62: 9d:0f:14:72:39:db:6c:fc:c0:f7:3f:9e:64:35:3e:c5:4e:fa: 4b:c7:d8:88:84:08:3f:20:4a:54:58:27:56:38:ca:9f:dd:be: da:0f:15:d5:55:cc:36:c6:d6:f1:ab:96:c3:88:6d:24:dc:81: ee:cc:c5:03:8c:23:45:f7:65:cf:8d:3d:6c:eb:65:d5:6a:27: 42:7c:0d:28:b0:ac:86:b7:9a:5b:ef:00:51:ba:33:48:ad:78: 81:83:c4:25:9d:65:79:2c:35:b2:72:6f:f0:39:02:92:2b:e7: dc:ae:6e:5d:9e:e6:b8:af:06:a5:0a:28:93:78:e5:f0:f5:ad: e1:78:b1:2b:67:ae:d8:a5:3f:cf:8c:5f:2c:85:30:69:1e:f3: 77:b2:2e:bb:26:b5:85:22:bb:04:f2:be:49:27:67:5f:86:3f: 22:6a:61:b0:6a:28:99:87:6f:08:9a:fe:ef:b5:0c:cb:dc:67: 7f:f9:e7:a8:75:7e:e4:90:d9:b3:a9:32:fb:b5:19:62:e6:6f: 30:20:0e:19:1e:38:8f:a4:30:b0:34:41:44:04:ae:2e:ab:01: 3d:ec:82:b3:7f:fe:8b:99:35:b0:77:00:18:7e:e7:02:d7:bb: 30:28:66:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdGREIxMTAvBgNVBAUTKEUwMDI1QkY5MzJFNzE2RTFBMUY4QUY5MDEwMjExQzQx MTA4NEZDOUQwHhcNMjUwNjEyMjI1MjMzWhcNMjUwNjE5MjI1MjMzWjAYMRYwFAYD VQQDEw02ODRiNWEzMS00NTYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArW2XGeB73geDuWBNQPC97s9I8kOHs80hH0rJetqGtr+tgflVoSxKS1GTBO1x f5JsVw4HTTqlu11GJWMCGHbQlMzL71IYjw8rcMctfQxW/OHdYZbsaYZBjOH9Wv4j 3DW67+12m2+tmpsvt2WIO0J5cowJwsIXQ0jMMgqAN6cQYc1YSw3ucs8mHfYx+mdb 4VJw7ltGO9A5awDanv/e7FMs0HyIsi3v4cPo8fEjTHYxqm0fHkmUa9JxKdO9U7HV Lyscn9AnXqsL4+40OC70lrOqGeT4vkVF+N63j0q3vYuSMD5eit3n6Wkd1+iuErj5 W5Ptbmgqn+5mlJ3UvzFtq0bTrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDln0n8h 0AGdB/Q33eusq/9lNJWUMB8GA1UdIwQYMBaAFOACW/ky5xbhofivkBAhHEEQhPyd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0ZEQi82NTdFNDA3NERB MzYxMUVCODRFNkEzNDlDNEY5QUUwMi80QUpiLVRMbkZ1R2gtSy1RRUNFY1FSQ0Vf SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRBSmItVExuRnVHaC1LLVFFQ0VjUVJDRV9KMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0ZEQi82NTdFNDA3NERBMzYxMUVCODRFNkEzNDlDNEY5QUUwMi80QUpiLVRMbkZ1 R2gtSy1RRUNFY1FSQ0VfSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5jfyn+iZShBvoESNAbsS09GKdDxRyOdts/MD3P55kNT7FTvpLx9iI hAg/IEpUWCdWOMqf3b7aDxXVVcw2xtbxq5bDiG0k3IHuzMUDjCNF92XPjT1s62XV aidCfA0osKyGt5pb7wBRujNIrXiBg8QlnWV5LDWycm/wOQKSK+fcrm5dnua4rwal CiiTeOXw9a3heLErZ67YpT/PjF8shTBpHvN3si67JrWFIrsE8r5JJ2dfhj8iamGw aiiZh28Imv7vtQzL3Gd/+eeodX7kkNmzqTL7tRli5m8wIA4ZHjiPpDCwNEFEBK4u qwE97IKzf/6LmTWwdwAYfucC17swKGYm -----END CERTIFICATE-----Generated at Sat Jun 14 17:33:00 2025 by rpki-client