$ rpki-client -vvf rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.mft File: 4vB0KtgKnbsodRhO4N1elN11eEs.mft (raw, json) Hash identifier: Zya7HGXVfyDFXt1K1Pz3s7+2r7wUAYvDP6ctkYE4Kz8= Subject key identifier: E8:0C:49:67:DB:5E:E9:1F:F8:85:A9:13:FD:5E:08:7C:CD:8F:16:83 Authority key identifier: E2:F0:74:2A:D8:0A:9D:BB:28:75:18:4E:E0:DD:5E:94:DD:75:78:4B Certificate issuer: /CN=A91C23FE/serialNumber=E2F0742AD80A9DBB2875184EE0DD5E94DD75784B Certificate serial: 1BCC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vB0KtgKnbsodRhO4N1elN11eEs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.mft Manifest number: 1BC2 Signing time: Thu 24 Apr 2025 16:15:21 +0000 Manifest this update: Thu 24 Apr 2025 16:15:20 +0000 Manifest next update: Thu 01 May 2025 16:15:20 +0000 Files and hashes: 1: 4vB0KtgKnbsodRhO4N1elN11eEs.crl (hash: u/ymhQDxZz8MM5257uEAyYNLsKQc9gEhpGifCVA4Io4=) 2: A88F22ECCC7011ED931BD15FC4F9AE02.roa (hash: BCcYD/VfHPlrE1idB6qMcYHXBoKVsq99H3ysbvhT4uw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.crl rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vB0KtgKnbsodRhO4N1elN11eEs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:15:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7116 (0x1bcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C23FE, serialNumber=E2F0742AD80A9DBB2875184EE0DD5E94DD75784B Validity Not Before: Apr 24 16:15:20 2025 GMT Not After : May 1 16:15:20 2025 GMT Subject: CN=680a6399-ff00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:33:69:af:19:fe:59:64:28:49:b9:f1:b3:35: 81:5c:77:c6:fc:b5:29:39:43:57:df:ea:bb:e2:fd: 4c:73:5a:4f:67:f2:e1:2c:c5:ae:28:45:09:f7:74: c7:7c:f0:7f:26:39:04:0f:19:47:d1:d2:e9:63:36: 2e:4c:39:d2:51:be:44:80:8a:cc:38:0f:80:1c:79: 30:75:45:2c:45:f3:b7:2c:d8:ce:21:64:18:7a:8b: b9:53:6b:c8:67:05:69:5e:a3:cf:5d:58:99:21:c0: 18:30:c2:96:5a:0f:e2:19:86:45:f5:68:1a:58:5f: 1a:18:8f:03:36:b4:12:0e:c5:ce:45:78:da:28:a6: 4a:a0:c7:e5:65:99:fd:32:7c:0f:1f:dc:0d:a2:5d: 89:28:c5:d9:6f:d0:13:b6:16:e2:e7:28:e6:bc:35: c9:e4:f8:90:2d:be:a0:ee:48:a7:07:8e:93:71:3b: 49:1b:84:72:d9:02:13:3c:c9:49:f7:e7:f3:6c:f3: 84:be:85:60:8a:67:9f:52:36:8d:35:c6:1c:fd:78: d8:8c:01:0b:e4:17:5c:77:3e:d5:31:16:bb:1b:0b: 37:69:95:73:49:53:7d:a2:68:4a:f6:73:5e:d1:a4: 98:97:f9:7f:50:bd:ff:bb:55:51:69:d3:c4:ce:fd: c0:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:0C:49:67:DB:5E:E9:1F:F8:85:A9:13:FD:5E:08:7C:CD:8F:16:83 X509v3 Authority Key Identifier: keyid:E2:F0:74:2A:D8:0A:9D:BB:28:75:18:4E:E0:DD:5E:94:DD:75:78:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vB0KtgKnbsodRhO4N1elN11eEs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cd:2d:47:b4:4d:19:8b:a6:ec:62:33:6a:3a:6b:76:35:54:49: ef:f7:0d:9a:d9:f8:3c:6a:77:02:89:10:8a:11:25:70:e9:72: d8:8a:51:e8:a1:a4:9e:ad:9a:8e:98:34:f8:a7:06:cd:50:f5: ee:cf:fa:e9:70:ac:e7:4f:dc:af:26:61:3a:7f:4e:0b:ab:6c: a4:c5:50:0b:e6:05:9d:78:90:6e:5a:10:ec:08:2e:d4:be:ea: d9:36:18:4a:ba:0b:0b:2b:f6:3a:b6:37:11:64:5f:35:8d:24: f8:88:ae:ba:8b:b4:8c:06:89:4d:c0:47:d6:6c:d3:50:2a:9e: ca:95:1f:96:dc:f9:4e:51:1c:55:1d:b4:5b:1e:56:d0:f5:10: 83:12:97:5f:79:50:64:36:81:2f:73:06:a0:88:76:55:a5:97: 42:ec:07:59:21:a1:7f:4a:9a:f5:24:a0:88:4f:69:67:c5:44: b2:13:29:31:79:d7:4e:76:91:de:b4:04:ce:b5:ce:5e:f1:b1: 72:67:31:6d:b9:39:ba:f0:1f:ab:d2:63:87:67:9c:20:55:fe: 8c:72:83:91:e0:33:2c:70:6f:d7:7c:d3:77:d8:dd:7b:ac:6a: 19:f3:dc:35:c3:5e:68:27:da:b4:3a:1f:88:6b:1e:98:ec:cf: b0:cc:69:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG8wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIzRkUxMTAvBgNVBAUTKEUyRjA3NDJBRDgwQTlEQkIyODc1MTg0RUUwREQ1RTk0 REQ3NTc4NEIwHhcNMjUwNDI0MTYxNTIwWhcNMjUwNTAxMTYxNTIwWjAYMRYwFAYD VQQDEw02ODBhNjM5OS1mZjAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAszNprxn+WWQoSbnxszWBXHfG/LUpOUNX3+q74v1Mc1pPZ/LhLMWuKEUJ93TH fPB/JjkEDxlH0dLpYzYuTDnSUb5EgIrMOA+AHHkwdUUsRfO3LNjOIWQYeou5U2vI ZwVpXqPPXViZIcAYMMKWWg/iGYZF9WgaWF8aGI8DNrQSDsXORXjaKKZKoMflZZn9 MnwPH9wNol2JKMXZb9ATthbi5yjmvDXJ5PiQLb6g7kinB46TcTtJG4Ry2QITPMlJ 9+fzbPOEvoVgimefUjaNNcYc/XjYjAEL5Bdcdz7VMRa7Gws3aZVzSVN9omhK9nNe 0aSYl/l/UL3/u1VRadPEzv3AKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOgMSWfb Xukf+IWpE/1eCHzNjxaDMB8GA1UdIwQYMBaAFOLwdCrYCp27KHUYTuDdXpTddXhL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjNGRS84MjVDRTlBQUY5 RUIxMUU2QkRFN0E5NjhDNEY5QUUwMi80dkIwS3RnS25ic29kUmhPNE4xZWxOMTFl RXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR2QjBLdGdLbmJzb2RSaE80TjFlbE4xMWVFcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjNGRS84MjVDRTlBQUY5RUIxMUU2QkRFN0E5NjhDNEY5QUUwMi80dkIwS3RnS25i c29kUmhPNE4xZWxOMTFlRXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDNLUe0TRmLpuxiM2o6a3Y1VEnv9w2a2fg8ancCiRCKESVw6XLYilHo oaSerZqOmDT4pwbNUPXuz/rpcKznT9yvJmE6f04Lq2ykxVAL5gWdeJBuWhDsCC7U vurZNhhKugsLK/Y6tjcRZF81jST4iK66i7SMBolNwEfWbNNQKp7KlR+W3PlOURxV HbRbHlbQ9RCDEpdfeVBkNoEvcwagiHZVpZdC7AdZIaF/Spr1JKCIT2lnxUSyEykx eddOdpHetATOtc5e8bFyZzFtuTm68B+r0mOHZ5wgVf6McoOR4DMscG/XfNN32N17 rGoZ89w1w15oJ9q0Oh+Iax6Y7M+wzGkS -----END CERTIFICATE-----Generated at Sat Apr 26 14:05:21 2025 by rpki-client