$ rpki-client -vvf rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft File: 4QZLtgGhMQh2G1RXofcVJMSky84.mft (raw, json) Hash identifier: xHOAufA7A9Og8I7O0mPnUgzofCAFMd+DVNs6bo5OOX0= Subject key identifier: A7:B0:DF:33:FC:BB:05:DE:AF:F8:95:C8:07:D0:3F:D9:23:64:F9:2E Authority key identifier: E1:06:4B:B6:01:A1:31:08:76:1B:54:57:A1:F7:15:24:C4:A4:CB:CE Certificate issuer: /CN=A914B57F/serialNumber=E1064BB601A13108761B5457A1F71524C4A4CBCE Certificate serial: 0ACE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QZLtgGhMQh2G1RXofcVJMSky84.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft Manifest number: 0AC8 Signing time: Fri 30 May 2025 19:38:34 +0000 Manifest this update: Fri 30 May 2025 19:38:34 +0000 Manifest next update: Fri 06 Jun 2025 19:38:34 +0000 Files and hashes: 1: 4QZLtgGhMQh2G1RXofcVJMSky84.crl (hash: dcbXOkWHhVz5E1QsWIGSYKkw0ff0YtoFq46Ehc5G1Mw=) 2: 11685AAC4F0D11EAA161D143C4F9AE02.roa (hash: HpuZh21zVl0Ft40GZ9PsEwmlpNjswClEyYGJmu6x+ok=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.crl rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QZLtgGhMQh2G1RXofcVJMSky84.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:38:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2766 (0xace) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B57F, serialNumber=E1064BB601A13108761B5457A1F71524C4A4CBCE Validity Not Before: May 30 19:38:34 2025 GMT Not After : Jun 6 19:38:34 2025 GMT Subject: CN=683a093a-b26d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d3:85:a3:fc:1e:fe:ee:9a:57:10:87:bb:5f: 6d:df:30:b2:a4:b6:bc:2a:ef:db:fd:7c:aa:69:15: 98:31:3c:2e:b0:fc:2b:9d:50:0f:9b:38:78:e7:5f: af:cc:26:86:3a:31:92:e3:a5:ac:40:ca:45:57:87: 9e:b1:fe:68:3f:f9:7a:47:53:c2:e3:77:74:01:7f: 73:33:d0:d6:1c:d1:33:58:d5:a3:85:56:3c:55:a5: b4:1a:b1:84:21:9d:2f:74:ba:21:83:50:97:dd:1a: 04:68:ed:af:a8:e9:ed:09:54:65:6d:e6:99:27:b1: 5a:4b:9e:61:13:7f:b9:68:99:eb:68:0a:08:75:4a: c0:fd:cd:cf:f3:0b:73:a4:40:ee:b4:f4:39:7c:82: a3:80:88:29:67:63:ed:c0:b0:90:02:f7:7d:1c:44: dc:ad:90:4b:47:94:74:9d:59:ed:91:43:68:81:e3: ee:1d:66:a5:11:e8:d0:50:3f:f5:77:d5:0f:49:96: ef:3d:ce:82:62:5f:ee:54:42:a9:f7:d9:07:ec:3d: 2f:53:f7:6a:22:81:bb:44:63:34:11:8f:f7:fc:fb: ad:f2:b0:fc:ca:73:3b:7b:6b:f7:d8:c7:26:a5:d4: 3c:f4:21:76:ad:13:9a:b2:f8:20:04:b7:5a:33:42: 79:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:B0:DF:33:FC:BB:05:DE:AF:F8:95:C8:07:D0:3F:D9:23:64:F9:2E X509v3 Authority Key Identifier: keyid:E1:06:4B:B6:01:A1:31:08:76:1B:54:57:A1:F7:15:24:C4:A4:CB:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QZLtgGhMQh2G1RXofcVJMSky84.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:9a:65:2d:6f:7d:69:08:72:49:59:a9:21:43:0d:e0:d7:8b: 95:e2:40:f3:7a:73:19:ae:94:9f:ea:58:b7:f8:a3:56:79:2a: c0:20:d4:3d:25:59:e5:cc:2b:7e:2f:6e:82:40:75:ed:24:ec: 70:4d:6a:82:5d:02:cd:d6:9d:2d:bd:15:fd:b7:69:1b:a2:fb: b2:36:3e:5c:7e:6c:e5:bc:81:17:6b:0c:ae:16:91:40:bc:a9: ef:a0:20:b4:24:c0:c1:aa:6d:b2:1d:57:0c:30:35:c7:49:c3: 17:b5:c7:e1:39:3d:3d:81:1c:0b:93:06:b8:64:dd:09:b4:f8: f8:b1:16:82:09:00:88:c1:c5:a2:e2:0b:86:89:11:03:3d:1b: b8:3b:d5:1c:4c:02:9b:0d:94:1a:e0:f9:43:5d:3b:86:5c:2d: 9d:e9:ee:2d:ba:4a:d5:ab:5b:46:ee:8d:62:03:04:20:40:53: 4d:b9:c2:ef:20:76:81:85:e6:cd:54:66:1e:f1:f3:16:6f:9d: 42:d9:6c:fc:38:8d:f9:ca:63:ff:70:9c:2e:c5:ff:d2:e7:ff: ed:ba:93:0e:25:3c:58:0d:bb:58:33:ac:1d:ed:96:e3:84:7f: 95:23:24:54:9f:03:62:c8:81:93:18:b1:86:be:59:57:79:7f: 2b:31:53:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCs4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEI1N0YxMTAvBgNVBAUTKEUxMDY0QkI2MDFBMTMxMDg3NjFCNTQ1N0ExRjcxNTI0 QzRBNENCQ0UwHhcNMjUwNTMwMTkzODM0WhcNMjUwNjA2MTkzODM0WjAYMRYwFAYD VQQDEw02ODNhMDkzYS1iMjZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvNOFo/we/u6aVxCHu19t3zCypLa8Ku/b/XyqaRWYMTwusPwrnVAPmzh451+v zCaGOjGS46WsQMpFV4eesf5oP/l6R1PC43d0AX9zM9DWHNEzWNWjhVY8VaW0GrGE IZ0vdLohg1CX3RoEaO2vqOntCVRlbeaZJ7FaS55hE3+5aJnraAoIdUrA/c3P8wtz pEDutPQ5fIKjgIgpZ2PtwLCQAvd9HETcrZBLR5R0nVntkUNogePuHWalEejQUD/1 d9UPSZbvPc6CYl/uVEKp99kH7D0vU/dqIoG7RGM0EY/3/Put8rD8ynM7e2v32Mcm pdQ89CF2rROasvggBLdaM0J5UwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKew3zP8 uwXer/iVyAfQP9kjZPkuMB8GA1UdIwQYMBaAFOEGS7YBoTEIdhtUV6H3FSTEpMvO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjU3Ri9CMjQ1N0Q2QTRF NTkxMUVBOUVFOUUyMERDNEY5QUUwMi80UVpMdGdHaE1RaDJHMVJYb2ZjVkpNU2t5 ODQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRRWkx0Z0doTVFoMkcxUlhvZmNWSk1Ta3k4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjU3Ri9CMjQ1N0Q2QTRFNTkxMUVBOUVFOUUyMERDNEY5QUUwMi80UVpMdGdHaE1R aDJHMVJYb2ZjVkpNU2t5ODQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAImmUtb31pCHJJWakhQw3g14uV4kDzenMZrpSf6li3+KNWeSrAINQ9 JVnlzCt+L26CQHXtJOxwTWqCXQLN1p0tvRX9t2kbovuyNj5cfmzlvIEXawyuFpFA vKnvoCC0JMDBqm2yHVcMMDXHScMXtcfhOT09gRwLkwa4ZN0JtPj4sRaCCQCIwcWi 4guGiREDPRu4O9UcTAKbDZQa4PlDXTuGXC2d6e4tukrVq1tG7o1iAwQgQFNNucLv IHaBhebNVGYe8fMWb51C2Wz8OI35ymP/cJwuxf/S5//tupMOJTxYDbtYM6wd7Zbj hH+VIyRUnwNiyIGTGLGGvllXeX8rMVMG -----END CERTIFICATE-----Generated at Sat May 31 17:22:03 2025 by rpki-client