$ rpki-client -vvf rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.mft File: FOVew0KOPSuk3HHBWeX2Bh8WPG0.mft (raw, json) Hash identifier: /QJTYUXd9B+1WhUiWLZYfavFWA/ShTAJ3pzEL/PmAqs= Subject key identifier: 86:93:60:6C:3A:85:99:CE:D7:C7:EF:D4:2C:5C:77:E3:0E:55:E2:2C Authority key identifier: 14:E5:5E:C3:42:8E:3D:2B:A4:DC:71:C1:59:E5:F6:06:1F:16:3C:6D Certificate issuer: /CN=A916E343/serialNumber=14E55EC3428E3D2BA4DC71C159E5F6061F163C6D Certificate serial: E5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FOVew0KOPSuk3HHBWeX2Bh8WPG0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.mft Manifest number: E5 Signing time: Wed 09 Apr 2025 03:30:21 +0000 Manifest this update: Wed 09 Apr 2025 03:30:20 +0000 Manifest next update: Wed 16 Apr 2025 03:30:20 +0000 Files and hashes: 1: FOVew0KOPSuk3HHBWeX2Bh8WPG0.crl (hash: HfR82nyheg+qx86zDJMF7BoIgFOoYtY4kHQQy3Hu06I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.crl rsync://rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FOVew0KOPSuk3HHBWeX2Bh8WPG0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 03:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 229 (0xe5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916E343 Validity Not Before: Apr 9 03:30:20 2025 GMT Not After : Apr 16 03:30:20 2025 GMT Subject: CN=67f5e9cd-b655 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:9b:f3:fa:1a:03:a7:91:5d:e8:4e:94:85:5c: 4b:28:90:2d:fc:72:4a:df:b3:0d:78:c7:51:c6:78: fd:09:e8:2b:f9:ed:1f:6b:e5:c8:b4:f2:3a:44:27: 41:99:b2:4c:71:ca:aa:d4:85:1c:23:77:54:96:db: 52:81:41:85:b9:ee:c0:47:84:9f:f6:8d:43:9c:b4: cb:1f:05:4c:7c:c7:3a:92:eb:f3:b1:2e:ea:87:ff: 2b:9d:fd:bd:b2:81:8c:cd:ae:46:9f:62:92:4b:33: 05:7b:50:9d:86:fe:57:f6:e8:46:11:39:f9:41:7f: 11:25:18:57:32:4f:4e:50:44:d4:43:2d:31:51:a4: 8f:ad:f7:27:20:99:3d:90:3b:85:7e:27:1a:a4:aa: bd:1a:92:0f:d8:e9:ca:99:5e:07:6e:a2:b1:ef:c5: 2e:1c:62:6f:e8:94:c5:09:c7:e2:a2:e9:ff:7d:9a: 3c:16:c8:ad:75:c1:08:57:8a:45:41:1b:94:d2:bf: 89:e4:f6:3b:f5:0d:0a:2e:0f:f8:9b:16:65:31:b8: a4:5d:50:7a:31:f1:2e:3e:d8:3d:b7:dd:b2:73:3d: 8b:40:57:bd:26:2a:a6:33:e7:9a:fe:65:79:8a:fc: 70:4d:97:c8:eb:22:ea:82:f2:eb:5d:36:1a:d9:68: 6e:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:93:60:6C:3A:85:99:CE:D7:C7:EF:D4:2C:5C:77:E3:0E:55:E2:2C X509v3 Authority Key Identifier: keyid:14:E5:5E:C3:42:8E:3D:2B:A4:DC:71:C1:59:E5:F6:06:1F:16:3C:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FOVew0KOPSuk3HHBWeX2Bh8WPG0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:1c:9e:05:d4:83:9f:3b:da:20:fd:d3:b8:bc:a2:d1:62:41: cc:12:ee:91:06:e0:f8:3d:80:46:e8:40:62:ca:43:e1:eb:55: c1:e8:71:3a:67:19:65:43:06:c5:be:eb:32:e1:2c:bd:03:8c: 64:ac:bf:15:06:57:70:fc:fe:10:23:61:65:cd:d6:7c:13:01: a2:2d:1f:dc:f2:44:48:2a:2c:b7:79:72:22:c7:73:de:f3:97: 72:fb:b9:3a:e2:8d:37:88:6e:57:78:13:60:a9:4e:81:7c:e4: fa:8e:06:9c:09:b3:2c:fb:50:0e:e7:9b:08:09:12:b6:d0:b8: 9b:14:d5:d9:6a:78:c3:63:84:d3:63:8a:0a:93:ef:91:6c:24: b8:14:7f:d2:9a:75:55:f7:ed:17:e2:22:af:73:63:ec:ef:e1: 3f:72:44:bd:b8:b3:0d:e1:48:e6:52:d8:7c:f5:93:ac:0e:07: 6b:df:51:1b:5c:57:a9:55:0c:a1:7a:67:dd:e2:48:d4:d0:e2: 32:ca:0c:56:16:2a:12:06:ac:84:a6:9a:b0:02:60:90:1f:be: 15:cb:b6:74:53:24:c3:79:4c:59:6d:eb:df:2f:2b:c1:57:46: e6:3d:97:89:ce:04:a3:7d:de:ac:52:5e:8a:95:32:f9:99:f8: 24:88:9c:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkUzNDMxMTAvBgNVBAUTKDE0RTU1RUMzNDI4RTNEMkJBNERDNzFDMTU5RTVGNjA2 MUYxNjNDNkQwHhcNMjUwNDA5MDMzMDIwWhcNMjUwNDE2MDMzMDIwWjAYMRYwFAYD VQQDEw02N2Y1ZTljZC1iNjU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApZvz+hoDp5Fd6E6UhVxLKJAt/HJK37MNeMdRxnj9Cegr+e0fa+XItPI6RCdB mbJMccqq1IUcI3dUlttSgUGFue7AR4Sf9o1DnLTLHwVMfMc6kuvzsS7qh/8rnf29 soGMza5Gn2KSSzMFe1Cdhv5X9uhGETn5QX8RJRhXMk9OUETUQy0xUaSPrfcnIJk9 kDuFficapKq9GpIP2OnKmV4HbqKx78UuHGJv6JTFCcfioun/fZo8FsitdcEIV4pF QRuU0r+J5PY79Q0KLg/4mxZlMbikXVB6MfEuPtg9t92ycz2LQFe9JiqmM+ea/mV5 ivxwTZfI6yLqgvLrXTYa2Whu4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIaTYGw6 hZnO18fv1Cxcd+MOVeIsMB8GA1UdIwQYMBaAFBTlXsNCjj0rpNxxwVnl9gYfFjxt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RTM0My8zQUU3MzlBRUI5 N0UxMUVFQjNDMjI5NTVDNEY5QUUwMi9GT1ZldzBLT1BTdWszSEhCV2VYMkJoOFdQ RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0ZPVmV3MEtPUFN1azNISEJXZVgyQmg4V1BHMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RTM0My8zQUU3MzlBRUI5N0UxMUVFQjNDMjI5NTVDNEY5QUUwMi9GT1ZldzBLT1BT dWszSEhCV2VYMkJoOFdQRzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrHJ4F1IOfO9og/dO4vKLRYkHMEu6RBuD4PYBG6EBiykPh61XB6HE6 ZxllQwbFvusy4Sy9A4xkrL8VBldw/P4QI2FlzdZ8EwGiLR/c8kRIKiy3eXIix3Pe 85dy+7k64o03iG5XeBNgqU6BfOT6jgacCbMs+1AO55sICRK20LibFNXZanjDY4TT Y4oKk++RbCS4FH/SmnVV9+0X4iKvc2Ps7+E/ckS9uLMN4UjmUth89ZOsDgdr31Eb XFepVQyhemfd4kjU0OIyygxWFioSBqyEppqwAmCQH74Vy7Z0UyTDeUxZbevfLyvB V0bmPZeJzgSjfd6sUl6KlTL5mfgkiJw8 -----END CERTIFICATE-----Generated at Thu Apr 10 22:09:52 2025 by rpki-client