$ rpki-client -vvf rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft File: 4bzIEhAO1GAiFweJMk8cw6-_aq0.mft (raw, json) Hash identifier: rrFcoUv9kfZ30K8KJQL4H614VcrQNgrAd3nvff4gLsg= Subject key identifier: 4B:D5:DC:D2:9E:FA:D8:61:7C:95:3A:09:11:8D:B5:9F:62:56:03:E2 Authority key identifier: E1:BC:C8:12:10:0E:D4:60:22:17:07:89:32:4F:1C:C3:AF:BF:6A:AD Certificate issuer: /CN=A916AAFF/serialNumber=E1BCC812100ED46022170789324F1CC3AFBF6AAD Certificate serial: 010D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bzIEhAO1GAiFweJMk8cw6-_aq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft Manifest number: 0106 Signing time: Sat 31 May 2025 04:46:34 +0000 Manifest this update: Sat 31 May 2025 04:46:34 +0000 Manifest next update: Sat 07 Jun 2025 04:46:34 +0000 Files and hashes: 1: 4bzIEhAO1GAiFweJMk8cw6-_aq0.crl (hash: u/bo6XeDw68KskpiKXBJlRpOwQeo01yK/TanX0rzEiE=) 2: 69E8AC12555811EFA88AEA24C4F9AE02.roa (hash: rp2KgXfSmtmZKYQY55JUof6yTTeOYpzuHhK8PCwpS0Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.crl rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bzIEhAO1GAiFweJMk8cw6-_aq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:46:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 269 (0x10d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916AAFF, serialNumber=E1BCC812100ED46022170789324F1CC3AFBF6AAD Validity Not Before: May 31 04:46:34 2025 GMT Not After : Jun 7 04:46:34 2025 GMT Subject: CN=683a89aa-e0f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:cd:fb:4b:7f:dd:13:f3:49:e7:c3:f0:70:51: 78:1d:b4:74:21:04:af:7f:d1:18:37:1b:c0:4b:14: 42:f8:9b:bd:99:df:3b:e6:83:1b:b1:25:5e:5b:ae: f4:bb:06:45:c2:a7:3e:f2:f4:f2:5b:92:23:92:58: 11:d1:bf:74:60:a3:39:3c:cf:3c:6f:77:02:7b:b4: 88:ab:d4:38:e1:8c:56:26:1d:fc:45:4f:42:5f:cc: d9:48:9c:a3:70:a9:4d:76:92:66:7b:d2:1c:82:b9: 56:98:e1:e6:4c:70:38:0e:c8:b6:e9:08:dc:0e:2a: 54:58:b1:25:43:8f:01:a9:1b:28:21:02:b7:08:db: f9:93:ca:80:84:0d:16:90:87:dd:09:b8:63:35:6b: b2:7a:12:a1:ca:7b:e9:5a:cd:58:b6:e4:80:75:60: ed:27:ed:28:4a:2c:5b:c4:96:94:50:68:e4:45:25: b1:88:28:37:8b:72:42:a9:aa:2e:1d:65:c3:8e:d5: 17:34:4b:9e:3d:dd:73:ef:0b:94:e8:83:5a:88:34: 0b:71:96:09:54:54:c2:d0:2f:0e:7b:dd:21:60:61: 92:e0:ba:ee:b3:97:7f:b4:af:c1:4c:11:b1:e9:58: 7c:55:78:5a:d4:28:d1:6e:7b:2a:dd:9f:0d:ab:24: 7c:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:D5:DC:D2:9E:FA:D8:61:7C:95:3A:09:11:8D:B5:9F:62:56:03:E2 X509v3 Authority Key Identifier: keyid:E1:BC:C8:12:10:0E:D4:60:22:17:07:89:32:4F:1C:C3:AF:BF:6A:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bzIEhAO1GAiFweJMk8cw6-_aq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:2e:3e:c8:09:25:d6:29:78:54:32:cf:b3:0a:84:d8:b1:d7: 27:5a:10:16:e0:ba:8a:f0:a9:fc:7b:51:65:30:0f:d0:3c:b0: 71:2b:01:b2:c1:fe:b3:ec:44:4f:97:e0:b0:78:e3:e7:87:e0: 54:43:22:ef:51:49:93:73:73:1e:aa:f2:8c:ba:3b:9d:b1:ae: a2:be:cc:56:0f:91:43:c5:3c:ab:18:ce:f1:cd:53:54:04:af: 10:ad:63:02:48:16:aa:ab:97:5d:e0:a2:84:44:3c:7e:33:60: a9:59:c0:40:db:be:91:ad:2f:d1:ff:d9:d5:5f:ca:89:58:22: 28:c0:1a:47:62:e8:a0:72:66:1c:dc:17:6a:d6:47:01:61:74: 96:5a:22:4f:15:af:b8:89:c0:56:11:30:92:e7:3a:3c:d6:32: 59:db:e0:2a:32:d5:8c:9b:1a:57:49:23:91:66:86:f9:c9:5e: bb:18:7d:d9:b2:7d:99:87:be:4b:55:14:dd:92:a6:5e:7a:65: c3:f6:85:4c:bc:5c:25:1d:6c:a6:d2:5a:9e:dd:2b:74:27:5c: b8:17:4d:32:19:c0:d0:86:41:22:db:4d:bf:30:13:ed:dd:2c: 8d:e2:0a:8a:9d:c0:fd:b4:87:b2:76:80:74:e2:38:6d:51:07: 0f:ce:37:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkFBRkYxMTAvBgNVBAUTKEUxQkNDODEyMTAwRUQ0NjAyMjE3MDc4OTMyNEYxQ0Mz QUZCRjZBQUQwHhcNMjUwNTMxMDQ0NjM0WhcNMjUwNjA3MDQ0NjM0WjAYMRYwFAYD VQQDEw02ODNhODlhYS1lMGY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAns37S3/dE/NJ58PwcFF4HbR0IQSvf9EYNxvASxRC+Ju9md875oMbsSVeW670 uwZFwqc+8vTyW5IjklgR0b90YKM5PM88b3cCe7SIq9Q44YxWJh38RU9CX8zZSJyj cKlNdpJme9IcgrlWmOHmTHA4Dsi26QjcDipUWLElQ48BqRsoIQK3CNv5k8qAhA0W kIfdCbhjNWuyehKhynvpWs1YtuSAdWDtJ+0oSixbxJaUUGjkRSWxiCg3i3JCqaou HWXDjtUXNEuePd1z7wuU6INaiDQLcZYJVFTC0C8Oe90hYGGS4Lrus5d/tK/BTBGx 6Vh8VXha1CjRbnsq3Z8NqyR8MwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEvV3NKe +thhfJU6CRGNtZ9iVgPiMB8GA1UdIwQYMBaAFOG8yBIQDtRgIhcHiTJPHMOvv2qt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QUFGRi83QkI4QkE2Q0JC M0ExMUVFODdDNjZCMEZDNEY5QUUwMi80YnpJRWhBTzFHQWlGd2VKTWs4Y3c2LV9h cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRieklFaEFPMUdBaUZ3ZUpNazhjdzYtX2FxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QUFGRi83QkI4QkE2Q0JCM0ExMUVFODdDNjZCMEZDNEY5QUUwMi80YnpJRWhBTzFH QWlGd2VKTWs4Y3c2LV9hcTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCULj7ICSXWKXhUMs+zCoTYsdcnWhAW4LqK8Kn8e1FlMA/QPLBxKwGy wf6z7ERPl+CweOPnh+BUQyLvUUmTc3MeqvKMujudsa6ivsxWD5FDxTyrGM7xzVNU BK8QrWMCSBaqq5dd4KKERDx+M2CpWcBA276RrS/R/9nVX8qJWCIowBpHYuigcmYc 3Bdq1kcBYXSWWiJPFa+4icBWETCS5zo81jJZ2+AqMtWMmxpXSSORZob5yV67GH3Z sn2Zh75LVRTdkqZeemXD9oVMvFwlHWym0lqe3St0J1y4F00yGcDQhkEi202/MBPt 3SyN4gqKncD9tIeydoB04jhtUQcPzjfU -----END CERTIFICATE-----Generated at Sat May 31 16:56:08 2025 by rpki-client