$ rpki-client -vvf rpki.apnic.net/member_repository/A918259F/0F8B5910CDAB11EA8837520CC4F9AE02/FnXb2ew5zu2Bu7veQsx4z3oWJ8U.mft File: FnXb2ew5zu2Bu7veQsx4z3oWJ8U.mft (raw, json) Hash identifier: HPPZp2+xv29rSZHfixtqvQokOqB4qyCp5Mg0avJS9KA= Subject key identifier: 70:A9:53:78:53:A3:93:EB:82:87:D9:1C:C4:38:6A:FC:FC:04:EC:16 Authority key identifier: 16:75:DB:D9:EC:39:CE:ED:81:BB:BB:DE:42:CC:78:CF:7A:16:27:C5 Certificate issuer: /CN=A918259F/serialNumber=1675DBD9EC39CEED81BBBBDE42CC78CF7A1627C5 Certificate serial: 082A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FnXb2ew5zu2Bu7veQsx4z3oWJ8U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918259F/0F8B5910CDAB11EA8837520CC4F9AE02/FnXb2ew5zu2Bu7veQsx4z3oWJ8U.mft Manifest number: 0823 Signing time: Sun 06 Apr 2025 20:32:28 +0000 Manifest this update: Sun 06 Apr 2025 20:32:28 +0000 Manifest next update: Sun 13 Apr 2025 20:32:28 +0000 Files and hashes: 1: FnXb2ew5zu2Bu7veQsx4z3oWJ8U.crl (hash: 2t81c20bdjD927ZQ/YwQlgfRWygAFi/kJaFWLTh5Ji4=) 2: 760B9414D50911EB81567986C4F9AE02.roa (hash: b2CWId8MqaA56uaZG0XW2vwyQDys6FvCX/OsZrpS0Q0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918259F/0F8B5910CDAB11EA8837520CC4F9AE02/FnXb2ew5zu2Bu7veQsx4z3oWJ8U.crl rsync://rpki.apnic.net/member_repository/A918259F/0F8B5910CDAB11EA8837520CC4F9AE02/FnXb2ew5zu2Bu7veQsx4z3oWJ8U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FnXb2ew5zu2Bu7veQsx4z3oWJ8U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 20:32:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2090 (0x82a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918259F Validity Not Before: Apr 6 20:32:28 2025 GMT Not After : Apr 13 20:32:28 2025 GMT Subject: CN=67f2e4dc-455a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ae:d0:c0:70:63:c2:43:4b:10:b8:1a:62:90: b5:4e:b7:03:96:c5:95:f0:67:bb:bb:b6:70:9c:47: 1a:cf:eb:38:fe:85:30:b8:37:d8:b0:11:86:85:e6: 35:7f:86:7b:33:ff:7c:84:0f:fd:bc:8f:2b:d3:ba: 23:64:5e:76:65:ff:e0:21:20:87:65:e6:67:cd:ac: 36:53:47:23:a3:5a:e8:0c:44:bf:d3:79:bc:4b:eb: 08:f7:cc:1d:29:92:45:ae:5f:c4:f5:aa:2b:1f:41: fc:b7:55:ce:f0:52:2e:89:05:17:e4:3c:50:8e:1e: 93:25:04:70:77:94:ef:c0:62:a6:3b:eb:04:1f:30: d4:c7:22:1d:cb:b4:fa:21:60:16:7a:95:6e:f0:a2: 03:c9:82:37:cf:60:00:4d:08:dd:25:4a:13:18:36: 39:b1:36:ef:0a:e4:e4:95:58:d3:45:57:0a:b8:2d: df:1e:71:49:d9:ac:87:54:03:12:e0:6c:8f:a6:8d: 11:fa:90:31:03:ed:aa:5c:6b:2c:c0:dd:ea:d7:26: 08:75:a2:de:49:03:24:d0:5d:3f:7e:dd:d9:65:36: 51:28:22:80:65:ad:fe:42:e2:1f:44:9f:07:67:a0: 3c:1b:dd:09:d5:0a:c3:54:a1:d5:bb:75:b2:50:c1: de:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:A9:53:78:53:A3:93:EB:82:87:D9:1C:C4:38:6A:FC:FC:04:EC:16 X509v3 Authority Key Identifier: keyid:16:75:DB:D9:EC:39:CE:ED:81:BB:BB:DE:42:CC:78:CF:7A:16:27:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918259F/0F8B5910CDAB11EA8837520CC4F9AE02/FnXb2ew5zu2Bu7veQsx4z3oWJ8U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FnXb2ew5zu2Bu7veQsx4z3oWJ8U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918259F/0F8B5910CDAB11EA8837520CC4F9AE02/FnXb2ew5zu2Bu7veQsx4z3oWJ8U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:32:8d:2d:b3:76:6f:db:da:b4:27:21:f0:20:58:5b:30:2d: 6e:88:a5:ce:3d:46:3c:87:f2:22:44:f4:8a:6c:5a:8c:01:4e: d5:99:90:e3:b9:9e:7c:12:68:72:fd:c2:6b:63:e8:4a:bc:a8: 05:5a:dd:9d:5c:6d:d4:42:91:61:53:e0:57:2f:60:19:40:ba: 4c:9d:b6:8a:b1:a9:b7:e7:15:8d:c7:e5:43:a2:b1:e5:1d:73: 4b:09:c2:7b:8b:92:b8:05:bf:34:f2:fb:03:b8:20:c2:a0:3d: 11:d8:14:c6:da:94:16:5e:65:f1:e3:40:65:89:9e:be:45:ac: 3f:37:15:fc:4b:66:e7:36:52:89:12:66:af:48:d1:a3:f8:7a: f6:a4:5f:52:40:c1:e1:6d:91:46:88:d3:90:71:80:88:bd:60: b3:9e:12:da:07:5e:62:06:53:78:93:ec:98:27:e2:b0:f4:e0: 79:90:f3:75:f1:96:86:34:52:03:f3:6b:b5:2f:7a:c0:60:1d: d2:29:c3:35:0a:6b:69:0d:82:5e:1b:8c:80:c4:b6:f4:5f:c0: 8a:c0:78:bc:1e:db:89:43:bc:23:22:dd:8f:04:8c:f6:86:7f: 74:94:70:85:33:e5:85:c4:54:d1:01:b7:00:ad:b0:90:8c:90: 4d:e6:57:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODI1OUYxMTAvBgNVBAUTKDE2NzVEQkQ5RUMzOUNFRUQ4MUJCQkJERTQyQ0M3OENG N0ExNjI3QzUwHhcNMjUwNDA2MjAzMjI4WhcNMjUwNDEzMjAzMjI4WjAYMRYwFAYD VQQDEw02N2YyZTRkYy00NTVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuq7QwHBjwkNLELgaYpC1TrcDlsWV8Ge7u7ZwnEcaz+s4/oUwuDfYsBGGheY1 f4Z7M/98hA/9vI8r07ojZF52Zf/gISCHZeZnzaw2U0cjo1roDES/03m8S+sI98wd KZJFrl/E9aorH0H8t1XO8FIuiQUX5DxQjh6TJQRwd5TvwGKmO+sEHzDUxyIdy7T6 IWAWepVu8KIDyYI3z2AATQjdJUoTGDY5sTbvCuTklVjTRVcKuC3fHnFJ2ayHVAMS 4GyPpo0R+pAxA+2qXGsswN3q1yYIdaLeSQMk0F0/ft3ZZTZRKCKAZa3+QuIfRJ8H Z6A8G90J1QrDVKHVu3WyUMHenQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHCpU3hT o5PrgofZHMQ4avz8BOwWMB8GA1UdIwQYMBaAFBZ129nsOc7tgbu73kLMeM96FifF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjU5Ri8wRjhCNTkxMENE QUIxMUVBODgzNzUyMENDNEY5QUUwMi9GblhiMmV3NXp1MkJ1N3ZlUXN4NHozb1dK OFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZuWGIyZXc1enUyQnU3dmVRc3g0ejNvV0o4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjU5Ri8wRjhCNTkxMENEQUIxMUVBODgzNzUyMENDNEY5QUUwMi9GblhiMmV3NXp1 MkJ1N3ZlUXN4NHozb1dKOFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7Mo0ts3Zv29q0JyHwIFhbMC1uiKXOPUY8h/IiRPSKbFqMAU7VmZDj uZ58Emhy/cJrY+hKvKgFWt2dXG3UQpFhU+BXL2AZQLpMnbaKsam35xWNx+VDorHl HXNLCcJ7i5K4Bb808vsDuCDCoD0R2BTG2pQWXmXx40BliZ6+Raw/NxX8S2bnNlKJ EmavSNGj+Hr2pF9SQMHhbZFGiNOQcYCIvWCznhLaB15iBlN4k+yYJ+Kw9OB5kPN1 8ZaGNFID82u1L3rAYB3SKcM1CmtpDYJeG4yAxLb0X8CKwHi8HtuJQ7wjIt2PBIz2 hn90lHCFM+WFxFTRAbcArbCQjJBN5ldc -----END CERTIFICATE-----Generated at Tue Apr 8 01:20:15 2025 by rpki-client