$ rpki-client -vvf rpki.apnic.net/member_repository/A913D125/FE778EC8CC1011EF87396A6EC4F9AE02/Ae2EH7lRqvolkYDvkpnk02_ffD0.mft File: Ae2EH7lRqvolkYDvkpnk02_ffD0.mft (raw, json) Hash identifier: SkBSR47AEesTWG9TSVE85sO48ndUX+moub1HzitvIWA= Subject key identifier: 4F:0F:C5:DD:BF:9E:F6:52:95:A7:A6:2A:F6:E9:3C:07:19:C3:1F:47 Authority key identifier: 01:ED:84:1F:B9:51:AA:FA:25:91:80:EF:92:99:E4:D3:6F:DF:7C:3D Certificate issuer: /CN=A913D125/serialNumber=01ED841FB951AAFA259180EF9299E4D36FDF7C3D Certificate serial: 4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae2EH7lRqvolkYDvkpnk02_ffD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D125/FE778EC8CC1011EF87396A6EC4F9AE02/Ae2EH7lRqvolkYDvkpnk02_ffD0.mft Manifest number: 4B Signing time: Sat 31 May 2025 06:53:40 +0000 Manifest this update: Sat 31 May 2025 06:53:40 +0000 Manifest next update: Sat 07 Jun 2025 06:53:40 +0000 Files and hashes: 1: Ae2EH7lRqvolkYDvkpnk02_ffD0.crl (hash: Vn3LWndvWGMypw00vACCuMTxV08fzzyqEHua4oJ1/NI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D125/FE778EC8CC1011EF87396A6EC4F9AE02/Ae2EH7lRqvolkYDvkpnk02_ffD0.crl rsync://rpki.apnic.net/member_repository/A913D125/FE778EC8CC1011EF87396A6EC4F9AE02/Ae2EH7lRqvolkYDvkpnk02_ffD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae2EH7lRqvolkYDvkpnk02_ffD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:53:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75 (0x4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D125, serialNumber=01ED841FB951AAFA259180EF9299E4D36FDF7C3D Validity Not Before: May 31 06:53:40 2025 GMT Not After : Jun 7 06:53:40 2025 GMT Subject: CN=683aa774-85b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:6c:33:3d:95:fc:a3:dc:67:5a:b1:13:a9:af: e5:bb:e7:db:8c:2c:87:d5:e7:3e:25:b8:45:cd:93: 53:48:b8:48:d6:fe:38:bb:bc:d9:53:74:c1:d4:90: 66:de:9f:78:c1:08:88:a4:06:e6:62:fa:d5:04:2d: f2:19:64:8b:f7:c5:0b:b6:5a:3a:2a:c0:a1:a1:9b: fc:9d:c5:02:eb:c6:05:b7:2c:d9:6d:64:f6:eb:9c: 03:6c:ac:e4:f9:c7:96:59:2c:f2:79:e8:3d:4c:20: c0:be:9c:81:7e:99:7b:b0:a8:e1:4e:6f:6b:71:cd: a7:b4:cd:1c:1c:2c:9a:41:c7:d9:f0:73:a3:84:38: 00:a0:14:48:97:71:06:0a:46:6c:8e:81:92:44:47: bb:f5:5b:58:a1:98:64:2e:da:18:59:3f:db:0c:85: 40:5f:3a:c4:7c:4a:60:62:ca:f2:6d:af:f0:c8:06: ac:9e:cb:54:7f:18:99:1d:9d:ab:e6:d9:3e:99:9d: 32:36:77:42:e7:2a:f3:2b:9b:55:28:f7:ef:2e:52: 63:e0:78:2d:60:36:76:14:c9:ec:33:e2:92:12:f5: 7c:85:ec:1e:26:e0:4b:1a:c1:50:4f:15:00:b0:cb: 13:45:cb:7d:fd:b0:2e:a9:0d:a8:e7:64:08:3b:ba: 2f:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:0F:C5:DD:BF:9E:F6:52:95:A7:A6:2A:F6:E9:3C:07:19:C3:1F:47 X509v3 Authority Key Identifier: keyid:01:ED:84:1F:B9:51:AA:FA:25:91:80:EF:92:99:E4:D3:6F:DF:7C:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D125/FE778EC8CC1011EF87396A6EC4F9AE02/Ae2EH7lRqvolkYDvkpnk02_ffD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae2EH7lRqvolkYDvkpnk02_ffD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D125/FE778EC8CC1011EF87396A6EC4F9AE02/Ae2EH7lRqvolkYDvkpnk02_ffD0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:a4:52:90:10:ee:93:f7:49:34:cb:34:59:7d:8a:ae:17:af: bc:39:ba:37:21:91:8c:8d:e6:cf:56:c4:8b:01:94:cd:4d:91: 42:3a:d8:ab:8a:c4:b4:8f:09:9b:28:ab:aa:f4:b2:b2:06:8d: e1:4e:9e:0c:61:c5:38:f7:66:14:45:6b:0f:8a:fc:c4:79:56: a0:72:13:f3:99:62:e4:8b:1a:13:f8:58:c8:1b:af:f9:88:ad: d8:72:ca:0f:74:3d:d4:68:34:2e:7b:35:c2:9a:72:2c:1b:f4: 7b:02:b0:7e:33:fb:75:26:4e:0c:91:2a:09:08:b7:db:6c:d5: 07:fd:9e:57:de:94:64:5b:6c:fc:79:11:fa:5b:5c:b0:76:5f: 1a:e8:20:70:5c:8f:fb:dd:04:73:8d:a0:54:f5:dd:54:c9:8e: bf:d9:ef:40:ac:22:7d:76:45:ab:33:8d:0d:d9:14:16:dc:37: 49:59:61:75:ae:5c:c9:46:c2:ed:2b:65:01:5b:cd:c8:f7:40: 69:9d:d3:a2:a4:ff:79:50:3d:eb:0e:b0:b5:06:cf:59:6f:bd: be:10:9c:b1:5f:e5:98:88:ae:70:75:73:b2:b3:ad:00:d4:39: 03:29:b7:9c:e7:5e:d4:14:eb:c4:f6:96:4d:19:5b:be:96:68: eb:f9:32:70 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz RDEyNTExMC8GA1UEBRMoMDFFRDg0MUZCOTUxQUFGQTI1OTE4MEVGOTI5OUU0RDM2 RkRGN0MzRDAeFw0yNTA1MzEwNjUzNDBaFw0yNTA2MDcwNjUzNDBaMBgxFjAUBgNV BAMTDTY4M2FhNzc0LTg1YjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1bDM9lfyj3GdasROpr+W759uMLIfV5z4luEXNk1NIuEjW/ji7vNlTdMHUkGbe n3jBCIikBuZi+tUELfIZZIv3xQu2WjoqwKGhm/ydxQLrxgW3LNltZPbrnANsrOT5 x5ZZLPJ56D1MIMC+nIF+mXuwqOFOb2txzae0zRwcLJpBx9nwc6OEOACgFEiXcQYK RmyOgZJER7v1W1ihmGQu2hhZP9sMhUBfOsR8SmBiyvJtr/DIBqyey1R/GJkdnavm 2T6ZnTI2d0LnKvMrm1Uo9+8uUmPgeC1gNnYUyewz4pIS9XyF7B4m4EsawVBPFQCw yxNFy339sC6pDajnZAg7ui+tAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUTw/F3b+e 9lKVp6Yq9uk8BxnDH0cwHwYDVR0jBBgwFoAUAe2EH7lRqvolkYDvkpnk02/ffD0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNEMTI1L0ZFNzc4RUM4Q0Mx MDExRUY4NzM5NkE2RUM0RjlBRTAyL0FlMkVIN2xScXZvbGtZRHZrcG5rMDJfZmZE MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQWUyRUg3bFJxdm9sa1lEdmtwbmswMl9mZkQwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNE MTI1L0ZFNzc4RUM4Q0MxMDExRUY4NzM5NkE2RUM0RjlBRTAyL0FlMkVIN2xScXZv bGtZRHZrcG5rMDJfZmZEMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABqkUpAQ7pP3STTLNFl9iq4Xr7w5ujchkYyN5s9WxIsBlM1NkUI62KuK xLSPCZsoq6r0srIGjeFOngxhxTj3ZhRFaw+K/MR5VqByE/OZYuSLGhP4WMgbr/mI rdhyyg90PdRoNC57NcKaciwb9HsCsH4z+3UmTgyRKgkIt9ts1Qf9nlfelGRbbPx5 EfpbXLB2XxroIHBcj/vdBHONoFT13VTJjr/Z70CsIn12RaszjQ3ZFBbcN0lZYXWu XMlGwu0rZQFbzcj3QGmd06Kk/3lQPesOsLUGz1lvvb4QnLFf5ZiIrnB1c7KzrQDU OQMpt5znXtQU68T2lk0ZW76WaOv5MnA= -----END CERTIFICATE-----Generated at Sat May 31 16:49:05 2025 by rpki-client