$ rpki-client -vvf rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft File: 4AJb-TLnFuGh-K-QECEcQRCE_J0.mft (raw, json) Hash identifier: UKvK/xT2e72vem02Re4vtOgDCSrS+OwTwq8IWG+UgA4= Subject key identifier: EC:70:45:B1:14:7D:7C:DD:99:D8:9C:D9:EB:BC:EB:AD:46:06:91:BE Authority key identifier: E0:02:5B:F9:32:E7:16:E1:A1:F8:AF:90:10:21:1C:41:10:84:FC:9D Certificate issuer: /CN=A9197FDB/serialNumber=E0025BF932E716E1A1F8AF9010211C411084FC9D Certificate serial: 0573 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft Manifest number: 056C Signing time: Fri 04 Apr 2025 23:28:34 +0000 Manifest this update: Fri 04 Apr 2025 23:28:34 +0000 Manifest next update: Fri 11 Apr 2025 23:28:34 +0000 Files and hashes: 1: 4AJb-TLnFuGh-K-QECEcQRCE_J0.crl (hash: 5p7KZ4DR/I0ZtXkH0doaHjVgV5+jQBmG0oQKZxsK4QQ=) 2: 0A1FAC405BB211EEAD06B243C4F9AE02.roa (hash: +Nf3CbeJiQCKoMqVOr8fCtBhRD9vFNzRUGK/YqqHHSM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.crl rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 23:28:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1395 (0x573) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197FDB Validity Not Before: Apr 4 23:28:34 2025 GMT Not After : Apr 11 23:28:34 2025 GMT Subject: CN=67f06b22-4611 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d8:70:f6:33:8b:ba:a2:11:6b:e2:fe:98:e2: 13:b2:05:3b:2b:7a:4a:e7:b2:2f:4f:00:5a:a8:20: 6d:7e:30:12:24:90:0b:14:f5:d8:c0:81:fa:d3:ab: 8a:08:f9:89:0a:9b:4c:b2:00:75:4a:98:7c:5f:36: 29:38:c1:b1:72:e8:83:8a:ec:cd:b9:1f:d0:b5:43: de:e8:c3:b4:59:cb:cb:d2:7d:b2:a7:0f:7f:61:ef: ca:39:42:fc:9d:e1:3c:c4:cc:58:4e:73:da:49:be: f0:bb:9e:91:f7:f0:d8:1d:8f:5d:d4:54:20:78:dd: 6a:8c:6d:33:35:e7:6c:16:3a:db:31:0a:cd:49:5b: 7b:dd:84:38:80:30:05:ed:71:ae:72:f1:0e:d3:16: ba:38:c8:02:38:e0:0c:23:57:99:ec:da:8f:29:31: c7:1c:82:65:6e:29:94:f2:60:14:c4:5c:f7:b1:55: d5:be:32:05:b1:30:9f:fe:e8:9d:50:99:95:3f:2c: 20:20:b8:37:69:53:5f:39:c0:6f:62:ca:c8:21:64: a1:d0:12:15:c6:a8:7a:11:0d:32:cb:58:b0:2e:f8: 95:c8:4c:ec:3b:1f:8e:33:53:a7:da:33:7b:17:39: fa:1d:5e:dc:e9:90:61:74:a4:47:6c:d8:5e:b8:b9: e3:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:70:45:B1:14:7D:7C:DD:99:D8:9C:D9:EB:BC:EB:AD:46:06:91:BE X509v3 Authority Key Identifier: keyid:E0:02:5B:F9:32:E7:16:E1:A1:F8:AF:90:10:21:1C:41:10:84:FC:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:ed:c2:d1:ac:bf:72:20:f1:7e:0e:f6:a8:70:5f:24:5f:df: b0:8a:89:9b:97:a3:c5:69:d1:c3:14:31:24:eb:aa:6f:61:f9: 51:6a:64:2d:9c:c5:45:f0:a2:a8:90:c5:c1:04:c4:c6:29:21: 7e:ab:d5:01:ea:76:82:d0:12:df:7e:60:e8:b9:52:2d:ea:41: 57:c6:93:59:85:f0:5f:ae:8f:eb:7a:f9:cf:ad:70:c9:cd:50: 10:39:d0:e6:da:de:fd:76:dd:5f:cf:d5:a8:c3:17:b5:81:9e: b9:92:48:cc:ee:ff:25:da:04:a7:f7:55:c0:f9:5a:cd:28:c0: 25:23:f8:d1:6f:a1:1f:e0:2f:e4:ee:d1:ba:98:98:82:a6:40: 4c:d8:86:6f:dc:54:ef:81:5a:57:ae:1a:bb:ec:38:30:98:69: 17:3d:01:4e:a8:81:3a:6a:de:ed:7b:aa:b7:cb:38:21:6f:0c: 6c:7f:b2:a1:fc:dd:35:15:b4:79:7e:13:95:b9:45:e8:98:09: a7:14:e8:73:a7:1d:f3:4d:7e:23:a7:73:9a:86:bb:3c:a6:a3: ce:6a:4a:75:94:d6:54:ef:3b:42:c0:5b:99:fb:73:70:1a:51: 6f:3e:17:cc:c1:2c:12:57:3c:bd:60:38:fa:b7:59:a1:03:16: 9e:31:12:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdGREIxMTAvBgNVBAUTKEUwMDI1QkY5MzJFNzE2RTFBMUY4QUY5MDEwMjExQzQx MTA4NEZDOUQwHhcNMjUwNDA0MjMyODM0WhcNMjUwNDExMjMyODM0WjAYMRYwFAYD VQQDEw02N2YwNmIyMi00NjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuNhw9jOLuqIRa+L+mOITsgU7K3pK57IvTwBaqCBtfjASJJALFPXYwIH606uK CPmJCptMsgB1Sph8XzYpOMGxcuiDiuzNuR/QtUPe6MO0WcvL0n2ypw9/Ye/KOUL8 neE8xMxYTnPaSb7wu56R9/DYHY9d1FQgeN1qjG0zNedsFjrbMQrNSVt73YQ4gDAF 7XGucvEO0xa6OMgCOOAMI1eZ7NqPKTHHHIJlbimU8mAUxFz3sVXVvjIFsTCf/uid UJmVPywgILg3aVNfOcBvYsrIIWSh0BIVxqh6EQ0yy1iwLviVyEzsOx+OM1On2jN7 Fzn6HV7c6ZBhdKRHbNheuLnjmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOxwRbEU fXzdmdic2eu8661GBpG+MB8GA1UdIwQYMBaAFOACW/ky5xbhofivkBAhHEEQhPyd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0ZEQi82NTdFNDA3NERB MzYxMUVCODRFNkEzNDlDNEY5QUUwMi80QUpiLVRMbkZ1R2gtSy1RRUNFY1FSQ0Vf SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRBSmItVExuRnVHaC1LLVFFQ0VjUVJDRV9KMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0ZEQi82NTdFNDA3NERBMzYxMUVCODRFNkEzNDlDNEY5QUUwMi80QUpiLVRMbkZ1 R2gtSy1RRUNFY1FSQ0VfSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBD7cLRrL9yIPF+DvaocF8kX9+wiombl6PFadHDFDEk66pvYflRamQt nMVF8KKokMXBBMTGKSF+q9UB6naC0BLffmDouVIt6kFXxpNZhfBfro/revnPrXDJ zVAQOdDm2t79dt1fz9Wowxe1gZ65kkjM7v8l2gSn91XA+VrNKMAlI/jRb6Ef4C/k 7tG6mJiCpkBM2IZv3FTvgVpXrhq77DgwmGkXPQFOqIE6at7te6q3yzghbwxsf7Kh /N01FbR5fhOVuUXomAmnFOhzpx3zTX4jp3Oahrs8pqPOakp1lNZU7ztCwFuZ+3Nw GlFvPhfMwSwSVzy9YDj6t1mhAxaeMRI4 -----END CERTIFICATE-----Generated at Sat Apr 5 07:59:30 2025 by rpki-client