$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft File: 4kPzvoJVabsWrLN0vJjavmkLF8E.mft (raw, json) Hash identifier: isEbl5EttRoc4X2ZH8H+uFOqkilyyfuVaecBFqMdHW8= Subject key identifier: F1:DA:6B:82:4C:68:4E:9E:82:84:7E:65:F7:49:48:8B:26:A4:E1:C6 Authority key identifier: E2:43:F3:BE:82:55:69:BB:16:AC:B3:74:BC:98:DA:BE:69:0B:17:C1 Certificate issuer: /CN=A917E678/serialNumber=E243F3BE825569BB16ACB374BC98DABE690B17C1 Certificate serial: 0690 Authority info access: rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/4kPzvoJVabsWrLN0vJjavmkLF8E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft Manifest number: 066D Signing time: Sat 26 Apr 2025 16:51:30 +0000 Manifest this update: Sat 26 Apr 2025 16:51:29 +0000 Manifest next update: Sat 03 May 2025 16:51:29 +0000 Files and hashes: 1: 4kPzvoJVabsWrLN0vJjavmkLF8E.crl (hash: 8M5IFRyRQXXsBdepF3JMVk9M8tNF4qANIPeHdrqrqL8=) 2: 91E868D4902B11EF87435A54C4F9AE02.roa (hash: M9JBLSmTZK+WGHWP4PBl4vCGB8OpE/d5KiAWANLVB54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.crl rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/4kPzvoJVabsWrLN0vJjavmkLF8E.cer rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 16:51:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1680 (0x690) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=E243F3BE825569BB16ACB374BC98DABE690B17C1 Validity Not Before: Apr 26 16:51:29 2025 GMT Not After : May 3 16:51:29 2025 GMT Subject: CN=680d0f12-018f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:17:9c:7b:89:22:1f:75:7f:69:39:6e:64:41: dd:00:d2:32:7d:0b:4e:6f:80:80:37:05:c5:f1:74: 9a:01:7d:a6:fd:03:2f:f6:d2:54:d3:48:55:c6:87: 87:86:ad:d0:e5:90:9d:66:58:31:54:8b:9a:d3:d4: 41:e2:01:58:3a:5e:21:92:a8:82:a5:14:69:36:45: b3:35:38:fc:f1:fc:e0:20:1e:f9:08:7c:5d:6f:5c: 95:25:90:ee:cd:76:87:14:9e:9d:57:37:ad:1b:87: 2b:c7:d5:6b:0c:48:5f:18:02:69:1f:5b:0f:8b:1c: b2:f8:e9:40:77:17:87:ff:74:92:70:a1:23:a5:49: b0:54:97:72:23:6c:05:93:bd:7e:f0:c3:76:67:0e: 1c:7f:ef:30:0d:81:7e:fd:03:c2:cd:23:df:9b:11: 54:a5:a6:69:67:5e:c1:88:27:81:6b:e5:e4:30:05: a2:dd:76:2a:4f:42:43:3c:33:96:a7:f1:b3:cf:2d: a1:d8:4a:5f:3b:cb:30:c9:6f:f1:3f:17:f6:3f:9e: 36:8f:8f:fd:18:cc:12:04:c2:bc:84:e1:e6:69:36: 7f:e8:df:25:be:89:53:70:65:76:06:2a:b6:38:6f: 98:c1:74:8a:df:68:97:4a:32:68:a5:3c:51:35:34: ff:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:DA:6B:82:4C:68:4E:9E:82:84:7E:65:F7:49:48:8B:26:A4:E1:C6 X509v3 Authority Key Identifier: keyid:E2:43:F3:BE:82:55:69:BB:16:AC:B3:74:BC:98:DA:BE:69:0B:17:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/4kPzvoJVabsWrLN0vJjavmkLF8E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:f8:3e:87:cc:63:41:d2:bb:06:ad:22:76:b0:2c:4e:11:56: 92:65:dc:a1:51:bd:18:4c:86:79:a4:67:63:59:d9:d8:58:7b: f7:63:f8:61:dc:34:1f:53:30:2a:71:5d:e2:f8:01:d0:0c:83: 6b:12:17:f2:b5:fd:b1:6f:11:4e:20:3d:53:97:88:27:1d:f2: 9c:40:88:7a:14:fe:0d:b9:37:2d:8c:13:5c:af:65:f8:9e:59: 4d:72:30:eb:9c:1c:97:22:b8:f5:1d:1d:f1:4e:96:ea:15:b7: 80:1d:96:f8:be:6c:a3:47:b4:03:d3:61:03:4f:cf:64:ee:60: 9b:b3:61:1f:12:79:c0:cd:bf:4e:db:2e:e9:90:a9:23:8f:0e: c1:63:c2:4c:c1:86:2c:0f:ed:2a:09:1c:54:37:38:d8:74:75: d7:f8:f6:83:cb:cf:fa:37:f0:a7:15:71:4e:4f:ff:bb:f5:07: 92:9f:d2:7b:a9:12:02:83:df:02:eb:88:0f:87:3f:c7:05:22: 6b:9d:c5:4d:18:cb:27:79:55:ec:a7:a9:d4:45:e0:5c:c9:d8: 7c:45:cc:4b:2b:b4:12:a1:c7:4d:21:a7:88:20:4d:66:65:99: ad:0b:c4:82:b3:77:82:d2:9f:8e:ec:87:1e:f8:13:65:64:cc: 72:7d:d2:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKEUyNDNGM0JFODI1NTY5QkIxNkFDQjM3NEJDOThEQUJF NjkwQjE3QzEwHhcNMjUwNDI2MTY1MTI5WhcNMjUwNTAzMTY1MTI5WjAYMRYwFAYD VQQDEw02ODBkMGYxMi0wMThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxBece4kiH3V/aTluZEHdANIyfQtOb4CANwXF8XSaAX2m/QMv9tJU00hVxoeH hq3Q5ZCdZlgxVIua09RB4gFYOl4hkqiCpRRpNkWzNTj88fzgIB75CHxdb1yVJZDu zXaHFJ6dVzetG4crx9VrDEhfGAJpH1sPixyy+OlAdxeH/3SScKEjpUmwVJdyI2wF k71+8MN2Zw4cf+8wDYF+/QPCzSPfmxFUpaZpZ17BiCeBa+XkMAWi3XYqT0JDPDOW p/Gzzy2h2EpfO8swyW/xPxf2P542j4/9GMwSBMK8hOHmaTZ/6N8lvolTcGV2Biq2 OG+YwXSK32iXSjJopTxRNTT/AQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPHaa4JM aE6egoR+ZfdJSIsmpOHGMB8GA1UdIwQYMBaAFOJD876CVWm7FqyzdLyY2r5pCxfB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC9CODk3QzU4MkEx OUMxMUVCOTJBMkRGMjlDNEY5QUUwMi80a1B6dm9KVmFic1dyTE4wdkpqYXZta0xG OEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I0QTFCRUE2MUQ2NjExRTJCMkNEOEI3Qzcy RkQxRkYyLzRrUHp2b0pWYWJzV3JMTjB2Smphdm1rTEY4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC9CODk3QzU4MkExOUMxMUVCOTJBMkRGMjlDNEY5QUUwMi80a1B6dm9KVmFi c1dyTE4wdkpqYXZta0xGOEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6+D6HzGNB0rsGrSJ2sCxOEVaSZdyhUb0YTIZ5pGdjWdnYWHv3Y/hh 3DQfUzAqcV3i+AHQDINrEhfytf2xbxFOID1Tl4gnHfKcQIh6FP4NuTctjBNcr2X4 nllNcjDrnByXIrj1HR3xTpbqFbeAHZb4vmyjR7QD02EDT89k7mCbs2EfEnnAzb9O 2y7pkKkjjw7BY8JMwYYsD+0qCRxUNzjYdHXX+PaDy8/6N/CnFXFOT/+79QeSn9J7 qRICg98C64gPhz/HBSJrncVNGMsneVXsp6nUReBcydh8RcxLK7QSocdNIaeIIE1m ZZmtC8SCs3eC0p+O7Ice+BNlZMxyfdJE -----END CERTIFICATE-----Generated at Sun Apr 27 04:17:18 2025 by rpki-client