$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBA4F/587F35DA3B7711F097A8BB24C4F9AE02/4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.mft File: 4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.mft (raw, json) Hash identifier: rQWfRxIzo0/MSFggx9uf8UCUyTSjwNmv7ak9joGGUVw= Subject key identifier: F7:5C:76:7C:3B:C9:DF:5E:E4:A7:2B:FD:AD:37:C0:C4:93:B2:18:D3 Authority key identifier: E0:39:8D:54:AC:D9:DB:33:ED:4F:CA:A8:D2:28:05:D4:5E:80:CB:B6 Certificate issuer: /CN=A91BBA4F/serialNumber=E0398D54ACD9DB33ED4FCAA8D22805D45E80CBB6 Certificate serial: 04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBA4F/587F35DA3B7711F097A8BB24C4F9AE02/4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.mft Manifest number: 03 Signing time: Sat 31 May 2025 07:46:17 +0000 Manifest this update: Sat 31 May 2025 07:46:17 +0000 Manifest next update: Sat 07 Jun 2025 07:46:17 +0000 Files and hashes: 1: 4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.crl (hash: GiFV1htqv0YEutvwIP1ZVNEoJzGAZs5q5I7r6+/Sev4=) 2: 58C16E043B7811F099AF3F55C4F9AE02.roa (hash: EdyHrGdK241FduLFJE474YipzEeOWQ4qQLPgbqAJOd8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBA4F/587F35DA3B7711F097A8BB24C4F9AE02/4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.crl rsync://rpki.apnic.net/member_repository/A91BBA4F/587F35DA3B7711F097A8BB24C4F9AE02/4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:46:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBA4F, serialNumber=E0398D54ACD9DB33ED4FCAA8D22805D45E80CBB6 Validity Not Before: May 31 07:46:17 2025 GMT Not After : Jun 7 07:46:17 2025 GMT Subject: CN=683ab3c9-e3af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:81:cb:ce:3d:3b:d0:0e:81:ff:17:03:59:ee: 65:76:3c:ce:49:12:4a:ae:9b:f9:51:83:73:6c:6a: 9a:7a:a7:38:6a:8a:f9:2c:ac:6b:d9:a3:1f:8a:0f: 14:a1:9d:9d:0e:12:19:07:c2:3a:6c:6d:cb:c1:45: 7a:7f:20:a2:5b:32:38:31:34:c2:dc:38:c5:a5:bd: 94:70:ee:5f:95:cf:09:02:43:2a:d8:2a:3a:5b:53: 15:76:b0:99:8b:70:4a:ab:ca:99:51:63:0c:fa:cc: d5:1c:61:52:b6:30:a7:d1:10:4e:5f:83:60:f5:3d: 4f:85:ea:26:bf:cc:bf:d0:52:6d:1e:b3:64:45:73: e0:df:4b:22:2e:37:97:ee:06:b7:55:73:08:73:bb: 15:d0:23:81:e5:03:55:f7:d9:22:50:fd:5f:20:11: b6:ba:6f:91:bc:89:46:e0:69:3b:9c:6b:af:f5:4b: 2d:16:88:fe:b4:e2:1c:94:b1:c2:62:a8:9f:dc:2b: 87:0d:dc:1d:1f:5a:1a:fc:95:c4:47:27:9b:67:4f: 66:5f:eb:32:f6:80:38:09:bb:da:56:41:d8:2b:81: ca:79:84:af:48:62:5e:f7:74:5b:83:1b:6b:7f:74: 6e:79:74:32:e9:85:ac:40:7e:0b:30:b6:59:61:27: 4c:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:5C:76:7C:3B:C9:DF:5E:E4:A7:2B:FD:AD:37:C0:C4:93:B2:18:D3 X509v3 Authority Key Identifier: keyid:E0:39:8D:54:AC:D9:DB:33:ED:4F:CA:A8:D2:28:05:D4:5E:80:CB:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBA4F/587F35DA3B7711F097A8BB24C4F9AE02/4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBA4F/587F35DA3B7711F097A8BB24C4F9AE02/4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:83:4b:ec:58:01:fc:e1:e9:0a:77:28:11:63:dd:ee:f5:11: e8:c5:e4:49:9a:5a:32:ac:f3:f5:3a:d5:f6:15:91:b6:eb:ff: a7:ad:2e:53:2c:f1:04:8d:a0:6a:35:0c:fd:1e:d0:ac:12:38: 1b:00:81:a6:0f:fc:61:fc:bf:c7:7b:38:99:9a:de:1c:a9:6d: 8a:28:c3:63:0f:8b:6a:cb:e4:f3:0f:a6:ac:f2:00:59:9b:9e: 8d:57:f5:ea:c1:db:f9:05:82:9a:f6:76:ef:9d:15:87:91:7e: f6:06:dd:0a:00:1c:da:3e:54:25:5d:6b:05:76:9b:3c:34:80: 95:64:c2:7a:a4:d3:28:34:f6:75:98:95:47:29:96:10:1a:e5: 97:93:45:15:19:09:af:b4:e2:df:db:a8:33:e8:ac:b5:67:e2: c1:e8:e9:54:db:c6:d0:43:2e:39:e7:d3:b0:27:b9:73:7c:79: 2f:82:07:5f:ee:a1:73:e5:4f:cc:67:20:21:d5:44:23:d7:90: 26:eb:a8:29:95:76:d3:00:7e:e6:f4:7c:40:bd:2d:a4:90:7b: 58:82:86:b8:38:a7:49:86:99:b6:65:78:38:87:4e:9c:f8:69: 46:7e:b6:12:8f:96:4a:6a:81:85:4d:9a:1c:f0:c6:05:f8:14: 76:ad:c1:25 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QkE0RjExMC8GA1UEBRMoRTAzOThENTRBQ0Q5REIzM0VENEZDQUE4RDIyODA1RDQ1 RTgwQ0JCNjAeFw0yNTA1MzEwNzQ2MTdaFw0yNTA2MDcwNzQ2MTdaMBgxFjAUBgNV BAMTDTY4M2FiM2M5LWUzYWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQChgcvOPTvQDoH/FwNZ7mV2PM5JEkqum/lRg3Nsapp6pzhqivksrGvZox+KDxSh nZ0OEhkHwjpsbcvBRXp/IKJbMjgxNMLcOMWlvZRw7l+VzwkCQyrYKjpbUxV2sJmL cEqryplRYwz6zNUcYVK2MKfREE5fg2D1PU+F6ia/zL/QUm0es2RFc+DfSyIuN5fu BrdVcwhzuxXQI4HlA1X32SJQ/V8gEba6b5G8iUbgaTuca6/1Sy0WiP604hyUscJi qJ/cK4cN3B0fWhr8lcRHJ5tnT2Zf6zL2gDgJu9pWQdgrgcp5hK9IYl73dFuDG2t/ dG55dDLphaxAfgswtllhJ0xZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU91x2fDvJ 317kpyv9rTfAxJOyGNMwHwYDVR0jBBgwFoAU4DmNVKzZ2zPtT8qo0igF1F6Ay7Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJCQTRGLzU4N0YzNURBM0I3 NzExRjA5N0E4QkIyNEM0RjlBRTAyLzREbU5WS3paMnpQdFQ4cW8waWdGMUY2QXk3 WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNERtTlZLeloyelB0VDhxbzBpZ0YxRjZBeTdZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJC QTRGLzU4N0YzNURBM0I3NzExRjA5N0E4QkIyNEM0RjlBRTAyLzREbU5WS3paMnpQ dFQ4cW8waWdGMUY2QXk3WS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGKDS+xYAfzh6Qp3KBFj3e71EejF5EmaWjKs8/U61fYVkbbr/6etLlMs 8QSNoGo1DP0e0KwSOBsAgaYP/GH8v8d7OJma3hypbYoow2MPi2rL5PMPpqzyAFmb no1X9erB2/kFgpr2du+dFYeRfvYG3QoAHNo+VCVdawV2mzw0gJVkwnqk0yg09nWY lUcplhAa5ZeTRRUZCa+04t/bqDPorLVn4sHo6VTbxtBDLjnn07AnuXN8eS+CB1/u oXPlT8xnICHVRCPXkCbrqCmVdtMAfub0fEC9LaSQe1iChrg4p0mGmbZleDiHTpz4 aUZ+thKPlkpqgYVNmhzwxgX4FHatwSU= -----END CERTIFICATE-----Generated at Sat May 31 17:17:29 2025 by rpki-client