$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1306/FE49749883CA11E7B8240A42C4F9AE02/4E-yqmJ9l7mJrs_oaXTjxfMDEho.mft File: 4E-yqmJ9l7mJrs_oaXTjxfMDEho.mft (raw, json) Hash identifier: mBiBM3MgOzX6WBJ2c6wPz+ZMtnV1gXHgGxzQr7SfFsM= Subject key identifier: BF:DA:9B:F4:01:69:CE:60:A6:74:BF:1B:5D:87:8F:03:B5:78:0E:AB Authority key identifier: E0:4F:B2:AA:62:7D:97:B9:89:AE:CF:E8:69:74:E3:C5:F3:03:12:1A Certificate issuer: /CN=A91D1306/serialNumber=E04FB2AA627D97B989AECFE86974E3C5F303121A Certificate serial: 1918 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4E-yqmJ9l7mJrs_oaXTjxfMDEho.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1306/FE49749883CA11E7B8240A42C4F9AE02/4E-yqmJ9l7mJrs_oaXTjxfMDEho.mft Manifest number: 190C Signing time: Sat 31 May 2025 16:23:55 +0000 Manifest this update: Sat 31 May 2025 16:23:54 +0000 Manifest next update: Sat 07 Jun 2025 16:23:54 +0000 Files and hashes: 1: 4E-yqmJ9l7mJrs_oaXTjxfMDEho.crl (hash: mwclOwW5gJs+aEh52g+28m/2ID6YlbqNv1KuNbzK3l8=) 2: 66BEBEDE83CB11E796105342C4F9AE02.roa (hash: /U/CsYIhht9s+NW7SN7K/1R2JyIlhuy3zjDWLZs60Yg=) 3: 09C0DFCE202011F098619934C4F9AE02.roa (hash: VTcOwA4/ZHFl9NF0jVq8bKcfk95wITIQIkP9/wxqkas=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1306/FE49749883CA11E7B8240A42C4F9AE02/4E-yqmJ9l7mJrs_oaXTjxfMDEho.crl rsync://rpki.apnic.net/member_repository/A91D1306/FE49749883CA11E7B8240A42C4F9AE02/4E-yqmJ9l7mJrs_oaXTjxfMDEho.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4E-yqmJ9l7mJrs_oaXTjxfMDEho.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 16:23:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6424 (0x1918) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1306, serialNumber=E04FB2AA627D97B989AECFE86974E3C5F303121A Validity Not Before: May 31 16:23:54 2025 GMT Not After : Jun 7 16:23:54 2025 GMT Subject: CN=683b2d1b-b9ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:18:f3:61:90:c4:18:4d:e3:3b:2d:86:23:cc: 70:9b:90:f7:03:d8:d2:3d:7d:ec:d7:7b:2a:91:6d: 10:4d:68:25:d0:c6:87:79:1e:be:cc:47:cb:7f:df: 8c:ca:cf:ad:21:5e:6c:53:9e:3e:ab:3a:e5:07:9d: 67:38:de:17:52:5d:c9:4f:c1:2e:ca:95:84:45:fb: 30:e7:71:8e:6b:35:8e:43:a9:9a:76:91:32:89:e4: fc:e9:96:2d:66:30:f7:77:30:2f:24:59:8f:fe:1e: e6:e9:54:9f:27:ad:b1:d4:73:94:c4:b1:c3:83:6e: b0:c5:59:46:8d:61:e8:69:c9:3a:33:86:cb:cd:49: 47:3b:59:77:dd:58:06:2d:2e:e1:9e:1c:39:90:4d: 9f:d5:ce:b2:4b:71:38:75:86:34:ef:9d:55:1b:8b: b3:bc:45:ba:b7:fb:a9:23:c9:69:73:69:95:0d:e4: a2:10:62:63:c1:0d:f1:5f:df:8c:b7:65:ce:68:ba: 1e:f7:24:4b:5a:be:d2:f7:cf:ee:56:da:33:66:ec: a8:64:c7:31:8b:7d:8a:3a:02:eb:45:31:db:0a:7c: a7:6c:9b:6b:d8:8c:43:36:95:0e:53:ef:80:2e:04: a8:ae:0c:8e:91:a7:9d:f4:59:81:f2:e8:fc:77:92: 40:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:DA:9B:F4:01:69:CE:60:A6:74:BF:1B:5D:87:8F:03:B5:78:0E:AB X509v3 Authority Key Identifier: keyid:E0:4F:B2:AA:62:7D:97:B9:89:AE:CF:E8:69:74:E3:C5:F3:03:12:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1306/FE49749883CA11E7B8240A42C4F9AE02/4E-yqmJ9l7mJrs_oaXTjxfMDEho.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4E-yqmJ9l7mJrs_oaXTjxfMDEho.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1306/FE49749883CA11E7B8240A42C4F9AE02/4E-yqmJ9l7mJrs_oaXTjxfMDEho.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:4f:8c:d6:f1:92:b5:ae:da:5f:a4:07:5a:4e:86:b2:13:5f: b1:dc:6f:36:4c:c4:36:19:18:4b:22:26:8c:56:0d:df:e8:e8: e7:6f:28:c6:fd:05:24:d9:c7:63:2c:4d:44:fb:d8:5f:d6:93: d0:a2:5f:d8:31:ab:94:ce:b3:80:91:a4:8d:91:01:72:db:63: 0e:b6:19:1c:22:78:ab:d1:de:89:c0:f6:ca:d1:5a:18:df:5a: 45:e7:62:69:38:87:e4:0d:20:4a:ee:6c:e8:e8:49:68:bb:d0: f0:e9:91:74:88:0d:20:60:b4:cf:a2:68:4c:48:64:03:3b:43: d0:da:90:d1:f5:fc:fa:2e:bc:3f:8d:d4:7f:61:91:fe:f9:22: a6:6f:6f:96:d2:0d:62:4a:95:fc:18:da:8d:c8:41:7c:1e:4f: be:2d:a5:c7:ad:3a:dd:f9:1f:75:63:02:f5:8e:81:aa:f6:7b: 37:05:38:4b:22:6a:23:ba:70:ec:d5:81:06:42:d7:ea:ca:a4: 1d:87:89:ed:5f:44:f7:53:b0:44:bb:aa:50:d1:c5:0d:b7:54: 4e:ef:20:24:ae:a7:57:d8:fd:57:7c:ab:11:50:8b:d5:55:75: 08:1f:e9:5b:75:df:41:8e:c9:c9:4a:8e:ed:bb:84:48:52:2f: e0:6a:87:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGRgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDEzMDYxMTAvBgNVBAUTKEUwNEZCMkFBNjI3RDk3Qjk4OUFFQ0ZFODY5NzRFM0M1 RjMwMzEyMUEwHhcNMjUwNTMxMTYyMzU0WhcNMjUwNjA3MTYyMzU0WjAYMRYwFAYD VQQDEw02ODNiMmQxYi1iOWVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvRjzYZDEGE3jOy2GI8xwm5D3A9jSPX3s13sqkW0QTWgl0MaHeR6+zEfLf9+M ys+tIV5sU54+qzrlB51nON4XUl3JT8EuypWERfsw53GOazWOQ6madpEyieT86ZYt ZjD3dzAvJFmP/h7m6VSfJ62x1HOUxLHDg26wxVlGjWHoack6M4bLzUlHO1l33VgG LS7hnhw5kE2f1c6yS3E4dYY0751VG4uzvEW6t/upI8lpc2mVDeSiEGJjwQ3xX9+M t2XOaLoe9yRLWr7S98/uVtozZuyoZMcxi32KOgLrRTHbCnynbJtr2IxDNpUOU++A LgSorgyOkaed9FmB8uj8d5JAewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL/am/QB ac5gpnS/G12HjwO1eA6rMB8GA1UdIwQYMBaAFOBPsqpifZe5ia7P6Gl048XzAxIa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTMwNi9GRTQ5NzQ5ODgz Q0ExMUU3QjgyNDBBNDJDNEY5QUUwMi80RS15cW1KOWw3bUpyc19vYVhUanhmTURF aG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRFLXlxbUo5bDdtSnJzX29hWFRqeGZNREVoby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTMwNi9GRTQ5NzQ5ODgzQ0ExMUU3QjgyNDBBNDJDNEY5QUUwMi80RS15cW1KOWw3 bUpyc19vYVhUanhmTURFaG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCvT4zW8ZK1rtpfpAdaToayE1+x3G82TMQ2GRhLIiaMVg3f6OjnbyjG /QUk2cdjLE1E+9hf1pPQol/YMauUzrOAkaSNkQFy22MOthkcInir0d6JwPbK0VoY 31pF52JpOIfkDSBK7mzo6Elou9Dw6ZF0iA0gYLTPomhMSGQDO0PQ2pDR9fz6Lrw/ jdR/YZH++SKmb2+W0g1iSpX8GNqNyEF8Hk++LaXHrTrd+R91YwL1joGq9ns3BThL ImojunDs1YEGQtfqyqQdh4ntX0T3U7BEu6pQ0cUNt1RO7yAkrqdX2P1XfKsRUIvV VXUIH+lbdd9BjsnJSo7tu4RIUi/gaod0 -----END CERTIFICATE-----Generated at Sat May 31 17:51:31 2025 by rpki-client