$ rpki-client -vvf rpki.apnic.net/member_repository/A91468A1/2E1CC644511811EA9387C66BC4F9AE02/FSo7QyJc-ixfjeJ6mmiT07I_XeM.mft File: FSo7QyJc-ixfjeJ6mmiT07I_XeM.mft (raw, json) Hash identifier: b2qG1UIYCZbkXEDG1pUd2+20QAAZdzOSGlMyskbDvmY= Subject key identifier: B6:81:0D:39:DE:CA:48:97:47:B4:E2:BC:58:40:0F:1C:D3:A5:76:89 Authority key identifier: 15:2A:3B:43:22:5C:FA:2C:5F:8D:E2:7A:9A:68:93:D3:B2:3F:5D:E3 Certificate issuer: /CN=A91468A1/serialNumber=152A3B43225CFA2C5F8DE27A9A6893D3B23F5DE3 Certificate serial: 0AAA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FSo7QyJc-ixfjeJ6mmiT07I_XeM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91468A1/2E1CC644511811EA9387C66BC4F9AE02/FSo7QyJc-ixfjeJ6mmiT07I_XeM.mft Manifest number: 0AA2 Signing time: Fri 04 Apr 2025 19:39:14 +0000 Manifest this update: Fri 04 Apr 2025 19:39:14 +0000 Manifest next update: Fri 11 Apr 2025 19:39:14 +0000 Files and hashes: 1: FSo7QyJc-ixfjeJ6mmiT07I_XeM.crl (hash: tR2+kW+P7jFDH+yCblLjCnhUBbOfmGPHuZotFBwPx9A=) 2: F0520A385DD611EAA4AD4767C4F9AE02.roa (hash: kJMo9RQs1RmR4jKIjh2FdUcRITpXXdCWCEKsh+3zIHs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91468A1/2E1CC644511811EA9387C66BC4F9AE02/FSo7QyJc-ixfjeJ6mmiT07I_XeM.crl rsync://rpki.apnic.net/member_repository/A91468A1/2E1CC644511811EA9387C66BC4F9AE02/FSo7QyJc-ixfjeJ6mmiT07I_XeM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FSo7QyJc-ixfjeJ6mmiT07I_XeM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 19:39:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2730 (0xaaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91468A1 Validity Not Before: Apr 4 19:39:14 2025 GMT Not After : Apr 11 19:39:14 2025 GMT Subject: CN=67f03562-1e9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:2e:d0:3f:f9:9e:b4:39:7f:e2:ce:ec:af:21: 9a:3b:19:fc:e3:3e:d4:cb:b7:5f:cf:e9:97:20:91: 60:77:fc:b3:6d:ba:cf:90:56:c2:96:c7:cd:df:d2: ee:ca:e1:ed:07:19:50:81:39:09:a1:02:52:63:08: 38:4a:5a:2a:55:f5:21:24:2d:0a:ec:dc:05:bd:30: f9:32:7c:5f:90:5e:23:0b:96:6b:2c:57:f0:71:b6: 14:88:50:70:67:fc:08:60:6b:eb:d0:fe:bb:dc:e1: d6:9f:93:4c:3f:f9:a3:c7:68:bf:45:d7:4b:90:64: 4a:ba:9f:6a:a7:77:31:a0:97:66:65:39:0a:b8:ab: b4:e6:38:df:03:f2:a8:f9:e0:a2:26:c9:a0:6f:cf: 3e:9c:18:d4:d2:bd:3e:43:ee:02:52:02:e1:25:bb: 50:04:8a:44:0f:ca:ee:31:24:dd:10:82:3d:dd:d1: 9c:fe:6f:30:43:6d:ba:e8:26:38:27:42:59:f7:1e: 02:49:5f:aa:8a:9e:d8:cd:33:d7:07:b7:c0:f0:b8: b4:d1:7e:5d:e1:d9:36:8e:7e:ee:28:89:2b:79:0e: 73:a8:dd:d1:6b:c2:59:54:1a:0c:8a:d3:25:e4:1c: 6a:e6:fd:16:5f:d6:26:86:8a:1d:e7:4b:6a:ff:28: 0f:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:81:0D:39:DE:CA:48:97:47:B4:E2:BC:58:40:0F:1C:D3:A5:76:89 X509v3 Authority Key Identifier: keyid:15:2A:3B:43:22:5C:FA:2C:5F:8D:E2:7A:9A:68:93:D3:B2:3F:5D:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91468A1/2E1CC644511811EA9387C66BC4F9AE02/FSo7QyJc-ixfjeJ6mmiT07I_XeM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FSo7QyJc-ixfjeJ6mmiT07I_XeM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91468A1/2E1CC644511811EA9387C66BC4F9AE02/FSo7QyJc-ixfjeJ6mmiT07I_XeM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:39:56:09:b7:96:09:95:6e:57:e0:04:65:ae:83:e6:2a:1a: 5a:4a:f8:d9:02:5d:8e:ee:23:8d:17:a5:c8:1b:d6:14:46:6f: bd:d1:f0:a0:89:4e:70:96:5e:35:02:02:f8:2c:ce:44:93:d5: 74:c9:36:e9:c3:ca:ef:d8:ba:1e:e4:b7:cf:dd:cb:f8:b9:3e: f8:a1:12:95:a6:54:42:ff:a1:7b:f7:9a:b1:76:d3:1f:46:5d: 43:4f:8e:af:f1:76:ec:5f:33:91:4d:8c:01:a9:99:f9:7c:de: 5c:4f:69:43:58:ba:fc:17:52:a4:93:f0:5d:9d:23:f3:5c:19: 1b:58:42:d6:b3:88:f6:a2:e5:39:25:25:f4:43:5d:f1:12:20: b0:3e:36:82:f4:7e:e1:30:07:5c:25:63:1f:87:83:3b:8a:b4: ae:5b:20:fd:df:5e:e4:03:ac:30:f6:58:84:1e:e5:02:82:ff: 21:ae:55:85:9d:39:4d:8c:a6:73:32:9f:c6:11:36:a1:04:17: ca:b3:01:b7:9a:e6:ef:bb:77:cc:0f:c7:0e:e9:24:93:db:30: 54:3a:d0:d4:1e:d3:9c:33:da:27:af:9c:b4:08:1c:02:4d:61: a5:ef:a2:1b:22:d9:7a:19:73:df:25:06:2b:39:23:fb:01:14: 72:ac:97:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCqowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDY4QTExMTAvBgNVBAUTKDE1MkEzQjQzMjI1Q0ZBMkM1RjhERTI3QTlBNjg5M0Qz QjIzRjVERTMwHhcNMjUwNDA0MTkzOTE0WhcNMjUwNDExMTkzOTE0WjAYMRYwFAYD VQQDEw02N2YwMzU2Mi0xZTljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0C7QP/metDl/4s7sryGaOxn84z7Uy7dfz+mXIJFgd/yzbbrPkFbClsfN39Lu yuHtBxlQgTkJoQJSYwg4SloqVfUhJC0K7NwFvTD5MnxfkF4jC5ZrLFfwcbYUiFBw Z/wIYGvr0P673OHWn5NMP/mjx2i/RddLkGRKup9qp3cxoJdmZTkKuKu05jjfA/Ko +eCiJsmgb88+nBjU0r0+Q+4CUgLhJbtQBIpED8ruMSTdEII93dGc/m8wQ2266CY4 J0JZ9x4CSV+qip7YzTPXB7fA8Li00X5d4dk2jn7uKIkreQ5zqN3Ra8JZVBoMitMl 5Bxq5v0WX9Ymhood50tq/ygP2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLaBDTne ykiXR7TivFhADxzTpXaJMB8GA1UdIwQYMBaAFBUqO0MiXPosX43ieppok9OyP13j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjhBMS8yRTFDQzY0NDUx MTgxMUVBOTM4N0M2NkJDNEY5QUUwMi9GU283UXlKYy1peGZqZUo2bW1pVDA3SV9Y ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZTbzdReUpjLWl4ZmplSjZtbWlUMDdJX1hlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NjhBMS8yRTFDQzY0NDUxMTgxMUVBOTM4N0M2NkJDNEY5QUUwMi9GU283UXlKYy1p eGZqZUo2bW1pVDA3SV9YZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHOVYJt5YJlW5X4ARlroPmKhpaSvjZAl2O7iONF6XIG9YURm+90fCg iU5wll41AgL4LM5Ek9V0yTbpw8rv2Loe5LfP3cv4uT74oRKVplRC/6F795qxdtMf Rl1DT46v8XbsXzORTYwBqZn5fN5cT2lDWLr8F1Kkk/BdnSPzXBkbWELWs4j2ouU5 JSX0Q13xEiCwPjaC9H7hMAdcJWMfh4M7irSuWyD9317kA6ww9liEHuUCgv8hrlWF nTlNjKZzMp/GETahBBfKswG3mubvu3fMD8cO6SST2zBUOtDUHtOcM9onr5y0CBwC TWGl76IbItl6GXPfJQYrOSP7ARRyrJes -----END CERTIFICATE-----Generated at Fri Apr 4 22:22:06 2025 by rpki-client