$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.mft File: 4suW87BaY-nlR5ZSbszpSjWR5fw.mft (raw, json) Hash identifier: qcVHUpEbGN9Y0x6hVn63I48cNCtCIgY/jcEBJXnY8rs= Subject key identifier: 78:66:A6:BD:B7:27:20:B1:11:D1:61:71:10:7A:B1:54:8D:93:A7:DF Authority key identifier: E2:CB:96:F3:B0:5A:63:E9:E5:47:96:52:6E:CC:E9:4A:35:91:E5:FC Certificate issuer: /CN=A9157B74/serialNumber=E2CB96F3B05A63E9E54796526ECCE94A3591E5FC Certificate serial: 08 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4suW87BaY-nlR5ZSbszpSjWR5fw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.mft Manifest number: 07 Signing time: Thu 05 Jun 2025 07:33:10 +0000 Manifest this update: Thu 05 Jun 2025 07:33:10 +0000 Manifest next update: Thu 12 Jun 2025 07:33:10 +0000 Files and hashes: 1: 4suW87BaY-nlR5ZSbszpSjWR5fw.crl (hash: /lfrcpqC7iUi2iltdFo7RgvVUBlSBwxOWkw4XsY2WJU=) 2: ACCFE0643C9711F08159891EC4F9AE02.roa (hash: lVHhBj6K1C48l+j8zLFa7FZ7WGKYKz6QlN3fyLSlK7w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.crl rsync://rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4suW87BaY-nlR5ZSbszpSjWR5fw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 07:33:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157B74, serialNumber=E2CB96F3B05A63E9E54796526ECCE94A3591E5FC Validity Not Before: Jun 5 07:33:10 2025 GMT Not After : Jun 12 07:33:10 2025 GMT Subject: CN=68414836-6599 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:d8:a7:23:b3:3c:6a:e3:64:22:3c:c1:d3:64: f8:29:93:30:c3:35:d8:14:a8:bf:dc:46:18:14:bb: 1b:0a:0e:a4:07:ff:52:14:0c:10:e8:06:a9:8f:55: e2:91:e5:fc:65:2f:c0:1f:05:6d:86:8c:dd:b9:df: 6b:39:21:e9:0a:0e:e1:ed:5f:31:68:7d:e6:e7:63: 15:8b:5f:86:6f:58:7b:01:a2:06:6e:79:ab:8d:50: 6c:ee:b2:f3:46:58:09:20:79:af:c9:b2:65:4d:21: 79:18:1b:fb:b6:80:c0:b8:d4:00:57:70:dc:cf:cd: 06:e1:b5:54:45:5d:ab:d7:69:19:01:db:31:c7:b4: 21:5c:2b:22:af:11:88:1c:b2:ed:96:87:87:dc:83: e9:3a:79:76:d3:a8:a4:96:a2:c6:ae:4e:f4:e9:84: a6:a3:17:34:5c:c2:b9:c7:6f:4c:3c:54:d7:a9:01: f5:d7:ff:8f:42:a2:88:24:85:32:cc:8d:11:fe:68: a3:56:8d:b0:0a:46:1c:ba:1a:a9:89:17:b6:39:e3: a0:50:37:9c:a6:33:10:01:07:13:fa:4c:2d:35:60: a6:f1:bc:ba:d3:94:25:4b:dd:8d:3e:3b:79:25:fd: 43:a3:98:10:6a:0e:62:18:ac:07:4d:8e:fe:8e:5c: f2:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:66:A6:BD:B7:27:20:B1:11:D1:61:71:10:7A:B1:54:8D:93:A7:DF X509v3 Authority Key Identifier: keyid:E2:CB:96:F3:B0:5A:63:E9:E5:47:96:52:6E:CC:E9:4A:35:91:E5:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4suW87BaY-nlR5ZSbszpSjWR5fw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:a4:64:a4:b1:64:b9:5d:82:71:71:54:67:9e:2f:89:32:01: f2:1b:ac:26:ea:df:6a:40:5a:a7:fe:89:a2:71:6b:f8:ce:65: 08:d4:4f:39:73:6c:50:04:d0:22:63:ab:24:54:84:c8:cb:8e: 1b:61:2c:ae:cd:f0:4e:24:6c:5d:ca:53:74:81:a3:8d:93:c6: 1b:78:bd:73:24:d1:bb:f7:ce:71:0a:8b:3f:b2:90:1f:61:bd: b5:4d:93:a8:e4:67:4a:73:11:e5:cf:30:39:09:35:55:26:aa: a0:89:f0:03:fb:45:16:e1:03:a0:0f:e8:26:ff:e7:97:1a:3e: 7f:e5:1d:e1:ce:44:5c:fe:d2:c2:f3:1b:df:dd:c2:0c:dd:19: e1:ae:83:58:94:33:33:aa:7e:70:4f:97:bb:fb:34:0f:68:8f: 2e:77:65:10:21:76:18:67:e0:b8:c3:a3:ca:44:32:a8:25:f8: 87:73:39:58:6a:db:6a:ce:c5:51:99:f7:7d:e7:1d:2a:8d:66: a2:c7:52:b5:7b:87:50:6a:c6:62:c0:db:ae:e3:02:d7:32:d8: d1:3a:bb:dc:9d:68:b7:34:ce:8b:43:cb:a2:1e:24:a8:32:a9: 1d:bf:03:80:a5:62:ea:7a:26:80:a6:e0:7e:f2:de:2c:c5:68: b2:5c:3c:22 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 N0I3NDExMC8GA1UEBRMoRTJDQjk2RjNCMDVBNjNFOUU1NDc5NjUyNkVDQ0U5NEEz NTkxRTVGQzAeFw0yNTA2MDUwNzMzMTBaFw0yNTA2MTIwNzMzMTBaMBgxFjAUBgNV BAMTDTY4NDE0ODM2LTY1OTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDu2Kcjszxq42QiPMHTZPgpkzDDNdgUqL/cRhgUuxsKDqQH/1IUDBDoBqmPVeKR 5fxlL8AfBW2GjN2532s5IekKDuHtXzFofebnYxWLX4ZvWHsBogZueauNUGzusvNG WAkgea/JsmVNIXkYG/u2gMC41ABXcNzPzQbhtVRFXavXaRkB2zHHtCFcKyKvEYgc su2Wh4fcg+k6eXbTqKSWosauTvTphKajFzRcwrnHb0w8VNepAfXX/49CoogkhTLM jRH+aKNWjbAKRhy6GqmJF7Y546BQN5ymMxABBxP6TC01YKbxvLrTlCVL3Y0+O3kl /UOjmBBqDmIYrAdNjv6OXPI/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUeGamvbcn ILER0WFxEHqxVI2Tp98wHwYDVR0jBBgwFoAU4suW87BaY+nlR5ZSbszpSjWR5fww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU3Qjc0L0FGNjRFNTEwM0JB QTExRjA5NjQyODIxQ0M0RjlBRTAyLzRzdVc4N0JhWS1ubFI1WlNic3pwU2pXUjVm dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNHN1Vzg3QmFZLW5sUjVaU2JzenBTaldSNWZ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU3 Qjc0L0FGNjRFNTEwM0JBQTExRjA5NjQyODIxQ0M0RjlBRTAyLzRzdVc4N0JhWS1u bFI1WlNic3pwU2pXUjVmdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAH2kZKSxZLldgnFxVGeeL4kyAfIbrCbq32pAWqf+iaJxa/jOZQjUTzlz bFAE0CJjqyRUhMjLjhthLK7N8E4kbF3KU3SBo42Txht4vXMk0bv3znEKiz+ykB9h vbVNk6jkZ0pzEeXPMDkJNVUmqqCJ8AP7RRbhA6AP6Cb/55caPn/lHeHORFz+0sLz G9/dwgzdGeGug1iUMzOqfnBPl7v7NA9ojy53ZRAhdhhn4LjDo8pEMqgl+IdzOVhq 22rOxVGZ933nHSqNZqLHUrV7h1BqxmLA267jAtcy2NE6u9ydaLc0zotDy6IeJKgy qR2/A4ClYup6JoCm4H7y3izFaLJcPCI= -----END CERTIFICATE-----Generated at Thu Jun 5 19:59:31 2025 by rpki-client