$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.mft File: 44pe3hloyTdeUVUfrpiIigu1RJA.mft (raw, json) Hash identifier: PaQC7ZaCI32FO8kRglMsVUk7X/fVRj2EUfHvC/n0/3Q= Subject key identifier: D0:5C:36:41:5F:87:2E:23:DF:69:5F:63:89:43:98:7E:1E:4F:CA:3B Authority key identifier: E3:8A:5E:DE:19:68:C9:37:5E:51:55:1F:AE:98:88:8A:0B:B5:44:90 Certificate issuer: /CN=A91AAC4B/serialNumber=E38A5EDE1968C9375E51551FAE98888A0BB54490 Certificate serial: 4C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/44pe3hloyTdeUVUfrpiIigu1RJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.mft Manifest number: 4B Signing time: Sun 01 Jun 2025 07:02:34 +0000 Manifest this update: Sun 01 Jun 2025 07:02:33 +0000 Manifest next update: Sun 08 Jun 2025 07:02:33 +0000 Files and hashes: 1: 44pe3hloyTdeUVUfrpiIigu1RJA.crl (hash: HAz14va2Acw7fCqfGr6IbgjP58ssxJsrGLALwR42EJ4=) 2: B6A31094CD7E11EFBBAE2137C4F9AE02.roa (hash: f1IFYkIgMkQ3+JyMSl70ACqIsH3T9EI7K8/rW2krDH4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.crl rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/44pe3hloyTdeUVUfrpiIigu1RJA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 07:02:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76 (0x4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAC4B, serialNumber=E38A5EDE1968C9375E51551FAE98888A0BB54490 Validity Not Before: Jun 1 07:02:33 2025 GMT Not After : Jun 8 07:02:33 2025 GMT Subject: CN=683bfb09-879f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:00:c6:4f:4d:76:1f:fd:67:85:e1:2d:1f:d5: 7c:aa:db:35:d2:3b:a2:d1:b3:48:ac:44:53:49:0d: f2:c3:54:a3:06:de:02:86:ed:bc:bf:94:9c:22:6f: 54:8b:ef:77:a0:b5:13:4a:09:b1:cd:e6:3c:ca:80: c9:b3:fd:1f:a0:78:ff:86:e2:31:ca:64:e5:f5:25: 45:9f:fb:a1:bf:78:ea:46:8b:14:d0:dd:83:07:fa: 5c:e5:fe:d0:0b:42:23:0f:b2:4b:7a:1d:56:b9:d5: f5:6d:14:f1:3a:22:06:7a:fd:fc:8b:c9:13:ce:ba: dd:44:4d:c9:f2:f5:a9:43:52:a9:52:62:f7:87:37: cf:e0:d5:9e:37:b6:aa:1f:7e:6d:39:73:5e:97:3f: 48:5b:87:bf:cb:8a:a9:c2:f9:21:8b:d9:03:af:6f: 25:a1:71:19:27:2c:4d:44:74:f6:7e:2d:fc:c8:3d: 33:dd:4f:63:98:65:71:92:9b:f0:5c:84:6f:3f:cf: 4c:b4:b1:65:5f:46:2b:11:e9:04:53:5e:4d:e7:73: c7:c2:61:53:4a:09:92:b1:a8:9a:cf:f5:9a:00:77: 38:ff:5a:e9:79:a3:01:41:e6:f4:a9:02:70:3d:a5: b7:7b:6f:4d:68:7f:0f:a8:25:29:e1:0b:a5:bd:5e: 5d:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:5C:36:41:5F:87:2E:23:DF:69:5F:63:89:43:98:7E:1E:4F:CA:3B X509v3 Authority Key Identifier: keyid:E3:8A:5E:DE:19:68:C9:37:5E:51:55:1F:AE:98:88:8A:0B:B5:44:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/44pe3hloyTdeUVUfrpiIigu1RJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:e2:7f:31:3a:8c:e0:b1:8d:f3:cf:7c:5d:c2:0d:cd:64:6d: 2f:be:82:72:19:d7:3b:a9:3f:7e:ba:c0:d5:e6:63:92:15:8a: 7b:86:6e:43:16:df:37:68:78:dd:ad:db:c8:cf:ec:47:0c:4c: cf:9a:6d:18:bf:05:af:30:de:8a:58:7e:9d:57:62:b5:f8:0b: f1:86:85:6a:db:a2:b8:55:55:65:ef:93:9c:31:56:11:d6:73: c0:9c:41:c1:2f:93:98:06:26:e4:34:56:d7:18:0d:3d:9d:73: 73:40:35:98:a2:93:c6:ed:f6:c1:18:01:ba:1a:1d:93:c7:51: 8c:16:99:d1:85:c1:bb:41:0a:94:b7:90:e7:84:be:e5:4a:c0: 1d:0d:21:f4:bb:dd:4c:ae:b2:5b:24:25:63:04:5a:0b:21:a3: 77:e6:49:1b:b2:3f:86:83:08:48:2f:71:68:2e:95:3e:1a:62: 5c:93:ff:b0:ef:5c:2a:95:bb:6e:88:9b:c7:4f:cf:9d:6d:6e: b1:83:54:2d:bd:31:95:a0:de:c0:4e:ef:e7:20:b1:eb:bd:b9: e5:b7:7a:e4:f0:37:9e:0a:3b:04:7e:d2:39:17:0c:1b:0a:0b: e4:8c:fe:a0:b0:b8:b8:de:1c:3b:58:a7:6e:45:63:13:58:36: 9a:b6:ac:8f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QUM0QjExMC8GA1UEBRMoRTM4QTVFREUxOTY4QzkzNzVFNTE1NTFGQUU5ODg4OEEw QkI1NDQ5MDAeFw0yNTA2MDEwNzAyMzNaFw0yNTA2MDgwNzAyMzNaMBgxFjAUBgNV BAMTDTY4M2JmYjA5LTg3OWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD0AMZPTXYf/WeF4S0f1Xyq2zXSO6LRs0isRFNJDfLDVKMG3gKG7by/lJwib1SL 73egtRNKCbHN5jzKgMmz/R+geP+G4jHKZOX1JUWf+6G/eOpGixTQ3YMH+lzl/tAL QiMPskt6HVa51fVtFPE6IgZ6/fyLyRPOut1ETcny9alDUqlSYveHN8/g1Z43tqof fm05c16XP0hbh7/LiqnC+SGL2QOvbyWhcRknLE1EdPZ+LfzIPTPdT2OYZXGSm/Bc hG8/z0y0sWVfRisR6QRTXk3nc8fCYVNKCZKxqJrP9ZoAdzj/Wul5owFB5vSpAnA9 pbd7b01ofw+oJSnhC6W9Xl0fAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU0Fw2QV+H LiPfaV9jiUOYfh5PyjswHwYDVR0jBBgwFoAU44pe3hloyTdeUVUfrpiIigu1RJAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBQzRCL0RFM0Y4ODlBQ0Q3 RDExRUZBQTA3MjMwQUM0RjlBRTAyLzQ0cGUzaGxveVRkZVVWVWZycGlJaWd1MVJK QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNDRwZTNobG95VGRlVVZVZnJwaUlpZ3UxUkpBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFB QzRCL0RFM0Y4ODlBQ0Q3RDExRUZBQTA3MjMwQUM0RjlBRTAyLzQ0cGUzaGxveVRk ZVVWVWZycGlJaWd1MVJKQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEjifzE6jOCxjfPPfF3CDc1kbS++gnIZ1zupP366wNXmY5IVinuGbkMW 3zdoeN2t28jP7EcMTM+abRi/Ba8w3opYfp1XYrX4C/GGhWrborhVVWXvk5wxVhHW c8CcQcEvk5gGJuQ0VtcYDT2dc3NANZiik8bt9sEYAboaHZPHUYwWmdGFwbtBCpS3 kOeEvuVKwB0NIfS73UyuslskJWMEWgsho3fmSRuyP4aDCEgvcWgulT4aYlyT/7Dv XCqVu26Im8dPz51tbrGDVC29MZWg3sBO7+cgseu9ueW3euTwN54KOwR+0jkXDBsK C+SM/qCwuLjeHDtYp25FYxNYNpq2rI8= -----END CERTIFICATE-----Generated at Mon Jun 2 20:43:54 2025 by rpki-client