$ rpki-client -vvf rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.mft File: FTyY0zE8xk7bmuFaujtUPkgEWZA.mft (raw, json) Hash identifier: dpDRJOCy13nnFGQufXSDAiqP/GhVXEeJJTnnoxTCZeE= Subject key identifier: BD:5F:0E:DE:E5:EE:11:B4:D1:45:7F:62:27:7A:21:CF:B4:41:84:74 Authority key identifier: 15:3C:98:D3:31:3C:C6:4E:DB:9A:E1:5A:BA:3B:54:3E:48:04:59:90 Certificate issuer: /CN=A9167FBA/serialNumber=153C98D3313CC64EDB9AE15ABA3B543E48045990 Certificate serial: 09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTyY0zE8xk7bmuFaujtUPkgEWZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.mft Manifest number: 08 Signing time: Sat 29 Mar 2025 07:29:53 +0000 Manifest this update: Sat 29 Mar 2025 07:29:52 +0000 Manifest next update: Sat 05 Apr 2025 07:29:52 +0000 Files and hashes: 1: FTyY0zE8xk7bmuFaujtUPkgEWZA.crl (hash: eP5pzZ6eRHV0kbasApATgqlY3aDOKBmVMQmkaCVTekw=) 2: F552E6BA05A111F082D17325C4F9AE02.roa (hash: IboM73984syJmuqfIfDKvmHL/HfnKXEhHqhYyaPXIGg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.crl rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTyY0zE8xk7bmuFaujtUPkgEWZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9 (0x9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167FBA Validity Not Before: Mar 29 07:29:52 2025 GMT Not After : Apr 5 07:29:52 2025 GMT Subject: CN=67e7a170-511b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:6e:40:31:50:fb:39:0d:58:bc:98:74:0c:2c: 6a:10:41:3e:f7:09:e9:99:61:a9:e9:c0:ea:87:af: 08:bb:4f:92:38:50:ba:95:0c:e3:31:c3:ba:15:4d: 8f:fe:48:82:18:04:bd:5a:29:f8:2f:97:94:f1:0c: 4a:cd:60:15:1b:44:3e:db:5b:f8:3e:ed:c7:a5:6e: bf:62:c5:2b:79:87:a9:0e:05:12:a1:c2:c1:8c:d4: d8:9c:3e:5c:8e:3b:2c:dd:29:d5:a8:ec:4a:cd:bc: 73:8d:94:2e:37:0b:dd:62:41:fa:53:fb:0f:80:69: cf:c9:e3:8a:77:b9:1d:1f:b0:47:bf:85:21:41:4f: 16:07:c6:33:32:25:1f:72:d1:77:73:f9:1a:98:da: 88:4d:77:0a:49:f6:cb:16:f6:11:68:00:f1:f1:b4: 21:aa:86:de:2a:a1:a1:b6:9b:f6:7c:43:07:4d:fd: 9c:9c:71:ac:e6:85:12:83:55:d0:e1:9a:a1:00:a7: 24:3f:b8:a2:68:b1:83:71:10:15:20:c0:f7:88:b2: b3:74:07:8b:66:22:e4:41:45:18:74:0a:2a:a4:4d: e0:6c:d8:a0:a9:ca:c8:7c:1e:61:5a:1f:f1:40:2d: c2:38:02:8b:c1:aa:be:97:2b:7f:22:29:8c:b1:29: dc:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:5F:0E:DE:E5:EE:11:B4:D1:45:7F:62:27:7A:21:CF:B4:41:84:74 X509v3 Authority Key Identifier: keyid:15:3C:98:D3:31:3C:C6:4E:DB:9A:E1:5A:BA:3B:54:3E:48:04:59:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTyY0zE8xk7bmuFaujtUPkgEWZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:9c:0b:fa:ac:78:b8:5b:3a:a4:38:f1:ef:88:07:49:57:18: f2:d0:37:c6:d2:c2:b2:43:d6:77:9d:55:43:e5:a5:5d:fe:c4: 69:09:06:01:e4:92:f3:e0:97:0a:cd:d2:73:a3:ae:08:7c:e1: 7b:a7:bb:fc:a9:1c:80:c9:ff:dc:1f:7b:97:63:41:88:bc:19: ef:e4:13:46:57:76:aa:ef:76:b3:4d:d7:33:38:95:9d:87:60: c1:fa:9b:c4:d3:fa:13:b0:56:c5:bb:f2:69:66:ab:0f:53:08: a2:95:16:a1:34:d8:39:dd:77:09:a7:66:ed:73:84:31:05:da: 53:3c:d1:34:76:e6:e3:60:3e:d9:8d:9f:a6:45:60:cc:04:16: 8c:b0:9a:94:18:21:54:85:e5:29:79:a0:7b:1b:89:a3:d0:cd: 06:db:76:64:dd:b6:29:a5:9a:70:ef:4a:f6:44:0f:44:75:2a: 33:46:54:05:f0:6b:07:40:93:62:dc:ea:25:60:e1:e0:dd:17: d3:dd:1d:51:92:31:bf:33:44:7a:1c:49:9c:06:16:fc:97:52: 9e:c5:72:4f:55:9d:6a:ee:3f:5e:eb:d9:00:9f:f9:44:53:75: 6c:21:72:44:71:b1:39:5b:04:85:01:5e:aa:bd:84:99:a1:f0: 7a:63:18:2f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 N0ZCQTExMC8GA1UEBRMoMTUzQzk4RDMzMTNDQzY0RURCOUFFMTVBQkEzQjU0M0U0 ODA0NTk5MDAeFw0yNTAzMjkwNzI5NTJaFw0yNTA0MDUwNzI5NTJaMBgxFjAUBgNV BAMTDTY3ZTdhMTcwLTUxMWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1bkAxUPs5DVi8mHQMLGoQQT73CemZYanpwOqHrwi7T5I4ULqVDOMxw7oVTY/+ SIIYBL1aKfgvl5TxDErNYBUbRD7bW/g+7celbr9ixSt5h6kOBRKhwsGM1NicPlyO OyzdKdWo7ErNvHONlC43C91iQfpT+w+Aac/J44p3uR0fsEe/hSFBTxYHxjMyJR9y 0Xdz+RqY2ohNdwpJ9ssW9hFoAPHxtCGqht4qoaG2m/Z8QwdN/ZyccazmhRKDVdDh mqEApyQ/uKJosYNxEBUgwPeIsrN0B4tmIuRBRRh0CiqkTeBs2KCpysh8HmFaH/FA LcI4AovBqr6XK38iKYyxKdwhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUvV8O3uXu EbTRRX9iJ3ohz7RBhHQwHwYDVR0jBBgwFoAUFTyY0zE8xk7bmuFaujtUPkgEWZAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3RkJBLzRCNkUwMEZDMDQ4 RjExRjA4NzJFODU0N0M0RjlBRTAyL0ZUeVkwekU4eGs3Ym11RmF1anRVUGtnRVda QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRlR5WTB6RTh4azdibXVGYXVqdFVQa2dFV1pBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3 RkJBLzRCNkUwMEZDMDQ4RjExRjA4NzJFODU0N0M0RjlBRTAyL0ZUeVkwekU4eGs3 Ym11RmF1anRVUGtnRVdaQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHacC/qseLhbOqQ48e+IB0lXGPLQN8bSwrJD1nedVUPlpV3+xGkJBgHk kvPglwrN0nOjrgh84Xunu/ypHIDJ/9wfe5djQYi8Ge/kE0ZXdqrvdrNN1zM4lZ2H YMH6m8TT+hOwVsW78mlmqw9TCKKVFqE02DnddwmnZu1zhDEF2lM80TR25uNgPtmN n6ZFYMwEFoywmpQYIVSF5Sl5oHsbiaPQzQbbdmTdtimlmnDvSvZED0R1KjNGVAXw awdAk2Lc6iVg4eDdF9PdHVGSMb8zRHocSZwGFvyXUp7Fck9VnWruP17r2QCf+URT dWwhckRxsTlbBIUBXqq9hJmh8HpjGC8= -----END CERTIFICATE-----Generated at Fri Apr 4 22:40:09 2025 by rpki-client