$ rpki-client -vvf rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft File: SztaAaiVL7VkLSSEt_AgWufcx2E.mft (raw, json) Hash identifier: bQkHfjOyJIszEuuQxofMqu6fAfdSUaJS1zFOaryKlds= Subject key identifier: 2C:E4:AA:87:5F:66:EC:4F:9C:F6:E0:6D:48:B1:F9:D8:64:36:91:7A Authority key identifier: 4B:3B:5A:01:A8:95:2F:B5:64:2D:24:84:B7:F0:20:5A:E7:DC:C7:61 Certificate issuer: /CN=A917748E/serialNumber=4B3B5A01A8952FB5642D2484B7F0205AE7DCC761 Certificate serial: 01FC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft Manifest number: 01F4 Signing time: Tue 03 Jun 2025 02:23:55 +0000 Manifest this update: Tue 03 Jun 2025 02:23:54 +0000 Manifest next update: Tue 10 Jun 2025 02:23:54 +0000 Files and hashes: 1: SztaAaiVL7VkLSSEt_AgWufcx2E.crl (hash: PnvhQdfb6tc0eFJh8N2UpPEQrmZA/+FgYOuu/mkTpvk=) 2: 82A6D4C4373711F0B4C22F6AC4F9AE02.roa (hash: PE1GT2A7EmT71tkAdrtk5aTsSiGLh2+65uV6vdi3L2w=) 3: A4B9732E372211F088B77741C4F9AE02.roa (hash: mk1V1FHxB9suL0UPFLyM/A4VOyjRdsjF6s6gkTDXYcQ=) 4: 46C3344E346611F0AF16091DC4F9AE02.roa (hash: 8t/E7tL8Lbh/a7Lj1jqywOIP2dcmbqemPtvNv/RJomk=) 5: 2434E2E24FAD11EDA19F8316C4F9AE02.roa (hash: 88kWEiY/06EoXdAjoPmCFzf4ibe9Kqek376AzBNc9lE=) 6: 0C21BBAC373711F08FA9BD3DC4F9AE02.roa (hash: 8cIYacmt17oQhUg55NPG9jDcGp/KP0H3kvB7HR2dORY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.crl rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 02:23:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 508 (0x1fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917748E, serialNumber=4B3B5A01A8952FB5642D2484B7F0205AE7DCC761 Validity Not Before: Jun 3 02:23:54 2025 GMT Not After : Jun 10 02:23:54 2025 GMT Subject: CN=683e5cba-d8cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:82:ee:13:72:a3:27:e1:d4:04:11:7c:fe:cb: a8:2f:3e:13:99:6b:f1:da:04:aa:66:22:ab:71:61: d2:d2:a4:e0:a2:ae:de:a4:b8:1a:9d:e7:78:db:ca: 1c:2f:cd:8a:73:46:99:f0:64:99:4c:15:8f:db:0d: a7:3c:16:02:0d:a5:87:38:be:da:1c:b4:df:dd:ae: da:44:90:50:f9:0d:9c:39:8b:d9:55:d8:10:62:4a: 47:58:c8:dc:81:a2:99:1f:e4:b3:f7:0b:13:d9:54: 60:7b:f7:eb:b5:de:32:97:52:2e:d1:ac:b5:42:02: ac:70:98:82:32:8c:57:0e:65:f1:17:61:ef:65:a6: 63:73:2f:f1:5a:17:53:f3:79:b1:0e:ec:58:00:a7: 67:a9:86:e3:14:a2:02:74:2b:7f:a4:35:8b:57:f8: 7d:f6:e2:b8:2d:a7:56:f1:7e:09:d3:54:45:e5:87: 1c:fa:78:29:76:2b:31:e5:98:f3:e3:ad:85:b5:da: d2:85:4e:e7:91:57:da:b1:71:9f:02:26:a7:7c:c3: 2c:00:9a:28:17:a2:93:3b:68:af:f2:1b:b5:95:5c: a7:60:b1:c8:57:fa:19:7c:2f:e0:0a:98:11:86:39: 8f:da:be:28:a5:3a:fb:2f:4f:c6:51:31:20:d1:f7: df:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:E4:AA:87:5F:66:EC:4F:9C:F6:E0:6D:48:B1:F9:D8:64:36:91:7A X509v3 Authority Key Identifier: keyid:4B:3B:5A:01:A8:95:2F:B5:64:2D:24:84:B7:F0:20:5A:E7:DC:C7:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:c5:3b:21:55:4d:97:20:3d:d9:fe:31:eb:4a:95:26:f2:3b: 6c:2a:47:30:82:10:9a:1a:ec:c2:da:0e:e5:74:51:fe:44:6e: 56:f4:50:35:08:45:9f:36:aa:2a:5a:12:6e:c7:39:0c:7f:60: 85:c3:40:6f:db:b7:50:80:3d:5d:84:f4:af:50:3c:75:b5:43: 04:39:3a:da:6f:10:61:15:7e:37:27:6f:b6:2e:fa:54:9c:2b: 5d:58:50:2b:a8:5e:73:a4:12:1e:82:01:36:1e:30:b3:ae:f1: 74:70:20:ca:9a:b6:a3:e0:02:68:e7:80:14:d1:3a:ca:7f:3e: 7c:24:a5:b6:4a:fb:2b:1b:47:7a:73:04:19:84:50:60:6f:6b: c8:26:04:9d:89:52:d7:33:52:f5:fa:26:08:6d:66:e2:f6:03: 7e:99:be:5b:6d:3d:6b:96:14:64:5e:bf:10:c6:15:9e:f2:b8: b8:6e:32:d8:f7:f8:94:65:23:1e:af:cc:7e:fa:a0:31:40:91: a1:c2:28:99:07:71:32:d6:0f:6d:b0:76:6a:f0:cf:32:c8:59: 2e:df:60:91:0a:a7:2c:3a:ca:95:c3:0f:cd:a2:40:77:f7:d6: 99:2d:6e:67:16:c3:b9:b7:c0:c8:e1:a3:4f:13:9f:a0:f8:da: 20:c1:42:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc0OEUxMTAvBgNVBAUTKDRCM0I1QTAxQTg5NTJGQjU2NDJEMjQ4NEI3RjAyMDVB RTdEQ0M3NjEwHhcNMjUwNjAzMDIyMzU0WhcNMjUwNjEwMDIyMzU0WjAYMRYwFAYD VQQDEw02ODNlNWNiYS1kOGNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8YLuE3KjJ+HUBBF8/suoLz4TmWvx2gSqZiKrcWHS0qTgoq7epLganed428oc L82Kc0aZ8GSZTBWP2w2nPBYCDaWHOL7aHLTf3a7aRJBQ+Q2cOYvZVdgQYkpHWMjc gaKZH+Sz9wsT2VRge/frtd4yl1Iu0ay1QgKscJiCMoxXDmXxF2HvZaZjcy/xWhdT 83mxDuxYAKdnqYbjFKICdCt/pDWLV/h99uK4LadW8X4J01RF5Ycc+ngpdisx5Zjz 462FtdrShU7nkVfasXGfAianfMMsAJooF6KTO2iv8hu1lVynYLHIV/oZfC/gCpgR hjmP2r4opTr7L0/GUTEg0fffSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCzkqodf ZuxPnPbgbUix+dhkNpF6MB8GA1UdIwQYMBaAFEs7WgGolS+1ZC0khLfwIFrn3Mdh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzQ4RS80RDc4OTI2QTRG QTkxMUVEQURFNTE1N0NDNEY5QUUwMi9TenRhQWFpVkw3VmtMU1NFdF9BZ1d1ZmN4 MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1N6dGFBYWlWTDdWa0xTU0V0X0FnV3VmY3gyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzQ4RS80RDc4OTI2QTRGQTkxMUVEQURFNTE1N0NDNEY5QUUwMi9TenRhQWFpVkw3 VmtMU1NFdF9BZ1d1ZmN4MkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBixTshVU2XID3Z/jHrSpUm8jtsKkcwghCaGuzC2g7ldFH+RG5W9FA1 CEWfNqoqWhJuxzkMf2CFw0Bv27dQgD1dhPSvUDx1tUMEOTrabxBhFX43J2+2LvpU nCtdWFArqF5zpBIeggE2HjCzrvF0cCDKmraj4AJo54AU0TrKfz58JKW2SvsrG0d6 cwQZhFBgb2vIJgSdiVLXM1L1+iYIbWbi9gN+mb5bbT1rlhRkXr8QxhWe8ri4bjLY 9/iUZSMer8x++qAxQJGhwiiZB3Ey1g9tsHZq8M8yyFku32CRCqcsOsqVww/NokB3 99aZLW5nFsO5t8DI4aNPE5+g+NogwULo -----END CERTIFICATE-----Generated at Tue Jun 3 23:43:49 2025 by rpki-client