$ rpki-client -vvf rpki.apnic.net/member_repository/A916B0EA/4D8E49B00B7411EAA584001CC4F9AE02/Fd95oAc5vDm3F4kllY3-6ZvgDUI.mft File: Fd95oAc5vDm3F4kllY3-6ZvgDUI.mft (raw, json) Hash identifier: IrHaAf/tLG/WDJg/bKxyurlLCLiQHDXYDjUi320ueOw= Subject key identifier: 40:7F:C7:BF:24:1E:26:40:99:F3:C8:83:D8:8E:C4:D7:43:F2:20:C2 Authority key identifier: 15:DF:79:A0:07:39:BC:39:B7:17:89:25:95:8D:FE:E9:9B:E0:0D:42 Certificate issuer: /CN=A916B0EA/serialNumber=15DF79A00739BC39B7178925958DFEE99BE00D42 Certificate serial: 080E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fd95oAc5vDm3F4kllY3-6ZvgDUI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B0EA/4D8E49B00B7411EAA584001CC4F9AE02/Fd95oAc5vDm3F4kllY3-6ZvgDUI.mft Manifest number: 140F Signing time: Mon 14 Apr 2025 18:33:47 +0000 Manifest this update: Mon 14 Apr 2025 18:33:47 +0000 Manifest next update: Mon 21 Apr 2025 18:33:47 +0000 Files and hashes: 1: Fd95oAc5vDm3F4kllY3-6ZvgDUI.crl (hash: 91XezcBsqzUD/r0KeO7xEOtPMW1aN3z41/enAA4kZAc=) 2: 687DF56A8E2211EEB23A0C6CC4F9AE02.roa (hash: 8hNFjt6860Ps194YD3tqqE18VQShBpsbalp5nYV8/mo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B0EA/4D8E49B00B7411EAA584001CC4F9AE02/Fd95oAc5vDm3F4kllY3-6ZvgDUI.crl rsync://rpki.apnic.net/member_repository/A916B0EA/4D8E49B00B7411EAA584001CC4F9AE02/Fd95oAc5vDm3F4kllY3-6ZvgDUI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fd95oAc5vDm3F4kllY3-6ZvgDUI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 21 Apr 2025 18:33:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2062 (0x80e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B0EA, serialNumber=15DF79A00739BC39B7178925958DFEE99BE00D42 Validity Not Before: Apr 14 18:33:47 2025 GMT Not After : Apr 21 18:33:47 2025 GMT Subject: CN=67fd550b-6c25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:ad:22:8d:78:f2:62:47:da:ba:84:0b:57:cf: ed:1f:91:f6:b4:c5:26:c6:f4:01:10:c5:31:f5:ac: 0f:e2:7e:fd:95:9a:99:30:53:83:ab:dc:1b:73:da: 12:ab:14:2e:0d:b1:b6:76:f6:ef:0a:96:36:1f:e1: ab:45:ce:a7:c5:de:42:27:da:7f:15:8e:3e:fa:a7: 43:f9:a5:71:0e:1a:de:57:83:b4:da:8b:5f:e6:69: 18:f1:60:4d:37:37:dc:91:d4:e5:d5:fd:ef:ba:94: fb:2f:4b:9e:c8:c5:80:8c:eb:a7:9d:9d:21:b8:19: bb:75:22:fb:93:f8:55:e2:fb:c7:07:8d:b3:d6:2f: ab:83:6f:77:ab:97:f4:e2:1f:5a:09:2e:0e:10:29: ac:61:a4:76:f0:64:e8:05:eb:b2:9c:84:2c:ae:eb: 35:5d:82:f2:98:de:6d:b9:d5:0c:f3:25:3a:b8:a1: 0f:6d:3b:12:71:10:3d:79:31:75:03:ec:79:d3:8d: 43:a1:57:b9:55:fa:4f:6a:8f:81:06:78:ae:e9:30: bd:eb:b4:b0:78:65:2a:74:da:0d:02:db:34:be:e5: cc:69:0a:63:0d:63:e4:3a:fc:b4:12:c6:39:c5:8a: f3:d1:6d:9a:2f:fc:7d:e6:51:91:83:6f:e2:60:31: 99:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:7F:C7:BF:24:1E:26:40:99:F3:C8:83:D8:8E:C4:D7:43:F2:20:C2 X509v3 Authority Key Identifier: keyid:15:DF:79:A0:07:39:BC:39:B7:17:89:25:95:8D:FE:E9:9B:E0:0D:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B0EA/4D8E49B00B7411EAA584001CC4F9AE02/Fd95oAc5vDm3F4kllY3-6ZvgDUI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fd95oAc5vDm3F4kllY3-6ZvgDUI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B0EA/4D8E49B00B7411EAA584001CC4F9AE02/Fd95oAc5vDm3F4kllY3-6ZvgDUI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:3e:5d:59:ed:4c:7b:d9:3d:c9:82:da:eb:51:4d:f0:1f:8e: 03:84:8d:a4:c4:66:e0:3a:39:21:2d:46:6b:3d:ea:86:0e:25: 23:2a:53:2e:a1:c3:b8:69:82:98:f1:32:95:4a:5a:6a:f0:b4: 16:3a:8c:df:28:7d:0d:06:6a:46:77:55:86:6d:3b:eb:6f:65: 22:ac:3c:42:7b:a9:82:ac:7c:7f:8f:d7:ce:0b:2d:8d:aa:03: 34:8a:bb:69:d5:14:5a:f7:0a:df:17:3f:4a:d2:c9:b6:aa:2a: d2:d5:e6:ca:7d:c0:d9:d1:ee:21:bc:ff:4b:73:fd:c7:25:d0: 24:70:13:21:ca:40:0b:ec:3e:95:b8:22:fa:fa:8e:eb:9e:26: af:92:33:2f:68:07:ee:1c:8d:72:b1:ef:72:08:a2:31:02:62: e9:94:5e:ce:15:59:8f:10:17:76:db:9d:3e:d1:92:8a:95:80: e0:32:98:78:ed:66:3d:ef:33:9e:ea:c3:e6:91:79:74:b2:18: cb:05:cf:88:3c:a6:8b:df:60:a1:96:20:22:42:aa:dd:16:5c: 1c:db:cd:38:d9:43:48:38:66:ff:1b:81:77:8d:6c:8f:81:f7: 3a:25:e5:fb:48:fc:28:1a:ac:21:b9:11:ed:66:22:0e:4d:82: 6a:4d:33:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCA4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIwRUExMTAvBgNVBAUTKDE1REY3OUEwMDczOUJDMzlCNzE3ODkyNTk1OERGRUU5 OUJFMDBENDIwHhcNMjUwNDE0MTgzMzQ3WhcNMjUwNDIxMTgzMzQ3WjAYMRYwFAYD VQQDEw02N2ZkNTUwYi02YzI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA460ijXjyYkfauoQLV8/tH5H2tMUmxvQBEMUx9awP4n79lZqZMFODq9wbc9oS qxQuDbG2dvbvCpY2H+GrRc6nxd5CJ9p/FY4++qdD+aVxDhreV4O02otf5mkY8WBN NzfckdTl1f3vupT7L0ueyMWAjOunnZ0huBm7dSL7k/hV4vvHB42z1i+rg293q5f0 4h9aCS4OECmsYaR28GToBeuynIQsrus1XYLymN5tudUM8yU6uKEPbTsScRA9eTF1 A+x5041DoVe5VfpPao+BBniu6TC967SweGUqdNoNAts0vuXMaQpjDWPkOvy0EsY5 xYrz0W2aL/x95lGRg2/iYDGZAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEB/x78k HiZAmfPIg9iOxNdD8iDCMB8GA1UdIwQYMBaAFBXfeaAHObw5txeJJZWN/umb4A1C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjBFQS80RDhFNDlCMDBC NzQxMUVBQTU4NDAwMUNDNEY5QUUwMi9GZDk1b0FjNXZEbTNGNGtsbFkzLTZadmdE VUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZkOTVvQWM1dkRtM0Y0a2xsWTMtNlp2Z0RVSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjBFQS80RDhFNDlCMDBCNzQxMUVBQTU4NDAwMUNDNEY5QUUwMi9GZDk1b0FjNXZE bTNGNGtsbFkzLTZadmdEVUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxPl1Z7Ux72T3JgtrrUU3wH44DhI2kxGbgOjkhLUZrPeqGDiUjKlMu ocO4aYKY8TKVSlpq8LQWOozfKH0NBmpGd1WGbTvrb2UirDxCe6mCrHx/j9fOCy2N qgM0irtp1RRa9wrfFz9K0sm2qirS1ebKfcDZ0e4hvP9Lc/3HJdAkcBMhykAL7D6V uCL6+o7rniavkjMvaAfuHI1yse9yCKIxAmLplF7OFVmPEBd2250+0ZKKlYDgMph4 7WY97zOe6sPmkXl0shjLBc+IPKaL32ChliAiQqrdFlwc28042UNIOGb/G4F3jWyP gfc6JeX7SPwoGqwhuRHtZiIOTYJqTTOO -----END CERTIFICATE-----Generated at Tue Apr 15 15:26:22 2025 by rpki-client