$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft File: 4Y-ehXQ6vsrARiuP30On20pij_k.mft (raw, json) Hash identifier: V5s6niBBcN5PlaJvVIcnMPs1P3rYWxY6hsp50LC+eHo= Subject key identifier: 11:74:0E:70:E0:BA:C4:5D:05:D7:FF:41:AA:F8:28:6B:2A:B3:0B:EE Authority key identifier: E1:8F:9E:85:74:3A:BE:CA:C0:46:2B:8F:DF:43:A7:DB:4A:62:8F:F9 Certificate issuer: /CN=A91C9A8D/serialNumber=E18F9E85743ABECAC0462B8FDF43A7DB4A628FF9 Certificate serial: 03E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y-ehXQ6vsrARiuP30On20pij_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft Manifest number: 041D Signing time: Sat 31 May 2025 00:46:28 +0000 Manifest this update: Sat 31 May 2025 00:46:28 +0000 Manifest next update: Sat 07 Jun 2025 00:46:28 +0000 Files and hashes: 1: 4Y-ehXQ6vsrARiuP30On20pij_k.crl (hash: GwMCf13ElsgPJWfymA+axguIeI7beSMnITISOF8GOAw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.crl rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y-ehXQ6vsrARiuP30On20pij_k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:46:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 998 (0x3e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9A8D, serialNumber=E18F9E85743ABECAC0462B8FDF43A7DB4A628FF9 Validity Not Before: May 31 00:46:28 2025 GMT Not After : Jun 7 00:46:28 2025 GMT Subject: CN=683a5164-f4f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:e4:e2:d4:8a:d3:cd:08:1a:35:e0:85:06:dc: 74:64:6b:ea:8e:14:32:14:b7:1f:3d:ff:d7:fc:8c: 8c:84:ca:cc:3b:9c:7f:b7:bb:e6:83:12:cd:75:f2: e3:65:e4:ce:ca:d7:2c:8e:84:95:8d:07:7b:e0:94: cb:bb:07:0b:dc:6b:9d:28:b5:93:8f:29:8c:c7:ff: 3f:7b:7e:f9:7e:c6:a4:43:1c:e7:05:e7:e3:56:9c: 24:c9:7f:c9:f6:58:87:b9:0a:ed:75:7e:a8:6a:35: 9d:65:3a:e5:61:5f:12:83:af:6d:df:81:5a:68:05: 4e:ef:3a:f5:78:9f:b8:55:15:24:5c:2d:5d:c0:75: 18:2c:86:36:ce:61:1c:96:3c:c2:b6:e6:54:d7:67: c7:5f:86:f3:96:fa:34:5f:c9:f5:6b:7e:eb:1e:20: 57:0b:42:05:57:bf:2c:39:23:b0:35:92:f3:48:6e: ef:37:e0:1a:95:2c:02:8f:13:b3:e7:36:f2:3c:7a: d2:b0:55:93:c3:d1:7e:bf:e9:43:72:b1:2f:83:78: 0f:1a:84:8e:8d:e4:69:db:e0:a5:cb:be:d9:82:83: da:82:6c:d1:b6:f3:b7:c0:cd:fa:6c:10:2d:76:26: 5f:af:73:aa:c3:43:54:b1:71:63:87:48:bc:86:89: 2a:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:74:0E:70:E0:BA:C4:5D:05:D7:FF:41:AA:F8:28:6B:2A:B3:0B:EE X509v3 Authority Key Identifier: keyid:E1:8F:9E:85:74:3A:BE:CA:C0:46:2B:8F:DF:43:A7:DB:4A:62:8F:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y-ehXQ6vsrARiuP30On20pij_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:a7:44:40:0b:02:48:19:b8:58:72:08:d5:f3:c5:a0:c2:d5: c7:cd:dd:d2:d4:f0:3b:9d:d8:98:18:f0:1f:03:0e:1c:8e:0b: ce:09:45:cb:4e:36:a9:5e:af:b7:c0:83:00:13:71:07:b0:2c: 76:96:a9:4e:76:e1:cc:f7:55:6c:d7:03:43:43:bf:86:17:1e: f7:f5:4c:b7:f9:4c:06:8d:b1:cf:8b:b6:df:b6:35:73:25:91: 2a:9c:58:15:fc:c0:7e:ef:42:47:7f:59:54:98:59:1d:c6:f4: 54:dd:08:86:86:d0:77:1c:a5:4b:33:f9:eb:6d:35:b0:68:96: 46:dd:80:7b:cd:b1:aa:96:73:c6:b0:32:65:48:9e:85:44:ab: 10:81:2a:9d:87:d8:36:d2:d4:5c:51:5e:9a:68:fb:56:67:97: c5:b0:3e:43:77:bb:b0:6d:c4:de:af:22:91:4b:b4:e6:d8:08: f5:c4:48:6c:42:d8:0d:1c:0e:b5:00:a0:c5:6e:b2:84:61:62: 79:13:fd:b0:20:fb:f7:95:ac:8e:3d:b2:fb:4a:d4:b7:e2:45: 99:48:e4:8c:41:6d:59:0e:a7:70:13:64:c4:42:c5:2f:77:c7: dd:a6:73:c8:9d:0b:ec:46:f7:20:cb:59:95:2b:ec:d9:80:4d: ea:aa:b1:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlBOEQxMTAvBgNVBAUTKEUxOEY5RTg1NzQzQUJFQ0FDMDQ2MkI4RkRGNDNBN0RC NEE2MjhGRjkwHhcNMjUwNTMxMDA0NjI4WhcNMjUwNjA3MDA0NjI4WjAYMRYwFAYD VQQDEw02ODNhNTE2NC1mNGY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoeTi1IrTzQgaNeCFBtx0ZGvqjhQyFLcfPf/X/IyMhMrMO5x/t7vmgxLNdfLj ZeTOytcsjoSVjQd74JTLuwcL3GudKLWTjymMx/8/e375fsakQxznBefjVpwkyX/J 9liHuQrtdX6oajWdZTrlYV8Sg69t34FaaAVO7zr1eJ+4VRUkXC1dwHUYLIY2zmEc ljzCtuZU12fHX4bzlvo0X8n1a37rHiBXC0IFV78sOSOwNZLzSG7vN+AalSwCjxOz 5zbyPHrSsFWTw9F+v+lDcrEvg3gPGoSOjeRp2+Cly77ZgoPagmzRtvO3wM36bBAt diZfr3Oqw0NUsXFjh0i8hokqIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBF0DnDg usRdBdf/Qar4KGsqswvuMB8GA1UdIwQYMBaAFOGPnoV0Or7KwEYrj99Dp9tKYo/5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUE4RC8zMkYxRjRDMjgz RTkxMUVDQjg3M0M4NzFDNEY5QUUwMi80WS1laFhRNnZzckFSaXVQMzBPbjIwcGlq X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRZLWVoWFE2dnNyQVJpdVAzME9uMjBwaWpfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUE4RC8zMkYxRjRDMjgzRTkxMUVDQjg3M0M4NzFDNEY5QUUwMi80WS1laFhRNnZz ckFSaXVQMzBPbjIwcGlqX2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMp0RACwJIGbhYcgjV88WgwtXHzd3S1PA7ndiYGPAfAw4cjgvOCUXL TjapXq+3wIMAE3EHsCx2lqlOduHM91Vs1wNDQ7+GFx739Uy3+UwGjbHPi7bftjVz JZEqnFgV/MB+70JHf1lUmFkdxvRU3QiGhtB3HKVLM/nrbTWwaJZG3YB7zbGqlnPG sDJlSJ6FRKsQgSqdh9g20tRcUV6aaPtWZ5fFsD5Dd7uwbcTeryKRS7Tm2Aj1xEhs QtgNHA61AKDFbrKEYWJ5E/2wIPv3layOPbL7StS34kWZSOSMQW1ZDqdwE2TEQsUv d8fdpnPInQvsRvcgy1mVK+zZgE3qqrE3 -----END CERTIFICATE-----Generated at Sat May 31 16:30:33 2025 by rpki-client