$ rpki-client -vvf rpki.apnic.net/member_repository/A91D09B8/6AB99E262C7211EFB89B0F84C4F9AE02/4-j_B54D_aQzRoidk3ZblZ9uHVk.mft File: 4-j_B54D_aQzRoidk3ZblZ9uHVk.mft (raw, json) Hash identifier: zaj+ERnUahMWOTnDL+/2u3ZM56YJLSjVKKjhvaxOki0= Subject key identifier: AE:78:5E:8E:AB:2E:DA:29:46:55:15:80:5F:64:FF:10:0A:F4:86:6D Authority key identifier: E3:E8:FF:07:9E:03:FD:A4:33:46:88:9D:93:76:5B:95:9F:6E:1D:59 Certificate issuer: /CN=A91D09B8/serialNumber=E3E8FF079E03FDA43346889D93765B959F6E1D59 Certificate serial: B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4-j_B54D_aQzRoidk3ZblZ9uHVk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D09B8/6AB99E262C7211EFB89B0F84C4F9AE02/4-j_B54D_aQzRoidk3ZblZ9uHVk.mft Manifest number: B3 Signing time: Sat 31 May 2025 05:34:13 +0000 Manifest this update: Sat 31 May 2025 05:34:13 +0000 Manifest next update: Sat 07 Jun 2025 05:34:13 +0000 Files and hashes: 1: 4-j_B54D_aQzRoidk3ZblZ9uHVk.crl (hash: V5hXwBMHJ0PtAP+ecV49ojkJZFNbAjgkCgD22DIpE9g=) 2: 7594FBFA2C7311EFA27A6526C4F9AE02.roa (hash: MW4brkS6iGYL+cXbHPuK8G2FUwzp/GEC0uyblPeDq90=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D09B8/6AB99E262C7211EFB89B0F84C4F9AE02/4-j_B54D_aQzRoidk3ZblZ9uHVk.crl rsync://rpki.apnic.net/member_repository/A91D09B8/6AB99E262C7211EFB89B0F84C4F9AE02/4-j_B54D_aQzRoidk3ZblZ9uHVk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4-j_B54D_aQzRoidk3ZblZ9uHVk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:34:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 181 (0xb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D09B8, serialNumber=E3E8FF079E03FDA43346889D93765B959F6E1D59 Validity Not Before: May 31 05:34:13 2025 GMT Not After : Jun 7 05:34:13 2025 GMT Subject: CN=683a94d5-92bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:c0:fe:5a:83:06:3e:49:47:fd:39:56:f6:83: f9:8d:75:50:20:5f:13:fd:88:e9:88:98:8d:30:74: 37:f6:bd:1d:61:3e:4d:fe:7d:1b:26:7c:2f:7c:a3: e5:ca:8c:6a:81:1c:ee:f0:44:90:ad:31:95:77:2c: fb:2c:3a:4d:eb:da:27:a4:18:bd:f5:58:f1:a3:05: 07:13:b1:c6:82:b9:46:78:a9:a6:d4:a1:93:a0:83: 25:5e:e6:08:19:60:1d:be:2e:05:a8:9e:58:60:a2: 38:39:e1:b1:e3:60:06:ff:ee:5c:6e:96:8e:7e:de: 22:be:df:57:b1:e8:75:5b:5f:8e:08:81:ca:26:fb: 83:b8:b2:74:dc:29:5e:6a:da:9e:6b:9e:08:ab:1d: f3:95:0b:25:b1:63:c5:1f:81:26:d5:9d:e9:54:d6: cb:3b:0e:45:aa:a7:f2:c4:cb:45:56:c8:2f:38:52: 26:1c:69:20:91:d6:f9:a0:16:2e:cd:58:dc:fa:b1: 8e:aa:fe:d4:89:e1:98:fe:6a:c0:b9:89:b2:35:a3: 0f:ea:b4:13:57:36:e2:05:4a:98:d0:b3:53:75:86: d1:7d:b3:a8:0f:fb:4d:43:89:a6:7e:f3:0f:f4:4a: ef:06:b5:28:bc:d7:40:26:5f:a9:b1:b3:5f:5c:98: b2:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:78:5E:8E:AB:2E:DA:29:46:55:15:80:5F:64:FF:10:0A:F4:86:6D X509v3 Authority Key Identifier: keyid:E3:E8:FF:07:9E:03:FD:A4:33:46:88:9D:93:76:5B:95:9F:6E:1D:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D09B8/6AB99E262C7211EFB89B0F84C4F9AE02/4-j_B54D_aQzRoidk3ZblZ9uHVk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4-j_B54D_aQzRoidk3ZblZ9uHVk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D09B8/6AB99E262C7211EFB89B0F84C4F9AE02/4-j_B54D_aQzRoidk3ZblZ9uHVk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:c6:4a:98:a4:75:00:21:27:36:cf:01:0f:78:d1:82:f9:01: 1f:7e:45:b6:61:8e:49:a3:b8:1b:12:fb:4f:dd:74:79:24:bc: be:b2:11:2f:75:b9:db:c5:03:43:3e:d8:0c:a0:d4:5c:9d:61: eb:4d:b0:07:85:b6:8e:70:dc:ef:1f:e8:24:43:d1:3d:0c:4e: a4:75:c9:e4:5b:04:44:92:71:e5:7b:af:b1:9b:b2:26:d2:bd: 54:a8:7a:da:44:58:2a:ee:56:ee:1a:10:06:47:e8:e7:91:ee: 5a:5c:2f:5b:86:ad:04:59:b6:5b:e3:a8:ef:40:ac:fa:fb:eb: ef:82:e9:75:d2:01:7e:92:e4:6b:2a:ad:71:11:b2:47:97:20: b4:e7:33:9d:58:5f:4d:7a:44:ef:5f:fc:97:76:7b:a0:3b:3f: 15:97:9d:6e:9e:38:cc:e7:30:63:77:ca:80:cf:3e:ca:c2:5a: 3a:30:c8:d8:02:d1:7e:a7:42:08:36:ca:53:fe:3d:15:a5:07: 7f:78:80:cf:76:70:80:3a:c7:31:04:ae:87:90:1f:5e:0e:a1: c6:a9:d6:12:f1:ba:b2:4b:07:9e:a5:23:b8:04:be:81:d5:88: 43:eb:8a:0f:72:8b:c0:93:28:de:66:fe:21:d0:12:46:7a:e6: 54:4b:14:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDA5QjgxMTAvBgNVBAUTKEUzRThGRjA3OUUwM0ZEQTQzMzQ2ODg5RDkzNzY1Qjk1 OUY2RTFENTkwHhcNMjUwNTMxMDUzNDEzWhcNMjUwNjA3MDUzNDEzWjAYMRYwFAYD VQQDEw02ODNhOTRkNS05MmJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA58D+WoMGPklH/TlW9oP5jXVQIF8T/YjpiJiNMHQ39r0dYT5N/n0bJnwvfKPl yoxqgRzu8ESQrTGVdyz7LDpN69onpBi99VjxowUHE7HGgrlGeKmm1KGToIMlXuYI GWAdvi4FqJ5YYKI4OeGx42AG/+5cbpaOft4ivt9Xseh1W1+OCIHKJvuDuLJ03Cle atqea54Iqx3zlQslsWPFH4Em1Z3pVNbLOw5FqqfyxMtFVsgvOFImHGkgkdb5oBYu zVjc+rGOqv7UieGY/mrAuYmyNaMP6rQTVzbiBUqY0LNTdYbRfbOoD/tNQ4mmfvMP 9ErvBrUovNdAJl+psbNfXJiyEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK54Xo6r LtopRlUVgF9k/xAK9IZtMB8GA1UdIwQYMBaAFOPo/weeA/2kM0aInZN2W5Wfbh1Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDlCOC82QUI5OUUyNjJD NzIxMUVGQjg5QjBGODRDNEY5QUUwMi80LWpfQjU0RF9hUXpSb2lkazNaYmxaOXVI VmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQtal9CNTREX2FRelJvaWRrM1pibFo5dUhWay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MDlCOC82QUI5OUUyNjJDNzIxMUVGQjg5QjBGODRDNEY5QUUwMi80LWpfQjU0RF9h UXpSb2lkazNaYmxaOXVIVmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYxkqYpHUAISc2zwEPeNGC+QEffkW2YY5Jo7gbEvtP3XR5JLy+shEv dbnbxQNDPtgMoNRcnWHrTbAHhbaOcNzvH+gkQ9E9DE6kdcnkWwREknHle6+xm7Im 0r1UqHraRFgq7lbuGhAGR+jnke5aXC9bhq0EWbZb46jvQKz6++vvgul10gF+kuRr Kq1xEbJHlyC05zOdWF9NekTvX/yXdnugOz8Vl51unjjM5zBjd8qAzz7Kwlo6MMjY AtF+p0IINspT/j0VpQd/eIDPdnCAOscxBK6HkB9eDqHGqdYS8bqySweepSO4BL6B 1YhD64oPcovAkyjeZv4h0BJGeuZUSxSR -----END CERTIFICATE-----Generated at Sat May 31 16:38:54 2025 by rpki-client