$ rpki-client -vvf rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/Fh4CKuiXURLudYnUmzFmDKkKBBA.mft File: Fh4CKuiXURLudYnUmzFmDKkKBBA.mft (raw, json) Hash identifier: ZGJbiLRwiBeTxgT9p+dy7Qb39T1JAqVF5eDfDlYRvxc= Subject key identifier: BF:01:A8:7B:BA:F2:F3:11:0D:9B:E6:70:A4:C7:70:E1:24:27:BE:9C Authority key identifier: 16:1E:02:2A:E8:97:51:12:EE:75:89:D4:9B:31:66:0C:A9:0A:04:10 Certificate issuer: /CN=A91A865F/serialNumber=161E022AE8975112EE7589D49B31660CA90A0410 Certificate serial: 0BB9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fh4CKuiXURLudYnUmzFmDKkKBBA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/Fh4CKuiXURLudYnUmzFmDKkKBBA.mft Manifest number: 0BAD Signing time: Thu 10 Apr 2025 18:50:55 +0000 Manifest this update: Thu 10 Apr 2025 18:50:54 +0000 Manifest next update: Thu 17 Apr 2025 18:50:54 +0000 Files and hashes: 1: Fh4CKuiXURLudYnUmzFmDKkKBBA.crl (hash: OZAE5dgeeDyARjkHBEonX66v8dA5BpAsXnivupEfNrg=) 2: 8BB1EB9E1C8A11EABAA73A62C4F9AE02.roa (hash: Ds+NhA319pny+P4IRt5z4T91HtH5A62GJ0ezQK1TtfA=) 3: 8AAF803A1C8A11EABAA73A62C4F9AE02.roa (hash: aCDVqL+/mM6LYQbOqfYbo7QgHkUrD6MbyKhMbVWHThI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/Fh4CKuiXURLudYnUmzFmDKkKBBA.crl rsync://rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/Fh4CKuiXURLudYnUmzFmDKkKBBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fh4CKuiXURLudYnUmzFmDKkKBBA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 18:50:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3001 (0xbb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A865F, serialNumber=161E022AE8975112EE7589D49B31660CA90A0410 Validity Not Before: Apr 10 18:50:54 2025 GMT Not After : Apr 17 18:50:54 2025 GMT Subject: CN=67f8130e-00ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:1d:13:c2:a0:cb:5d:5a:f7:f8:40:33:29:a7: 6f:8b:83:09:b5:64:77:77:65:a6:9e:a2:ec:a1:92: 8e:ae:c4:78:2c:19:f8:1c:e4:87:8b:9c:f6:c3:54: b8:8a:d8:ec:7e:db:a7:75:48:93:54:70:5a:9e:f1: dc:c9:41:74:6b:31:b9:f1:1b:b5:d1:91:0a:55:aa: c8:7d:97:9d:19:ca:11:64:2a:d9:3e:33:c6:2f:b0: 06:f1:d4:ce:23:14:48:79:68:3d:2e:e0:f5:0b:55: d5:27:08:52:78:ef:88:3f:ac:43:b7:81:db:d4:96: 9c:d2:f7:34:76:1e:72:13:df:b4:92:ca:c1:fc:e2: 13:68:94:a8:50:92:01:57:fe:f3:81:9c:e6:29:72: 80:41:06:0e:f0:d5:1c:c8:1a:ce:87:1a:4e:22:67: 92:b4:b8:90:a9:03:ea:0d:be:0b:17:65:c5:76:ee: 09:da:11:be:81:37:15:aa:fe:d5:cb:8d:c9:2a:12: cb:88:17:2c:33:0e:d8:09:ce:1a:eb:0f:05:e6:d9: c0:b1:50:1f:08:a2:0d:19:67:4b:70:13:fa:e3:f9: 79:fa:d9:c1:96:1c:93:cd:07:88:a5:58:5e:e9:bf: c3:95:fc:8a:f7:4d:d5:fb:b5:48:0e:b4:50:4f:02: f8:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:01:A8:7B:BA:F2:F3:11:0D:9B:E6:70:A4:C7:70:E1:24:27:BE:9C X509v3 Authority Key Identifier: keyid:16:1E:02:2A:E8:97:51:12:EE:75:89:D4:9B:31:66:0C:A9:0A:04:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/Fh4CKuiXURLudYnUmzFmDKkKBBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fh4CKuiXURLudYnUmzFmDKkKBBA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/Fh4CKuiXURLudYnUmzFmDKkKBBA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:83:48:48:0f:b4:4b:d9:9c:20:c3:ef:90:d1:ac:cf:a4:38: 74:48:c8:23:57:76:df:0c:ab:9a:76:16:71:a8:96:79:61:9d: 4b:bb:cd:3f:f3:22:be:2b:a3:2c:06:6a:2e:82:72:f2:e3:79: 10:7e:69:a4:80:1f:b7:a3:fb:82:f5:ce:c4:5d:58:34:7b:32: 82:7d:e9:1b:4b:82:a1:84:89:96:55:4e:24:6a:eb:11:5e:35: 6e:c4:19:85:db:be:77:61:04:24:6d:bc:ee:30:f4:7d:f8:b8: 0b:cb:43:c3:38:33:c5:81:46:ba:49:ce:c6:29:b1:cb:0d:f4: 64:6f:43:60:de:46:56:ef:6d:cb:b7:f1:71:4a:f2:d7:04:34: 60:f6:2b:97:07:3a:46:4a:a3:a5:b5:b4:ed:e1:7f:73:bf:19: c6:30:8e:43:d0:ed:24:20:2d:6e:9b:62:7d:f6:93:95:94:8e: 41:bf:69:2b:11:ee:38:e9:34:06:62:e1:5f:b6:39:a3:f0:7a: cc:a8:34:78:bb:5d:c0:30:f4:8a:f1:f2:8a:ab:1e:e8:6a:77: 7e:bc:66:92:50:15:a5:51:33:e5:cc:3c:30:64:b7:3d:f9:6e: f8:52:39:b5:06:85:a2:41:20:87:d7:6e:4a:e1:bd:a6:c0:96: 44:7e:0d:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC7kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg2NUYxMTAvBgNVBAUTKDE2MUUwMjJBRTg5NzUxMTJFRTc1ODlENDlCMzE2NjBD QTkwQTA0MTAwHhcNMjUwNDEwMTg1MDU0WhcNMjUwNDE3MTg1MDU0WjAYMRYwFAYD VQQDEw02N2Y4MTMwZS0wMGVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7x0TwqDLXVr3+EAzKadvi4MJtWR3d2WmnqLsoZKOrsR4LBn4HOSHi5z2w1S4 itjsftundUiTVHBanvHcyUF0azG58Ru10ZEKVarIfZedGcoRZCrZPjPGL7AG8dTO IxRIeWg9LuD1C1XVJwhSeO+IP6xDt4Hb1Jac0vc0dh5yE9+0ksrB/OITaJSoUJIB V/7zgZzmKXKAQQYO8NUcyBrOhxpOImeStLiQqQPqDb4LF2XFdu4J2hG+gTcVqv7V y43JKhLLiBcsMw7YCc4a6w8F5tnAsVAfCKINGWdLcBP64/l5+tnBlhyTzQeIpVhe 6b/DlfyK903V+7VIDrRQTwL49QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL8BqHu6 8vMRDZvmcKTHcOEkJ76cMB8GA1UdIwQYMBaAFBYeAirol1ES7nWJ1JsxZgypCgQQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODY1Ri9CRjk2NkU0QTFD ODkxMUVBQTlCOTU3NjFDNEY5QUUwMi9GaDRDS3VpWFVSTHVkWW5VbXpGbURLa0tC QkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZoNENLdWlYVVJMdWRZblVtekZtREtrS0JCQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODY1Ri9CRjk2NkU0QTFDODkxMUVBQTlCOTU3NjFDNEY5QUUwMi9GaDRDS3VpWFVS THVkWW5VbXpGbURLa0tCQkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVg0hID7RL2Zwgw++Q0azPpDh0SMgjV3bfDKuadhZxqJZ5YZ1Lu80/ 8yK+K6MsBmougnLy43kQfmmkgB+3o/uC9c7EXVg0ezKCfekbS4KhhImWVU4kausR XjVuxBmF2753YQQkbbzuMPR9+LgLy0PDODPFgUa6Sc7GKbHLDfRkb0Ng3kZW723L t/FxSvLXBDRg9iuXBzpGSqOltbTt4X9zvxnGMI5D0O0kIC1um2J99pOVlI5Bv2kr Ee446TQGYuFftjmj8HrMqDR4u13AMPSK8fKKqx7oand+vGaSUBWlUTPlzDwwZLc9 +W74Ujm1BoWiQSCH125K4b2mwJZEfg2U -----END CERTIFICATE-----Generated at Sat Apr 12 18:51:55 2025 by rpki-client