$ rpki-client -vvf rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.mft File: fHxDqtDIa183jl18MzKgXeRhJ1A.mft (raw, json) Hash identifier: S6oLUeP65E+mMs/xelenmdFQj559GCm99CRmnKbhI5s= Subject key identifier: FE:EA:38:D0:82:EE:BC:20:8A:7B:DD:BF:C8:56:7A:F6:14:20:45:E3 Authority key identifier: 7C:7C:43:AA:D0:C8:6B:5F:37:8E:5D:7C:33:32:A0:5D:E4:61:27:50 Certificate issuer: /CN=A912CA50/serialNumber=7C7C43AAD0C86B5F378E5D7C3332A05DE4612750 Certificate serial: 07CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fHxDqtDIa183jl18MzKgXeRhJ1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.mft Manifest number: 07AC Signing time: Wed 02 Apr 2025 21:12:59 +0000 Manifest this update: Wed 02 Apr 2025 21:12:59 +0000 Manifest next update: Wed 09 Apr 2025 21:12:59 +0000 Files and hashes: 1: fHxDqtDIa183jl18MzKgXeRhJ1A.crl (hash: hmc/jf/3BThcEXPMxOEK8bmpgF2+1gLNl2SQdJv7e10=) 2: E7EBC9003EE411ED905A3415C4F9AE02.roa (hash: 7145KDk6Ud3gJk6wkOrSSRd7V4t35M2bwdrO78shBPE=) 3: E897EA5A3EE411ED905A3415C4F9AE02.roa (hash: wSUtbGUG6qJCjwBZF3AGH+0iZn8vKCgbBj1wQ7GjPys=) 4: 5035F194413211EDAAFCC96EC4F9AE02.roa (hash: qx6Ck2bt18JzwMSwE91OIh9TX6eoj+EFVUwzhl+omAI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.crl rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fHxDqtDIa183jl18MzKgXeRhJ1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 21:12:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1994 (0x7ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912CA50 Validity Not Before: Apr 2 21:12:59 2025 GMT Not After : Apr 9 21:12:59 2025 GMT Subject: CN=67eda85b-5f52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:63:dd:af:b9:71:96:f8:93:fe:db:00:b0:f1: 4d:00:42:83:3f:55:c2:96:fb:80:7f:9f:72:3a:66: 71:df:72:f0:bc:23:00:2c:58:15:0f:05:ba:e4:e9: 22:4b:b6:38:95:5e:61:71:f5:64:4c:e4:7a:e3:5d: 8d:fb:2a:4d:3f:d7:17:8e:d8:90:fd:06:df:ea:d2: 16:68:f6:d5:24:c0:d6:3e:18:bc:c7:84:7f:86:f0: 9c:00:0e:97:33:dc:71:77:ef:ab:31:63:10:77:90: 4f:fe:bf:86:c4:63:f9:00:15:5c:8e:9d:5b:a6:11: 89:fb:9d:25:90:58:61:ce:08:3c:3c:bb:fe:91:d6: 00:f9:40:37:21:69:c5:be:b0:a3:ff:f3:44:e9:8a: 0b:7c:a5:9f:bb:d9:eb:0d:79:a3:78:4a:b7:29:5c: 6b:73:c0:da:76:b4:47:76:16:23:32:66:e7:24:3c: 91:90:7c:86:49:14:2d:f3:0e:71:4d:0b:7d:d5:6c: 32:a4:4d:57:16:46:a9:a6:7a:6f:22:2e:01:6b:8a: 80:9d:3b:41:89:2c:89:fe:7b:f4:d4:14:90:26:d5: 89:b4:e1:9a:34:2b:63:18:03:4a:8a:78:53:bf:94: e1:7e:96:83:f1:80:36:09:c0:b8:ec:8e:9b:a7:25: 97:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:EA:38:D0:82:EE:BC:20:8A:7B:DD:BF:C8:56:7A:F6:14:20:45:E3 X509v3 Authority Key Identifier: keyid:7C:7C:43:AA:D0:C8:6B:5F:37:8E:5D:7C:33:32:A0:5D:E4:61:27:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fHxDqtDIa183jl18MzKgXeRhJ1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:95:0f:64:83:b0:b8:39:1e:f1:a6:36:0e:7c:4c:20:fb:fe: b2:82:37:13:a2:b4:32:20:3f:8d:24:54:48:cd:bb:6b:c4:86: df:a1:3e:1b:0c:17:8e:98:6e:91:52:2b:80:8a:67:68:8a:c0: f9:0d:dd:a8:17:16:ab:7e:35:21:c7:d6:ca:03:56:4d:c6:81: eb:2d:93:34:94:0a:87:c7:54:30:76:09:83:e7:a9:6f:92:3d: 04:0e:22:62:4c:9b:6a:ba:13:f9:62:02:db:68:ed:b6:fa:3c: 24:48:ea:75:11:73:d7:73:1c:dc:a3:51:92:12:10:48:e4:65: 54:d2:fa:35:d8:40:c5:7c:ab:d0:46:bd:77:9f:d1:ff:92:b9: 72:cf:1c:b6:7e:27:a8:bb:4d:f1:34:bb:84:37:3c:43:57:ef: ba:54:47:d6:a2:b3:3d:07:c8:d2:c6:92:9f:0a:d6:7e:90:27: 82:92:e6:c1:57:60:c5:02:c4:5b:83:60:c1:e8:c7:b4:97:4e: 7b:59:d3:e9:97:5e:70:bb:41:59:42:f1:39:d9:83:dd:46:e2: 66:a4:eb:e8:0b:d4:d9:b0:a8:3f:64:1e:a0:00:c4:e9:d6:66: c7:a2:0a:2b:8d:20:c3:97:1d:bf:f7:df:36:aa:d9:0f:7e:ed: 70:6f:5e:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB8owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkNBNTAxMTAvBgNVBAUTKDdDN0M0M0FBRDBDODZCNUYzNzhFNUQ3QzMzMzJBMDVE RTQ2MTI3NTAwHhcNMjUwNDAyMjExMjU5WhcNMjUwNDA5MjExMjU5WjAYMRYwFAYD VQQDEw02N2VkYTg1Yi01ZjUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2GPdr7lxlviT/tsAsPFNAEKDP1XClvuAf59yOmZx33LwvCMALFgVDwW65Oki S7Y4lV5hcfVkTOR6412N+ypNP9cXjtiQ/Qbf6tIWaPbVJMDWPhi8x4R/hvCcAA6X M9xxd++rMWMQd5BP/r+GxGP5ABVcjp1bphGJ+50lkFhhzgg8PLv+kdYA+UA3IWnF vrCj//NE6YoLfKWfu9nrDXmjeEq3KVxrc8DadrRHdhYjMmbnJDyRkHyGSRQt8w5x TQt91WwypE1XFkappnpvIi4Ba4qAnTtBiSyJ/nv01BSQJtWJtOGaNCtjGANKinhT v5ThfpaD8YA2CcC47I6bpyWXXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP7qONCC 7rwginvdv8hWevYUIEXjMB8GA1UdIwQYMBaAFHx8Q6rQyGtfN45dfDMyoF3kYSdQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQ0E1MC8zODFDMTcxNkZC QTUxMUVBQkJBRUIzNjNDNEY5QUUwMi9mSHhEcXRESWExODNqbDE4TXpLZ1hlUmhK MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZIeERxdERJYTE4M2psMThNektnWGVSaEoxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Q0E1MC8zODFDMTcxNkZCQTUxMUVBQkJBRUIzNjNDNEY5QUUwMi9mSHhEcXRESWEx ODNqbDE4TXpLZ1hlUmhKMUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJlQ9kg7C4OR7xpjYOfEwg+/6ygjcTorQyID+NJFRIzbtrxIbfoT4b DBeOmG6RUiuAimdoisD5Dd2oFxarfjUhx9bKA1ZNxoHrLZM0lAqHx1QwdgmD56lv kj0EDiJiTJtquhP5YgLbaO22+jwkSOp1EXPXcxzco1GSEhBI5GVU0vo12EDFfKvQ Rr13n9H/krlyzxy2fieou03xNLuENzxDV++6VEfWorM9B8jSxpKfCtZ+kCeCkubB V2DFAsRbg2DB6Me0l057WdPpl15wu0FZQvE52YPdRuJmpOvoC9TZsKg/ZB6gAMTp 1mbHogorjSDDlx2/9982qtkPfu1wb17v -----END CERTIFICATE-----Generated at Fri Apr 4 22:10:36 2025 by rpki-client