$ rpki-client -vvf rpki.apnic.net/member_repository/A919F53A/36B52DFA2FC011EBA25FE982C4F9AE02/r4V4i4xS0SjVNAp1CVuPDxF3nEg.mft File: r4V4i4xS0SjVNAp1CVuPDxF3nEg.mft (raw, json) Hash identifier: enEP+Y7b66xQpTFrMd8Ssg/tTFk4paSJpQhiiF1krrs= Subject key identifier: 1F:F4:85:AE:9B:42:E8:E0:D3:62:BC:CD:0D:4E:31:66:F5:D0:F6:27 Authority key identifier: AF:85:78:8B:8C:52:D1:28:D5:34:0A:75:09:5B:8F:0F:11:77:9C:48 Certificate issuer: /CN=A919F53A/serialNumber=AF85788B8C52D128D5340A75095B8F0F11779C48 Certificate serial: 071C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r4V4i4xS0SjVNAp1CVuPDxF3nEg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F53A/36B52DFA2FC011EBA25FE982C4F9AE02/r4V4i4xS0SjVNAp1CVuPDxF3nEg.mft Manifest number: 0717 Signing time: Fri 04 Apr 2025 21:59:47 +0000 Manifest this update: Fri 04 Apr 2025 21:59:46 +0000 Manifest next update: Fri 11 Apr 2025 21:59:46 +0000 Files and hashes: 1: r4V4i4xS0SjVNAp1CVuPDxF3nEg.crl (hash: aEnsevY1G/XROwejqfjGzTseS0wjtIsE8Mtit6a37qc=) 2: 72BCBB042FC211EBB8550B0AC4F9AE02.roa (hash: kntkOaZrAaOx4SVIiImPb0s+dVekp3sawuWhb73K14Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F53A/36B52DFA2FC011EBA25FE982C4F9AE02/r4V4i4xS0SjVNAp1CVuPDxF3nEg.crl rsync://rpki.apnic.net/member_repository/A919F53A/36B52DFA2FC011EBA25FE982C4F9AE02/r4V4i4xS0SjVNAp1CVuPDxF3nEg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r4V4i4xS0SjVNAp1CVuPDxF3nEg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:59:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1820 (0x71c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F53A Validity Not Before: Apr 4 21:59:46 2025 GMT Not After : Apr 11 21:59:46 2025 GMT Subject: CN=67f05652-cb15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:72:35:85:99:a6:b2:e7:a2:3d:dc:6e:5c:dc: cc:dd:7c:58:49:d6:84:63:20:b7:75:7f:46:61:58: 40:b9:ed:d6:0a:1f:a1:b7:07:a3:09:09:81:eb:9e: 72:33:47:72:8e:7b:93:10:ed:c7:26:84:da:52:7f: 74:bf:1e:79:28:02:a1:dd:47:1b:1a:28:f0:39:a1: e7:53:02:77:f7:2b:be:d0:90:49:ae:1e:1c:aa:11: e3:95:97:35:0d:6f:73:ef:fc:51:15:f8:c3:1f:ac: ea:53:ff:26:78:2d:97:3c:8b:2c:b3:64:8f:cb:c0: f6:c1:7a:3e:d0:6b:eb:d6:87:16:04:ab:9f:db:5f: 7f:72:c3:d9:e7:a7:a7:51:96:f9:ec:d6:3e:69:e8: dd:29:8a:3f:38:00:17:8c:94:fe:a4:7e:5f:aa:10: 61:25:86:fb:23:cb:19:21:5a:81:65:02:3d:15:63: e0:d1:d2:25:f1:0b:25:ac:9d:6c:a7:3b:21:fe:c1: 32:10:a8:37:d2:93:67:f1:6d:52:00:84:84:ce:1d: 63:70:72:86:1e:47:b4:ac:84:d0:ac:09:90:55:ce: c0:a6:06:6e:f8:44:c4:bd:79:3b:a6:52:00:6f:8e: 53:49:27:00:2e:72:4a:a9:1a:6c:cc:fa:26:2b:74: 2a:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:F4:85:AE:9B:42:E8:E0:D3:62:BC:CD:0D:4E:31:66:F5:D0:F6:27 X509v3 Authority Key Identifier: keyid:AF:85:78:8B:8C:52:D1:28:D5:34:0A:75:09:5B:8F:0F:11:77:9C:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F53A/36B52DFA2FC011EBA25FE982C4F9AE02/r4V4i4xS0SjVNAp1CVuPDxF3nEg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r4V4i4xS0SjVNAp1CVuPDxF3nEg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F53A/36B52DFA2FC011EBA25FE982C4F9AE02/r4V4i4xS0SjVNAp1CVuPDxF3nEg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:b9:91:e0:ac:ca:48:5d:f5:03:82:9c:be:a1:14:3d:67:d8: 4a:19:d2:b2:e4:76:c4:f3:05:45:14:e1:a3:2d:bc:65:fd:aa: d3:ca:ff:bc:f6:04:1a:9e:c6:11:90:2c:10:a2:e9:9b:33:9f: 9f:4b:df:63:97:8b:12:be:41:4c:88:ee:c0:92:11:f1:82:4b: 84:9c:d4:1c:d5:29:85:e9:61:8b:56:87:dd:e0:d5:b5:ab:82: ae:ec:de:b8:85:82:3a:78:26:8a:b9:64:93:2a:3d:30:cc:26: 44:11:f3:68:6e:9d:b4:7f:85:72:a8:e8:b0:24:c9:2f:4f:bd: eb:52:f1:88:c5:c9:8a:1f:66:d3:92:e2:a4:61:ed:58:8e:64: 04:f9:15:0c:60:f8:07:f6:43:c4:03:58:1e:74:05:db:0c:2f: cc:12:5d:9d:49:8c:ee:32:a6:bd:9a:a9:57:c2:fa:4b:35:ef: c5:7a:47:6a:43:45:a1:4c:27:39:ab:29:c7:39:49:90:f7:d1: 1f:aa:ac:a7:ec:f3:e3:84:14:53:ea:9c:32:7f:58:6d:df:b0: c0:1d:bf:a4:47:ae:c3:5d:49:89:53:63:b4:c9:d6:e4:0d:96: c8:79:13:51:88:b1:7e:a0:c8:39:ee:ab:31:ca:0d:26:2c:9e: d0:11:d5:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBxwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUY1M0ExMTAvBgNVBAUTKEFGODU3ODhCOEM1MkQxMjhENTM0MEE3NTA5NUI4RjBG MTE3NzlDNDgwHhcNMjUwNDA0MjE1OTQ2WhcNMjUwNDExMjE1OTQ2WjAYMRYwFAYD VQQDEw02N2YwNTY1Mi1jYjE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAynI1hZmmsueiPdxuXNzM3XxYSdaEYyC3dX9GYVhAue3WCh+htwejCQmB655y M0dyjnuTEO3HJoTaUn90vx55KAKh3UcbGijwOaHnUwJ39yu+0JBJrh4cqhHjlZc1 DW9z7/xRFfjDH6zqU/8meC2XPIsss2SPy8D2wXo+0Gvr1ocWBKuf219/csPZ56en UZb57NY+aejdKYo/OAAXjJT+pH5fqhBhJYb7I8sZIVqBZQI9FWPg0dIl8QslrJ1s pzsh/sEyEKg30pNn8W1SAISEzh1jcHKGHke0rITQrAmQVc7ApgZu+ETEvXk7plIA b45TSScALnJKqRpszPomK3QqlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB/0ha6b Qujg02K8zQ1OMWb10PYnMB8GA1UdIwQYMBaAFK+FeIuMUtEo1TQKdQlbjw8Rd5xI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjUzQS8zNkI1MkRGQTJG QzAxMUVCQTI1RkU5ODJDNEY5QUUwMi9yNFY0aTR4UzBTalZOQXAxQ1Z1UER4RjNu RWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3I0VjRpNHhTMFNqVk5BcDFDVnVQRHhGM25FZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RjUzQS8zNkI1MkRGQTJGQzAxMUVCQTI1RkU5ODJDNEY5QUUwMi9yNFY0aTR4UzBT alZOQXAxQ1Z1UER4RjNuRWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0uZHgrMpIXfUDgpy+oRQ9Z9hKGdKy5HbE8wVFFOGjLbxl/arTyv+8 9gQansYRkCwQoumbM5+fS99jl4sSvkFMiO7AkhHxgkuEnNQc1SmF6WGLVofd4NW1 q4Ku7N64hYI6eCaKuWSTKj0wzCZEEfNobp20f4VyqOiwJMkvT73rUvGIxcmKH2bT kuKkYe1YjmQE+RUMYPgH9kPEA1gedAXbDC/MEl2dSYzuMqa9mqlXwvpLNe/Fekdq Q0WhTCc5qynHOUmQ99Efqqyn7PPjhBRT6pwyf1ht37DAHb+kR67DXUmJU2O0ydbk DZbIeRNRiLF+oMg57qsxyg0mLJ7QEdVG -----END CERTIFICATE-----Generated at Sat Apr 5 19:32:52 2025 by rpki-client