$ rpki-client -vvf rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft File: rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft (raw, json) Hash identifier: PK0Hz1ZPBK1rU8IhHlVsFYq7UvuW54mMLOU8PdB0blA= Subject key identifier: 26:46:DC:F5:5F:32:ED:F7:6D:78:07:BF:F8:29:6B:BA:22:30:13:CD Authority key identifier: AE:4E:30:CC:0D:05:01:A5:AE:66:4A:DB:15:90:53:AC:EC:F0:AC:FD Certificate issuer: /CN=A912DFBA/serialNumber=AE4E30CC0D0501A5AE664ADB159053ACECF0ACFD Certificate serial: 07B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft Manifest number: 07A9 Signing time: Fri 30 May 2025 21:27:31 +0000 Manifest this update: Fri 30 May 2025 21:27:31 +0000 Manifest next update: Fri 06 Jun 2025 21:27:31 +0000 Files and hashes: 1: rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl (hash: 2/gbfmvMKy7pfefgEabrbYcE+rDdRIf2me3Zp+6vUrI=) 2: 38502DA2029A11EB85BD7B84C4F9AE02.roa (hash: 3OsuoPomkN3KwD+aF1zCoEkkbIN7dOFAl/woMg+7fcw=) 3: CEA093C66CA311ED9DD6425CC4F9AE02.roa (hash: 3rvQwF7VOidxONOxWbJzlS69h1FDkR177X5kmaAbyhg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:27:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1972 (0x7b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DFBA, serialNumber=AE4E30CC0D0501A5AE664ADB159053ACECF0ACFD Validity Not Before: May 30 21:27:31 2025 GMT Not After : Jun 6 21:27:31 2025 GMT Subject: CN=683a22c3-8078 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:86:cd:e6:2b:81:87:39:a5:45:08:fa:2f:3b: 32:97:be:58:53:2c:71:43:9b:e1:a8:e3:2c:bb:03: dd:71:2f:20:50:73:ee:e3:70:71:63:d4:00:91:d0: 2b:29:b0:a2:d4:55:39:54:71:b6:11:a9:9e:fd:7d: 08:44:8d:df:99:82:e4:e8:66:2d:60:e1:2a:1d:62: 17:76:b9:80:25:e6:ce:9b:d3:ea:b1:08:88:84:b4: 98:88:72:a9:34:cb:9a:1e:1b:81:d3:9f:92:33:69: 7a:89:59:5d:02:25:17:61:76:be:81:05:0e:bd:78: d2:87:a7:81:e8:9c:1a:99:65:f9:35:94:03:d6:88: b9:c0:92:c7:e7:8f:f3:52:fd:c0:e9:8f:94:c1:47: b2:03:0b:a4:5a:73:f1:1c:97:cc:58:37:15:2b:80: 27:92:75:34:3d:bd:4c:72:f1:af:61:e4:9e:8a:b3: 74:55:30:de:47:18:a5:96:c6:14:54:d4:f7:07:b6: 47:2c:72:8e:7e:bc:02:d8:34:5b:f1:a8:66:9c:d9: e1:f8:7f:18:d7:7b:bd:0e:23:93:77:92:4f:82:1f: ea:31:c6:5c:f8:4d:58:ef:57:82:37:28:2b:a5:4e: 87:51:f6:42:96:40:77:c3:8c:16:ea:f2:c4:84:5b: 04:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:46:DC:F5:5F:32:ED:F7:6D:78:07:BF:F8:29:6B:BA:22:30:13:CD X509v3 Authority Key Identifier: keyid:AE:4E:30:CC:0D:05:01:A5:AE:66:4A:DB:15:90:53:AC:EC:F0:AC:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:b5:54:f5:c2:7e:c0:56:f3:6a:3f:62:d2:8c:49:bf:0d:01: 84:82:50:8c:9f:f6:03:05:ad:4f:a0:d1:3d:59:16:b9:d9:bd: ad:2c:a2:a6:47:a8:39:5f:30:d3:01:f0:07:97:0a:e6:be:95: 6d:49:e2:44:2a:db:cb:97:76:dd:dc:a6:36:6d:02:f7:e7:0a: a7:ec:4f:87:11:f4:d7:94:e7:b3:0d:f1:dc:d3:88:5d:e7:90: 9f:11:92:a2:31:7d:2a:dc:2a:a9:fc:cc:8b:c4:77:50:3b:89: 09:9b:36:3f:61:ed:d3:7b:cb:38:db:82:44:e9:d2:ca:bf:8d: 28:ef:81:d0:70:fc:b6:12:f2:3d:8d:e4:9f:5c:7b:59:fb:04: a8:cf:32:c9:a3:49:94:69:2c:24:c1:d7:64:45:0c:cb:c1:2d: ee:30:97:37:8b:ac:7a:f6:22:8b:2b:b2:01:b3:bd:b3:29:c6: fe:84:b8:f5:aa:6c:3b:04:83:87:10:cb:0f:16:72:ef:e0:d7: 6b:19:2d:40:cf:e0:b2:40:25:17:63:a6:62:05:5c:73:dd:57: 16:a1:bf:80:70:ff:3b:a8:1a:39:c7:e6:be:fb:c4:5d:5b:d9: 8b:d8:2b:04:27:3f:5b:76:23:f3:b6:a8:79:50:49:d9:8c:f3: 81:39:63:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkRGQkExMTAvBgNVBAUTKEFFNEUzMENDMEQwNTAxQTVBRTY2NEFEQjE1OTA1M0FD RUNGMEFDRkQwHhcNMjUwNTMwMjEyNzMxWhcNMjUwNjA2MjEyNzMxWjAYMRYwFAYD VQQDEw02ODNhMjJjMy04MDc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6obN5iuBhzmlRQj6Lzsyl75YUyxxQ5vhqOMsuwPdcS8gUHPu43BxY9QAkdAr KbCi1FU5VHG2Eame/X0IRI3fmYLk6GYtYOEqHWIXdrmAJebOm9PqsQiIhLSYiHKp NMuaHhuB05+SM2l6iVldAiUXYXa+gQUOvXjSh6eB6JwamWX5NZQD1oi5wJLH54/z Uv3A6Y+UwUeyAwukWnPxHJfMWDcVK4AnknU0Pb1McvGvYeSeirN0VTDeRxillsYU VNT3B7ZHLHKOfrwC2DRb8ahmnNnh+H8Y13u9DiOTd5JPgh/qMcZc+E1Y71eCNygr pU6HUfZClkB3w4wW6vLEhFsEkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCZG3PVf Mu33bXgHv/gpa7oiMBPNMB8GA1UdIwQYMBaAFK5OMMwNBQGlrmZK2xWQU6zs8Kz9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREZCQS9EQjlDRTY3ODAy OTgxMUVCOTgyM0FFODJDNEY5QUUwMi9yazR3ekEwRkFhV3Vaa3JiRlpCVHJPendy UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JrNHd6QTBGQWFXdVprcmJGWkJUck96d3JQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REZCQS9EQjlDRTY3ODAyOTgxMUVCOTgyM0FFODJDNEY5QUUwMi9yazR3ekEwRkFh V3Vaa3JiRlpCVHJPendyUDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKtVT1wn7AVvNqP2LSjEm/DQGEglCMn/YDBa1PoNE9WRa52b2tLKKm R6g5XzDTAfAHlwrmvpVtSeJEKtvLl3bd3KY2bQL35wqn7E+HEfTXlOezDfHc04hd 55CfEZKiMX0q3Cqp/MyLxHdQO4kJmzY/Ye3Te8s424JE6dLKv40o74HQcPy2EvI9 jeSfXHtZ+wSozzLJo0mUaSwkwddkRQzLwS3uMJc3i6x69iKLK7IBs72zKcb+hLj1 qmw7BIOHEMsPFnLv4NdrGS1Az+CyQCUXY6ZiBVxz3VcWob+AcP87qBo5x+a++8Rd W9mL2CsEJz9bdiPztqh5UEnZjPOBOWNR -----END CERTIFICATE-----Generated at Sat May 31 16:25:47 2025 by rpki-client