$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B74/CE00425A36BC11F081D55F17C4F9AE02/v4hgssA3e7Xv7b461A8c8YnyrLI.mft File: v4hgssA3e7Xv7b461A8c8YnyrLI.mft (raw, json) Hash identifier: jqD9EyO8Zq8jH9P3Py2pPjt+lqA08DItyXWYOYCFK/4= Subject key identifier: 6D:BF:B7:3C:E6:E5:CB:54:A2:86:F8:5E:2A:D7:DD:78:95:13:B8:F5 Authority key identifier: BF:88:60:B2:C0:37:7B:B5:EF:ED:BE:3A:D4:0F:1C:F1:89:F2:AC:B2 Certificate issuer: /CN=A9157B74/serialNumber=BF8860B2C0377BB5EFEDBE3AD40F1CF189F2ACB2 Certificate serial: 08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v4hgssA3e7Xv7b461A8c8YnyrLI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157B74/CE00425A36BC11F081D55F17C4F9AE02/v4hgssA3e7Xv7b461A8c8YnyrLI.mft Manifest number: 07 Signing time: Sat 31 May 2025 07:44:20 +0000 Manifest this update: Sat 31 May 2025 07:44:20 +0000 Manifest next update: Sat 07 Jun 2025 07:44:20 +0000 Files and hashes: 1: v4hgssA3e7Xv7b461A8c8YnyrLI.crl (hash: uR5/Mg0wUCq7rVHtN3QmalnT9T1R5BrUboF9Utejk0U=) 2: 074A7A1436C511F0A4E5C52BC4F9AE02.roa (hash: VRIs5/TUKDaqF1hTLN0GORNvAVQA+OzzszxfTxaTTMc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157B74/CE00425A36BC11F081D55F17C4F9AE02/v4hgssA3e7Xv7b461A8c8YnyrLI.crl rsync://rpki.apnic.net/member_repository/A9157B74/CE00425A36BC11F081D55F17C4F9AE02/v4hgssA3e7Xv7b461A8c8YnyrLI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v4hgssA3e7Xv7b461A8c8YnyrLI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:44:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157B74, serialNumber=BF8860B2C0377BB5EFEDBE3AD40F1CF189F2ACB2 Validity Not Before: May 31 07:44:20 2025 GMT Not After : Jun 7 07:44:20 2025 GMT Subject: CN=683ab354-59ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:57:29:25:67:e2:ed:c8:1b:6b:5b:83:94:f9: d6:63:45:a9:85:9d:99:f2:39:b9:da:d5:93:5a:60: ba:61:2f:bc:65:fb:21:c5:48:a1:50:44:ee:f3:b8: 23:b9:3e:65:18:d9:43:79:00:04:5b:23:57:11:44: 56:4e:4a:50:04:44:88:99:52:89:cc:36:78:18:13: a2:eb:ca:1b:a5:6b:61:33:76:7e:6a:27:db:53:57: 99:c0:b5:3b:2c:e8:6d:62:c7:32:54:4c:77:b1:6a: 42:3d:c6:bc:bb:b2:44:2e:7e:00:79:e2:8b:d6:26: f7:6e:48:95:dc:16:5b:ef:4c:89:18:c0:37:e4:b5: 4e:03:bb:9b:cb:bb:70:1f:21:40:bc:47:91:56:3b: 2b:07:78:12:d2:48:41:0c:5d:60:91:89:a5:56:bc: 50:e1:76:cf:f2:6d:c5:fd:38:82:42:25:65:d8:ec: 5f:bc:32:d4:3b:83:2c:fa:1a:4e:08:47:24:1c:3c: ab:6b:35:c2:fc:0d:f5:28:78:cb:38:fc:90:2b:4e: df:24:18:78:73:07:9d:c8:a3:be:a0:54:3f:a7:ce: 2e:cb:f9:29:a3:c1:be:7b:88:cb:3e:75:43:2e:af: 28:a0:a3:8c:ad:5f:48:00:e6:70:58:b9:7f:58:51: 05:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:BF:B7:3C:E6:E5:CB:54:A2:86:F8:5E:2A:D7:DD:78:95:13:B8:F5 X509v3 Authority Key Identifier: keyid:BF:88:60:B2:C0:37:7B:B5:EF:ED:BE:3A:D4:0F:1C:F1:89:F2:AC:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157B74/CE00425A36BC11F081D55F17C4F9AE02/v4hgssA3e7Xv7b461A8c8YnyrLI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v4hgssA3e7Xv7b461A8c8YnyrLI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B74/CE00425A36BC11F081D55F17C4F9AE02/v4hgssA3e7Xv7b461A8c8YnyrLI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:6f:12:e5:76:61:ef:37:73:1c:a3:ca:f2:0a:ef:31:21:56: b6:1e:50:00:48:b0:8c:8f:6a:c1:b4:22:6d:2b:84:10:7e:20: e6:6f:77:eb:21:1f:eb:35:cd:83:b3:87:3a:0b:19:c4:58:41: bf:c2:51:5b:e7:86:95:5d:a8:f2:83:d7:20:6b:38:e0:11:8a: 88:21:9f:64:71:fc:db:5c:48:26:3d:93:20:ea:d2:78:40:86: 78:e6:f3:8e:ee:a6:4d:52:7b:3f:f3:5e:59:46:ac:e6:54:1a: 7b:1d:8e:67:93:f7:6e:dd:3f:a7:ef:f7:59:a0:8d:5a:41:d4: 65:31:e9:c3:01:74:47:9f:ae:4f:70:e5:64:7e:ca:0c:a0:47: 83:5c:89:b7:fb:29:bf:37:74:3b:fe:ab:46:27:95:98:06:3d: 4b:c7:7c:7b:ed:80:03:5f:c3:cc:37:dc:b6:8f:8c:6c:15:ec: 43:44:b7:e1:7c:63:a3:86:b3:dd:73:a4:4d:d7:88:bf:99:25: c8:fc:ed:53:c5:70:1a:d7:59:13:5c:ba:15:7a:19:b8:b7:21: 2f:b1:6e:94:c0:23:f8:83:b3:19:33:0e:01:c3:4b:ac:e3:cb: 9b:60:55:02:45:57:72:45:7c:37:1c:09:c6:41:02:63:bc:61: 60:3d:6a:be -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 N0I3NDExMC8GA1UEBRMoQkY4ODYwQjJDMDM3N0JCNUVGRURCRTNBRDQwRjFDRjE4 OUYyQUNCMjAeFw0yNTA1MzEwNzQ0MjBaFw0yNTA2MDcwNzQ0MjBaMBgxFjAUBgNV BAMTDTY4M2FiMzU0LTU5ZWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+VyklZ+LtyBtrW4OU+dZjRamFnZnyObna1ZNaYLphL7xl+yHFSKFQRO7zuCO5 PmUY2UN5AARbI1cRRFZOSlAERIiZUonMNngYE6Lryhula2Ezdn5qJ9tTV5nAtTss 6G1ixzJUTHexakI9xry7skQufgB54ovWJvduSJXcFlvvTIkYwDfktU4Du5vLu3Af IUC8R5FWOysHeBLSSEEMXWCRiaVWvFDhds/ybcX9OIJCJWXY7F+8MtQ7gyz6Gk4I RyQcPKtrNcL8DfUoeMs4/JArTt8kGHhzB53Io76gVD+nzi7L+Smjwb57iMs+dUMu ryigo4ytX0gA5nBYuX9YUQWRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUbb+3PObl y1SihvheKtfdeJUTuPUwHwYDVR0jBBgwFoAUv4hgssA3e7Xv7b461A8c8YnyrLIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU3Qjc0L0NFMDA0MjVBMzZC QzExRjA4MUQ1NUYxN0M0RjlBRTAyL3Y0aGdzc0EzZTdYdjdiNDYxQThjOFlueXJM SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdjRoZ3NzQTNlN1h2N2I0NjFBOGM4WW55ckxJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU3 Qjc0L0NFMDA0MjVBMzZCQzExRjA4MUQ1NUYxN0M0RjlBRTAyL3Y0aGdzc0EzZTdY djdiNDYxQThjOFlueXJMSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHpvEuV2Ye83cxyjyvIK7zEhVrYeUABIsIyPasG0Im0rhBB+IOZvd+sh H+s1zYOzhzoLGcRYQb/CUVvnhpVdqPKD1yBrOOARioghn2Rx/NtcSCY9kyDq0nhA hnjm847upk1Sez/zXllGrOZUGnsdjmeT927dP6fv91mgjVpB1GUx6cMBdEefrk9w 5WR+ygygR4Ncibf7Kb83dDv+q0YnlZgGPUvHfHvtgANfw8w33LaPjGwV7ENEt+F8 Y6OGs91zpE3XiL+ZJcj87VPFcBrXWRNcuhV6Gbi3IS+xbpTAI/iDsxkzDgHDS6zj y5tgVQJFV3JFfDccCcZBAmO8YWA9ar4= -----END CERTIFICATE-----Generated at Sat May 31 16:26:51 2025 by rpki-client