$ rpki-client -vvf rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.mft File: 4YL5k2lSxCadZw2ldS3syGgjTxs.mft (raw, json) Hash identifier: p7bzKjxjQc2j4Bnju7wlR4O4MmL5hWg46+OAER3CA9g= Subject key identifier: 18:AA:0F:31:9A:DF:FF:6D:91:06:CB:13:12:D9:58:FC:60:89:C0:88 Authority key identifier: E1:82:F9:93:69:52:C4:26:9D:67:0D:A5:75:2D:EC:C8:68:23:4F:1B Certificate issuer: /CN=A9126F2B/serialNumber=E182F9936952C4269D670DA5752DECC868234F1B Certificate serial: 21CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YL5k2lSxCadZw2ldS3syGgjTxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.mft Manifest number: 21AD Signing time: Sat 31 May 2025 15:52:01 +0000 Manifest this update: Sat 31 May 2025 15:52:00 +0000 Manifest next update: Sat 07 Jun 2025 15:52:00 +0000 Files and hashes: 1: 4YL5k2lSxCadZw2ldS3syGgjTxs.crl (hash: 8ovqZGsaGGdM5cLLADNtcLeI1tmifQ7m61V4qXpCzuM=) 2: B72206B4554B11E791BA5861C4F9AE02.roa (hash: Si+Xx28szHe9Iv7W1YtcZoNp90VlP5RP91wUGl6kx/U=) 3: A8E9DE704B8511E7BF406610C4F9AE02.roa (hash: nu+MmRVMelFZBsdSEFhVpeJliAcHe14e7veTklAJkjc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.crl rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YL5k2lSxCadZw2ldS3syGgjTxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 15:44:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8654 (0x21ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9126F2B, serialNumber=E182F9936952C4269D670DA5752DECC868234F1B Validity Not Before: May 31 15:52:00 2025 GMT Not After : Jun 7 15:52:00 2025 GMT Subject: CN=683b25a0-06b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e8:d5:64:52:1a:da:5c:4c:c9:b8:52:4e:8d: 11:46:5f:27:97:e2:e9:6f:af:01:8b:f2:68:e9:8c: 04:1c:93:08:80:82:99:e0:1c:69:df:fa:6a:3e:1e: 51:d8:1a:b2:bb:3b:07:f4:24:4a:2d:57:e7:81:51: a1:a5:bf:a3:ca:9d:6c:67:96:d0:99:bd:a7:ce:e9: c9:14:a0:00:fd:50:45:f6:77:0c:9e:ee:79:80:7b: 28:d4:d3:ed:79:80:14:a5:9b:b2:84:60:19:05:32: d8:91:88:8f:bd:7c:b2:eb:d7:cf:2d:96:69:7c:b0: b6:ad:2f:4a:53:bf:80:d9:26:34:2c:7a:1c:92:5f: a8:88:32:42:12:e5:58:6d:cf:82:21:c9:d6:04:d7: d8:26:7a:29:f8:54:88:d2:b3:39:87:1e:15:27:71: 8e:5d:f4:54:90:a7:6d:f7:63:43:13:38:3c:88:9a: 13:d7:25:4a:84:ce:98:59:7e:e5:37:39:14:7b:59: 9a:2b:03:8e:63:64:f4:a6:d2:6a:9f:43:73:35:70: 2e:1f:78:7d:5f:25:40:0d:bf:09:d0:a1:ce:cb:f1: 3f:03:9a:7c:69:fd:87:d2:e4:78:c0:82:94:72:f7: 01:10:cc:6c:5a:37:ee:8a:02:5f:4c:77:11:da:8b: 5a:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:AA:0F:31:9A:DF:FF:6D:91:06:CB:13:12:D9:58:FC:60:89:C0:88 X509v3 Authority Key Identifier: keyid:E1:82:F9:93:69:52:C4:26:9D:67:0D:A5:75:2D:EC:C8:68:23:4F:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YL5k2lSxCadZw2ldS3syGgjTxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:8c:6a:2c:81:dd:bd:aa:82:7c:2a:93:ae:aa:c7:31:04:b2: 94:2b:d9:d0:ca:f8:41:03:b6:b4:50:72:6b:77:f8:bf:8a:88: df:72:10:65:0d:bb:9c:4e:b1:4b:7d:b9:bb:98:52:ec:67:55: ad:f9:99:05:08:55:2d:ec:d4:77:39:75:a0:57:55:13:33:e6: 85:63:b0:c3:5a:ae:24:05:9f:f4:1c:12:60:68:f8:4c:a4:44: 6f:2c:d0:ed:50:7f:32:1a:e7:96:11:aa:98:cd:6d:56:b6:6b: 68:f5:9e:c8:56:8d:5a:54:70:b4:ff:74:31:02:8b:d1:e7:ee: b1:d4:0d:f0:4e:c0:8e:1c:a9:e4:c6:63:a1:f8:bf:e2:1a:2b: ea:f9:1b:e9:07:79:fb:41:5d:26:9c:f3:43:fe:e4:c1:bc:94: 77:3f:b4:c6:13:8d:0f:80:38:55:53:0e:24:7f:ba:24:ca:c6: 0f:3a:4a:ea:53:82:2a:10:64:16:5a:92:c0:a5:5f:dc:d8:01: 8d:5a:9e:70:e7:75:f0:42:af:e3:2a:e5:3c:21:57:12:0d:56: 90:03:04:74:18:20:8f:2a:25:83:c6:cf:dd:4e:4e:c0:2e:7f: b4:33:9d:1a:c7:f1:dd:87:4e:b8:5e:24:ab:42:70:df:47:0f: 5a:9c:c6:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIc4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjZGMkIxMTAvBgNVBAUTKEUxODJGOTkzNjk1MkM0MjY5RDY3MERBNTc1MkRFQ0M4 NjgyMzRGMUIwHhcNMjUwNTMxMTU1MjAwWhcNMjUwNjA3MTU1MjAwWjAYMRYwFAYD VQQDEw02ODNiMjVhMC0wNmI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtejVZFIa2lxMybhSTo0RRl8nl+Lpb68Bi/Jo6YwEHJMIgIKZ4Bxp3/pqPh5R 2BqyuzsH9CRKLVfngVGhpb+jyp1sZ5bQmb2nzunJFKAA/VBF9ncMnu55gHso1NPt eYAUpZuyhGAZBTLYkYiPvXyy69fPLZZpfLC2rS9KU7+A2SY0LHockl+oiDJCEuVY bc+CIcnWBNfYJnop+FSI0rM5hx4VJ3GOXfRUkKdt92NDEzg8iJoT1yVKhM6YWX7l NzkUe1maKwOOY2T0ptJqn0NzNXAuH3h9XyVADb8J0KHOy/E/A5p8af2H0uR4wIKU cvcBEMxsWjfuigJfTHcR2otasQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBiqDzGa 3/9tkQbLExLZWPxgicCIMB8GA1UdIwQYMBaAFOGC+ZNpUsQmnWcNpXUt7MhoI08b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNkYyQi85MEZBREVFQ0Q1 Q0QxMUU1QUE0MjZFNDBDNEY5QUUwMi80WUw1azJsU3hDYWRadzJsZFMzc3lHZ2pU eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRZTDVrMmxTeENhZFp3MmxkUzNzeUdnalR4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NkYyQi85MEZBREVFQ0Q1Q0QxMUU1QUE0MjZFNDBDNEY5QUUwMi80WUw1azJsU3hD YWRadzJsZFMzc3lHZ2pUeHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3jGosgd29qoJ8KpOuqscxBLKUK9nQyvhBA7a0UHJrd/i/iojfchBl DbucTrFLfbm7mFLsZ1Wt+ZkFCFUt7NR3OXWgV1UTM+aFY7DDWq4kBZ/0HBJgaPhM pERvLNDtUH8yGueWEaqYzW1Wtmto9Z7IVo1aVHC0/3QxAovR5+6x1A3wTsCOHKnk xmOh+L/iGivq+RvpB3n7QV0mnPND/uTBvJR3P7TGE40PgDhVUw4kf7okysYPOkrq U4IqEGQWWpLApV/c2AGNWp5w53XwQq/jKuU8IVcSDVaQAwR0GCCPKiWDxs/dTk7A Ln+0M50ax/Hdh064XiSrQnDfRw9anMYB -----END CERTIFICATE-----Generated at Sat May 31 17:44:10 2025 by rpki-client