$ rpki-client -vvf rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft File: 4u3kp-qXJminlbJ7qdyH9LkNqJc.mft (raw, json) Hash identifier: /jtNAv5UA4JrroEY2hFPYbTYAkp0Wu4DoyKrlZ/IQ28= Subject key identifier: 31:CE:E3:52:25:12:F7:9F:71:5B:9A:6E:51:7F:45:C1:5C:8E:46:EB Authority key identifier: E2:ED:E4:A7:EA:97:26:68:A7:95:B2:7B:A9:DC:87:F4:B9:0D:A8:97 Certificate issuer: /CN=A9172D91/serialNumber=E2EDE4A7EA972668A795B27BA9DC87F4B90DA897 Certificate serial: 1676 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft Manifest number: 1638 Signing time: Fri 30 May 2025 16:56:24 +0000 Manifest this update: Fri 30 May 2025 16:56:24 +0000 Manifest next update: Fri 06 Jun 2025 16:56:24 +0000 Files and hashes: 1: 4u3kp-qXJminlbJ7qdyH9LkNqJc.crl (hash: KNMx7xEfFY3u29UlKlDNcTWUqlWcYMPsWO6vIpO4tuM=) 2: 854D304E0C9B11EC8433FE7AC4F9AE02.roa (hash: pak3Iy8E0gYpnvDkmWBebcI4LeVYUCjbRqic1+nKIXc=) 3: 56C8FCACE38011EFBF195482C4F9AE02.roa (hash: YpgFRa2Rul9X6oABfgOzOCogI1xE9k1rvzUQOQyIs6c=) 4: 9C79DBD23E7911EBBFFAC96BC4F9AE02.roa (hash: v+Ks9nZk5YSGi8jwz8W2ujGkO89h3nHyAUbCbrfDviU=) 5: 2357FC145F8D11EF94E7303FC4F9AE02.roa (hash: Adsar2w8VAjS3SUaIO5TAhSv+c7iSEo6NtUlziAok5s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.crl rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 16:56:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5750 (0x1676) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172D91, serialNumber=E2EDE4A7EA972668A795B27BA9DC87F4B90DA897 Validity Not Before: May 30 16:56:24 2025 GMT Not After : Jun 6 16:56:24 2025 GMT Subject: CN=6839e338-7a18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:42:d0:28:24:c5:95:8b:08:e4:c4:66:23:57: 0c:72:5d:02:3c:3f:a2:d7:be:c3:e4:16:85:97:e6: 67:55:69:82:48:ca:41:8a:99:c8:24:a2:6f:78:9f: 09:35:13:7d:7a:5f:34:9f:d0:0c:09:0e:f0:80:15: e9:8f:b5:0f:4d:61:6a:a9:38:08:8e:67:b2:3d:9d: 89:df:8a:0c:e0:5f:68:2c:a3:1f:5b:9b:7c:f4:ca: 17:b2:f8:e4:75:e6:53:01:f7:55:1f:6e:e9:d1:1d: f9:d4:98:39:92:ce:e5:ea:cc:b3:f0:37:ad:a2:20: 54:07:ee:70:95:86:d7:0e:1b:13:2e:54:84:41:7f: d0:37:d5:82:33:03:78:00:08:f7:71:f0:24:c0:22: 44:09:cb:98:3e:f0:be:fd:3b:aa:97:a3:fe:49:13: 9a:16:20:78:53:c2:4d:4e:bd:1e:21:02:91:84:b0: c3:9e:1c:84:e6:e3:6c:00:d9:62:88:d1:46:0e:b4: 5b:00:e1:5a:28:9c:f3:f1:4d:1f:81:28:75:65:13: f8:dd:c3:1f:44:b5:a0:fc:f5:2c:71:4a:c0:ff:2d: 70:6e:fc:9c:31:25:1c:48:88:d9:c2:7a:fd:ca:fc: 62:f1:02:8b:26:ed:e3:e9:39:b2:a0:50:80:ea:16: 17:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:CE:E3:52:25:12:F7:9F:71:5B:9A:6E:51:7F:45:C1:5C:8E:46:EB X509v3 Authority Key Identifier: keyid:E2:ED:E4:A7:EA:97:26:68:A7:95:B2:7B:A9:DC:87:F4:B9:0D:A8:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:98:20:b9:a1:78:86:f4:51:9d:a9:19:89:5c:4e:5d:4b:bf: 27:dc:01:13:15:b8:27:19:b1:d4:89:ff:19:72:20:9f:ec:f8: 29:34:ca:f8:7f:be:31:eb:65:02:40:a1:af:7f:4b:89:3f:4e: d1:1f:a5:e2:4c:1f:b9:1d:14:cc:79:d7:ea:1b:62:e4:1b:88: 0d:34:9b:a2:0e:83:8a:57:8a:1f:07:3a:ca:6c:ef:9e:73:84: b8:19:b7:a2:d1:99:09:f4:1c:f3:f0:28:08:da:8f:bd:7a:87: 72:37:61:64:08:80:8c:4c:25:dc:1d:08:01:9b:0a:c9:52:a1: c3:f7:b4:ac:28:9e:b9:6f:99:53:b9:bc:e4:f8:c3:25:9b:89: 8c:f4:ca:ba:f8:b8:98:bd:30:23:93:9e:f9:2e:39:b5:2e:a6: ef:ff:85:e9:8b:0c:96:ab:34:d1:48:3e:32:f6:eb:e6:55:05: 89:96:7b:c0:8e:4c:bf:80:2b:85:61:32:c2:67:e6:b5:3d:5e: 6c:4e:fd:9a:ef:19:83:bd:12:c2:4b:bc:53:51:83:cc:69:82: a4:fc:c8:96:18:5c:48:17:53:bd:e2:9e:cd:36:15:38:22:78: e4:d7:58:64:21:32:f1:e1:d2:70:d9:81:4e:22:06:8d:cc:0c: e9:7c:8c:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFnYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJEOTExMTAvBgNVBAUTKEUyRURFNEE3RUE5NzI2NjhBNzk1QjI3QkE5REM4N0Y0 QjkwREE4OTcwHhcNMjUwNTMwMTY1NjI0WhcNMjUwNjA2MTY1NjI0WjAYMRYwFAYD VQQDEw02ODM5ZTMzOC03YTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4kLQKCTFlYsI5MRmI1cMcl0CPD+i177D5BaFl+ZnVWmCSMpBipnIJKJveJ8J NRN9el80n9AMCQ7wgBXpj7UPTWFqqTgIjmeyPZ2J34oM4F9oLKMfW5t89MoXsvjk deZTAfdVH27p0R351Jg5ks7l6syz8DetoiBUB+5wlYbXDhsTLlSEQX/QN9WCMwN4 AAj3cfAkwCJECcuYPvC+/Tuql6P+SROaFiB4U8JNTr0eIQKRhLDDnhyE5uNsANli iNFGDrRbAOFaKJzz8U0fgSh1ZRP43cMfRLWg/PUscUrA/y1wbvycMSUcSIjZwnr9 yvxi8QKLJu3j6TmyoFCA6hYXvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDHO41Il EvefcVuablF/RcFcjkbrMB8GA1UdIwQYMBaAFOLt5KfqlyZop5Wye6nch/S5DaiX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkQ5MS9FQTY3MkE1QzE5 RTcxMUU4QjI0M0Q1N0NDNEY5QUUwMi80dTNrcC1xWEptaW5sYko3cWR5SDlMa05x SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR1M2twLXFYSm1pbmxiSjdxZHlIOUxrTnFKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkQ5MS9FQTY3MkE1QzE5RTcxMUU4QjI0M0Q1N0NDNEY5QUUwMi80dTNrcC1xWEpt aW5sYko3cWR5SDlMa05xSmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlmCC5oXiG9FGdqRmJXE5dS78n3AETFbgnGbHUif8ZciCf7PgpNMr4 f74x62UCQKGvf0uJP07RH6XiTB+5HRTMedfqG2LkG4gNNJuiDoOKV4ofBzrKbO+e c4S4Gbei0ZkJ9Bzz8CgI2o+9eodyN2FkCICMTCXcHQgBmwrJUqHD97SsKJ65b5lT ubzk+MMlm4mM9Mq6+LiYvTAjk575Ljm1Lqbv/4XpiwyWqzTRSD4y9uvmVQWJlnvA jky/gCuFYTLCZ+a1PV5sTv2a7xmDvRLCS7xTUYPMaYKk/MiWGFxIF1O94p7NNhU4 Injk11hkITLx4dJw2YFOIgaNzAzpfIwe -----END CERTIFICATE-----Generated at Sat May 31 15:40:35 2025 by rpki-client