$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3493/49A2EE6C368511EC80F52035C4F9AE02/4USmzKVqqTEokShNJidwYk784uw.mft File: 4USmzKVqqTEokShNJidwYk784uw.mft (raw, json) Hash identifier: 0HsmJHQP93lX22H2jzpD2t0JulMrgeoGyvfDOXkBUeI= Subject key identifier: 49:19:87:CF:1C:D1:D7:55:92:DB:EA:DE:4B:7B:88:DC:0D:2E:F2:30 Authority key identifier: E1:44:A6:CC:A5:6A:A9:31:28:91:28:4D:26:27:70:62:4E:FC:E2:EC Certificate issuer: /CN=A91E3493/serialNumber=E144A6CCA56AA9312891284D262770624EFCE2EC Certificate serial: 04A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4USmzKVqqTEokShNJidwYk784uw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3493/49A2EE6C368511EC80F52035C4F9AE02/4USmzKVqqTEokShNJidwYk784uw.mft Manifest number: 049C Signing time: Sat 31 May 2025 00:10:22 +0000 Manifest this update: Sat 31 May 2025 00:10:22 +0000 Manifest next update: Sat 07 Jun 2025 00:10:22 +0000 Files and hashes: 1: 4USmzKVqqTEokShNJidwYk784uw.crl (hash: G5vTdMVMFOsVTuXvSHSg/6xrxj0e4NAMf5t3JxkSfO8=) 2: E7BC076E368A11EC9109BC30C4F9AE02.roa (hash: KvBasDBfRwAoH2EYsCxUrezIZS6Rx7LxrBNPNRo5D98=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3493/49A2EE6C368511EC80F52035C4F9AE02/4USmzKVqqTEokShNJidwYk784uw.crl rsync://rpki.apnic.net/member_repository/A91E3493/49A2EE6C368511EC80F52035C4F9AE02/4USmzKVqqTEokShNJidwYk784uw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4USmzKVqqTEokShNJidwYk784uw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:10:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1184 (0x4a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3493, serialNumber=E144A6CCA56AA9312891284D262770624EFCE2EC Validity Not Before: May 31 00:10:22 2025 GMT Not After : Jun 7 00:10:22 2025 GMT Subject: CN=683a48ee-ca87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:b5:a4:79:9f:7c:2e:cd:d2:99:2d:19:4f:5b: 03:6c:b8:81:6f:de:1a:79:ef:41:e6:54:61:29:51: b2:47:9e:1f:a7:9f:6d:ef:86:98:8e:23:fa:08:2e: da:84:3c:c2:6b:4e:fa:cf:3a:40:8c:e4:cf:39:0d: cf:4c:75:bc:cc:7f:84:f0:40:4a:a9:e7:9b:3c:24: f6:b8:89:ab:9c:1a:71:4b:fc:ec:20:55:dc:ca:6f: 09:df:ac:70:7e:71:98:0f:02:34:f4:4c:e8:1d:28: c8:46:86:b0:99:76:e9:b1:2b:2a:bb:f2:7d:2d:65: e7:2f:e1:c6:dc:3e:52:63:9f:62:a5:87:50:0d:be: 27:73:ad:76:23:58:92:59:89:40:c4:2c:fe:86:09: c6:66:e7:60:0a:4f:a7:a6:87:45:b0:40:77:94:87: 47:47:26:05:43:a8:09:0b:00:f7:03:89:7e:fa:c8: e8:73:14:d6:26:1c:47:8e:d3:2e:29:d1:a4:5b:0f: 66:96:52:87:08:e5:4f:05:35:dc:2a:fe:0e:3b:cd: 90:8b:cc:d7:af:9d:59:22:99:ab:70:bf:d1:c7:c5: 79:02:f2:0f:bb:48:fd:35:a0:4a:bf:b8:c6:97:13: b6:43:e9:5b:2b:b7:b7:40:73:14:1e:8f:1f:0f:f6: ad:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:19:87:CF:1C:D1:D7:55:92:DB:EA:DE:4B:7B:88:DC:0D:2E:F2:30 X509v3 Authority Key Identifier: keyid:E1:44:A6:CC:A5:6A:A9:31:28:91:28:4D:26:27:70:62:4E:FC:E2:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3493/49A2EE6C368511EC80F52035C4F9AE02/4USmzKVqqTEokShNJidwYk784uw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4USmzKVqqTEokShNJidwYk784uw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3493/49A2EE6C368511EC80F52035C4F9AE02/4USmzKVqqTEokShNJidwYk784uw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:5c:c8:03:27:27:a5:bc:05:df:c3:06:3b:c2:6a:f6:b8:b4: 14:02:85:68:44:6d:a9:5d:3f:7f:49:72:d4:56:83:d1:09:1c: 1a:eb:08:3c:40:a5:d1:c7:c1:10:2e:e9:01:ab:f7:7c:b3:f5: 39:2b:8b:d5:d7:90:40:81:3f:ca:82:ec:0d:13:cc:ca:0a:31: 6e:f4:e0:dc:d1:41:82:f1:89:d5:57:40:d1:98:36:1b:60:d6: b5:9e:be:89:90:3c:9f:09:5d:54:68:fe:7a:24:22:f9:15:c4: f5:6f:9a:bc:f5:2c:0f:4c:28:7c:cc:4c:9d:fe:3f:7d:49:9f: 1d:66:1a:c6:ab:b0:0a:7d:96:a2:34:4e:5d:40:a6:ea:ac:93: af:09:6f:aa:28:b2:fb:81:37:e6:37:f1:8d:af:a0:c7:78:4e: 14:a3:08:c6:4a:09:00:2d:fd:83:35:89:54:e9:28:7d:ff:c1: 0a:68:e4:b2:d8:17:9e:78:3e:f4:1f:a9:4c:d1:ae:4d:d8:d6: 97:25:c5:49:56:de:ba:fc:66:73:9d:56:0f:54:f9:d4:b6:7f: 2b:b1:40:96:c5:f3:4d:fd:e8:1e:58:ca:cb:ae:c7:01:a9:7d: a8:f4:ab:33:a9:fc:fa:09:e8:41:c9:0c:af:5c:29:5c:1f:81: f3:e7:e2:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM0OTMxMTAvBgNVBAUTKEUxNDRBNkNDQTU2QUE5MzEyODkxMjg0RDI2Mjc3MDYy NEVGQ0UyRUMwHhcNMjUwNTMxMDAxMDIyWhcNMjUwNjA3MDAxMDIyWjAYMRYwFAYD VQQDEw02ODNhNDhlZS1jYTg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1LWkeZ98Ls3SmS0ZT1sDbLiBb94aee9B5lRhKVGyR54fp59t74aYjiP6CC7a hDzCa076zzpAjOTPOQ3PTHW8zH+E8EBKqeebPCT2uImrnBpxS/zsIFXcym8J36xw fnGYDwI09EzoHSjIRoawmXbpsSsqu/J9LWXnL+HG3D5SY59ipYdQDb4nc612I1iS WYlAxCz+hgnGZudgCk+npodFsEB3lIdHRyYFQ6gJCwD3A4l++sjocxTWJhxHjtMu KdGkWw9mllKHCOVPBTXcKv4OO82Qi8zXr51ZIpmrcL/Rx8V5AvIPu0j9NaBKv7jG lxO2Q+lbK7e3QHMUHo8fD/atiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEkZh88c 0ddVktvq3kt7iNwNLvIwMB8GA1UdIwQYMBaAFOFEpsylaqkxKJEoTSYncGJO/OLs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzQ5My80OUEyRUU2QzM2 ODUxMUVDODBGNTIwMzVDNEY5QUUwMi80VVNtektWcXFURW9rU2hOSmlkd1lrNzg0 dXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRVU216S1ZxcVRFb2tTaE5KaWR3WWs3ODR1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzQ5My80OUEyRUU2QzM2ODUxMUVDODBGNTIwMzVDNEY5QUUwMi80VVNtektWcXFU RW9rU2hOSmlkd1lrNzg0dXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFXMgDJyelvAXfwwY7wmr2uLQUAoVoRG2pXT9/SXLUVoPRCRwa6wg8 QKXRx8EQLukBq/d8s/U5K4vV15BAgT/KguwNE8zKCjFu9ODc0UGC8YnVV0DRmDYb YNa1nr6JkDyfCV1UaP56JCL5FcT1b5q89SwPTCh8zEyd/j99SZ8dZhrGq7AKfZai NE5dQKbqrJOvCW+qKLL7gTfmN/GNr6DHeE4UowjGSgkALf2DNYlU6Sh9/8EKaOSy 2BeeeD70H6lM0a5N2NaXJcVJVt66/GZznVYPVPnUtn8rsUCWxfNN/egeWMrLrscB qX2o9Kszqfz6CehByQyvXClcH4Hz5+K4 -----END CERTIFICATE-----Generated at Sat May 31 16:47:41 2025 by rpki-client