$ rpki-client -vvf rpki.apnic.net/member_repository/A918D96C/A42E37FE1D9611E29C5F4A7F08B02CD2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.mft File: 4I1sf-Nf42ZC_m9mzNooZqZiQvE.mft (raw, json) Hash identifier: gI6SIHevyHOyPqIDQ/4w6tKzuOvlE12Lb6n7/QqaG8U= Subject key identifier: 0A:8E:95:7D:D8:02:44:AC:65:55:A2:F2:D1:40:32:44:FB:52:92:01 Authority key identifier: E0:8D:6C:7F:E3:5F:E3:66:42:FE:6F:66:CC:DA:28:66:A6:62:42:F1 Certificate issuer: /CN=A918D96C/serialNumber=E08D6C7FE35FE36642FE6F66CCDA2866A66242F1 Certificate serial: 3486 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D96C/A42E37FE1D9611E29C5F4A7F08B02CD2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.mft Manifest number: 3486 Signing time: Sat 31 May 2025 14:49:25 +0000 Manifest this update: Sat 31 May 2025 14:49:25 +0000 Manifest next update: Sat 07 Jun 2025 14:49:25 +0000 Files and hashes: 1: 4I1sf-Nf42ZC_m9mzNooZqZiQvE.crl (hash: sNOVEeBumYR6vOxajJAAZgBXH340fzHF0/UhT22xs4M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D96C/A42E37FE1D9611E29C5F4A7F08B02CD2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.crl rsync://rpki.apnic.net/member_repository/A918D96C/A42E37FE1D9611E29C5F4A7F08B02CD2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 14:49:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13446 (0x3486) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D96C, serialNumber=E08D6C7FE35FE36642FE6F66CCDA2866A66242F1 Validity Not Before: May 31 14:49:25 2025 GMT Not After : Jun 7 14:49:25 2025 GMT Subject: CN=683b16f5-d35a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:dc:9e:3f:5e:7f:35:31:19:7e:b8:73:db:b2: 11:1f:b2:db:2d:c8:e4:b9:16:d0:d7:47:69:7f:4c: e9:70:93:02:ce:0d:1f:64:e9:5d:02:c9:4b:3a:65: 15:43:e9:82:01:27:09:9b:cb:35:7a:4d:6d:06:79: f2:4a:9d:e3:b8:39:9c:c5:57:98:59:6d:60:cd:92: 38:fc:0c:6a:05:e8:a6:06:5a:31:73:a9:84:30:78: 82:47:b4:c6:c2:a5:0c:ba:1a:11:6b:0a:9f:1b:34: 30:08:67:de:65:3c:7e:c2:6e:a5:b8:3e:dd:b7:7c: e6:22:0b:d0:e9:fd:43:fc:14:d8:5e:49:0b:6c:98: 4c:42:97:17:20:2b:03:3f:d5:68:78:18:0d:36:21: 2c:0b:9b:d5:38:3c:9e:3e:ed:3c:80:1d:fa:8f:1f: a7:3d:01:d1:cd:74:67:ff:4e:60:ea:70:37:36:12: 48:8c:af:29:9f:68:71:5f:b6:4a:78:26:0c:f7:86: 29:c7:a5:85:7f:34:e2:02:80:ae:a0:6d:59:70:63: 2b:d5:b9:dd:92:ce:4c:55:3c:fb:e2:da:aa:78:a8: f6:3b:67:59:9f:a0:ce:65:9e:04:2b:f5:e0:e4:65: 66:54:35:0e:e1:b6:3f:80:d6:b7:f5:26:8b:45:fc: 6e:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:8E:95:7D:D8:02:44:AC:65:55:A2:F2:D1:40:32:44:FB:52:92:01 X509v3 Authority Key Identifier: keyid:E0:8D:6C:7F:E3:5F:E3:66:42:FE:6F:66:CC:DA:28:66:A6:62:42:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D96C/A42E37FE1D9611E29C5F4A7F08B02CD2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D96C/A42E37FE1D9611E29C5F4A7F08B02CD2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:dd:17:94:29:23:d4:45:90:ce:d6:6a:3c:4b:3b:48:88:7a: d4:27:be:79:1d:70:0b:8f:e4:35:8a:cd:9f:75:be:c0:d6:fc: 80:75:93:a3:27:8c:8c:90:81:6c:23:0c:b0:74:22:2f:e7:39: 99:38:69:f6:8a:58:15:75:63:60:81:09:78:42:f1:b6:fa:48: 92:8e:ae:c3:b7:b6:92:40:55:04:24:ee:b3:a4:cd:e0:22:93: 16:bf:78:5f:98:60:bf:62:9a:98:19:cf:5d:dc:82:35:e8:84: 4f:d8:d7:e7:7f:ac:a3:b4:6c:93:29:71:d4:a4:88:14:c2:c0: bc:28:62:b2:8c:0c:6a:e2:22:9c:b5:4f:ac:e2:d7:39:5f:b2: a7:05:d4:dc:0f:6a:f5:f7:24:37:da:41:df:f4:4f:3d:0c:e8: 50:34:35:65:12:6a:62:09:19:fb:fa:2c:ca:40:22:a9:be:4e: bc:34:ec:26:04:7e:e8:e0:4f:94:fb:4a:9e:46:9a:ec:6d:df: 99:1f:b9:90:b4:6d:e2:49:d8:0c:6d:9c:92:23:f4:1d:e4:69: fb:3d:d1:c4:e3:6b:77:f9:ae:62:60:fd:79:89:89:e6:6b:f5: 3e:7e:ee:ea:2f:ca:7b:23:55:46:68:8e:c5:b3:21:fb:eb:a8: 48:b7:50:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ5NkMxMTAvBgNVBAUTKEUwOEQ2QzdGRTM1RkUzNjY0MkZFNkY2NkNDREEyODY2 QTY2MjQyRjEwHhcNMjUwNTMxMTQ0OTI1WhcNMjUwNjA3MTQ0OTI1WjAYMRYwFAYD VQQDEw02ODNiMTZmNS1kMzVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqtyeP15/NTEZfrhz27IRH7LbLcjkuRbQ10dpf0zpcJMCzg0fZOldAslLOmUV Q+mCAScJm8s1ek1tBnnySp3juDmcxVeYWW1gzZI4/AxqBeimBloxc6mEMHiCR7TG wqUMuhoRawqfGzQwCGfeZTx+wm6luD7dt3zmIgvQ6f1D/BTYXkkLbJhMQpcXICsD P9VoeBgNNiEsC5vVODyePu08gB36jx+nPQHRzXRn/05g6nA3NhJIjK8pn2hxX7ZK eCYM94Ypx6WFfzTiAoCuoG1ZcGMr1bndks5MVTz74tqqeKj2O2dZn6DOZZ4EK/Xg 5GVmVDUO4bY/gNa39SaLRfxuxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAqOlX3Y AkSsZVWi8tFAMkT7UpIBMB8GA1UdIwQYMBaAFOCNbH/jX+NmQv5vZszaKGamYkLx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDk2Qy9BNDJFMzdGRTFE OTYxMUUyOUM1RjRBN0YwOEIwMkNEMi80STFzZi1OZjQyWkNfbTltek5vb1pxWmlR dkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRJMXNmLU5mNDJaQ19tOW16Tm9vWnFaaVF2RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDk2Qy9BNDJFMzdGRTFEOTYxMUUyOUM1RjRBN0YwOEIwMkNEMi80STFzZi1OZjQy WkNfbTltek5vb1pxWmlRdkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAl3ReUKSPURZDO1mo8SztIiHrUJ755HXALj+Q1is2fdb7A1vyAdZOj J4yMkIFsIwywdCIv5zmZOGn2ilgVdWNggQl4QvG2+kiSjq7Dt7aSQFUEJO6zpM3g IpMWv3hfmGC/YpqYGc9d3II16IRP2Nfnf6yjtGyTKXHUpIgUwsC8KGKyjAxq4iKc tU+s4tc5X7KnBdTcD2r19yQ32kHf9E89DOhQNDVlEmpiCRn7+izKQCKpvk68NOwm BH7o4E+U+0qeRprsbd+ZH7mQtG3iSdgMbZySI/Qd5Gn7PdHE42t3+a5iYP15iYnm a/U+fu7qL8p7I1VGaI7FsyH766hIt1A6 -----END CERTIFICATE-----Generated at Mon Jun 2 05:07:56 2025 by rpki-client