$ rpki-client -vvf rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft File: 4dFD2djqAiJMHLDJFey4TuKLWqo.mft (raw, json) Hash identifier: Lzekpo47Yc/owDX84EO/BRvMxdENLgqdxZNNIvJDBSQ= Subject key identifier: C2:26:FC:86:99:15:4A:8B:C5:B3:71:3B:E1:21:3C:2F:27:98:E4:6A Authority key identifier: E1:D1:43:D9:D8:EA:02:22:4C:1C:B0:C9:15:EC:B8:4E:E2:8B:5A:AA Certificate issuer: /CN=A9170C53/serialNumber=E1D143D9D8EA02224C1CB0C915ECB84EE28B5AAA Certificate serial: 01A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft Manifest number: 0199 Signing time: Fri 13 Jun 2025 02:27:45 +0000 Manifest this update: Fri 13 Jun 2025 02:27:44 +0000 Manifest next update: Fri 20 Jun 2025 02:27:44 +0000 Files and hashes: 1: 4dFD2djqAiJMHLDJFey4TuKLWqo.crl (hash: xPm28aY/reT9jLbm/ENBUKSQFsrWHD5g2TUcysvKiW0=) 2: 916EFEE0DA6011ED9BC6175FC4F9AE02.roa (hash: RDPi47SZcDAz4xmQe0PzevESUJOCnp77k9KEsG3kOPw=) 3: 9283C1F8DA6011ED9BC6175FC4F9AE02.roa (hash: 4ZxnpGjaykPQCM8pL2N1CRQo3+QNzrfE6n7zpJytINg=) 4: 90AE648CDA6011ED9BC6175FC4F9AE02.roa (hash: +lHlOLbl/5RnNOcPx8/sJld2TYpyfZTtFIxadDBZYdU=) 5: 91FAB1ECDA6011ED9BC6175FC4F9AE02.roa (hash: v8W7oHHzaQTWG5Q9zg44OzZnUjsO7rk1vnHeE+xeDvw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.crl rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 02:27:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 422 (0x1a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170C53, serialNumber=E1D143D9D8EA02224C1CB0C915ECB84EE28B5AAA Validity Not Before: Jun 13 02:27:44 2025 GMT Not After : Jun 20 02:27:44 2025 GMT Subject: CN=684b8ca1-1570 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:11:5b:71:0f:2a:13:4f:fc:4f:d4:43:90:5a: d2:04:ec:32:c0:b8:b3:50:10:c3:3d:04:b1:84:52: 63:b2:2d:2f:fd:e5:60:a6:2d:78:ff:cd:c1:1d:83: f8:3d:e3:52:13:10:9b:99:d6:ea:c7:b2:3f:99:73: 8a:95:82:14:77:13:2f:1c:e6:96:b5:90:86:d1:04: 7a:eb:30:f0:cd:c5:6d:58:c6:e8:2d:bd:0a:01:cd: 04:d2:9a:d4:0a:99:c2:db:dd:53:3d:2b:01:a5:fa: aa:46:2c:a0:2a:4e:d4:36:48:0d:6c:19:41:93:79: d0:f6:d7:b5:2c:8d:ee:e2:d8:02:a5:a6:70:a7:ff: 98:f1:a3:33:27:f2:f2:d6:56:be:c5:c1:65:9d:6d: 3f:7a:5d:08:63:64:29:fc:17:c9:ca:60:be:67:bb: 47:5b:eb:d8:ce:c1:6e:18:c0:63:21:52:33:4b:34: c9:1e:8c:bf:6a:bf:1c:3a:09:47:e5:cb:91:90:22: 48:ec:67:b9:ed:2b:8b:b6:b6:f6:81:0d:4c:8a:36: cf:34:7b:a7:ca:c1:87:39:5d:79:ea:8a:38:ed:b8: 3b:16:39:36:48:4f:1d:30:49:b6:4b:48:92:e7:f7: 97:74:ff:62:b5:dc:1e:34:e2:a8:3a:16:d9:00:64: 54:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:26:FC:86:99:15:4A:8B:C5:B3:71:3B:E1:21:3C:2F:27:98:E4:6A X509v3 Authority Key Identifier: keyid:E1:D1:43:D9:D8:EA:02:22:4C:1C:B0:C9:15:EC:B8:4E:E2:8B:5A:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:4f:40:4f:5b:0c:6b:9d:5f:80:a5:c9:75:50:27:45:24:b6: 6d:de:ac:e3:15:7f:62:49:db:10:ae:a8:c7:a8:bd:24:e5:dd: 1c:0e:ef:da:4e:61:39:97:b4:4c:5c:8e:bf:85:c2:f5:5a:2f: 4c:a8:4f:10:58:81:9d:c8:22:e9:ac:90:e6:c1:b9:09:be:7d: f3:ca:2e:92:66:82:99:64:41:30:10:4e:ad:fe:1e:6b:36:10: f8:c0:18:ec:c3:39:cf:fc:39:d9:02:f6:52:c8:39:de:53:45: 79:79:12:47:23:05:b7:26:e4:04:ef:08:11:3b:22:5a:0d:d6: 30:df:51:04:5c:5d:06:f0:46:c1:15:24:4a:34:87:33:54:07: 6f:26:74:1e:60:24:12:f1:5f:78:9f:f4:ee:51:52:78:bc:49: d6:99:fe:59:eb:16:48:ac:ca:54:71:7c:b7:00:b8:b9:b3:ef: 62:62:ec:ac:ad:8b:7c:32:df:bb:c7:ef:f0:b8:6b:cc:4e:b2: a0:8d:7e:4d:f9:06:93:a3:d6:41:f6:29:07:a9:99:86:5d:ea: c4:cd:f3:7c:26:e8:fc:69:b4:bb:98:d1:31:56:25:2f:46:e9: 85:57:9a:8f:af:89:1e:97:ef:5b:24:ec:58:fc:9c:bc:44:c0: 39:91:29:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBDNTMxMTAvBgNVBAUTKEUxRDE0M0Q5RDhFQTAyMjI0QzFDQjBDOTE1RUNCODRF RTI4QjVBQUEwHhcNMjUwNjEzMDIyNzQ0WhcNMjUwNjIwMDIyNzQ0WjAYMRYwFAYD VQQDEw02ODRiOGNhMS0xNTcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwxFbcQ8qE0/8T9RDkFrSBOwywLizUBDDPQSxhFJjsi0v/eVgpi14/83BHYP4 PeNSExCbmdbqx7I/mXOKlYIUdxMvHOaWtZCG0QR66zDwzcVtWMboLb0KAc0E0prU CpnC291TPSsBpfqqRiygKk7UNkgNbBlBk3nQ9te1LI3u4tgCpaZwp/+Y8aMzJ/Ly 1la+xcFlnW0/el0IY2Qp/BfJymC+Z7tHW+vYzsFuGMBjIVIzSzTJHoy/ar8cOglH 5cuRkCJI7Ge57SuLtrb2gQ1MijbPNHunysGHOV156oo47bg7Fjk2SE8dMEm2S0iS 5/eXdP9itdweNOKoOhbZAGRUdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMIm/IaZ FUqLxbNxO+EhPC8nmORqMB8GA1UdIwQYMBaAFOHRQ9nY6gIiTBywyRXsuE7ii1qq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEM1My9DRTQ0NUJEMERB NUIxMUVEOTY3NDdDNUFDNEY5QUUwMi80ZEZEMmRqcUFpSk1ITERKRmV5NFR1S0xX cW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRkRkQyZGpxQWlKTUhMREpGZXk0VHVLTFdxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEM1My9DRTQ0NUJEMERBNUIxMUVEOTY3NDdDNUFDNEY5QUUwMi80ZEZEMmRqcUFp Sk1ITERKRmV5NFR1S0xXcW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8T0BPWwxrnV+Apcl1UCdFJLZt3qzjFX9iSdsQrqjHqL0k5d0cDu/a TmE5l7RMXI6/hcL1Wi9MqE8QWIGdyCLprJDmwbkJvn3zyi6SZoKZZEEwEE6t/h5r NhD4wBjswznP/DnZAvZSyDneU0V5eRJHIwW3JuQE7wgROyJaDdYw31EEXF0G8EbB FSRKNIczVAdvJnQeYCQS8V94n/TuUVJ4vEnWmf5Z6xZIrMpUcXy3ALi5s+9iYuys rYt8Mt+7x+/wuGvMTrKgjX5N+QaTo9ZB9ikHqZmGXerEzfN8Juj8abS7mNExViUv RumFV5qPr4kel+9bJOxY/Jy8RMA5kSml -----END CERTIFICATE-----Generated at Sun Jun 15 01:44:58 2025 by rpki-client