$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/4mhztF-I0fXYg8F-TM9wokUWIUI.mft File: 4mhztF-I0fXYg8F-TM9wokUWIUI.mft (raw, json) Hash identifier: Ox5bmQwqmSrWsXnPa184si85Fc3AhhNziBmKBhltHyY= Subject key identifier: 40:6A:22:C1:DA:E0:B2:9E:E2:7F:82:55:E1:AB:E2:E9:05:35:9D:56 Authority key identifier: E2:68:73:B4:5F:88:D1:F5:D8:83:C1:7E:4C:CF:70:A2:45:16:21:42 Certificate issuer: /CN=A91F4C6B/serialNumber=E26873B45F88D1F5D883C17E4CCF70A245162142 Certificate serial: 08CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4mhztF-I0fXYg8F-TM9wokUWIUI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/4mhztF-I0fXYg8F-TM9wokUWIUI.mft Manifest number: 08C1 Signing time: Fri 30 May 2025 20:42:58 +0000 Manifest this update: Fri 30 May 2025 20:42:57 +0000 Manifest next update: Fri 06 Jun 2025 20:42:57 +0000 Files and hashes: 1: 4mhztF-I0fXYg8F-TM9wokUWIUI.crl (hash: 9elje+TZx3DI9MIu+r8oppxDzLbVe6oxPOOXnCTgL4w=) 2: E146B994B51F11EA9146DD58C4F9AE02.roa (hash: LQpBHD/6AS6W0OQnBLuqSE1x8/uA+xxXkzDajQvXSSM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/4mhztF-I0fXYg8F-TM9wokUWIUI.crl rsync://rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/4mhztF-I0fXYg8F-TM9wokUWIUI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4mhztF-I0fXYg8F-TM9wokUWIUI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:42:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2255 (0x8cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4C6B, serialNumber=E26873B45F88D1F5D883C17E4CCF70A245162142 Validity Not Before: May 30 20:42:57 2025 GMT Not After : Jun 6 20:42:57 2025 GMT Subject: CN=683a1852-9884 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:0c:bd:92:2a:07:ac:69:99:df:71:6f:5b:84: 1c:20:1e:c6:d7:54:09:8c:ed:4b:1a:a3:d8:7a:86: 11:45:5a:70:76:25:55:29:8b:44:53:63:26:04:4f: 52:ae:ce:00:f9:b8:b1:06:23:43:7e:f3:ad:49:39: f8:00:c5:22:53:df:1d:d1:3b:4f:ad:7b:3d:b0:7b: e6:a2:e1:c9:8b:2e:a4:bd:40:b4:83:a5:df:93:a8: 72:f8:22:3d:82:56:bd:12:53:89:e1:9f:2d:69:d1: 23:fd:fc:5a:9f:e4:f8:02:33:da:87:a0:85:5b:21: 9f:e1:a5:3a:f4:02:5c:49:e4:3e:2f:28:84:ce:f7: ac:34:4d:ee:c2:9c:81:0a:a9:4b:9d:0c:63:a4:2c: b9:2e:f2:64:70:03:2d:4c:97:e9:48:00:d8:92:c2: af:0c:cc:23:ac:de:fe:0b:6d:d3:77:e7:18:62:68: f0:6c:80:31:fc:01:60:7d:ca:6f:1a:0e:0a:a0:ed: d0:1b:c6:d9:91:8b:38:74:02:38:c6:5c:d6:ae:1c: 35:f2:54:09:d7:0f:c5:45:d9:64:9e:d2:e5:ec:82: 47:d5:ca:8e:5c:4e:b4:ee:ea:3f:a7:50:22:c4:1c: b7:06:82:0e:70:ce:d1:5f:5b:1e:b5:ea:50:f3:d0: cf:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:6A:22:C1:DA:E0:B2:9E:E2:7F:82:55:E1:AB:E2:E9:05:35:9D:56 X509v3 Authority Key Identifier: keyid:E2:68:73:B4:5F:88:D1:F5:D8:83:C1:7E:4C:CF:70:A2:45:16:21:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/4mhztF-I0fXYg8F-TM9wokUWIUI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4mhztF-I0fXYg8F-TM9wokUWIUI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/4mhztF-I0fXYg8F-TM9wokUWIUI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:c5:dd:32:95:80:1a:4f:61:d1:5c:f3:6f:1e:ae:94:50:8d: cd:05:1d:da:79:8f:53:4d:98:1f:dc:6a:47:2c:7a:03:14:9d: e3:c8:52:77:7c:82:98:fb:e0:d8:79:37:9b:57:ef:ff:1d:f6: 0e:f1:3b:e6:4a:0f:83:a6:29:24:8e:3e:6b:2a:1e:5f:e1:a7: 1d:13:d0:a9:2a:00:c7:b7:5e:c2:bb:28:32:d3:bf:bb:da:e0: ea:66:af:e9:f7:e3:b0:bb:6a:32:ea:e5:90:2e:09:c1:9a:52: b7:a8:5d:d7:5f:3b:de:89:23:c7:ea:64:65:4e:fa:05:13:ab: 38:73:a8:7f:ad:83:bb:3e:63:95:0e:17:32:ac:00:85:20:45: 09:fc:8d:8b:b3:1a:a7:63:19:e5:13:48:ac:72:be:76:d0:78: c1:7d:f1:5a:95:d1:80:f3:04:35:96:d3:01:01:b4:69:71:74: cb:06:52:42:ae:f1:da:be:a7:84:55:78:82:70:3b:37:cc:e5: fc:ed:2a:1a:fa:1d:34:3c:6e:4e:2d:45:af:40:85:28:fd:d4: 28:df:0b:ed:f9:1f:d6:f9:78:7f:c3:04:3b:50:8f:c3:04:db: 3e:dc:33:e6:a5:1d:01:fc:9f:ff:91:5b:6b:a3:83:c9:43:ae: 45:2c:26:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRDNkIxMTAvBgNVBAUTKEUyNjg3M0I0NUY4OEQxRjVEODgzQzE3RTRDQ0Y3MEEy NDUxNjIxNDIwHhcNMjUwNTMwMjA0MjU3WhcNMjUwNjA2MjA0MjU3WjAYMRYwFAYD VQQDEw02ODNhMTg1Mi05ODg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwAy9kioHrGmZ33FvW4QcIB7G11QJjO1LGqPYeoYRRVpwdiVVKYtEU2MmBE9S rs4A+bixBiNDfvOtSTn4AMUiU98d0TtPrXs9sHvmouHJiy6kvUC0g6Xfk6hy+CI9 gla9ElOJ4Z8tadEj/fxan+T4AjPah6CFWyGf4aU69AJcSeQ+LyiEzvesNE3uwpyB CqlLnQxjpCy5LvJkcAMtTJfpSADYksKvDMwjrN7+C23Td+cYYmjwbIAx/AFgfcpv Gg4KoO3QG8bZkYs4dAI4xlzWrhw18lQJ1w/FRdlkntLl7IJH1cqOXE607uo/p1Ai xBy3BoIOcM7RX1setepQ89DPRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEBqIsHa 4LKe4n+CVeGr4ukFNZ1WMB8GA1UdIwQYMBaAFOJoc7RfiNH12IPBfkzPcKJFFiFC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEM2Qi8yNzhBQTNFNEI1 MUYxMUVBOUZFOEJENThDNEY5QUUwMi80bWh6dEYtSTBmWFlnOEYtVE05d29rVVdJ VUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRtaHp0Ri1JMGZYWWc4Ri1UTTl3b2tVV0lVSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEM2Qi8yNzhBQTNFNEI1MUYxMUVBOUZFOEJENThDNEY5QUUwMi80bWh6dEYtSTBm WFlnOEYtVE05d29rVVdJVUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKxd0ylYAaT2HRXPNvHq6UUI3NBR3aeY9TTZgf3GpHLHoDFJ3jyFJ3 fIKY++DYeTebV+//HfYO8TvmSg+Dpikkjj5rKh5f4acdE9CpKgDHt17Cuygy07+7 2uDqZq/p9+Owu2oy6uWQLgnBmlK3qF3XXzveiSPH6mRlTvoFE6s4c6h/rYO7PmOV DhcyrACFIEUJ/I2LsxqnYxnlE0iscr520HjBffFaldGA8wQ1ltMBAbRpcXTLBlJC rvHavqeEVXiCcDs3zOX87Soa+h00PG5OLUWvQIUo/dQo3wvt+R/W+Xh/wwQ7UI/D BNs+3DPmpR0B/J//kVtro4PJQ65FLCZR -----END CERTIFICATE-----Generated at Sat May 31 16:27:42 2025 by rpki-client