$ rpki-client -vvf rpki.apnic.net/member_repository/A912512F/4B8BFFECB46911EAABA71C75C4F9AE02/4jfSzTuh8bknVF8kSZKHKtCvwwU.mft File: 4jfSzTuh8bknVF8kSZKHKtCvwwU.mft (raw, json) Hash identifier: W83m+o0RRmUa4VADBaihk/HdLzr1CU7/k/ZJ+9V8uH0= Subject key identifier: 5C:96:1C:AB:8B:2C:6B:87:64:85:FB:03:6D:BA:1F:14:94:A1:23:A2 Authority key identifier: E2:37:D2:CD:3B:A1:F1:B9:27:54:5F:24:49:92:87:2A:D0:AF:C3:05 Certificate issuer: /CN=A912512F/serialNumber=E237D2CD3BA1F1B927545F244992872AD0AFC305 Certificate serial: 08EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4jfSzTuh8bknVF8kSZKHKtCvwwU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912512F/4B8BFFECB46911EAABA71C75C4F9AE02/4jfSzTuh8bknVF8kSZKHKtCvwwU.mft Manifest number: 08D3 Signing time: Fri 30 May 2025 20:42:17 +0000 Manifest this update: Fri 30 May 2025 20:42:16 +0000 Manifest next update: Fri 06 Jun 2025 20:42:16 +0000 Files and hashes: 1: 4jfSzTuh8bknVF8kSZKHKtCvwwU.crl (hash: OJ6ENHSkJ3QL0bu3VobFyhPHVPppV5CpgNnW0lLaP7I=) 2: 4C5CCE6EB46A11EAB5A01176C4F9AE02.roa (hash: YmROt2RnH3UdNIAXBylk68JRdbwoGmgzkhxTYT8yZZA=) 3: 9FCAD654781E11EB808A544BC4F9AE02.roa (hash: jI9GJ3mUj7/g+UDfOOrVVqKbgOohmwcRp94iSUpENxA=) 4: 4B3A4250B46A11EAB5A01176C4F9AE02.roa (hash: 65R5M+eBFk+Sri4/ilXTe6yj4G3UYq+q394nSZKR7qQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912512F/4B8BFFECB46911EAABA71C75C4F9AE02/4jfSzTuh8bknVF8kSZKHKtCvwwU.crl rsync://rpki.apnic.net/member_repository/A912512F/4B8BFFECB46911EAABA71C75C4F9AE02/4jfSzTuh8bknVF8kSZKHKtCvwwU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4jfSzTuh8bknVF8kSZKHKtCvwwU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:42:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2284 (0x8ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912512F, serialNumber=E237D2CD3BA1F1B927545F244992872AD0AFC305 Validity Not Before: May 30 20:42:16 2025 GMT Not After : Jun 6 20:42:16 2025 GMT Subject: CN=683a1828-c31c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ea:00:65:4f:f9:4e:d8:87:c1:a9:9c:70:2b: 46:10:0f:e8:bb:24:ad:d1:bb:fd:9e:d3:63:8f:23: a3:fe:af:a3:74:8e:a9:43:b4:c5:e9:f1:1c:a2:12: f8:87:d5:4f:3d:3f:cc:75:ae:01:27:32:5b:3f:a4: 39:8a:d0:67:3f:7e:dc:83:49:85:55:a7:ce:ef:c9: a0:7b:45:4b:8f:02:3b:b0:6d:ad:7f:78:97:8e:06: 84:39:77:37:55:46:f7:af:58:04:f7:26:eb:a2:70: 36:46:23:d5:b8:54:db:14:a8:a5:1c:38:0e:9a:0c: 87:00:4f:22:c7:7d:53:a4:1f:62:3b:c5:62:12:fe: 16:94:4c:9a:e7:97:31:5f:c7:29:ae:b7:34:6f:d7: 35:20:a3:87:c1:b2:96:2d:7c:f8:a3:6d:b9:b0:64: 81:cb:59:42:c6:34:46:7c:7b:d1:c9:3c:0d:c4:d6: de:db:58:89:10:bc:a6:af:ff:91:7c:91:1f:71:b7: 5a:50:af:96:a4:a9:9c:3c:c5:83:06:8c:ff:31:af: 39:7b:e5:05:da:35:a3:12:8d:9f:d7:80:15:32:1c: af:02:d2:97:60:58:88:d8:34:a8:d2:5b:d4:22:63: ba:43:85:0e:9a:04:12:b6:34:1b:ea:9f:9e:3f:4d: 0d:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:96:1C:AB:8B:2C:6B:87:64:85:FB:03:6D:BA:1F:14:94:A1:23:A2 X509v3 Authority Key Identifier: keyid:E2:37:D2:CD:3B:A1:F1:B9:27:54:5F:24:49:92:87:2A:D0:AF:C3:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912512F/4B8BFFECB46911EAABA71C75C4F9AE02/4jfSzTuh8bknVF8kSZKHKtCvwwU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4jfSzTuh8bknVF8kSZKHKtCvwwU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912512F/4B8BFFECB46911EAABA71C75C4F9AE02/4jfSzTuh8bknVF8kSZKHKtCvwwU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:9d:3e:7a:ef:ca:3e:96:68:c5:76:4c:09:c7:75:39:1f:dd: 8c:15:25:da:ff:33:71:27:6b:c9:50:c1:26:33:b1:34:da:37: 4b:ff:98:1d:1a:67:c1:7c:a1:e9:55:e2:61:ab:07:c5:24:ac: fa:59:8d:52:b3:4d:34:52:88:5d:9f:50:f2:6d:52:7d:2f:17: 83:2b:32:00:c2:70:d5:83:d8:86:43:70:67:bb:dd:fe:e2:0b: 03:08:f1:72:94:79:a3:9c:88:9d:9c:f7:bf:d7:46:14:c1:76: ee:f0:6e:33:0e:5e:2b:84:a4:63:d7:00:18:93:fa:b5:1f:40: bc:5b:2e:98:ad:73:c1:22:1f:78:ab:d0:68:aa:8b:aa:a1:05: d7:fd:aa:be:f2:8a:89:34:66:4e:f4:69:88:19:a1:b2:b5:bc: b9:6d:77:a3:5b:31:0d:e9:ef:c1:a1:c6:ba:01:19:92:06:de: c6:bb:a8:ca:87:77:9e:0b:71:57:13:f5:a9:32:03:11:ec:04: 20:30:3b:dc:69:f5:3d:a5:c5:0f:08:fa:0d:bd:09:c9:9b:f3: 63:a4:03:2b:a2:c6:0f:3d:a7:fb:ee:85:d3:f1:0c:46:3b:da: b5:3b:70:b3:a5:4e:41:8f:cc:ec:c2:57:e0:eb:62:68:6c:fd: 25:7c:f6:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjUxMkYxMTAvBgNVBAUTKEUyMzdEMkNEM0JBMUYxQjkyNzU0NUYyNDQ5OTI4NzJB RDBBRkMzMDUwHhcNMjUwNTMwMjA0MjE2WhcNMjUwNjA2MjA0MjE2WjAYMRYwFAYD VQQDEw02ODNhMTgyOC1jMzFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxOoAZU/5TtiHwamccCtGEA/ouySt0bv9ntNjjyOj/q+jdI6pQ7TF6fEcohL4 h9VPPT/Mda4BJzJbP6Q5itBnP37cg0mFVafO78mge0VLjwI7sG2tf3iXjgaEOXc3 VUb3r1gE9ybronA2RiPVuFTbFKilHDgOmgyHAE8ix31TpB9iO8ViEv4WlEya55cx X8cprrc0b9c1IKOHwbKWLXz4o225sGSBy1lCxjRGfHvRyTwNxNbe21iJELymr/+R fJEfcbdaUK+WpKmcPMWDBoz/Ma85e+UF2jWjEo2f14AVMhyvAtKXYFiI2DSo0lvU ImO6Q4UOmgQStjQb6p+eP00N8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFyWHKuL LGuHZIX7A226HxSUoSOiMB8GA1UdIwQYMBaAFOI30s07ofG5J1RfJEmShyrQr8MF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTEyRi80QjhCRkZFQ0I0 NjkxMUVBQUJBNzFDNzVDNEY5QUUwMi80amZTelR1aDhia25WRjhrU1pLSEt0Q3Z3 d1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRqZlN6VHVoOGJrblZGOGtTWktIS3RDdnd3VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NTEyRi80QjhCRkZFQ0I0NjkxMUVBQUJBNzFDNzVDNEY5QUUwMi80amZTelR1aDhi a25WRjhrU1pLSEt0Q3Z3d1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjnT5678o+lmjFdkwJx3U5H92MFSXa/zNxJ2vJUMEmM7E02jdL/5gd GmfBfKHpVeJhqwfFJKz6WY1Ss000Uohdn1DybVJ9LxeDKzIAwnDVg9iGQ3Bnu93+ 4gsDCPFylHmjnIidnPe/10YUwXbu8G4zDl4rhKRj1wAYk/q1H0C8Wy6YrXPBIh94 q9BoqouqoQXX/aq+8oqJNGZO9GmIGaGytby5bXejWzEN6e/Boca6ARmSBt7Gu6jK h3eeC3FXE/WpMgMR7AQgMDvcafU9pcUPCPoNvQnJm/NjpAMrosYPPaf77oXT8QxG O9q1O3CzpU5Bj8zswlfg62JobP0lfPbP -----END CERTIFICATE-----Generated at Sat May 31 17:47:26 2025 by rpki-client