$ rpki-client -vvf rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft File: 4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft (raw, json) Hash identifier: kHA6SnxM+VBPgcRBFhtil5RUhqHISHyiQQJsouWq3lI= Subject key identifier: A1:B5:1E:15:D4:4F:6B:FF:45:94:DE:DB:7D:1E:0B:D5:52:A8:41:E0 Authority key identifier: E0:2B:EE:E8:8D:83:5B:D0:E4:25:4C:A0:8D:7C:03:BC:57:19:74:84 Certificate issuer: /CN=A915E005/serialNumber=E02BEEE88D835BD0E4254CA08D7C03BC57197484 Certificate serial: 2202 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft Manifest number: 21F2 Signing time: Fri 30 May 2025 16:03:59 +0000 Manifest this update: Fri 30 May 2025 16:03:58 +0000 Manifest next update: Fri 06 Jun 2025 16:03:58 +0000 Files and hashes: 1: 4Cvu6I2DW9DkJUygjXwDvFcZdIQ.crl (hash: XzTHGTJQl2xbTtQYjmHZpPwg161euYKnYhCWGnPOOgc=) 2: CD4CD0B654F311E7AC64ED3AC4F9AE02.roa (hash: iH2xmS1GVsSNNCZWscwdxJt8FMGLF9Yh7e5xIVsXSm8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.crl rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 16:03:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8706 (0x2202) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E005, serialNumber=E02BEEE88D835BD0E4254CA08D7C03BC57197484 Validity Not Before: May 30 16:03:58 2025 GMT Not After : Jun 6 16:03:58 2025 GMT Subject: CN=6839d6ee-add3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:f7:5e:1a:65:c2:c1:2b:ba:c6:82:bb:f1:d1: 3f:bb:16:ea:53:82:a9:d7:81:08:0b:82:8e:c5:5d: 71:36:79:8c:e0:da:aa:31:fc:ea:43:3b:c1:e4:ec: a7:04:6f:eb:59:2f:5c:21:fc:0f:ca:f3:d5:98:3c: 38:db:cd:a3:41:cd:7c:1e:07:dc:54:6e:d5:fc:1f: 21:7e:25:92:5d:c7:d7:cf:1b:be:a2:79:da:68:33: a4:90:4e:de:18:8e:8b:55:ba:40:d9:d5:44:7c:4c: df:a6:01:68:e9:0f:11:6f:1d:d5:74:e2:a1:cd:da: 07:f3:09:7a:17:ff:69:c1:e3:7f:74:dc:99:3a:bf: e1:81:13:6e:f9:62:6a:c2:f7:56:93:da:64:7b:a0: 0b:7d:8d:f0:3c:3e:9c:b1:73:35:76:7b:91:98:8b: 97:2e:48:57:6d:44:c6:18:f0:bb:bf:a4:7f:5f:3e: 79:14:aa:2e:d2:ec:dd:34:56:2a:ef:60:7e:c7:1f: b0:76:14:39:01:71:a1:78:07:58:71:6e:7b:28:a7: f7:22:7c:67:b9:fb:ed:01:1a:90:6e:48:9f:44:b9: cd:73:47:83:f9:9e:02:b0:e6:2c:68:e6:6e:27:31: 52:c3:0f:f2:f8:3e:12:95:66:3e:9a:d1:5e:f6:60: 95:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:B5:1E:15:D4:4F:6B:FF:45:94:DE:DB:7D:1E:0B:D5:52:A8:41:E0 X509v3 Authority Key Identifier: keyid:E0:2B:EE:E8:8D:83:5B:D0:E4:25:4C:A0:8D:7C:03:BC:57:19:74:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:79:18:fa:16:e5:7d:21:f2:21:03:5a:46:e5:95:d5:bf:64: 02:15:d4:3a:81:29:36:22:8e:7b:d0:89:48:4e:e9:5c:d8:61: 21:bb:02:ca:fe:7e:88:74:2b:b3:95:2a:84:ff:39:ac:5e:a0: 74:1b:2a:f1:f2:58:3b:db:ea:cc:f8:21:ed:d9:c2:bb:63:89: d8:b1:8d:96:a3:8f:5f:d7:14:c8:18:da:32:c7:76:9d:22:6a: 36:39:30:e1:e3:d9:3b:2c:e8:df:a8:47:19:db:2d:8a:bc:f1: fd:e3:c2:13:b5:f8:47:c8:95:f1:93:30:4a:54:06:01:e9:cd: ff:ff:73:10:39:c0:65:30:16:05:aa:00:3c:c4:2f:87:4e:64: e7:69:e8:2b:26:53:38:c4:78:8c:a2:ab:81:45:22:c3:e4:a4: 17:06:39:35:b7:f9:af:1d:fc:49:df:b8:7f:ee:c6:b4:f8:0f: 02:85:d6:72:19:ad:55:21:b7:c5:c1:0d:8f:33:b1:68:7b:54: ac:62:70:e7:4b:67:5a:7d:07:ef:56:ae:d9:88:5e:23:5a:fa: 81:07:e5:1d:7e:19:fa:9d:b2:27:36:5a:1e:6d:ef:ad:8d:6f: 33:da:1e:84:a0:38:6e:55:10:53:48:cf:1b:ee:f9:56:c0:e9: 78:d2:dd:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIgIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUUwMDUxMTAvBgNVBAUTKEUwMkJFRUU4OEQ4MzVCRDBFNDI1NENBMDhEN0MwM0JD NTcxOTc0ODQwHhcNMjUwNTMwMTYwMzU4WhcNMjUwNjA2MTYwMzU4WjAYMRYwFAYD VQQDEw02ODM5ZDZlZS1hZGQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2fdeGmXCwSu6xoK78dE/uxbqU4Kp14EIC4KOxV1xNnmM4NqqMfzqQzvB5Oyn BG/rWS9cIfwPyvPVmDw4282jQc18HgfcVG7V/B8hfiWSXcfXzxu+onnaaDOkkE7e GI6LVbpA2dVEfEzfpgFo6Q8Rbx3VdOKhzdoH8wl6F/9pweN/dNyZOr/hgRNu+WJq wvdWk9pke6ALfY3wPD6csXM1dnuRmIuXLkhXbUTGGPC7v6R/Xz55FKou0uzdNFYq 72B+xx+wdhQ5AXGheAdYcW57KKf3InxnufvtARqQbkifRLnNc0eD+Z4CsOYsaOZu JzFSww/y+D4SlWY+mtFe9mCVNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKG1HhXU T2v/RZTe230eC9VSqEHgMB8GA1UdIwQYMBaAFOAr7uiNg1vQ5CVMoI18A7xXGXSE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTAwNS85QkU3ODFGRUM2 OTkxMUU1QjBBRkU1NEVDNEY5QUUwMi80Q3Z1NkkyRFc5RGtKVXlnalh3RHZGY1pk SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRDdnU2STJEVzlEa0pVeWdqWHdEdkZjWmRJUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RTAwNS85QkU3ODFGRUM2OTkxMUU1QjBBRkU1NEVDNEY5QUUwMi80Q3Z1NkkyRFc5 RGtKVXlnalh3RHZGY1pkSVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbeRj6FuV9IfIhA1pG5ZXVv2QCFdQ6gSk2Io570IlITulc2GEhuwLK /n6IdCuzlSqE/zmsXqB0Gyrx8lg72+rM+CHt2cK7Y4nYsY2Wo49f1xTIGNoyx3ad Imo2OTDh49k7LOjfqEcZ2y2KvPH948ITtfhHyJXxkzBKVAYB6c3//3MQOcBlMBYF qgA8xC+HTmTnaegrJlM4xHiMoquBRSLD5KQXBjk1t/mvHfxJ37h/7sa0+A8ChdZy Ga1VIbfFwQ2PM7Foe1SsYnDnS2dafQfvVq7ZiF4jWvqBB+Udfhn6nbInNloebe+t jW8z2h6EoDhuVRBTSM8b7vlWwOl40t1T -----END CERTIFICATE-----Generated at Sat May 31 16:55:06 2025 by rpki-client