$ rpki-client -vvf rpki.apnic.net/member_repository/A91471DA/51D579480FE211ECA4DDC909C4F9AE02/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.mft File: 4k0JVBBixgi-Nj_2Gcy4RE3cPC8.mft (raw, json) Hash identifier: WiHKYRAkAc9f6ruRkI0KoW5GraH/0n5hINVxQZJb2rM= Subject key identifier: C2:4F:25:B9:EA:54:C1:2A:11:A5:49:10:E5:2F:89:17:CC:AD:BB:FF Authority key identifier: E2:4D:09:54:10:62:C6:08:BE:36:3F:F6:19:CC:B8:44:4D:DC:3C:2F Certificate issuer: /CN=A91471DA/serialNumber=E24D09541062C608BE363FF619CCB8444DDC3C2F Certificate serial: 04DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91471DA/51D579480FE211ECA4DDC909C4F9AE02/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.mft Manifest number: 04D8 Signing time: Sat 29 Mar 2025 00:02:08 +0000 Manifest this update: Sat 29 Mar 2025 00:02:07 +0000 Manifest next update: Sat 05 Apr 2025 00:02:07 +0000 Files and hashes: 1: 4k0JVBBixgi-Nj_2Gcy4RE3cPC8.crl (hash: GbstPgy+rTt0oaHE8WE85WpFMtA1r6/lv4Yp9hxQoGg=) 2: 914E7A440FE611EC8DD2020EC4F9AE02.roa (hash: mjyt1YwDNmlbVB+s1ceKNJUb36Gp/fdDhWoek/UDCZM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91471DA/51D579480FE211ECA4DDC909C4F9AE02/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.crl rsync://rpki.apnic.net/member_repository/A91471DA/51D579480FE211ECA4DDC909C4F9AE02/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 00:02:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1242 (0x4da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91471DA Validity Not Before: Mar 29 00:02:07 2025 GMT Not After : Apr 5 00:02:07 2025 GMT Subject: CN=67e7387f-2ec5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:8e:7d:00:98:09:ff:26:a2:3a:44:15:f6:e0: 62:c0:04:a6:e7:40:0f:c2:08:01:64:26:f0:27:6b: 0b:1f:94:34:47:60:aa:8d:00:c8:9a:e3:09:71:ac: bc:03:fa:23:f7:e8:a9:09:2a:d0:1c:44:9c:66:ee: ba:e3:7d:72:eb:fc:b9:90:dd:69:19:bb:c9:0e:d6: ee:aa:6b:99:91:cf:c9:c6:49:ae:e6:52:2d:3b:e4: ca:7b:10:d5:b6:49:3c:7d:8d:71:b6:99:4a:db:8a: ac:c5:07:6d:00:5b:e2:76:5c:11:8c:41:58:6f:4d: f2:d4:5c:2b:a3:2f:4b:2f:51:4b:26:7e:c9:09:6f: e5:7d:cc:07:17:c6:e3:19:ed:95:dd:01:e8:43:4f: c1:c5:88:c3:97:bc:08:f2:cd:d8:62:55:78:81:d9: 35:7e:9b:c0:64:b5:3e:00:b0:e3:65:ed:32:91:6e: 5b:30:00:b4:52:d1:06:23:d4:ed:2e:20:a2:c8:9e: 0f:b1:ff:70:eb:e6:c3:89:47:5f:a5:a0:60:e6:a0: 0a:e6:7e:59:6b:5f:4c:16:2b:23:35:77:4c:eb:48: d7:29:16:16:22:65:88:1d:fb:d3:04:7d:50:8b:67: dd:d0:23:e3:be:4c:9f:22:5b:01:ee:7a:7a:94:aa: 75:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:4F:25:B9:EA:54:C1:2A:11:A5:49:10:E5:2F:89:17:CC:AD:BB:FF X509v3 Authority Key Identifier: keyid:E2:4D:09:54:10:62:C6:08:BE:36:3F:F6:19:CC:B8:44:4D:DC:3C:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91471DA/51D579480FE211ECA4DDC909C4F9AE02/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91471DA/51D579480FE211ECA4DDC909C4F9AE02/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:c4:c9:74:d8:95:ab:d0:65:f0:0f:5c:4e:06:d9:0a:75:70: 13:2a:2b:a2:3f:10:27:f1:59:d0:69:96:16:e4:2b:12:12:df: 3f:78:ef:34:e5:d4:ee:f6:02:62:8a:e6:a2:17:8b:69:f9:9e: 0c:98:1b:53:e5:c9:6c:df:d1:d5:95:26:a4:dd:af:f1:11:50: 77:cb:c1:21:e4:57:c2:df:c1:82:d9:e8:c1:71:14:98:f2:b8: 8c:80:9b:59:1f:41:6a:bb:ae:40:b2:2f:c7:8a:07:f7:3a:c8: 49:84:8e:d2:8e:e2:44:b3:e7:83:91:08:52:78:69:71:e1:4e: c6:45:87:e6:fa:fa:71:31:3e:d5:de:d2:ca:e4:28:12:1d:25: 1a:02:dd:4c:68:e7:96:e9:11:32:7d:92:d7:4c:a8:0f:c4:56: 70:ce:fb:9c:a1:17:3d:08:06:ca:d1:c6:68:d2:5a:4a:23:39: 8b:69:60:0b:8c:05:ef:fd:44:e6:8d:e6:6c:e1:9f:61:07:b9: 97:0c:c1:c1:a6:c9:fa:79:59:b7:0b:76:ae:da:6b:a4:0d:be: c2:03:97:59:a7:cf:d1:4d:62:81:36:89:e5:c8:45:93:78:1e: 0e:f9:01:19:f0:4f:bf:dc:92:18:a5:ee:70:63:ac:74:94:5a: aa:12:f5:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBNowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDcxREExMTAvBgNVBAUTKEUyNEQwOTU0MTA2MkM2MDhCRTM2M0ZGNjE5Q0NCODQ0 NEREQzNDMkYwHhcNMjUwMzI5MDAwMjA3WhcNMjUwNDA1MDAwMjA3WjAYMRYwFAYD VQQDEw02N2U3Mzg3Zi0yZWM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuY59AJgJ/yaiOkQV9uBiwASm50APwggBZCbwJ2sLH5Q0R2CqjQDImuMJcay8 A/oj9+ipCSrQHEScZu66431y6/y5kN1pGbvJDtbuqmuZkc/Jxkmu5lItO+TKexDV tkk8fY1xtplK24qsxQdtAFvidlwRjEFYb03y1Fwroy9LL1FLJn7JCW/lfcwHF8bj Ge2V3QHoQ0/BxYjDl7wI8s3YYlV4gdk1fpvAZLU+ALDjZe0ykW5bMAC0UtEGI9Tt LiCiyJ4Psf9w6+bDiUdfpaBg5qAK5n5Za19MFisjNXdM60jXKRYWImWIHfvTBH1Q i2fd0CPjvkyfIlsB7np6lKp1AwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMJPJbnq VMEqEaVJEOUviRfMrbv/MB8GA1UdIwQYMBaAFOJNCVQQYsYIvjY/9hnMuERN3Dwv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzFEQS81MUQ1Nzk0ODBG RTIxMUVDQTREREM5MDlDNEY5QUUwMi80azBKVkJCaXhnaS1Oal8yR2N5NFJFM2NQ QzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRrMEpWQkJpeGdpLU5qXzJHY3k0UkUzY1BDOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzFEQS81MUQ1Nzk0ODBGRTIxMUVDQTREREM5MDlDNEY5QUUwMi80azBKVkJCaXhn aS1Oal8yR2N5NFJFM2NQQzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKxMl02JWr0GXwD1xOBtkKdXATKiuiPxAn8VnQaZYW5CsSEt8/eO80 5dTu9gJiiuaiF4tp+Z4MmBtT5cls39HVlSak3a/xEVB3y8Eh5FfC38GC2ejBcRSY 8riMgJtZH0Fqu65Asi/Higf3OshJhI7SjuJEs+eDkQhSeGlx4U7GRYfm+vpxMT7V 3tLK5CgSHSUaAt1MaOeW6REyfZLXTKgPxFZwzvucoRc9CAbK0cZo0lpKIzmLaWAL jAXv/UTmjeZs4Z9hB7mXDMHBpsn6eVm3C3au2mukDb7CA5dZp8/RTWKBNonlyEWT eB4O+QEZ8E+/3JIYpe5wY6x0lFqqEvWM -----END CERTIFICATE-----Generated at Fri Apr 4 22:04:20 2025 by rpki-client