$ rpki-client -vvf rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.mft File: 4MiSj5RRUg5k0d7VjwcZa1hhsoY.mft (raw, json) Hash identifier: rp4u2FIdlLUe1vOw6ntd9MB8EBwZjIcHBysQjRJVbVM= Subject key identifier: 78:96:E5:F3:FC:BF:48:77:7D:C8:79:DE:25:A9:52:17:7F:DC:89:17 Authority key identifier: E0:C8:92:8F:94:51:52:0E:64:D1:DE:D5:8F:07:19:6B:58:61:B2:86 Certificate issuer: /CN=A917D4C4/serialNumber=E0C8928F9451520E64D1DED58F07196B5861B286 Certificate serial: 063E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4MiSj5RRUg5k0d7VjwcZa1hhsoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.mft Manifest number: 063A Signing time: Tue 08 Apr 2025 14:49:12 +0000 Manifest this update: Tue 08 Apr 2025 14:49:11 +0000 Manifest next update: Tue 15 Apr 2025 14:49:11 +0000 Files and hashes: 1: 4MiSj5RRUg5k0d7VjwcZa1hhsoY.crl (hash: 9deD4j87H1ZYcizpbZ0Cx3Z9bq+sWo46PnXuiYBEY+E=) 2: 6E325DBC0E2F11EDB4659653C4F9AE02.roa (hash: NS8IXL+/osy1aonTB1YcjpMFwDzkEpu3g9yC5lM136w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.crl rsync://rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4MiSj5RRUg5k0d7VjwcZa1hhsoY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 14:49:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1598 (0x63e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D4C4 Validity Not Before: Apr 8 14:49:11 2025 GMT Not After : Apr 15 14:49:11 2025 GMT Subject: CN=67f53768-410a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:e1:4f:19:c0:68:a0:15:77:a4:c8:3f:53:53: 44:18:66:51:5a:f4:8b:f1:bf:61:1d:48:e1:92:16: 92:20:5c:ef:9c:83:c8:bd:be:6b:97:eb:a9:a1:da: e8:2a:c4:19:79:76:10:76:15:bd:30:e8:5c:5f:55: 81:42:51:33:93:f4:77:43:eb:f9:57:25:8f:51:fd: e3:29:24:6d:25:76:87:da:36:94:de:c5:ab:b3:5c: d3:8f:2e:76:78:90:8d:f6:28:39:84:ea:35:c8:5d: f8:a5:02:13:cf:76:9c:d6:3e:4f:1b:c2:18:61:f6: fb:ea:95:70:49:12:98:f6:0f:a7:83:2c:16:66:c5: 5c:02:ab:82:10:31:16:19:3f:81:5f:a0:33:a1:27: 25:7a:af:01:ab:19:d8:bf:0b:9c:d1:56:a7:ca:28: a3:9e:58:eb:71:e9:65:5e:93:92:3f:ff:9d:5b:25: 13:e4:c6:55:f6:32:03:6c:d2:80:0d:97:60:2a:9e: 57:9a:3c:1b:95:1b:8a:4f:3c:b4:04:56:a6:e5:81: fa:0e:8e:6c:e6:ca:b5:9b:bc:3e:42:37:14:c8:99: a8:3d:1e:07:e2:1d:d7:aa:73:38:25:2c:97:5a:95: 48:08:be:7c:bd:99:9f:e4:6d:48:71:7e:23:e1:da: 61:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:96:E5:F3:FC:BF:48:77:7D:C8:79:DE:25:A9:52:17:7F:DC:89:17 X509v3 Authority Key Identifier: keyid:E0:C8:92:8F:94:51:52:0E:64:D1:DE:D5:8F:07:19:6B:58:61:B2:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4MiSj5RRUg5k0d7VjwcZa1hhsoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:6c:a9:b1:68:0d:86:c8:17:f4:46:43:c4:50:8b:aa:7d:ac: 63:29:44:1a:10:31:df:d0:a7:01:4f:5f:be:7b:ae:37:8e:62: 53:21:e8:8e:fd:e3:9d:1d:a7:97:c6:ec:4d:86:fa:a2:cf:be: 9f:8f:2e:d2:e9:90:e9:3f:0a:71:11:53:5e:5f:bc:08:29:77: e1:22:cf:c0:4a:ab:55:3a:61:53:3b:32:17:33:32:23:80:64: 50:ae:a9:31:05:d7:d2:9b:df:49:87:c5:73:47:da:c9:a4:31: b9:1e:55:06:05:2c:94:97:c5:15:4a:7c:8c:f6:4f:98:ed:0b: fd:ab:bc:a7:e1:55:d8:e5:0a:14:65:73:65:a6:0e:69:8e:87: 99:f4:b0:e7:34:0a:80:56:28:4a:ec:5a:89:e5:eb:4d:ff:68: 42:6b:90:e6:16:dc:84:57:c2:81:43:71:4c:06:73:c0:a2:8f: ee:f2:f8:f4:8d:1a:50:76:96:14:4a:d1:cd:1f:66:7b:70:fd: 66:fb:96:d6:ae:7b:f6:28:11:18:2e:f5:60:b9:0d:e2:21:02: d1:48:09:14:01:bb:be:df:20:d7:4a:b3:b0:da:a5:e4:26:22: a2:d8:d3:3a:76:29:19:22:ad:b8:6d:1c:6a:2d:40:29:75:2b: 81:c9:4c:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBj4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q0QzQxMTAvBgNVBAUTKEUwQzg5MjhGOTQ1MTUyMEU2NEQxREVENThGMDcxOTZC NTg2MUIyODYwHhcNMjUwNDA4MTQ0OTExWhcNMjUwNDE1MTQ0OTExWjAYMRYwFAYD VQQDEw02N2Y1Mzc2OC00MTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsuFPGcBooBV3pMg/U1NEGGZRWvSL8b9hHUjhkhaSIFzvnIPIvb5rl+upodro KsQZeXYQdhW9MOhcX1WBQlEzk/R3Q+v5VyWPUf3jKSRtJXaH2jaU3sWrs1zTjy52 eJCN9ig5hOo1yF34pQITz3ac1j5PG8IYYfb76pVwSRKY9g+ngywWZsVcAquCEDEW GT+BX6AzoScleq8BqxnYvwuc0VanyiijnljrcellXpOSP/+dWyUT5MZV9jIDbNKA DZdgKp5XmjwblRuKTzy0BFam5YH6Do5s5sq1m7w+QjcUyJmoPR4H4h3XqnM4JSyX WpVICL58vZmf5G1IcX4j4dphkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHiW5fP8 v0h3fch53iWpUhd/3IkXMB8GA1UdIwQYMBaAFODIko+UUVIOZNHe1Y8HGWtYYbKG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDRDNC80MzlDRjg3QzhE N0IxMUVCOEQ4QkQ2MEJDNEY5QUUwMi80TWlTajVSUlVnNWswZDdWandjWmExaGhz b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRNaVNqNVJSVWc1azBkN1Zqd2NaYTFoaHNvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDRDNC80MzlDRjg3QzhEN0IxMUVCOEQ4QkQ2MEJDNEY5QUUwMi80TWlTajVSUlVn NWswZDdWandjWmExaGhzb1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqbKmxaA2GyBf0RkPEUIuqfaxjKUQaEDHf0KcBT1++e643jmJTIeiO /eOdHaeXxuxNhvqiz76fjy7S6ZDpPwpxEVNeX7wIKXfhIs/ASqtVOmFTOzIXMzIj gGRQrqkxBdfSm99Jh8VzR9rJpDG5HlUGBSyUl8UVSnyM9k+Y7Qv9q7yn4VXY5QoU ZXNlpg5pjoeZ9LDnNAqAVihK7FqJ5etN/2hCa5DmFtyEV8KBQ3FMBnPAoo/u8vj0 jRpQdpYUStHNH2Z7cP1m+5bWrnv2KBEYLvVguQ3iIQLRSAkUAbu+3yDXSrOw2qXk JiKi2NM6dikZIq24bRxqLUApdSuByUwp -----END CERTIFICATE-----Generated at Thu Apr 10 18:40:21 2025 by rpki-client