$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft File: 4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft (raw, json) Hash identifier: chKNhv8SwBPALG57qNoTcyofHSGrydO4VVxMkah6znQ= Subject key identifier: 84:4A:B6:BB:63:01:1C:DC:36:00:FF:27:E2:AE:C0:63:98:D1:D0:F6 Authority key identifier: E2:1F:24:E0:C5:4D:BB:93:F6:67:81:44:02:D6:6A:D4:08:07:11:14 Certificate issuer: /CN=A91C4060/serialNumber=E21F24E0C54DBB93F667814402D66AD408071114 Certificate serial: 070F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft Manifest number: 0708 Signing time: Thu 24 Apr 2025 21:42:29 +0000 Manifest this update: Thu 24 Apr 2025 21:42:29 +0000 Manifest next update: Thu 01 May 2025 21:42:29 +0000 Files and hashes: 1: 4h8k4MVNu5P2Z4FEAtZq1AgHERQ.crl (hash: Ll46CUJ9NkS4gwyhP27Qy316v2QE/al/2GXaSWbesFQ=) 2: 71C26BD039D211EB84B9FD6BC4F9AE02.roa (hash: 1uZF2QAxlIwO0QnFgrG3CrAusMfAKjQaAjjZhLnhprI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.crl rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:42:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1807 (0x70f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4060, serialNumber=E21F24E0C54DBB93F667814402D66AD408071114 Validity Not Before: Apr 24 21:42:29 2025 GMT Not After : May 1 21:42:29 2025 GMT Subject: CN=680ab045-99aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a3:73:07:f4:94:99:81:cd:71:9e:18:77:e4: a8:ca:59:f1:21:6c:b2:50:cd:2c:ff:21:c7:08:15: f6:b4:5d:44:1e:44:cc:54:df:aa:f4:25:4c:f5:35: b1:af:00:32:fe:3c:f9:2c:ce:8c:0f:1c:8f:14:63: e6:c0:85:39:60:f7:4b:ea:8e:83:cd:e5:18:cb:4f: d7:ce:26:ec:e7:22:88:8f:d3:e1:6b:4f:85:78:d6: b5:c4:f6:49:4a:0f:e8:76:6c:18:c5:52:87:75:91: 73:19:12:8b:96:49:9c:ba:36:7f:ae:86:b9:5b:37: 56:ee:71:c5:42:c1:f7:85:68:e8:c0:18:5c:35:9a: 85:05:de:c4:b7:89:ae:28:9f:47:53:2c:bc:00:95: 08:55:3c:30:6a:bf:3a:ae:c4:82:bc:a8:b9:51:e0: 4d:a4:f3:3f:f9:7d:c3:02:ae:fc:07:01:dd:2b:ad: df:48:bb:9a:d1:e4:a4:0d:f8:44:26:bc:d0:f8:54: 05:2e:d4:31:69:3b:87:d4:d6:4e:38:f4:1a:c6:b5: 89:cf:ec:96:f4:0e:92:3d:2e:c0:8b:32:76:39:6a: ea:0d:36:bf:46:93:ba:94:7a:66:69:5e:56:64:58: 44:dd:1b:0e:fb:b9:37:97:0a:ec:c6:60:52:8f:02: 39:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:4A:B6:BB:63:01:1C:DC:36:00:FF:27:E2:AE:C0:63:98:D1:D0:F6 X509v3 Authority Key Identifier: keyid:E2:1F:24:E0:C5:4D:BB:93:F6:67:81:44:02:D6:6A:D4:08:07:11:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:7b:f5:46:c6:e3:80:67:97:ee:05:0e:e7:3f:3d:42:29:99: 19:1b:40:78:80:a2:9d:6d:fa:3d:0d:2d:e9:d4:9e:a3:d5:46: 19:75:2b:93:19:5a:13:2b:db:ca:fe:2b:fc:cb:36:97:41:f9: b4:ac:b9:67:29:a9:8b:3e:95:5c:1e:57:cb:ac:2c:af:94:3c: 81:65:bf:34:92:34:cf:99:0b:af:75:37:cb:77:20:9f:7c:72: 8f:e6:f7:1f:cc:17:85:b2:76:aa:54:42:9f:bd:bb:9b:a4:f7: 2a:8f:1d:48:b2:23:3c:c5:00:78:dd:83:42:0c:72:5d:26:d8: de:1b:43:b4:28:62:41:1a:f3:56:33:ff:8d:7a:5f:15:08:d6: 70:04:a0:b1:d7:21:f9:67:d1:20:34:c7:9c:a4:6e:27:d3:27: 20:81:cf:e5:95:ae:9e:f1:7d:b4:a4:e9:c7:bb:1d:2a:ca:04: 1b:74:d3:8c:6c:5f:78:49:c1:42:8c:93:b0:4c:a8:f9:72:d3: 8d:0f:ae:29:be:fe:fd:9c:f4:f2:8e:d4:4f:75:f6:2f:da:86: 97:1a:26:c2:11:1b:40:00:de:4d:e2:07:57:86:6f:84:14:51: ca:f0:aa:fe:2f:18:45:84:f5:5e:dd:0b:d0:de:4e:65:4d:8e: 99:12:87:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBw8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQwNjAxMTAvBgNVBAUTKEUyMUYyNEUwQzU0REJCOTNGNjY3ODE0NDAyRDY2QUQ0 MDgwNzExMTQwHhcNMjUwNDI0MjE0MjI5WhcNMjUwNTAxMjE0MjI5WjAYMRYwFAYD VQQDEw02ODBhYjA0NS05OWFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu6NzB/SUmYHNcZ4Yd+SoylnxIWyyUM0s/yHHCBX2tF1EHkTMVN+q9CVM9TWx rwAy/jz5LM6MDxyPFGPmwIU5YPdL6o6DzeUYy0/Xzibs5yKIj9Pha0+FeNa1xPZJ Sg/odmwYxVKHdZFzGRKLlkmcujZ/roa5WzdW7nHFQsH3hWjowBhcNZqFBd7Et4mu KJ9HUyy8AJUIVTwwar86rsSCvKi5UeBNpPM/+X3DAq78BwHdK63fSLua0eSkDfhE JrzQ+FQFLtQxaTuH1NZOOPQaxrWJz+yW9A6SPS7AizJ2OWrqDTa/RpO6lHpmaV5W ZFhE3RsO+7k3lwrsxmBSjwI5dwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIRKtrtj ARzcNgD/J+KuwGOY0dD2MB8GA1UdIwQYMBaAFOIfJODFTbuT9meBRALWatQIBxEU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDA2MC81NjkzODlGRTM5 RDAxMUVCOEY0NzE1NjlDNEY5QUUwMi80aDhrNE1WTnU1UDJaNEZFQXRacTFBZ0hF UlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRoOGs0TVZOdTVQMlo0RkVBdFpxMUFnSEVSUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDA2MC81NjkzODlGRTM5RDAxMUVCOEY0NzE1NjlDNEY5QUUwMi80aDhrNE1WTnU1 UDJaNEZFQXRacTFBZ0hFUlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7e/VGxuOAZ5fuBQ7nPz1CKZkZG0B4gKKdbfo9DS3p1J6j1UYZdSuT GVoTK9vK/iv8yzaXQfm0rLlnKamLPpVcHlfLrCyvlDyBZb80kjTPmQuvdTfLdyCf fHKP5vcfzBeFsnaqVEKfvbubpPcqjx1IsiM8xQB43YNCDHJdJtjeG0O0KGJBGvNW M/+Nel8VCNZwBKCx1yH5Z9EgNMecpG4n0ycggc/lla6e8X20pOnHux0qygQbdNOM bF94ScFCjJOwTKj5ctOND64pvv79nPTyjtRPdfYv2oaXGibCERtAAN5N4gdXhm+E FFHK8Kr+LxhFhPVe3QvQ3k5lTY6ZEocO -----END CERTIFICATE-----Generated at Sat Apr 26 04:23:53 2025 by rpki-client