$ rpki-client -vvf rpki.apnic.net/member_repository/A917BB9A/41390BCACFF311EF9062E521C4F9AE02/g4-9CzleqQcGxsKJrCaw1zigQkE.mft File: g4-9CzleqQcGxsKJrCaw1zigQkE.mft (raw, json) Hash identifier: f4E6MPKiK1mVvZejErU7FeVXrAfx4ZwsOE7pKX7tw1Y= Subject key identifier: D8:44:C1:8B:F7:CD:00:64:33:92:8C:ED:64:9F:2D:B5:F5:D4:5B:21 Authority key identifier: 83:8F:BD:0B:39:5E:A9:07:06:C6:C2:89:AC:26:B0:D7:38:A0:42:41 Certificate issuer: /CN=A917BB9A/serialNumber=838FBD0B395EA90706C6C289AC26B0D738A04241 Certificate serial: 5A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4-9CzleqQcGxsKJrCaw1zigQkE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BB9A/41390BCACFF311EF9062E521C4F9AE02/g4-9CzleqQcGxsKJrCaw1zigQkE.mft Manifest number: 55 Signing time: Tue 03 Jun 2025 07:11:47 +0000 Manifest this update: Tue 03 Jun 2025 07:11:46 +0000 Manifest next update: Tue 10 Jun 2025 07:11:46 +0000 Files and hashes: 1: g4-9CzleqQcGxsKJrCaw1zigQkE.crl (hash: v6exYZN4qLLC0m0RHVx6LXnBRqYnbGU+qyHOcSZ4tR0=) 2: 0CBF3110D59011EFB76D6824C4F9AE02.roa (hash: wO5XBFfOCrDOLzTAwG2c8QWB5MqE2ajRI+6xibW2aso=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BB9A/41390BCACFF311EF9062E521C4F9AE02/g4-9CzleqQcGxsKJrCaw1zigQkE.crl rsync://rpki.apnic.net/member_repository/A917BB9A/41390BCACFF311EF9062E521C4F9AE02/g4-9CzleqQcGxsKJrCaw1zigQkE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4-9CzleqQcGxsKJrCaw1zigQkE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 07:11:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 90 (0x5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BB9A, serialNumber=838FBD0B395EA90706C6C289AC26B0D738A04241 Validity Not Before: Jun 3 07:11:46 2025 GMT Not After : Jun 10 07:11:46 2025 GMT Subject: CN=683ea033-d455 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:33:69:15:a6:3d:d3:7b:7a:89:64:65:40:33: a6:91:37:3e:de:de:0d:d2:f4:ab:60:54:33:d2:32: d3:67:20:18:37:5b:0e:c1:b5:e4:0b:11:8a:2c:0a: a5:b8:4e:0e:1b:41:f5:5c:b9:17:08:e1:3c:73:2d: ef:d5:bc:e9:fa:85:8c:6a:b1:4c:96:f6:85:af:52: ca:d7:29:94:2b:a0:a0:38:67:a0:f7:a9:b2:62:0f: f1:f5:e9:70:e4:a9:8c:e8:a4:13:32:19:51:b7:10: 43:7c:0b:c2:7e:13:22:91:c0:d8:de:ee:75:4e:ca: 9c:8b:99:0c:89:2d:0b:7a:e4:76:73:07:c2:6e:a3: d9:69:2f:00:31:8e:31:1a:0e:c1:59:5a:74:df:78: b5:39:f6:42:fd:c0:c9:53:1b:a7:f2:2d:67:f1:50: 25:e3:5d:d7:87:1e:e5:f2:6f:5b:06:89:d0:6e:0d: a2:3c:38:92:4c:80:59:23:dc:52:22:67:13:0f:87: e6:5a:fe:d1:02:66:b1:07:50:46:3b:dd:25:a4:2c: 03:a8:e3:71:8c:84:e9:5a:d8:4b:9e:47:6f:6b:d7: 65:12:14:44:3f:8d:a8:23:1f:50:d2:30:2e:3b:fe: e9:f4:06:95:dc:48:77:62:57:0c:dc:e6:7d:25:c5: 65:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:44:C1:8B:F7:CD:00:64:33:92:8C:ED:64:9F:2D:B5:F5:D4:5B:21 X509v3 Authority Key Identifier: keyid:83:8F:BD:0B:39:5E:A9:07:06:C6:C2:89:AC:26:B0:D7:38:A0:42:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BB9A/41390BCACFF311EF9062E521C4F9AE02/g4-9CzleqQcGxsKJrCaw1zigQkE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4-9CzleqQcGxsKJrCaw1zigQkE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BB9A/41390BCACFF311EF9062E521C4F9AE02/g4-9CzleqQcGxsKJrCaw1zigQkE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:b2:74:8d:f5:f6:46:d3:f1:22:af:ba:fd:33:cb:85:c0:e1: 41:dc:a7:3f:be:33:bf:0a:00:df:03:53:e7:ab:cf:75:ef:56: 80:ac:4b:ae:e4:be:8e:ad:ac:e1:ac:c0:a3:8d:c2:3d:a5:a2: 5a:30:7f:e8:53:d5:45:24:78:78:95:47:ea:1d:d5:b2:d5:84: 17:ef:ea:0b:5a:41:b5:d2:5c:ce:6a:61:96:1f:df:8a:7e:69: 56:4a:b0:eb:b6:a2:1a:55:98:83:6f:f7:24:21:e3:c3:dd:e2: e0:2d:ab:ce:f9:d7:ea:6c:79:4c:65:5c:d1:bf:ec:54:52:72: f5:09:96:58:1a:1a:6f:ce:80:56:be:19:0d:05:24:86:d8:92: 99:5d:3d:45:21:2c:6a:26:c3:42:68:83:ba:a8:8a:cd:5a:fc: 9a:a4:79:dc:e8:0a:c4:e3:c6:a5:28:11:2e:a5:be:07:40:0d: ae:df:0e:60:fd:99:ce:81:16:27:86:c2:d3:a9:aa:a7:e7:24: 49:f6:50:b0:e8:e0:b0:f5:c9:c5:10:4c:86:77:dc:62:8d:6e: dc:65:cb:08:74:41:b8:66:e3:f6:39:53:f9:f9:9e:d1:5e:9f: f7:a9:fc:46:79:00:d5:58:9f:02:87:bc:db:d2:0b:31:e1:d4: 87:68:53:42 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QkI5QTExMC8GA1UEBRMoODM4RkJEMEIzOTVFQTkwNzA2QzZDMjg5QUMyNkIwRDcz OEEwNDI0MTAeFw0yNTA2MDMwNzExNDZaFw0yNTA2MTAwNzExNDZaMBgxFjAUBgNV BAMTDTY4M2VhMDMzLWQ0NTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+M2kVpj3Te3qJZGVAM6aRNz7e3g3S9KtgVDPSMtNnIBg3Ww7BteQLEYosCqW4 Tg4bQfVcuRcI4TxzLe/VvOn6hYxqsUyW9oWvUsrXKZQroKA4Z6D3qbJiD/H16XDk qYzopBMyGVG3EEN8C8J+EyKRwNje7nVOypyLmQyJLQt65HZzB8Juo9lpLwAxjjEa DsFZWnTfeLU59kL9wMlTG6fyLWfxUCXjXdeHHuXyb1sGidBuDaI8OJJMgFkj3FIi ZxMPh+Za/tECZrEHUEY73SWkLAOo43GMhOla2EueR29r12USFEQ/jagjH1DSMC47 /un0BpXcSHdiVwzc5n0lxWXDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU2ETBi/fN AGQzkoztZJ8ttfXUWyEwHwYDVR0jBBgwFoAUg4+9CzleqQcGxsKJrCaw1zigQkEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdCQjlBLzQxMzkwQkNBQ0ZG MzExRUY5MDYyRTUyMUM0RjlBRTAyL2c0LTlDemxlcVFjR3hzS0pyQ2F3MXppZ1Fr RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZzQtOUN6bGVxUWNHeHNLSnJDYXcxemlnUWtFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdC QjlBLzQxMzkwQkNBQ0ZGMzExRUY5MDYyRTUyMUM0RjlBRTAyL2c0LTlDemxlcVFj R3hzS0pyQ2F3MXppZ1FrRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHmydI319kbT8SKvuv0zy4XA4UHcpz++M78KAN8DU+erz3XvVoCsS67k vo6trOGswKONwj2lolowf+hT1UUkeHiVR+od1bLVhBfv6gtaQbXSXM5qYZYf34p+ aVZKsOu2ohpVmINv9yQh48Pd4uAtq8751+pseUxlXNG/7FRScvUJllgaGm/OgFa+ GQ0FJIbYkpldPUUhLGomw0Jog7qois1a/JqkedzoCsTjxqUoES6lvgdADa7fDmD9 mc6BFieGwtOpqqfnJEn2ULDo4LD1ycUQTIZ33GKNbtxlywh0Qbhm4/Y5U/n5ntFe n/ep/EZ5ANVYnwKHvNvSCzHh1IdoU0I= -----END CERTIFICATE-----Generated at Tue Jun 3 23:57:01 2025 by rpki-client