$ rpki-client -vvf rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.mft File: T4QeODPgrG_hvu69ABI10VKOzno.mft (raw, json) Hash identifier: /iK8TyS+K7UwYfK4wcwk0qcqySE8ZPcvKm5rXrVA+yA= Subject key identifier: 37:3D:1A:A1:15:1B:93:92:4F:14:20:66:BF:D7:F3:89:3D:EF:64:9B Authority key identifier: 4F:84:1E:38:33:E0:AC:6F:E1:BE:EE:BD:00:12:35:D1:52:8E:CE:7A Certificate issuer: /CN=A913AF6A/serialNumber=4F841E3833E0AC6FE1BEEEBD001235D1528ECE7A Certificate serial: 0107 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/T4QeODPgrG_hvu69ABI10VKOzno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.mft Manifest number: 0105 Signing time: Sun 01 Jun 2025 04:42:09 +0000 Manifest this update: Sun 01 Jun 2025 04:42:08 +0000 Manifest next update: Sun 08 Jun 2025 04:42:08 +0000 Files and hashes: 1: T4QeODPgrG_hvu69ABI10VKOzno.crl (hash: IJtPtI4pYQEQSKwJPNPqqZOgPXDzG5N9VAlFFU74ELE=) 2: 658B1AC8AE4711EE8C130419C4F9AE02.roa (hash: pBuyb8tUeoDi0BGNU1PyCW1Le78/gB9wiXHTRO2r0pw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.crl rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/T4QeODPgrG_hvu69ABI10VKOzno.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 04:42:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 263 (0x107) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AF6A, serialNumber=4F841E3833E0AC6FE1BEEEBD001235D1528ECE7A Validity Not Before: Jun 1 04:42:08 2025 GMT Not After : Jun 8 04:42:08 2025 GMT Subject: CN=683bda21-9239 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:72:9e:e8:52:56:2e:2f:3b:e8:f4:7f:28:44: d5:93:bc:d2:bd:3a:82:48:42:5a:24:8a:60:6f:21: e5:76:4c:9e:bd:78:8f:d5:57:57:14:6a:a5:d2:f4: ed:04:92:a7:25:42:5f:ec:94:0f:a6:83:e6:bf:ea: a6:4a:4f:f3:a0:97:77:8e:a5:49:ba:05:89:48:3d: ae:2a:69:86:e0:b3:67:e4:84:fe:27:77:93:72:12: 79:62:d2:d8:81:80:ee:e6:ef:28:19:a3:a3:4b:68: ad:a0:7a:39:7d:8a:df:9d:76:e0:36:bc:76:56:9a: 0c:58:22:0a:81:30:7d:e2:04:3f:bc:bd:50:5f:ce: 21:27:49:7e:6f:a0:c7:08:8d:82:0a:c6:fc:0d:eb: 39:32:04:3c:af:35:c6:69:75:ac:0f:d8:50:1f:9b: 80:5a:7d:cc:e2:c9:cc:28:69:b0:bc:2e:00:6d:71: bb:47:19:51:dc:87:c2:e9:f7:cf:39:e5:eb:82:4c: 17:a1:a3:47:72:9b:35:39:39:8a:4a:f4:1c:ab:6c: 13:f5:c0:be:1e:a7:74:c3:5c:a4:29:78:0c:9f:a4: 8d:f4:ae:de:81:2f:3a:67:73:de:aa:b2:20:d4:07: f0:09:d8:b4:96:24:b1:cc:12:1b:4b:b8:84:0a:f3: 25:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:3D:1A:A1:15:1B:93:92:4F:14:20:66:BF:D7:F3:89:3D:EF:64:9B X509v3 Authority Key Identifier: keyid:4F:84:1E:38:33:E0:AC:6F:E1:BE:EE:BD:00:12:35:D1:52:8E:CE:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/T4QeODPgrG_hvu69ABI10VKOzno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:e7:fd:22:7a:4a:be:33:fa:fe:8a:8a:bb:52:5d:43:9e:88: 49:6a:7c:8c:cd:61:86:87:f0:b5:46:7a:57:c8:43:a4:0b:61: 77:fd:c2:76:84:a1:93:bf:42:8a:20:3c:fb:4a:99:02:98:b2: 8c:51:63:18:e7:b5:93:97:66:f8:b2:0a:cd:6c:82:19:94:94: b7:49:5a:26:9c:96:f0:d0:cf:40:54:8c:47:d8:3a:e7:06:f2: 02:0c:d9:63:cc:16:98:ab:16:1f:d0:76:22:e2:00:1e:69:7e: c6:09:65:0b:66:9e:85:48:d6:bc:92:1c:82:b6:98:a5:47:af: fa:bc:8d:51:fd:3f:8a:a4:3b:e6:f9:d6:31:a9:e2:d0:11:e5: 6d:77:70:47:1c:66:b6:6a:f8:df:94:4a:04:23:a3:92:26:70: 34:d6:36:dc:f3:be:13:24:6f:c3:38:8f:1a:1e:fa:c7:d7:9c: 0f:d2:78:31:95:43:8d:9c:aa:5c:c4:df:b6:43:d3:64:5b:b3: 4b:34:00:5a:fa:46:8a:24:f9:09:40:db:44:50:a7:92:ae:4b: 2b:82:c6:a3:77:20:64:fd:ce:95:1e:5d:52:2b:6b:08:bf:83: 73:47:87:86:f0:b1:e0:a4:f5:3e:8e:2e:de:e9:4f:3f:05:d4: 4d:07:e8:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FGNkExMTAvBgNVBAUTKDRGODQxRTM4MzNFMEFDNkZFMUJFRUVCRDAwMTIzNUQx NTI4RUNFN0EwHhcNMjUwNjAxMDQ0MjA4WhcNMjUwNjA4MDQ0MjA4WjAYMRYwFAYD VQQDEw02ODNiZGEyMS05MjM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtXKe6FJWLi876PR/KETVk7zSvTqCSEJaJIpgbyHldkyevXiP1VdXFGql0vTt BJKnJUJf7JQPpoPmv+qmSk/zoJd3jqVJugWJSD2uKmmG4LNn5IT+J3eTchJ5YtLY gYDu5u8oGaOjS2itoHo5fYrfnXbgNrx2VpoMWCIKgTB94gQ/vL1QX84hJ0l+b6DH CI2CCsb8Des5MgQ8rzXGaXWsD9hQH5uAWn3M4snMKGmwvC4AbXG7RxlR3IfC6ffP OeXrgkwXoaNHcps1OTmKSvQcq2wT9cC+Hqd0w1ykKXgMn6SN9K7egS86Z3PeqrIg 1AfwCdi0liSxzBIbS7iECvMlvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDc9GqEV G5OSTxQgZr/X84k972SbMB8GA1UdIwQYMBaAFE+EHjgz4Kxv4b7uvQASNdFSjs56 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUY2QS84MzdDRDM0NkFF NDIxMUVFQkY2NERBNjlDNEY5QUUwMi9UNFFlT0RQZ3JHX2h2dTY5QUJJMTBWS096 bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1Q0UWVPRFBnckdfaHZ1NjlBQkkxMFZLT3puby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUY2QS84MzdDRDM0NkFFNDIxMUVFQkY2NERBNjlDNEY5QUUwMi9UNFFlT0RQZ3JH X2h2dTY5QUJJMTBWS096bm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAd5/0iekq+M/r+ioq7Ul1DnohJanyMzWGGh/C1RnpXyEOkC2F3/cJ2 hKGTv0KKIDz7SpkCmLKMUWMY57WTl2b4sgrNbIIZlJS3SVomnJbw0M9AVIxH2Drn BvICDNljzBaYqxYf0HYi4gAeaX7GCWULZp6FSNa8khyCtpilR6/6vI1R/T+KpDvm +dYxqeLQEeVtd3BHHGa2avjflEoEI6OSJnA01jbc874TJG/DOI8aHvrH15wP0ngx lUONnKpcxN+2Q9NkW7NLNABa+kaKJPkJQNtEUKeSrksrgsajdyBk/c6VHl1SK2sI v4NzR4eG8LHgpPU+ji7e6U8/BdRNB+iw -----END CERTIFICATE-----Generated at Mon Jun 2 20:12:50 2025 by rpki-client