$ rpki-client -vvf rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/4JlhFVCKOtWZFdurzLaW26C0zHI.mft File: 4JlhFVCKOtWZFdurzLaW26C0zHI.mft (raw, json) Hash identifier: 9Am4P+7GuZIV6kmeG4sZtMPeo49SxZAR3d3cFBsUsH8= Subject key identifier: A2:1C:B3:64:D0:C6:AC:34:84:64:E4:A2:7A:64:85:C4:B1:48:46:9E Authority key identifier: E0:99:61:15:50:8A:3A:D5:99:15:DB:AB:CC:B6:96:DB:A0:B4:CC:72 Certificate issuer: /CN=A9153CE9/serialNumber=E0996115508A3AD59915DBABCCB696DBA0B4CC72 Certificate serial: 0572 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4JlhFVCKOtWZFdurzLaW26C0zHI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/4JlhFVCKOtWZFdurzLaW26C0zHI.mft Manifest number: 0553 Signing time: Fri 30 May 2025 23:39:49 +0000 Manifest this update: Fri 30 May 2025 23:39:49 +0000 Manifest next update: Fri 06 Jun 2025 23:39:48 +0000 Files and hashes: 1: 4JlhFVCKOtWZFdurzLaW26C0zHI.crl (hash: Ae43hnu9q0MSKrsJfjzy6j/F2qIuJcCYMMdB1Ux2uU0=) 2: BA758AE2212711F0A7DCCB5BC4F9AE02.roa (hash: m8lEVsnh3DvG0KEPCp4MW7Ow9L5MLhKDggw4WLNqc68=) 3: 03C7AA80F01111ED9C345840C4F9AE02.roa (hash: Am8OlNfTP5V8Kx5g/Dv+15S2O7P9HWujy6NfIY4x9VA=) 4: 04E8D402F01111ED9C345840C4F9AE02.roa (hash: aw0GsE7/msiXwaZd5f0HibklFhBHtqZY6llDRI4HTZY=) 5: F650791EF01411ED9210D060C4F9AE02.roa (hash: 4IZfBEYxdxWId8yUiHx63z7AlPcjMCqr2gmuQDYBUpU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/4JlhFVCKOtWZFdurzLaW26C0zHI.crl rsync://rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/4JlhFVCKOtWZFdurzLaW26C0zHI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4JlhFVCKOtWZFdurzLaW26C0zHI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 23:39:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1394 (0x572) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153CE9, serialNumber=E0996115508A3AD59915DBABCCB696DBA0B4CC72 Validity Not Before: May 30 23:39:49 2025 GMT Not After : Jun 6 23:39:48 2025 GMT Subject: CN=683a41c5-960d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:ce:16:17:6a:3c:83:82:f3:60:7d:42:34:e6: 3a:12:f7:21:3b:e0:76:89:5e:e9:88:04:29:90:5b: 7e:d8:c4:39:f6:cd:28:cf:16:7b:df:5f:af:8c:95: d3:c6:f3:39:d2:51:ea:1b:e1:00:14:30:12:74:7a: 22:f0:40:af:2e:7b:ad:0d:11:8d:71:8c:4a:fa:61: 80:2f:92:70:3b:73:ad:a2:df:6e:20:5b:54:76:31: c3:19:3c:75:96:5b:24:15:b5:24:77:57:1d:33:e6: 40:ca:1e:19:1e:1b:6c:b1:ce:5d:60:5d:46:8c:eb: 46:91:f0:79:73:6f:48:72:6e:f2:da:13:da:8b:90: 19:fb:76:b2:54:b0:0e:b8:77:9c:a2:c0:4a:1e:81: 5a:01:cf:3c:42:f3:d4:fe:fc:5f:64:08:d6:6b:36: 98:fe:39:28:62:fe:04:05:cb:23:fc:c7:c0:4c:6e: 02:13:f5:56:83:67:27:a3:fa:b7:d5:45:2f:29:0f: c1:07:5d:57:9c:65:a2:87:94:b4:6b:f1:29:bb:7f: 46:91:f0:54:07:18:a7:66:37:2a:7a:1c:b4:83:7b: a8:af:c6:ea:d9:11:e0:2e:f8:18:b8:fd:bb:28:01: ab:db:bb:79:6c:97:45:fc:90:b7:c8:75:3f:d2:8a: 48:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:1C:B3:64:D0:C6:AC:34:84:64:E4:A2:7A:64:85:C4:B1:48:46:9E X509v3 Authority Key Identifier: keyid:E0:99:61:15:50:8A:3A:D5:99:15:DB:AB:CC:B6:96:DB:A0:B4:CC:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/4JlhFVCKOtWZFdurzLaW26C0zHI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4JlhFVCKOtWZFdurzLaW26C0zHI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/4JlhFVCKOtWZFdurzLaW26C0zHI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:a1:73:67:a6:d5:2d:ee:8c:84:67:96:8c:4e:b8:d5:ca:95: 55:b6:cd:ab:16:83:f3:85:5e:95:36:e2:dd:db:e2:e7:89:4b: 79:cd:53:94:35:ca:8d:8c:ca:f4:ff:84:0d:0a:0b:ad:07:8b: 6e:8a:50:a4:6a:cd:aa:d6:ed:ab:91:b7:90:51:86:cc:2b:9d: 11:ac:19:1f:6c:a2:27:4a:7b:26:98:fd:16:6d:b5:ff:f9:12: 42:e2:4e:91:c5:73:35:b4:fb:ad:af:26:46:64:dc:bc:98:64: 56:99:ec:21:ff:96:00:56:74:9f:68:fe:6c:b9:cc:23:fd:62: 3c:72:f9:3c:bc:da:1e:09:c0:07:c8:66:56:f8:a1:87:5e:ea: ff:25:48:cb:3c:df:88:4d:86:07:2e:e9:85:9b:6d:bf:96:5c: f6:e8:ea:56:8e:25:d6:b6:99:19:45:c3:ea:c1:02:4b:7f:2e: 30:4f:94:51:4e:88:70:32:da:c1:f8:5a:1d:4f:62:c3:02:cc: f0:23:55:f0:21:f9:ca:f7:d6:2a:20:c9:02:cc:63:73:d0:c5: ec:4f:5e:ba:a4:a2:49:0d:8f:68:d8:e4:a1:f8:72:bc:73:b8: 74:de:f1:56:a5:fe:36:98:b6:e0:0c:f4:be:55:1a:12:e7:83: 6e:f7:1e:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNDRTkxMTAvBgNVBAUTKEUwOTk2MTE1NTA4QTNBRDU5OTE1REJBQkNDQjY5NkRC QTBCNENDNzIwHhcNMjUwNTMwMjMzOTQ5WhcNMjUwNjA2MjMzOTQ4WjAYMRYwFAYD VQQDEw02ODNhNDFjNS05NjBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3s4WF2o8g4LzYH1CNOY6EvchO+B2iV7piAQpkFt+2MQ59s0ozxZ731+vjJXT xvM50lHqG+EAFDASdHoi8ECvLnutDRGNcYxK+mGAL5JwO3Otot9uIFtUdjHDGTx1 llskFbUkd1cdM+ZAyh4ZHhtssc5dYF1GjOtGkfB5c29Icm7y2hPai5AZ+3ayVLAO uHecosBKHoFaAc88QvPU/vxfZAjWazaY/jkoYv4EBcsj/MfATG4CE/VWg2cno/q3 1UUvKQ/BB11XnGWih5S0a/Epu39GkfBUBxinZjcqehy0g3uor8bq2RHgLvgYuP27 KAGr27t5bJdF/JC3yHU/0opIXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKIcs2TQ xqw0hGTkonpkhcSxSEaeMB8GA1UdIwQYMBaAFOCZYRVQijrVmRXbq8y2ltugtMxy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0NFOS8wQUIxRDM5NkY1 MTUxMUVCOUVGRTA3NTBDNEY5QUUwMi80SmxoRlZDS090V1pGZHVyekxhVzI2QzB6 SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRKbGhGVkNLT3RXWkZkdXJ6TGFXMjZDMHpISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0NFOS8wQUIxRDM5NkY1MTUxMUVCOUVGRTA3NTBDNEY5QUUwMi80SmxoRlZDS090 V1pGZHVyekxhVzI2QzB6SEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsoXNnptUt7oyEZ5aMTrjVypVVts2rFoPzhV6VNuLd2+LniUt5zVOU NcqNjMr0/4QNCgutB4tuilCkas2q1u2rkbeQUYbMK50RrBkfbKInSnsmmP0WbbX/ +RJC4k6RxXM1tPutryZGZNy8mGRWmewh/5YAVnSfaP5sucwj/WI8cvk8vNoeCcAH yGZW+KGHXur/JUjLPN+ITYYHLumFm22/llz26OpWjiXWtpkZRcPqwQJLfy4wT5RR TohwMtrB+FodT2LDAszwI1XwIfnK99YqIMkCzGNz0MXsT166pKJJDY9o2OSh+HK8 c7h03vFWpf42mLbgDPS+VRoS54Nu9x4G -----END CERTIFICATE-----Generated at Sat May 31 17:26:17 2025 by rpki-client