$ rpki-client -vvf rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft File: 4AJb-TLnFuGh-K-QECEcQRCE_J0.mft (raw, json) Hash identifier: 6iGofK1Dhgti/5iYkW0DKVsG3it+bb6CGZRMWwVThL8= Subject key identifier: D3:96:F7:CC:9A:94:40:15:0F:2F:BE:78:2C:D6:86:2F:C7:65:B2:A1 Authority key identifier: E0:02:5B:F9:32:E7:16:E1:A1:F8:AF:90:10:21:1C:41:10:84:FC:9D Certificate issuer: /CN=A9197FDB/serialNumber=E0025BF932E716E1A1F8AF9010211C411084FC9D Certificate serial: 058E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft Manifest number: 0587 Signing time: Fri 30 May 2025 23:29:27 +0000 Manifest this update: Fri 30 May 2025 23:29:26 +0000 Manifest next update: Fri 06 Jun 2025 23:29:26 +0000 Files and hashes: 1: 4AJb-TLnFuGh-K-QECEcQRCE_J0.crl (hash: bxZZATN8Sc744s1fq4lDBdEMlWO9rfB9HcDEcKcUmsY=) 2: 0A1FAC405BB211EEAD06B243C4F9AE02.roa (hash: +Nf3CbeJiQCKoMqVOr8fCtBhRD9vFNzRUGK/YqqHHSM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.crl rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 23:29:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1422 (0x58e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197FDB, serialNumber=E0025BF932E716E1A1F8AF9010211C411084FC9D Validity Not Before: May 30 23:29:26 2025 GMT Not After : Jun 6 23:29:26 2025 GMT Subject: CN=683a3f56-8d3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ad:08:c6:d4:5f:da:44:41:f4:0a:57:7f:5c: c3:68:15:6a:c7:e3:c8:1e:39:f0:6e:a9:b4:a1:0c: 4b:e0:6f:07:84:51:ee:0c:b4:b6:27:3a:ae:cf:60: 58:5b:0d:49:21:4b:95:ec:de:af:a0:a7:07:81:08: 90:40:53:12:a4:eb:43:4e:13:e1:5a:9a:7d:21:dc: 41:59:76:b3:c3:43:09:61:c9:57:b1:17:b7:ea:da: b5:4f:35:3c:11:e4:b8:82:18:52:f1:7d:db:87:42: 7e:ea:50:52:46:f3:b9:90:e1:2c:91:e3:99:98:83: 4d:54:88:7e:f5:73:87:bd:4b:4a:5f:9f:d0:35:6c: be:d5:2d:93:2a:91:a2:89:4e:cf:42:3e:4a:2e:19: 9d:97:1d:5c:90:78:1f:99:5f:70:8a:d1:f4:1d:4f: 18:50:d7:8f:71:de:13:1c:0a:32:59:73:c1:97:7a: 9a:67:34:df:33:d4:b3:5d:2f:93:69:d7:bd:23:77: 19:3b:78:08:0e:1c:92:23:33:a3:b2:36:64:f9:d6: 11:20:19:b7:f8:b6:b3:40:20:8e:11:c5:d4:1e:47: 84:03:6f:e0:7e:a1:c5:df:d4:f1:39:d6:34:4d:3a: 27:d4:e4:2c:67:17:d4:a9:bd:6f:25:5e:42:80:2d: d1:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:96:F7:CC:9A:94:40:15:0F:2F:BE:78:2C:D6:86:2F:C7:65:B2:A1 X509v3 Authority Key Identifier: keyid:E0:02:5B:F9:32:E7:16:E1:A1:F8:AF:90:10:21:1C:41:10:84:FC:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:4f:07:a4:e1:14:fa:73:68:17:89:21:c3:cc:41:da:ad:80: cb:13:e5:8e:1a:3a:31:89:e1:86:53:b3:a1:64:a1:2c:56:23: eb:c3:ab:ea:7b:2e:fc:7e:7d:7d:8d:e4:94:31:6c:94:2a:e4: e4:93:9a:7d:1c:6d:65:2a:36:3b:f1:e2:71:f3:6d:06:ea:bd: c8:97:39:47:ea:b4:ca:f7:c8:2d:e8:6e:e2:10:a9:6c:80:01: 61:10:5e:6a:85:ce:31:fe:cb:21:ab:85:3a:f7:ef:26:9c:e2: fa:da:15:b5:a1:cb:f1:d3:f6:db:bb:18:ab:7f:f8:7d:e9:5b: 77:02:7f:8d:79:c7:6a:64:cc:09:58:fe:75:e8:d3:b8:49:0f: fa:a9:b2:94:c3:a4:26:74:dc:e0:14:b9:f3:b0:95:aa:7c:cd: f4:1d:ac:ff:eb:67:2b:aa:50:e1:1b:58:e1:aa:73:23:09:6e: 78:a0:68:f3:0f:53:7b:95:ee:69:12:5b:9d:fe:b4:72:12:1c: 90:c9:70:1b:52:6b:f5:5b:25:51:79:a7:e6:17:0e:fe:37:a0: 8d:52:36:2d:fe:9f:29:93:82:b1:29:93:c9:9a:7e:33:10:fe: 3c:21:74:0f:d1:9f:9d:ea:32:fe:d0:70:1b:6f:38:cd:77:ef: 03:aa:06:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdGREIxMTAvBgNVBAUTKEUwMDI1QkY5MzJFNzE2RTFBMUY4QUY5MDEwMjExQzQx MTA4NEZDOUQwHhcNMjUwNTMwMjMyOTI2WhcNMjUwNjA2MjMyOTI2WjAYMRYwFAYD VQQDEw02ODNhM2Y1Ni04ZDNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwq0IxtRf2kRB9ApXf1zDaBVqx+PIHjnwbqm0oQxL4G8HhFHuDLS2Jzquz2BY Ww1JIUuV7N6voKcHgQiQQFMSpOtDThPhWpp9IdxBWXazw0MJYclXsRe36tq1TzU8 EeS4ghhS8X3bh0J+6lBSRvO5kOEskeOZmINNVIh+9XOHvUtKX5/QNWy+1S2TKpGi iU7PQj5KLhmdlx1ckHgfmV9witH0HU8YUNePcd4THAoyWXPBl3qaZzTfM9SzXS+T ade9I3cZO3gIDhySIzOjsjZk+dYRIBm3+LazQCCOEcXUHkeEA2/gfqHF39TxOdY0 TTon1OQsZxfUqb1vJV5CgC3R5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNOW98ya lEAVDy++eCzWhi/HZbKhMB8GA1UdIwQYMBaAFOACW/ky5xbhofivkBAhHEEQhPyd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0ZEQi82NTdFNDA3NERB MzYxMUVCODRFNkEzNDlDNEY5QUUwMi80QUpiLVRMbkZ1R2gtSy1RRUNFY1FSQ0Vf SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRBSmItVExuRnVHaC1LLVFFQ0VjUVJDRV9KMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0ZEQi82NTdFNDA3NERBMzYxMUVCODRFNkEzNDlDNEY5QUUwMi80QUpiLVRMbkZ1 R2gtSy1RRUNFY1FSQ0VfSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbTwek4RT6c2gXiSHDzEHarYDLE+WOGjoxieGGU7OhZKEsViPrw6vq ey78fn19jeSUMWyUKuTkk5p9HG1lKjY78eJx820G6r3IlzlH6rTK98gt6G7iEKls gAFhEF5qhc4x/sshq4U69+8mnOL62hW1ocvx0/bbuxirf/h96Vt3An+NecdqZMwJ WP516NO4SQ/6qbKUw6QmdNzgFLnzsJWqfM30Haz/62crqlDhG1jhqnMjCW54oGjz D1N7le5pElud/rRyEhyQyXAbUmv1WyVReafmFw7+N6CNUjYt/p8pk4KxKZPJmn4z EP48IXQP0Z+d6jL+0HAbbzjNd+8DqgbU -----END CERTIFICATE-----Generated at Sat May 31 14:55:07 2025 by rpki-client