$ rpki-client -vvf rpki.apnic.net/member_repository/A91637DD/DE59F6025E7311EC8BE4CC4EC4F9AE02/fBMe4KgLg01I0X1pZVpbx75mi2o.mft File: fBMe4KgLg01I0X1pZVpbx75mi2o.mft (raw, json) Hash identifier: C+RESoMSlweasC+3EWUe9mBxtSdwvxrypiaPXQnXd1I= Subject key identifier: 30:C9:DB:48:F3:A3:DD:DC:BC:A3:E7:22:5A:F7:8F:5A:F3:02:82:42 Authority key identifier: 7C:13:1E:E0:A8:0B:83:4D:48:D1:7D:69:65:5A:5B:C7:BE:66:8B:6A Certificate issuer: /CN=A91637DD/serialNumber=7C131EE0A80B834D48D17D69655A5BC7BE668B6A Certificate serial: 0432 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fBMe4KgLg01I0X1pZVpbx75mi2o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91637DD/DE59F6025E7311EC8BE4CC4EC4F9AE02/fBMe4KgLg01I0X1pZVpbx75mi2o.mft Manifest number: 0428 Signing time: Mon 07 Apr 2025 00:01:33 +0000 Manifest this update: Mon 07 Apr 2025 00:01:32 +0000 Manifest next update: Mon 14 Apr 2025 00:01:32 +0000 Files and hashes: 1: fBMe4KgLg01I0X1pZVpbx75mi2o.crl (hash: +mOJeFvdWoWqbscAlp2Ozvs7HrmsrVlCTh5785CU6rM=) 2: CA95FB0EA1E611EDABFD7D7FC4F9AE02.roa (hash: N/Z1A4qeNZSHVNwv9cte5LA7OvaaTxHRAR2tgd6keJ0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91637DD/DE59F6025E7311EC8BE4CC4EC4F9AE02/fBMe4KgLg01I0X1pZVpbx75mi2o.crl rsync://rpki.apnic.net/member_repository/A91637DD/DE59F6025E7311EC8BE4CC4EC4F9AE02/fBMe4KgLg01I0X1pZVpbx75mi2o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fBMe4KgLg01I0X1pZVpbx75mi2o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 00:01:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1074 (0x432) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91637DD Validity Not Before: Apr 7 00:01:32 2025 GMT Not After : Apr 14 00:01:32 2025 GMT Subject: CN=67f315dc-36b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:61:b6:78:eb:35:cd:a1:20:73:dc:a8:b5:cf: 30:99:f7:d2:7f:1d:c1:47:8c:bc:52:3a:25:75:9f: 90:f8:02:05:8b:62:69:11:b1:ee:65:da:43:b4:24: 09:2c:c8:38:ce:ef:2e:dc:95:c1:41:fb:73:12:a9: aa:ee:93:d5:af:f7:74:13:89:44:e8:3b:a8:db:79: 95:db:9b:d3:df:1f:a6:39:98:9d:a9:b4:c1:a7:4b: a3:18:7a:8a:e4:bb:d6:3c:4a:b5:e7:56:aa:56:c7: 27:14:4a:a8:89:f1:6c:2c:c1:b6:6c:dc:be:87:1a: a6:90:3f:00:bc:5d:63:68:42:43:7f:fe:c4:98:6e: 1d:44:16:d8:41:74:99:95:ef:c8:2b:21:8c:25:cd: 91:2b:35:9d:06:da:d8:bd:eb:49:e2:2a:6c:c4:cf: 94:66:a9:c1:bc:02:2d:05:99:ef:73:67:9a:e7:65: e6:f4:62:41:6c:6c:10:74:a5:9e:d7:12:1f:49:0a: d3:c0:3c:35:2c:89:9d:e0:d8:a7:62:a7:ed:7c:dc: 5e:54:f4:49:16:f8:ff:c0:f6:61:5e:b1:6e:a2:fd: 4a:c3:7e:1e:bb:20:10:30:7a:af:d7:b7:2b:e4:92: 3b:b8:bc:b2:b2:a4:9a:d9:da:e3:7a:a0:4d:a4:93: ee:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:C9:DB:48:F3:A3:DD:DC:BC:A3:E7:22:5A:F7:8F:5A:F3:02:82:42 X509v3 Authority Key Identifier: keyid:7C:13:1E:E0:A8:0B:83:4D:48:D1:7D:69:65:5A:5B:C7:BE:66:8B:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91637DD/DE59F6025E7311EC8BE4CC4EC4F9AE02/fBMe4KgLg01I0X1pZVpbx75mi2o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fBMe4KgLg01I0X1pZVpbx75mi2o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91637DD/DE59F6025E7311EC8BE4CC4EC4F9AE02/fBMe4KgLg01I0X1pZVpbx75mi2o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:7a:54:3e:a0:1e:4e:47:33:33:6d:73:69:3e:83:cf:c6:db: ed:56:e3:bc:52:b6:32:9f:af:15:f4:6b:40:11:0c:42:b3:88: 33:7f:70:aa:1b:eb:83:4e:46:95:df:bd:e7:c6:56:d8:f8:71: f4:81:31:c6:50:5d:2d:20:e7:0b:e2:89:76:78:d3:a9:56:5d: cd:b0:fb:09:2e:ae:01:e7:1c:53:e1:ed:c5:8e:8a:b3:10:3d: 1c:ee:50:b7:89:52:ab:c1:b0:44:77:f6:12:1d:4d:5b:52:e5: 70:a4:ef:58:49:4d:a9:a8:32:ee:67:9c:32:e4:2b:ed:d6:f0: 0d:de:a3:49:2e:a1:25:99:a8:2f:01:94:ef:1a:e6:17:dc:78: e9:e6:7b:12:88:9a:96:73:30:86:20:a2:3c:d4:36:30:7d:06: 18:d2:7f:14:40:77:43:ab:aa:42:40:1b:4f:e8:b2:78:7f:79: 62:69:61:e2:e1:2a:98:48:12:af:b6:67:0c:45:c3:37:73:fd: be:57:a8:78:c9:55:9f:d9:1b:d3:19:e9:90:33:c4:3f:8f:8e: 9e:4e:15:c5:3a:c1:fe:7b:25:c4:ec:bf:98:3a:c1:a2:58:22: a6:ee:6e:28:6b:ba:a7:69:c5:13:7f:03:19:cd:71:93:e5:88: d5:44:33:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM3REQxMTAvBgNVBAUTKDdDMTMxRUUwQTgwQjgzNEQ0OEQxN0Q2OTY1NUE1QkM3 QkU2NjhCNkEwHhcNMjUwNDA3MDAwMTMyWhcNMjUwNDE0MDAwMTMyWjAYMRYwFAYD VQQDEw02N2YzMTVkYy0zNmI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt2G2eOs1zaEgc9yotc8wmffSfx3BR4y8UjoldZ+Q+AIFi2JpEbHuZdpDtCQJ LMg4zu8u3JXBQftzEqmq7pPVr/d0E4lE6Duo23mV25vT3x+mOZidqbTBp0ujGHqK 5LvWPEq151aqVscnFEqoifFsLMG2bNy+hxqmkD8AvF1jaEJDf/7EmG4dRBbYQXSZ le/IKyGMJc2RKzWdBtrYvetJ4ipsxM+UZqnBvAItBZnvc2ea52Xm9GJBbGwQdKWe 1xIfSQrTwDw1LImd4NinYqftfNxeVPRJFvj/wPZhXrFuov1Kw34euyAQMHqv17cr 5JI7uLyysqSa2drjeqBNpJPu1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDDJ20jz o93cvKPnIlr3j1rzAoJCMB8GA1UdIwQYMBaAFHwTHuCoC4NNSNF9aWVaW8e+Zotq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzdERC9ERTU5RjYwMjVF NzMxMUVDOEJFNENDNEVDNEY5QUUwMi9mQk1lNEtnTGcwMUkwWDFwWlZwYng3NW1p Mm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZCTWU0S2dMZzAxSTBYMXBaVnBieDc1bWkyby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MzdERC9ERTU5RjYwMjVFNzMxMUVDOEJFNENDNEVDNEY5QUUwMi9mQk1lNEtnTGcw MUkwWDFwWlZwYng3NW1pMm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBielQ+oB5ORzMzbXNpPoPPxtvtVuO8UrYyn68V9GtAEQxCs4gzf3Cq G+uDTkaV373nxlbY+HH0gTHGUF0tIOcL4ol2eNOpVl3NsPsJLq4B5xxT4e3Fjoqz ED0c7lC3iVKrwbBEd/YSHU1bUuVwpO9YSU2pqDLuZ5wy5Cvt1vAN3qNJLqElmagv AZTvGuYX3Hjp5nsSiJqWczCGIKI81DYwfQYY0n8UQHdDq6pCQBtP6LJ4f3liaWHi 4SqYSBKvtmcMRcM3c/2+V6h4yVWf2RvTGemQM8Q/j46eThXFOsH+eyXE7L+YOsGi WCKm7m4oa7qnacUTfwMZzXGT5YjVRDMD -----END CERTIFICATE-----Generated at Tue Apr 8 04:11:50 2025 by rpki-client