$ rpki-client -vvf rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.mft File: 4s_EK2oIFQrv7-cYm-WvK-Vo-ME.mft (raw, json) Hash identifier: yQPDwHyYO6xp/hKkBv1dl3+AoighjGatbMdBEQblryM= Subject key identifier: C3:54:D6:AF:EF:E2:D4:E1:0F:E8:08:7B:CF:0A:6A:50:9C:18:AA:74 Authority key identifier: E2:CF:C4:2B:6A:08:15:0A:EF:EF:E7:18:9B:E5:AF:2B:E5:68:F8:C1 Certificate issuer: /CN=A9139220/serialNumber=E2CFC42B6A08150AEFEFE7189BE5AF2BE568F8C1 Certificate serial: 0751 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.mft Manifest number: 0748 Signing time: Fri 30 May 2025 21:53:30 +0000 Manifest this update: Fri 30 May 2025 21:53:29 +0000 Manifest next update: Fri 06 Jun 2025 21:53:29 +0000 Files and hashes: 1: 4s_EK2oIFQrv7-cYm-WvK-Vo-ME.crl (hash: MruhczL5Uc9eXUuv2OzjASydt7YR9OTuvV1natolC9o=) 2: 7EBB570A296C11EBB7D88147C4F9AE02.roa (hash: By6Dq5HHVlEkvf0nTtSM0kJMMOYfz+8LI2/AK8Ixb68=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.crl rsync://rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:53:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1873 (0x751) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139220, serialNumber=E2CFC42B6A08150AEFEFE7189BE5AF2BE568F8C1 Validity Not Before: May 30 21:53:29 2025 GMT Not After : Jun 6 21:53:29 2025 GMT Subject: CN=683a28da-b1c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:f8:e5:f8:7c:13:a9:88:ea:19:e1:fb:68:07: e5:43:11:b1:7b:46:67:0e:63:fd:55:54:7e:59:80: cc:59:ab:ed:47:88:92:70:e6:ee:3d:c7:55:0b:42: 03:29:eb:81:aa:5c:e3:78:d8:5e:88:d5:d0:66:0a: 07:ba:04:8f:70:9c:85:00:05:83:8f:66:8a:89:21: 29:ee:30:bb:56:83:44:76:2d:00:27:a6:7e:fb:42: e4:3e:28:eb:c4:4c:9c:e0:09:4f:d5:77:13:66:12: a5:fd:fd:0e:de:97:fb:bd:60:eb:a8:d8:f5:b4:b2: 7f:bc:27:84:7b:f7:3e:25:fc:6b:de:80:9d:b5:fb: b4:58:28:c6:0a:1d:45:18:9e:00:cd:57:2a:df:76: de:3f:2c:61:50:c4:2b:fe:b1:4b:ea:cf:7a:95:88: 33:23:d2:51:cd:c0:89:9a:78:3c:57:0e:83:a4:b3: 56:77:c9:2e:17:b8:4b:12:35:4a:68:cc:14:bb:1a: 2c:e1:7c:f4:21:dd:f6:8c:97:42:47:e0:0c:ce:30: 3e:6b:51:fa:33:d4:22:b0:2e:30:eb:25:25:dc:e7: 7d:2e:44:cc:ca:ba:4b:04:d8:39:d4:c9:c9:49:d1: de:b7:79:dc:51:26:31:b3:ad:c0:ca:13:4e:9d:71: 56:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:54:D6:AF:EF:E2:D4:E1:0F:E8:08:7B:CF:0A:6A:50:9C:18:AA:74 X509v3 Authority Key Identifier: keyid:E2:CF:C4:2B:6A:08:15:0A:EF:EF:E7:18:9B:E5:AF:2B:E5:68:F8:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:9c:dc:f9:2f:d7:a2:48:9e:a1:ca:85:93:a0:5c:37:6b:1f: 20:6b:ce:96:f7:86:db:45:5d:d1:59:bc:17:de:e0:86:b5:8e: 29:5b:20:22:ee:31:bd:21:10:1d:55:c8:fd:5c:32:be:b5:09: e3:5e:99:ab:56:06:62:00:89:86:8c:36:bc:33:6b:41:a8:3a: 67:ac:0e:a5:2c:34:62:4d:b8:b9:36:03:f0:20:94:85:7a:a5: c3:10:02:76:de:f7:9f:93:e2:a5:4d:48:ae:16:5c:6d:39:33: e5:71:8c:f4:fa:46:a1:ff:84:d5:d0:bf:b8:e4:6c:ef:38:4d: e8:3f:03:3a:d7:9c:9c:1e:74:e3:5a:70:55:e7:62:41:9b:35: ce:76:e8:1f:dd:b7:ac:04:74:e2:41:41:f7:25:ee:9a:b1:72: df:dc:ff:d7:43:0f:b8:f3:a6:19:98:3b:e3:50:8c:40:8d:da: 77:6a:b7:a7:f7:20:3d:2a:46:ae:40:4a:df:f6:b5:07:9b:6d: 28:1d:ab:62:43:17:9c:df:7a:14:7c:93:38:16:29:7f:25:aa: 07:30:ed:f2:94:7a:0b:16:82:79:8a:60:e9:bd:9c:01:14:2d: 2a:36:75:2a:da:bc:54:22:2a:2a:ad:9f:ae:55:cd:f7:8d:54: 25:87:69:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB1EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkyMjAxMTAvBgNVBAUTKEUyQ0ZDNDJCNkEwODE1MEFFRkVGRTcxODlCRTVBRjJC RTU2OEY4QzEwHhcNMjUwNTMwMjE1MzI5WhcNMjUwNjA2MjE1MzI5WjAYMRYwFAYD VQQDEw02ODNhMjhkYS1iMWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2/jl+HwTqYjqGeH7aAflQxGxe0ZnDmP9VVR+WYDMWavtR4iScObuPcdVC0ID KeuBqlzjeNheiNXQZgoHugSPcJyFAAWDj2aKiSEp7jC7VoNEdi0AJ6Z++0LkPijr xEyc4AlP1XcTZhKl/f0O3pf7vWDrqNj1tLJ/vCeEe/c+Jfxr3oCdtfu0WCjGCh1F GJ4AzVcq33bePyxhUMQr/rFL6s96lYgzI9JRzcCJmng8Vw6DpLNWd8kuF7hLEjVK aMwUuxos4Xz0Id32jJdCR+AMzjA+a1H6M9QisC4w6yUl3Od9LkTMyrpLBNg51MnJ SdHet3ncUSYxs63AyhNOnXFWIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMNU1q/v 4tThD+gIe88KalCcGKp0MB8GA1UdIwQYMBaAFOLPxCtqCBUK7+/nGJvlryvlaPjB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTIyMC8xNUNEMUMyMjI4 QjAxMUVCQjQ0NjlFMUVDNEY5QUUwMi80c19FSzJvSUZRcnY3LWNZbS1XdkstVm8t TUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRzX0VLMm9JRlFydjctY1ltLVd2Sy1Wby1NRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTIyMC8xNUNEMUMyMjI4QjAxMUVCQjQ0NjlFMUVDNEY5QUUwMi80c19FSzJvSUZR cnY3LWNZbS1XdkstVm8tTUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWnNz5L9eiSJ6hyoWToFw3ax8ga86W94bbRV3RWbwX3uCGtY4pWyAi 7jG9IRAdVcj9XDK+tQnjXpmrVgZiAImGjDa8M2tBqDpnrA6lLDRiTbi5NgPwIJSF eqXDEAJ23vefk+KlTUiuFlxtOTPlcYz0+kah/4TV0L+45GzvOE3oPwM615ycHnTj WnBV52JBmzXOdugf3besBHTiQUH3Je6asXLf3P/XQw+486YZmDvjUIxAjdp3aren 9yA9KkauQErf9rUHm20oHatiQxec33oUfJM4Fil/JaoHMO3ylHoLFoJ5imDpvZwB FC0qNnUq2rxUIioqrZ+uVc33jVQlh2mJ -----END CERTIFICATE-----Generated at Sat May 31 17:03:29 2025 by rpki-client