$ rpki-client -vvf rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/4hlMc0IL1P2sKL9jO7OvjNcg0LE.mft File: 4hlMc0IL1P2sKL9jO7OvjNcg0LE.mft (raw, json) Hash identifier: nvtBajcITtQjLMphUUtv7zw6uPfRRPtMJnsm8h5T+DA= Subject key identifier: 53:46:2B:CB:87:D8:6A:88:CA:DF:BC:2D:1E:8E:21:28:C9:EE:A9:19 Authority key identifier: E2:19:4C:73:42:0B:D4:FD:AC:28:BF:63:3B:B3:AF:8C:D7:20:D0:B1 Certificate issuer: /CN=A91536B7/serialNumber=E2194C73420BD4FDAC28BF633BB3AF8CD720D0B1 Certificate serial: 31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hlMc0IL1P2sKL9jO7OvjNcg0LE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/4hlMc0IL1P2sKL9jO7OvjNcg0LE.mft Manifest number: 4FF2 Signing time: Tue 08 Apr 2025 16:25:14 +0000 Manifest this update: Tue 08 Apr 2025 16:25:14 +0000 Manifest next update: Tue 15 Apr 2025 16:25:14 +0000 Files and hashes: 1: 4hlMc0IL1P2sKL9jO7OvjNcg0LE.crl (hash: Tlxdkde6IbE58otzqsu0Y5s2c438QEFNPj7ufIQy+4I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/4hlMc0IL1P2sKL9jO7OvjNcg0LE.crl rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/4hlMc0IL1P2sKL9jO7OvjNcg0LE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hlMc0IL1P2sKL9jO7OvjNcg0LE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 16:25:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49 (0x31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91536B7 Validity Not Before: Apr 8 16:25:14 2025 GMT Not After : Apr 15 16:25:14 2025 GMT Subject: CN=67f54dea-775d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:b2:8c:16:a5:5b:e4:8f:f6:e0:88:b8:91:b5: 8c:5b:4d:de:cb:6d:88:eb:61:a8:23:8c:68:93:0a: 98:8c:a1:17:66:b8:40:f3:50:b0:8a:09:94:b9:6c: 34:10:c2:61:78:7b:4e:95:c3:5e:df:22:e2:13:19: a8:cc:cc:00:63:06:8c:e8:0c:db:4f:bb:a2:46:40: c1:0b:26:54:aa:d6:cb:8b:c8:2a:33:72:73:1a:7f: 05:22:29:9a:a9:02:c5:99:47:72:85:4a:57:d8:bc: ee:b9:56:34:bf:26:c3:45:e5:7c:82:b2:97:ee:4a: d2:07:f6:ee:47:f1:b5:75:9f:8a:e7:21:ac:81:3e: 26:72:3c:5c:62:0c:9e:29:41:f8:fe:d0:e3:ef:ff: b1:dc:47:ed:b0:06:e1:70:b3:32:69:97:1d:4e:c8: 1d:74:29:ca:73:e7:24:c0:cf:69:a0:6c:e2:f3:d6: c5:4d:3f:32:50:da:61:e6:4c:f9:94:74:8e:9d:06: 6a:07:49:4b:ee:00:19:f8:1a:62:1e:57:00:c3:9e: 79:66:8b:3c:bf:0a:79:38:7c:c5:bb:25:73:d3:e7: f1:9b:3a:09:08:a5:f8:76:6c:0a:86:4d:ab:d5:88: b7:d7:2f:84:1a:63:60:07:86:70:73:c7:db:d3:27: ea:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:46:2B:CB:87:D8:6A:88:CA:DF:BC:2D:1E:8E:21:28:C9:EE:A9:19 X509v3 Authority Key Identifier: keyid:E2:19:4C:73:42:0B:D4:FD:AC:28:BF:63:3B:B3:AF:8C:D7:20:D0:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/4hlMc0IL1P2sKL9jO7OvjNcg0LE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hlMc0IL1P2sKL9jO7OvjNcg0LE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/4hlMc0IL1P2sKL9jO7OvjNcg0LE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:15:8f:53:57:dc:6d:53:9a:3f:a5:ff:3a:af:dc:1f:bc:f2: dd:41:40:1f:b8:68:aa:98:bc:63:df:cf:44:78:93:45:ac:5f: cb:26:40:70:12:42:24:df:51:36:e4:c5:13:34:d4:19:5d:8f: d8:73:40:d3:a5:be:da:a4:b5:d8:4f:02:61:5e:d5:fa:b7:e5: d4:64:d6:f3:ac:33:33:ff:ac:0c:96:3f:50:f7:4b:a6:3c:e3: b5:53:39:34:18:45:64:95:db:7e:39:f5:e2:67:fc:05:9d:a5: be:79:14:15:0c:ef:de:08:92:da:41:91:51:56:6f:f0:8f:c0: 73:30:3d:07:d4:d2:c4:43:b6:5d:52:ff:54:44:32:ad:89:6b: 58:55:b4:64:16:83:2b:f7:0f:1f:5b:f1:6f:6b:08:76:6f:98: da:5f:1f:33:71:0b:0f:0f:ad:05:3a:63:fe:db:f5:ce:bf:3a: 09:e9:b9:8f:7a:68:03:b3:75:c9:51:44:32:58:cb:09:37:9c: 16:84:5c:a0:fc:67:e9:4e:4c:c7:72:63:4f:75:32:9b:de:cc: a7:f4:c2:ae:71:67:f3:5e:15:07:8b:67:1d:8e:d2:49:24:6d: 03:1e:00:ea:64:8e:e5:be:64:b4:90:52:e7:c4:8e:20:16:44: 93:47:a1:56 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 MzZCNzExMC8GA1UEBRMoRTIxOTRDNzM0MjBCRDRGREFDMjhCRjYzM0JCM0FGOENE NzIwRDBCMTAeFw0yNTA0MDgxNjI1MTRaFw0yNTA0MTUxNjI1MTRaMBgxFjAUBgNV BAMTDTY3ZjU0ZGVhLTc3NWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDcsowWpVvkj/bgiLiRtYxbTd7LbYjrYagjjGiTCpiMoRdmuEDzULCKCZS5bDQQ wmF4e06Vw17fIuITGajMzABjBozoDNtPu6JGQMELJlSq1suLyCozcnMafwUiKZqp AsWZR3KFSlfYvO65VjS/JsNF5XyCspfuStIH9u5H8bV1n4rnIayBPiZyPFxiDJ4p Qfj+0OPv/7HcR+2wBuFwszJplx1OyB10Kcpz5yTAz2mgbOLz1sVNPzJQ2mHmTPmU dI6dBmoHSUvuABn4GmIeVwDDnnlmizy/Cnk4fMW7JXPT5/GbOgkIpfh2bAqGTavV iLfXL4QaY2AHhnBzx9vTJ+ppAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUU0Yry4fY aojK37wtHo4hKMnuqRkwHwYDVR0jBBgwFoAU4hlMc0IL1P2sKL9jO7OvjNcg0LEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUzNkI3L0YxQ0QyN0I0NzNB RDExRTdBQ0JEMDI1RUM0RjlBRTAyLzRobE1jMElMMVAyc0tMOWpPN092ak5jZzBM RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNGhsTWMwSUwxUDJzS0w5ak83T3ZqTmNnMExFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUz NkI3L0YxQ0QyN0I0NzNBRDExRTdBQ0JEMDI1RUM0RjlBRTAyLzRobE1jMElMMVAy c0tMOWpPN092ak5jZzBMRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABIVj1NX3G1Tmj+l/zqv3B+88t1BQB+4aKqYvGPfz0R4k0WsX8smQHAS QiTfUTbkxRM01Bldj9hzQNOlvtqktdhPAmFe1fq35dRk1vOsMzP/rAyWP1D3S6Y8 47VTOTQYRWSV23459eJn/AWdpb55FBUM794IktpBkVFWb/CPwHMwPQfU0sRDtl1S /1REMq2Ja1hVtGQWgyv3Dx9b8W9rCHZvmNpfHzNxCw8PrQU6Y/7b9c6/OgnpuY96 aAOzdclRRDJYywk3nBaEXKD8Z+lOTMdyY091MpvezKf0wq5xZ/NeFQeLZx2O0kkk bQMeAOpkjuW+ZLSQUufEjiAWRJNHoVY= -----END CERTIFICATE-----Generated at Thu Apr 10 17:28:01 2025 by rpki-client