$ rpki-client -vvf rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.mft File: 4MiSj5RRUg5k0d7VjwcZa1hhsoY.mft (raw, json) Hash identifier: eQ8ZsRSO/VQSBrE3s7J+9c8XrqGmw1LXeXArEbhelss= Subject key identifier: A2:CF:40:00:63:37:F9:04:A6:3D:87:6D:0F:D7:3D:65:2E:70:20:C6 Authority key identifier: E0:C8:92:8F:94:51:52:0E:64:D1:DE:D5:8F:07:19:6B:58:61:B2:86 Certificate issuer: /CN=A917D4C4/serialNumber=E0C8928F9451520E64D1DED58F07196B5861B286 Certificate serial: 0659 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4MiSj5RRUg5k0d7VjwcZa1hhsoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.mft Manifest number: 0655 Signing time: Sat 31 May 2025 14:46:35 +0000 Manifest this update: Sat 31 May 2025 14:46:35 +0000 Manifest next update: Sat 07 Jun 2025 14:46:35 +0000 Files and hashes: 1: 4MiSj5RRUg5k0d7VjwcZa1hhsoY.crl (hash: 33nBzXnHgkVWY6govKBwkLUl1zaKkh8to4jacgcy5rk=) 2: 6E325DBC0E2F11EDB4659653C4F9AE02.roa (hash: NS8IXL+/osy1aonTB1YcjpMFwDzkEpu3g9yC5lM136w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.crl rsync://rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4MiSj5RRUg5k0d7VjwcZa1hhsoY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 14:46:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1625 (0x659) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D4C4, serialNumber=E0C8928F9451520E64D1DED58F07196B5861B286 Validity Not Before: May 31 14:46:35 2025 GMT Not After : Jun 7 14:46:35 2025 GMT Subject: CN=683b164b-f8e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:da:61:f1:17:27:74:2e:64:75:5b:6b:1d:77: 3d:2b:e1:e6:f3:ff:5c:4a:b2:28:66:26:fe:9a:bf: be:0d:be:5a:b2:8a:bd:5d:60:07:57:85:1d:ca:d5: 50:d5:37:16:cf:60:21:78:d7:f9:b0:ab:2d:34:f4: 32:60:33:4f:f9:8f:91:77:37:53:0b:02:dc:44:7b: 65:7a:2a:32:74:cc:d9:ec:83:4a:1b:70:22:ea:df: d7:00:3a:e9:8d:5a:80:ed:ce:f4:ce:e2:55:54:6e: 10:c6:86:5f:9a:e6:8a:62:df:bd:ee:38:39:f6:fe: 3a:d3:45:a4:a7:f5:30:c2:78:72:6f:70:45:18:96: 7a:a8:04:c7:9e:e6:50:96:87:eb:e9:37:dd:c1:92: 90:c9:26:2a:02:db:59:32:5b:d1:c4:47:00:4a:79: da:c7:c3:a1:4d:4f:4e:9d:6f:73:3c:1f:bc:1f:af: ca:03:60:41:49:34:ca:08:2f:a8:73:f2:07:c7:e3: f9:2e:f1:00:56:8b:49:7c:02:30:aa:0f:3c:a0:9e: b1:de:2c:11:8f:29:f1:dd:93:eb:39:e9:f3:49:73: b9:57:e9:bf:68:15:51:bf:16:4b:61:14:25:45:ae: 37:ae:b9:8f:30:5f:cc:c5:ee:e3:ea:65:d9:d6:ac: 89:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:CF:40:00:63:37:F9:04:A6:3D:87:6D:0F:D7:3D:65:2E:70:20:C6 X509v3 Authority Key Identifier: keyid:E0:C8:92:8F:94:51:52:0E:64:D1:DE:D5:8F:07:19:6B:58:61:B2:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4MiSj5RRUg5k0d7VjwcZa1hhsoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:53:5d:55:a9:37:6c:03:a0:24:32:99:52:e7:a3:b8:41:6f: 48:fd:51:97:8d:20:9a:8c:60:b1:cc:a7:50:71:93:96:6b:72: 7b:e0:f0:cf:a5:d9:52:16:71:39:42:d4:6d:b2:00:08:2f:98: d5:7f:fc:2e:3f:8f:8f:e7:55:3a:78:ac:bd:c0:ee:b4:41:99: e5:f7:91:7e:75:3d:03:6f:01:cf:c0:6c:57:4c:91:d5:7e:1d: 3d:b7:13:28:f5:0e:3e:a4:cf:72:a1:0b:b2:43:eb:31:1b:c7: 7c:30:ee:62:38:3d:8f:81:8a:99:05:d6:c6:37:3b:40:f0:2d: 9c:83:cf:c6:cf:dc:ed:52:28:7d:ec:77:54:ea:b8:9d:d2:36: 76:53:86:99:39:c2:97:68:39:45:35:b3:7f:28:7d:f3:f6:30: 5c:2d:ca:a4:da:15:4d:dd:ff:47:4f:95:ca:3c:ec:a9:6e:7b: c8:2e:68:73:a3:a5:ef:9e:ce:36:48:bd:18:fb:20:0d:b1:47: 19:09:71:70:6e:1d:f8:a6:79:c9:d2:18:43:1e:87:e8:26:a7: 54:9f:50:60:01:52:ab:5c:a5:7c:09:c1:d2:ea:b5:cc:30:df: 28:25:a5:40:16:e1:65:ea:ad:21:64:e5:f2:f3:f2:55:a8:06: 1f:cb:68:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q0QzQxMTAvBgNVBAUTKEUwQzg5MjhGOTQ1MTUyMEU2NEQxREVENThGMDcxOTZC NTg2MUIyODYwHhcNMjUwNTMxMTQ0NjM1WhcNMjUwNjA3MTQ0NjM1WjAYMRYwFAYD VQQDEw02ODNiMTY0Yi1mOGU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4tph8RcndC5kdVtrHXc9K+Hm8/9cSrIoZib+mr++Db5asoq9XWAHV4UdytVQ 1TcWz2AheNf5sKstNPQyYDNP+Y+RdzdTCwLcRHtleioydMzZ7INKG3Ai6t/XADrp jVqA7c70zuJVVG4QxoZfmuaKYt+97jg59v4600Wkp/Uwwnhyb3BFGJZ6qATHnuZQ lofr6TfdwZKQySYqAttZMlvRxEcASnnax8OhTU9OnW9zPB+8H6/KA2BBSTTKCC+o c/IHx+P5LvEAVotJfAIwqg88oJ6x3iwRjynx3ZPrOenzSXO5V+m/aBVRvxZLYRQl Ra43rrmPMF/Mxe7j6mXZ1qyJbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKLPQABj N/kEpj2HbQ/XPWUucCDGMB8GA1UdIwQYMBaAFODIko+UUVIOZNHe1Y8HGWtYYbKG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDRDNC80MzlDRjg3QzhE N0IxMUVCOEQ4QkQ2MEJDNEY5QUUwMi80TWlTajVSUlVnNWswZDdWandjWmExaGhz b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRNaVNqNVJSVWc1azBkN1Zqd2NaYTFoaHNvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDRDNC80MzlDRjg3QzhEN0IxMUVCOEQ4QkQ2MEJDNEY5QUUwMi80TWlTajVSUlVn NWswZDdWandjWmExaGhzb1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkU11VqTdsA6AkMplS56O4QW9I/VGXjSCajGCxzKdQcZOWa3J74PDP pdlSFnE5QtRtsgAIL5jVf/wuP4+P51U6eKy9wO60QZnl95F+dT0DbwHPwGxXTJHV fh09txMo9Q4+pM9yoQuyQ+sxG8d8MO5iOD2PgYqZBdbGNztA8C2cg8/Gz9ztUih9 7HdU6rid0jZ2U4aZOcKXaDlFNbN/KH3z9jBcLcqk2hVN3f9HT5XKPOypbnvILmhz o6Xvns42SL0Y+yANsUcZCXFwbh34pnnJ0hhDHofoJqdUn1BgAVKrXKV8CcHS6rXM MN8oJaVAFuFl6q0hZOXy8/JVqAYfy2j/ -----END CERTIFICATE-----Generated at Sat May 31 16:45:47 2025 by rpki-client