$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7DBA/28EB71462BD411ECB0BADE58C4F9AE02/4ISfBUORggKxeEROX_IviZ-eMg4.mft File: 4ISfBUORggKxeEROX_IviZ-eMg4.mft (raw, json) Hash identifier: IN6yVuo/gODIzWhBHpH2TgBaItDcnILp/o5Aju/SvBw= Subject key identifier: 5A:F2:A3:5F:1B:A6:DC:3E:D5:AC:51:C1:FC:D5:BD:7D:88:A8:31:74 Authority key identifier: E0:84:9F:05:43:91:82:02:B1:78:44:4E:5F:F2:2F:89:9F:9E:32:0E Certificate issuer: /CN=A91F7DBA/serialNumber=E0849F0543918202B178444E5FF22F899F9E320E Certificate serial: 04C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4ISfBUORggKxeEROX_IviZ-eMg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7DBA/28EB71462BD411ECB0BADE58C4F9AE02/4ISfBUORggKxeEROX_IviZ-eMg4.mft Manifest number: 04BC Signing time: Fri 06 Jun 2025 23:53:35 +0000 Manifest this update: Fri 06 Jun 2025 23:53:35 +0000 Manifest next update: Fri 13 Jun 2025 23:53:35 +0000 Files and hashes: 1: 4ISfBUORggKxeEROX_IviZ-eMg4.crl (hash: LG/nF9OWsx/WJGdBQIoFaBe05BhUFaeLSMVlDl7+8RY=) 2: 145F8B6434D211EEA9BD8F64C4F9AE02.roa (hash: MOCtEXuSWTSIWA+J+aTGfRvUWTN01u8L13mcqeEHJ4Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7DBA/28EB71462BD411ECB0BADE58C4F9AE02/4ISfBUORggKxeEROX_IviZ-eMg4.crl rsync://rpki.apnic.net/member_repository/A91F7DBA/28EB71462BD411ECB0BADE58C4F9AE02/4ISfBUORggKxeEROX_IviZ-eMg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4ISfBUORggKxeEROX_IviZ-eMg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 23:53:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1217 (0x4c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7DBA, serialNumber=E0849F0543918202B178444E5FF22F899F9E320E Validity Not Before: Jun 6 23:53:35 2025 GMT Not After : Jun 13 23:53:35 2025 GMT Subject: CN=68437f7f-628e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:d9:46:a2:f5:bd:0a:35:8b:ad:10:50:6b:e4: 18:3a:40:ac:66:3f:1d:26:21:d0:da:d8:21:02:83: b7:93:26:ff:67:85:0a:d8:5c:4c:2b:17:8b:40:55: e2:47:5c:af:88:2d:7e:a0:a9:15:26:6b:9e:4e:5e: 79:3c:92:ed:11:51:42:41:71:96:cf:c3:57:c3:4e: fe:4e:0d:18:72:8d:3e:0e:7d:93:92:50:59:aa:39: 18:1c:34:6e:ab:68:80:cd:63:37:69:fe:90:2b:05: 7d:be:b0:cd:14:a9:88:37:bf:fb:0c:9b:c6:fc:70: 6b:44:97:30:5b:1c:fc:29:4d:bb:7c:9a:8d:57:ca: 80:b9:80:82:b9:b6:d3:fa:5e:89:2d:81:8c:d9:5a: b5:89:de:d6:7b:a9:c8:b5:ee:7b:b4:37:23:7e:96: a3:fe:66:0c:1a:fc:64:9b:3f:46:e4:2b:d4:b1:84: 3f:4a:1e:60:5d:e6:a3:d4:1b:7c:e1:48:62:67:80: ac:b8:f2:92:7c:d3:88:28:81:17:3b:01:54:48:17: dd:a3:24:2a:18:e5:0b:b9:70:34:7f:1e:f0:96:b9: 51:b0:71:0b:0f:1a:a2:ca:3a:58:db:9e:80:cf:f0: ab:ab:26:3d:a0:37:b9:76:a0:cd:f4:77:cc:a8:63: 84:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:F2:A3:5F:1B:A6:DC:3E:D5:AC:51:C1:FC:D5:BD:7D:88:A8:31:74 X509v3 Authority Key Identifier: keyid:E0:84:9F:05:43:91:82:02:B1:78:44:4E:5F:F2:2F:89:9F:9E:32:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7DBA/28EB71462BD411ECB0BADE58C4F9AE02/4ISfBUORggKxeEROX_IviZ-eMg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4ISfBUORggKxeEROX_IviZ-eMg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7DBA/28EB71462BD411ECB0BADE58C4F9AE02/4ISfBUORggKxeEROX_IviZ-eMg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:41:55:42:9b:7f:47:66:7b:51:57:76:c1:3d:31:c2:90:93: 2d:e7:4a:e4:23:e9:a9:e7:be:5f:cd:43:14:a8:0f:e4:c9:99: d9:73:59:0e:9a:b5:a7:48:e7:7d:8c:5e:29:d1:be:66:5d:3d: e0:a4:a6:3c:9a:a8:4a:a0:dd:13:b3:7c:8a:e1:12:56:a9:14: 22:86:30:8e:aa:2d:0b:f2:65:d1:80:2b:fc:24:55:d3:75:7e: 7b:2d:a4:31:d7:c1:ae:bd:e5:a8:c7:2c:17:a7:28:f8:34:4a: a0:b5:84:ae:39:54:02:a1:50:57:ce:8e:ff:33:cd:82:e0:cd: 38:3a:2a:55:ed:9a:80:81:f7:1c:0c:ba:c0:89:ac:ea:ca:67: ca:18:72:d7:15:00:dc:c8:83:fe:33:6e:d9:f4:5b:47:59:24: 2b:8a:6d:6d:a4:ec:92:57:35:f9:c3:6c:11:a7:70:71:2d:68: 8b:b8:3d:ce:bd:23:ca:b4:b0:e9:b4:b6:b5:f0:72:62:02:dc: 90:4a:a5:af:64:69:32:31:8b:04:d5:48:e5:5f:55:8c:8c:f8: 51:56:b6:e1:fa:8e:af:47:25:e8:27:7c:22:bf:1d:03:0b:6e: 80:de:f6:b8:cc:ff:1c:6a:ce:db:61:80:6c:d0:41:6a:37:8b: 4a:39:c7:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjdEQkExMTAvBgNVBAUTKEUwODQ5RjA1NDM5MTgyMDJCMTc4NDQ0RTVGRjIyRjg5 OUY5RTMyMEUwHhcNMjUwNjA2MjM1MzM1WhcNMjUwNjEzMjM1MzM1WjAYMRYwFAYD VQQDEw02ODQzN2Y3Zi02MjhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAytlGovW9CjWLrRBQa+QYOkCsZj8dJiHQ2tghAoO3kyb/Z4UK2FxMKxeLQFXi R1yviC1+oKkVJmueTl55PJLtEVFCQXGWz8NXw07+Tg0Yco0+Dn2TklBZqjkYHDRu q2iAzWM3af6QKwV9vrDNFKmIN7/7DJvG/HBrRJcwWxz8KU27fJqNV8qAuYCCubbT +l6JLYGM2Vq1id7We6nIte57tDcjfpaj/mYMGvxkmz9G5CvUsYQ/Sh5gXeaj1Bt8 4UhiZ4CsuPKSfNOIKIEXOwFUSBfdoyQqGOULuXA0fx7wlrlRsHELDxqiyjpY256A z/CrqyY9oDe5dqDN9HfMqGOEHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFryo18b ptw+1axRwfzVvX2IqDF0MB8GA1UdIwQYMBaAFOCEnwVDkYICsXhETl/yL4mfnjIO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGN0RCQS8yOEVCNzE0NjJC RDQxMUVDQjBCQURFNThDNEY5QUUwMi80SVNmQlVPUmdnS3hlRVJPWF9JdmlaLWVN ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRJU2ZCVU9SZ2dLeGVFUk9YX0l2aVotZU1nNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG N0RCQS8yOEVCNzE0NjJCRDQxMUVDQjBCQURFNThDNEY5QUUwMi80SVNmQlVPUmdn S3hlRVJPWF9JdmlaLWVNZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/QVVCm39HZntRV3bBPTHCkJMt50rkI+mp575fzUMUqA/kyZnZc1kO mrWnSOd9jF4p0b5mXT3gpKY8mqhKoN0Ts3yK4RJWqRQihjCOqi0L8mXRgCv8JFXT dX57LaQx18GuveWoxywXpyj4NEqgtYSuOVQCoVBXzo7/M82C4M04OipV7ZqAgfcc DLrAiazqymfKGHLXFQDcyIP+M27Z9FtHWSQrim1tpOySVzX5w2wRp3BxLWiLuD3O vSPKtLDptLa18HJiAtyQSqWvZGkyMYsE1UjlX1WMjPhRVrbh+o6vRyXoJ3wivx0D C26A3va4zP8cas7bYYBs0EFqN4tKOceo -----END CERTIFICATE-----Generated at Sat Jun 7 12:35:17 2025 by rpki-client