$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft File: 4kPzvoJVabsWrLN0vJjavmkLF8E.mft (raw, json) Hash identifier: bcsgVon09JLhug2ngkagHorKp5DV+eKLxPhlhkPzsyU= Subject key identifier: 35:D5:A4:C1:D5:85:D8:42:A7:4B:23:62:52:21:51:80:F2:EE:70:40 Authority key identifier: E2:43:F3:BE:82:55:69:BB:16:AC:B3:74:BC:98:DA:BE:69:0B:17:C1 Certificate issuer: /CN=A917E678/serialNumber=E243F3BE825569BB16ACB374BC98DABE690B17C1 Certificate serial: 06A4 Authority info access: rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/4kPzvoJVabsWrLN0vJjavmkLF8E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft Manifest number: 0681 Signing time: Wed 04 Jun 2025 16:55:19 +0000 Manifest this update: Wed 04 Jun 2025 16:55:18 +0000 Manifest next update: Wed 11 Jun 2025 16:55:18 +0000 Files and hashes: 1: 4kPzvoJVabsWrLN0vJjavmkLF8E.crl (hash: iKqifm7tuj6I/X1Tmq24Z6EvVvUvnWXWQSOBd9Twvts=) 2: 91E868D4902B11EF87435A54C4F9AE02.roa (hash: M9JBLSmTZK+WGHWP4PBl4vCGB8OpE/d5KiAWANLVB54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.crl rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/4kPzvoJVabsWrLN0vJjavmkLF8E.cer rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 16:55:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1700 (0x6a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=E243F3BE825569BB16ACB374BC98DABE690B17C1 Validity Not Before: Jun 4 16:55:18 2025 GMT Not After : Jun 11 16:55:18 2025 GMT Subject: CN=68407a77-ac73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:0c:22:58:e2:53:88:1c:d5:05:e0:a1:4c:d7: ca:70:6b:b1:ae:74:e5:e2:88:4f:25:d4:e2:a5:c8: 02:ca:41:e5:31:ba:6a:a9:19:18:a2:d9:3c:d8:db: 0f:76:6d:70:7e:6b:08:ea:31:38:ea:7a:12:b7:d4: d4:e3:49:ee:18:00:61:41:e6:4d:16:bf:d2:b4:44: 3d:c4:b0:cb:b3:4b:d5:04:85:81:6a:16:5e:68:28: 7c:6c:bf:7a:95:01:5b:97:68:ce:4c:49:0c:4f:56: 0f:d3:31:ad:5e:94:96:a7:75:54:4f:f0:14:a3:ae: 8a:e5:64:09:1e:6b:89:17:16:d1:ad:cb:8d:4f:96: 54:77:0f:ed:d9:e0:0a:e7:00:3b:ab:ed:43:85:2b: cf:12:84:bc:62:7c:0a:2c:e5:58:cd:8d:e7:87:21: d6:b5:c4:6a:ae:b9:1d:98:28:1d:1f:37:6b:5b:87: 8c:a7:0a:b5:7f:e1:a5:4c:b2:1a:f5:61:99:ea:77: e5:90:aa:51:5d:1e:92:98:40:f7:a3:81:2f:73:ba: cc:fd:a1:80:0b:60:ad:d5:5f:5c:aa:e1:83:fc:67: 34:46:21:3e:e8:eb:71:d7:b4:b7:f8:32:ae:ac:a7: 04:97:e9:d5:42:e5:73:58:61:cf:61:ae:2b:6e:5a: 3e:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:D5:A4:C1:D5:85:D8:42:A7:4B:23:62:52:21:51:80:F2:EE:70:40 X509v3 Authority Key Identifier: keyid:E2:43:F3:BE:82:55:69:BB:16:AC:B3:74:BC:98:DA:BE:69:0B:17:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/4kPzvoJVabsWrLN0vJjavmkLF8E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:fa:68:03:aa:aa:3e:b1:13:1d:7f:94:2a:9d:2d:51:9f:fc: 5a:1d:97:3b:d3:7f:c5:60:08:78:f3:f9:b9:60:12:12:e3:89: b6:fc:6b:60:93:58:c5:3b:c5:d6:e5:e5:9b:61:68:4c:8f:79: 98:4a:6d:7f:a1:2a:82:ed:54:55:8e:17:ab:32:90:e5:df:e1: d0:f4:8b:c4:d0:b8:b9:c5:77:bf:16:b8:aa:f5:d0:86:38:16: 24:f6:b9:92:08:9f:39:dd:e2:8e:99:5a:95:9b:7b:67:f2:a2: 6f:77:1f:1c:a1:7b:68:1b:30:a3:88:17:a3:91:51:30:08:6e: bc:89:0e:a2:60:8f:c5:c2:25:9b:e3:3b:9a:7b:4b:0c:87:be: 92:a3:07:3e:f3:43:cb:cb:6c:17:fb:41:91:a4:cc:e6:67:91: 18:c1:45:75:f3:5e:bf:1b:8c:8e:b4:b4:a1:75:ae:4a:96:17: 71:e9:80:0c:93:75:ea:58:02:e6:07:da:2b:4a:8b:d8:c5:fd: 36:87:12:84:75:31:e7:28:91:39:5b:f2:89:3f:09:b9:60:5c: c8:03:e3:03:db:64:c7:cb:81:46:1a:18:21:f0:6c:96:72:de: 2f:13:94:e5:84:ab:2f:97:d3:d0:1d:5d:65:83:16:23:da:31: ed:bd:f0:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKEUyNDNGM0JFODI1NTY5QkIxNkFDQjM3NEJDOThEQUJF NjkwQjE3QzEwHhcNMjUwNjA0MTY1NTE4WhcNMjUwNjExMTY1NTE4WjAYMRYwFAYD VQQDEw02ODQwN2E3Ny1hYzczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArwwiWOJTiBzVBeChTNfKcGuxrnTl4ohPJdTipcgCykHlMbpqqRkYotk82NsP dm1wfmsI6jE46noSt9TU40nuGABhQeZNFr/StEQ9xLDLs0vVBIWBahZeaCh8bL96 lQFbl2jOTEkMT1YP0zGtXpSWp3VUT/AUo66K5WQJHmuJFxbRrcuNT5ZUdw/t2eAK 5wA7q+1DhSvPEoS8YnwKLOVYzY3nhyHWtcRqrrkdmCgdHzdrW4eMpwq1f+GlTLIa 9WGZ6nflkKpRXR6SmED3o4Evc7rM/aGAC2Ct1V9cquGD/Gc0RiE+6Otx17S3+DKu rKcEl+nVQuVzWGHPYa4rblo+pwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDXVpMHV hdhCp0sjYlIhUYDy7nBAMB8GA1UdIwQYMBaAFOJD876CVWm7FqyzdLyY2r5pCxfB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC9CODk3QzU4MkEx OUMxMUVCOTJBMkRGMjlDNEY5QUUwMi80a1B6dm9KVmFic1dyTE4wdkpqYXZta0xG OEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I0QTFCRUE2MUQ2NjExRTJCMkNEOEI3Qzcy RkQxRkYyLzRrUHp2b0pWYWJzV3JMTjB2Smphdm1rTEY4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC9CODk3QzU4MkExOUMxMUVCOTJBMkRGMjlDNEY5QUUwMi80a1B6dm9KVmFi c1dyTE4wdkpqYXZta0xGOEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCL+mgDqqo+sRMdf5QqnS1Rn/xaHZc703/FYAh48/m5YBIS44m2/Gtg k1jFO8XW5eWbYWhMj3mYSm1/oSqC7VRVjherMpDl3+HQ9IvE0Li5xXe/Friq9dCG OBYk9rmSCJ853eKOmVqVm3tn8qJvdx8coXtoGzCjiBejkVEwCG68iQ6iYI/FwiWb 4zuae0sMh76Sowc+80PLy2wX+0GRpMzmZ5EYwUV1816/G4yOtLShda5Klhdx6YAM k3XqWALmB9orSovYxf02hxKEdTHnKJE5W/KJPwm5YFzIA+MD22THy4FGGhgh8GyW ct4vE5TlhKsvl9PQHV1lgxYj2jHtvfCZ -----END CERTIFICATE-----Generated at Thu Jun 5 19:53:40 2025 by rpki-client