$ rpki-client -vvf rpki.apnic.net/member_repository/A9145418/771931803AE011EC93728D66C4F9AE02/X-FUPIWwZTChZM-Q4aJ9qNtyRQ4.mft File: X-FUPIWwZTChZM-Q4aJ9qNtyRQ4.mft (raw, json) Hash identifier: zMeJj37tSvOfSkEBvO1V4LmpTGVhNQ9+Cl7wZ62Eg1g= Subject key identifier: 7C:E0:51:91:27:7D:47:46:94:38:1A:A7:AA:32:4B:B6:45:27:8F:78 Authority key identifier: 5F:E1:54:3C:85:B0:65:30:A1:64:CF:90:E1:A2:7D:A8:DB:72:45:0E Certificate issuer: /CN=A9145418/serialNumber=5FE1543C85B06530A164CF90E1A27DA8DB72450E Certificate serial: 0476 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-FUPIWwZTChZM-Q4aJ9qNtyRQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145418/771931803AE011EC93728D66C4F9AE02/X-FUPIWwZTChZM-Q4aJ9qNtyRQ4.mft Manifest number: 0471 Signing time: Sat 29 Mar 2025 00:21:45 +0000 Manifest this update: Sat 29 Mar 2025 00:21:44 +0000 Manifest next update: Sat 05 Apr 2025 00:21:44 +0000 Files and hashes: 1: X-FUPIWwZTChZM-Q4aJ9qNtyRQ4.crl (hash: syQbTb+vbm0E/PegMRDfWujXykFLFaqYIEfLIoVvG1A=) 2: FA5399BC3AE211ECA119BA68C4F9AE02.roa (hash: M598nPRIqsJS/K52Ut9/vCkEatFaGNrs9FvUNDB8rmQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145418/771931803AE011EC93728D66C4F9AE02/X-FUPIWwZTChZM-Q4aJ9qNtyRQ4.crl rsync://rpki.apnic.net/member_repository/A9145418/771931803AE011EC93728D66C4F9AE02/X-FUPIWwZTChZM-Q4aJ9qNtyRQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-FUPIWwZTChZM-Q4aJ9qNtyRQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 00:21:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1142 (0x476) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145418 Validity Not Before: Mar 29 00:21:44 2025 GMT Not After : Apr 5 00:21:44 2025 GMT Subject: CN=67e73d18-7bdf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:bb:b1:df:8a:7c:1a:e9:fc:95:f5:65:a9:66: d1:c1:36:4a:2f:a7:a9:1e:ec:99:3f:46:2a:3c:4e: a9:7a:8f:63:a2:c7:10:5a:da:83:fd:02:08:c8:fa: e3:15:33:9f:9a:1d:f2:4d:de:ff:48:5e:f1:b7:e8: 6d:0a:14:95:1c:2e:b2:41:cb:28:a9:4a:da:3f:f8: 1d:79:ab:d4:ae:99:d1:c2:69:8d:19:e1:f1:1d:e3: 28:92:33:9b:8a:33:07:fd:d7:fc:9a:7d:81:23:b0: 9b:ce:f1:4b:79:55:b1:9e:da:7f:10:a0:c3:e1:ca: 90:17:de:99:b0:9e:de:04:db:da:8b:4f:c4:d5:98: d0:d3:c3:ca:4e:28:8b:43:36:73:b0:7e:31:f0:da: 79:ec:45:d9:6e:38:cb:3b:59:31:f3:1f:ca:54:d7: 29:8c:3b:84:59:48:33:eb:5a:35:ed:4f:72:4e:00: 30:ec:6a:b9:0e:53:d6:43:8c:4e:fb:5f:bf:77:76: 85:c4:32:ca:db:e1:60:25:46:66:15:e4:00:aa:73: ef:a4:e8:a4:b4:c9:e6:58:e9:40:46:d9:7a:96:41: 52:5b:a8:f2:d1:0b:71:b7:bd:53:2c:3d:78:f8:a7: 62:59:26:50:9d:52:63:17:34:e6:b7:af:5e:0b:41: 80:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:E0:51:91:27:7D:47:46:94:38:1A:A7:AA:32:4B:B6:45:27:8F:78 X509v3 Authority Key Identifier: keyid:5F:E1:54:3C:85:B0:65:30:A1:64:CF:90:E1:A2:7D:A8:DB:72:45:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145418/771931803AE011EC93728D66C4F9AE02/X-FUPIWwZTChZM-Q4aJ9qNtyRQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-FUPIWwZTChZM-Q4aJ9qNtyRQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145418/771931803AE011EC93728D66C4F9AE02/X-FUPIWwZTChZM-Q4aJ9qNtyRQ4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:16:77:54:48:24:d8:ab:94:17:3d:c3:ab:5c:c6:0b:60:94: fe:b3:41:32:9c:ff:88:57:9b:ea:c3:3e:0f:17:61:17:2c:a2: 01:3a:bf:d9:14:c0:8f:00:c7:e2:18:7f:cc:42:d1:64:64:06: 77:47:d3:5c:aa:c9:9e:cd:0d:42:c0:7b:6e:45:e1:cb:fd:ea: b3:bf:df:bd:84:e0:53:27:9e:ed:c4:09:0c:d9:cf:b6:ef:41: 6d:41:ee:bc:7b:b8:53:da:a2:a4:ce:87:a0:e3:d1:8a:9c:64: a6:e2:80:7a:c5:8d:ab:0c:33:3a:38:3a:e7:8a:08:b8:86:c2: 0d:2c:6c:17:b7:b2:86:7b:ee:52:37:58:5d:9f:1f:18:3c:93: aa:2f:46:07:8f:c8:34:e0:d5:5f:dc:78:90:41:b6:41:ed:65: 65:e8:a7:1b:28:c2:1b:14:53:e2:c1:ad:78:f5:dd:be:09:9b: e0:d2:40:61:d3:1c:c5:bf:33:75:34:dc:bf:a8:a2:ed:25:0d: 14:70:c9:4b:1b:37:c9:99:9e:33:2c:63:16:74:67:32:e6:7a: ba:25:55:49:7a:24:7d:25:7f:de:cd:d2:a3:8f:1d:34:3d:b9: c7:f9:cb:be:08:a3:a4:81:ce:a3:56:39:d9:4f:20:f3:f7:6f: c1:e5:2a:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU0MTgxMTAvBgNVBAUTKDVGRTE1NDNDODVCMDY1MzBBMTY0Q0Y5MEUxQTI3REE4 REI3MjQ1MEUwHhcNMjUwMzI5MDAyMTQ0WhcNMjUwNDA1MDAyMTQ0WjAYMRYwFAYD VQQDEw02N2U3M2QxOC03YmRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwLux34p8Gun8lfVlqWbRwTZKL6epHuyZP0YqPE6peo9joscQWtqD/QIIyPrj FTOfmh3yTd7/SF7xt+htChSVHC6yQcsoqUraP/gdeavUrpnRwmmNGeHxHeMokjOb ijMH/df8mn2BI7CbzvFLeVWxntp/EKDD4cqQF96ZsJ7eBNvai0/E1ZjQ08PKTiiL QzZzsH4x8Np57EXZbjjLO1kx8x/KVNcpjDuEWUgz61o17U9yTgAw7Gq5DlPWQ4xO +1+/d3aFxDLK2+FgJUZmFeQAqnPvpOiktMnmWOlARtl6lkFSW6jy0Qtxt71TLD14 +KdiWSZQnVJjFzTmt69eC0GAmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHzgUZEn fUdGlDgap6oyS7ZFJ494MB8GA1UdIwQYMBaAFF/hVDyFsGUwoWTPkOGifajbckUO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTQxOC83NzE5MzE4MDNB RTAxMUVDOTM3MjhENjZDNEY5QUUwMi9YLUZVUElXd1pUQ2haTS1RNGFKOXFOdHlS UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gtRlVQSVd3WlRDaFpNLVE0YUo5cU50eVJRNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NTQxOC83NzE5MzE4MDNBRTAxMUVDOTM3MjhENjZDNEY5QUUwMi9YLUZVUElXd1pU Q2haTS1RNGFKOXFOdHlSUTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqFndUSCTYq5QXPcOrXMYLYJT+s0EynP+IV5vqwz4PF2EXLKIBOr/Z FMCPAMfiGH/MQtFkZAZ3R9NcqsmezQ1CwHtuReHL/eqzv9+9hOBTJ57txAkM2c+2 70FtQe68e7hT2qKkzoeg49GKnGSm4oB6xY2rDDM6ODrnigi4hsINLGwXt7KGe+5S N1hdnx8YPJOqL0YHj8g04NVf3HiQQbZB7WVl6KcbKMIbFFPiwa149d2+CZvg0kBh 0xzFvzN1NNy/qKLtJQ0UcMlLGzfJmZ4zLGMWdGcy5nq6JVVJeiR9JX/ezdKjjx00 PbnH+cu+CKOkgc6jVjnZTyDz92/B5So+ -----END CERTIFICATE-----Generated at Fri Apr 4 22:19:43 2025 by rpki-client