$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft File: 4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft (raw, json) Hash identifier: lkt8LJeJhp5nE9W5F8v+/uwzBLNrtsDm3wa0KRjyykE= Subject key identifier: B9:AE:47:39:7C:7A:9B:83:49:BA:85:35:E6:EF:22:67:1B:BC:F7:23 Authority key identifier: E2:1F:24:E0:C5:4D:BB:93:F6:67:81:44:02:D6:6A:D4:08:07:11:14 Certificate issuer: /CN=A91C4060/serialNumber=E21F24E0C54DBB93F667814402D66AD408071114 Certificate serial: 0720 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft Manifest number: 0719 Signing time: Fri 30 May 2025 22:03:41 +0000 Manifest this update: Fri 30 May 2025 22:03:41 +0000 Manifest next update: Fri 06 Jun 2025 22:03:41 +0000 Files and hashes: 1: 4h8k4MVNu5P2Z4FEAtZq1AgHERQ.crl (hash: TMa4fnSMRxfxuJyvNh8AcSt3MMieR/Op/3MHqIU0ObY=) 2: 71C26BD039D211EB84B9FD6BC4F9AE02.roa (hash: 1uZF2QAxlIwO0QnFgrG3CrAusMfAKjQaAjjZhLnhprI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.crl rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:03:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1824 (0x720) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4060, serialNumber=E21F24E0C54DBB93F667814402D66AD408071114 Validity Not Before: May 30 22:03:41 2025 GMT Not After : Jun 6 22:03:41 2025 GMT Subject: CN=683a2b3d-1dfe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:9c:ab:fd:cc:95:d1:a3:2a:fc:a9:41:2a:89: 92:80:19:84:f2:78:d5:4c:47:5d:26:11:44:6f:2b: d7:fd:3a:06:2a:32:9e:9d:87:7e:9c:a5:0b:76:67: fa:53:bd:bf:44:c5:fb:3c:51:73:ae:d9:b6:2e:5d: 06:75:8f:d6:21:ec:b0:3a:8f:70:ba:22:43:1b:9c: 19:59:7d:2d:58:3d:c0:3f:49:20:4a:a3:6b:b5:a9: 18:6d:8d:f5:9f:d3:0b:09:d7:28:7c:64:50:73:69: 85:7e:7d:2d:e9:7b:99:b5:db:25:e1:ea:4d:b5:06: be:10:a8:77:e4:0b:46:f4:32:08:f4:34:9f:8e:9b: be:e5:dd:7c:36:2a:5a:c1:fd:07:26:3b:e2:d6:ad: c0:41:bb:b6:e6:85:e7:04:95:f7:da:93:89:f2:c3: c8:bb:ab:8e:35:c3:39:4f:78:d5:91:6e:a1:a0:6c: 78:1c:8c:ad:89:dc:fa:79:7c:db:8d:5f:75:1b:46: eb:f6:3b:30:45:46:00:76:2f:24:02:85:a6:43:e8: 9c:97:a5:4a:74:78:48:dc:52:b5:cb:68:97:8c:ac: 28:89:63:cd:37:6d:8b:b1:89:9e:84:5b:eb:61:09: 71:af:54:fe:7d:31:b2:68:f0:0d:91:e6:ff:36:ed: 07:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:AE:47:39:7C:7A:9B:83:49:BA:85:35:E6:EF:22:67:1B:BC:F7:23 X509v3 Authority Key Identifier: keyid:E2:1F:24:E0:C5:4D:BB:93:F6:67:81:44:02:D6:6A:D4:08:07:11:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:76:a7:0e:6d:d4:b2:73:9f:6c:f8:08:6a:0a:00:80:76:b7: c8:76:de:0a:0b:b4:bb:3a:6f:ac:98:b5:f4:c0:f2:0d:11:e9: 56:da:3c:c0:3c:ed:e9:53:2e:0c:6d:31:54:d3:ce:17:30:11: 47:1b:82:a9:cf:fe:92:70:9b:24:f6:4a:a5:5c:98:47:30:98: 8f:e2:e0:54:3a:b7:d2:8c:17:22:20:65:57:f3:ec:c3:89:41: 10:08:09:ab:45:2a:47:b7:78:c7:ca:75:3f:07:4f:09:fa:f3: a7:b2:93:36:8e:33:a5:dc:b9:0b:95:07:45:3e:31:04:19:9e: fe:22:96:22:e9:a0:52:67:a6:41:eb:1f:55:67:9a:4b:41:8a: 1a:23:86:11:71:8b:c8:f3:0b:76:b3:28:07:64:3a:a5:88:a1: 94:a0:f8:2d:b9:2e:76:c4:57:8f:4c:69:02:15:ad:4a:ac:e1: 63:2a:98:34:63:57:54:eb:68:c1:98:93:4b:33:7b:5f:29:3a: 68:17:a4:e8:34:ac:86:1c:de:39:5f:59:df:50:ae:b3:c3:46: 0b:ad:0a:ff:7c:11:d3:90:2e:d2:7c:67:39:c4:50:63:41:f3: ab:f8:ef:ec:84:9e:4d:eb:79:6d:82:b6:8c:f6:ea:58:fb:60: 9c:3a:34:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICByAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQwNjAxMTAvBgNVBAUTKEUyMUYyNEUwQzU0REJCOTNGNjY3ODE0NDAyRDY2QUQ0 MDgwNzExMTQwHhcNMjUwNTMwMjIwMzQxWhcNMjUwNjA2MjIwMzQxWjAYMRYwFAYD VQQDEw02ODNhMmIzZC0xZGZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2pyr/cyV0aMq/KlBKomSgBmE8njVTEddJhFEbyvX/ToGKjKenYd+nKULdmf6 U72/RMX7PFFzrtm2Ll0GdY/WIeywOo9wuiJDG5wZWX0tWD3AP0kgSqNrtakYbY31 n9MLCdcofGRQc2mFfn0t6XuZtdsl4epNtQa+EKh35AtG9DII9DSfjpu+5d18Nipa wf0HJjvi1q3AQbu25oXnBJX32pOJ8sPIu6uONcM5T3jVkW6hoGx4HIytidz6eXzb jV91G0br9jswRUYAdi8kAoWmQ+icl6VKdHhI3FK1y2iXjKwoiWPNN22LsYmehFvr YQlxr1T+fTGyaPANkeb/Nu0HXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLmuRzl8 epuDSbqFNebvImcbvPcjMB8GA1UdIwQYMBaAFOIfJODFTbuT9meBRALWatQIBxEU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDA2MC81NjkzODlGRTM5 RDAxMUVCOEY0NzE1NjlDNEY5QUUwMi80aDhrNE1WTnU1UDJaNEZFQXRacTFBZ0hF UlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRoOGs0TVZOdTVQMlo0RkVBdFpxMUFnSEVSUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDA2MC81NjkzODlGRTM5RDAxMUVCOEY0NzE1NjlDNEY5QUUwMi80aDhrNE1WTnU1 UDJaNEZFQXRacTFBZ0hFUlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9dqcObdSyc59s+AhqCgCAdrfIdt4KC7S7Om+smLX0wPINEelW2jzA PO3pUy4MbTFU084XMBFHG4Kpz/6ScJsk9kqlXJhHMJiP4uBUOrfSjBciIGVX8+zD iUEQCAmrRSpHt3jHynU/B08J+vOnspM2jjOl3LkLlQdFPjEEGZ7+IpYi6aBSZ6ZB 6x9VZ5pLQYoaI4YRcYvI8wt2sygHZDqliKGUoPgtuS52xFePTGkCFa1KrOFjKpg0 Y1dU62jBmJNLM3tfKTpoF6ToNKyGHN45X1nfUK6zw0YLrQr/fBHTkC7SfGc5xFBj QfOr+O/shJ5N63ltgraM9upY+2CcOjSz -----END CERTIFICATE-----Generated at Sat May 31 16:44:55 2025 by rpki-client