$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2131/BE4A6CD07D7211EB8CB63665C4F9AE02/FAfjHIfhFiRZ2Dw660iMl1qcI_E.mft File: FAfjHIfhFiRZ2Dw660iMl1qcI_E.mft (raw, json) Hash identifier: haShyogpNkEM5O9xYylg/4s1xl81cF2c2QBwtMadkN4= Subject key identifier: D8:24:7E:0F:48:49:20:12:97:FE:46:AA:93:02:E8:55:B5:27:CF:FD Authority key identifier: 14:07:E3:1C:87:E1:16:24:59:D8:3C:3A:EB:48:8C:97:5A:9C:23:F1 Certificate issuer: /CN=A91B2131/serialNumber=1407E31C87E1162459D83C3AEB488C975A9C23F1 Certificate serial: 0651 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FAfjHIfhFiRZ2Dw660iMl1qcI_E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2131/BE4A6CD07D7211EB8CB63665C4F9AE02/FAfjHIfhFiRZ2Dw660iMl1qcI_E.mft Manifest number: 064C Signing time: Fri 28 Mar 2025 22:44:58 +0000 Manifest this update: Fri 28 Mar 2025 22:44:57 +0000 Manifest next update: Fri 04 Apr 2025 22:44:57 +0000 Files and hashes: 1: FAfjHIfhFiRZ2Dw660iMl1qcI_E.crl (hash: rgZDJP1/CUt1Rexdg/PS8B3K/SvP36115MIp9SPNeE4=) 2: D240E2EE814D11EBB1CE367FC4F9AE02.roa (hash: Qo5xdUrtF15zNycYs0WHF7Yan+dHCZcWYP9fO9pL8S4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2131/BE4A6CD07D7211EB8CB63665C4F9AE02/FAfjHIfhFiRZ2Dw660iMl1qcI_E.crl rsync://rpki.apnic.net/member_repository/A91B2131/BE4A6CD07D7211EB8CB63665C4F9AE02/FAfjHIfhFiRZ2Dw660iMl1qcI_E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FAfjHIfhFiRZ2Dw660iMl1qcI_E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 22:44:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1617 (0x651) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2131 Validity Not Before: Mar 28 22:44:57 2025 GMT Not After : Apr 4 22:44:57 2025 GMT Subject: CN=67e7266a-c9fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:a1:06:dd:5f:54:dc:5c:38:d9:bf:34:c3:c4: f8:76:6d:42:ef:fd:4a:3c:99:38:d5:a1:72:1f:51: 9e:ba:39:1d:d0:8c:72:b0:41:21:e8:af:d9:e3:e4: 7e:ed:72:bb:56:c3:ec:cf:60:4a:41:39:17:52:4d: a5:64:92:d8:cc:48:bd:0a:9c:a9:c6:17:24:94:0b: a4:35:59:0b:52:35:8c:b0:b1:b6:76:74:f4:79:e6: c7:f9:9e:9f:84:a3:78:81:df:59:2f:91:65:58:47: 65:cc:94:b9:f1:c6:5a:bf:9c:6a:45:26:5a:f6:f9: 3b:6e:51:f2:52:ad:24:46:8e:0e:c9:9c:57:30:3a: 12:df:34:df:d4:63:44:ae:12:c9:1d:40:a7:8e:d3: 39:3d:91:c5:23:0d:1e:7c:4a:69:a7:b1:ec:05:1e: f2:07:cd:8d:90:37:12:b5:86:c0:ee:60:0a:48:2a: 06:42:fd:fa:50:9b:f2:88:c2:4e:c7:0f:87:9d:dd: 8c:1c:a2:fa:58:32:3b:d1:e5:4f:11:a3:d4:81:63: 73:94:dc:ea:a8:18:fd:80:5e:21:32:6e:50:b2:31: 39:d0:2d:9c:23:e3:08:46:2c:3c:b8:58:bf:1c:0d: a5:c0:69:a5:de:6a:e2:8b:dc:0e:ad:fa:1c:be:2b: f9:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:24:7E:0F:48:49:20:12:97:FE:46:AA:93:02:E8:55:B5:27:CF:FD X509v3 Authority Key Identifier: keyid:14:07:E3:1C:87:E1:16:24:59:D8:3C:3A:EB:48:8C:97:5A:9C:23:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2131/BE4A6CD07D7211EB8CB63665C4F9AE02/FAfjHIfhFiRZ2Dw660iMl1qcI_E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FAfjHIfhFiRZ2Dw660iMl1qcI_E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2131/BE4A6CD07D7211EB8CB63665C4F9AE02/FAfjHIfhFiRZ2Dw660iMl1qcI_E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:d8:57:ef:20:3a:dd:79:5b:e9:84:9b:98:ae:1d:12:19:3c: bd:61:f5:62:79:a3:33:3e:08:23:51:18:ad:95:28:bb:43:4d: d6:40:60:d0:05:ba:f7:32:a2:ac:ef:0d:35:a4:f3:b1:e8:b0: 05:b0:77:db:47:d5:ae:c5:9d:22:3c:12:b8:b6:87:de:e9:02: b7:68:dd:df:ec:57:7c:fd:75:7f:82:4a:7e:a6:05:e7:de:5d: 31:65:ff:8a:3f:76:78:f1:9c:75:8c:3c:ed:e4:3f:80:61:ad: 96:d0:e1:94:9f:e4:ab:e5:ff:fa:67:88:b5:55:97:f2:bb:1a: 79:d1:5f:fc:0a:fe:80:ae:fe:c7:82:0b:0c:b7:86:da:59:41: 8a:db:f6:fb:4c:50:9f:e7:ae:40:2b:d3:26:0e:98:7a:e7:f7: bc:e3:eb:5c:af:22:ff:7c:6a:aa:04:4b:4c:1d:5e:a4:47:d0: 5a:62:a1:c3:44:6d:3e:80:f4:1b:48:a3:be:bd:07:a2:00:13: 1b:39:c8:98:56:c3:84:e9:a2:99:a6:16:4c:2a:10:72:06:a1: 97:97:be:2a:06:82:fc:86:dc:62:40:e2:cb:95:5e:e0:1e:64: ef:6f:71:2a:78:08:4a:88:26:0e:97:96:da:5e:e3:e3:17:cd: ae:f4:9a:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjIxMzExMTAvBgNVBAUTKDE0MDdFMzFDODdFMTE2MjQ1OUQ4M0MzQUVCNDg4Qzk3 NUE5QzIzRjEwHhcNMjUwMzI4MjI0NDU3WhcNMjUwNDA0MjI0NDU3WjAYMRYwFAYD VQQDEw02N2U3MjY2YS1jOWZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+qEG3V9U3Fw42b80w8T4dm1C7/1KPJk41aFyH1Geujkd0IxysEEh6K/Z4+R+ 7XK7VsPsz2BKQTkXUk2lZJLYzEi9CpypxhcklAukNVkLUjWMsLG2dnT0eebH+Z6f hKN4gd9ZL5FlWEdlzJS58cZav5xqRSZa9vk7blHyUq0kRo4OyZxXMDoS3zTf1GNE rhLJHUCnjtM5PZHFIw0efEppp7HsBR7yB82NkDcStYbA7mAKSCoGQv36UJvyiMJO xw+Hnd2MHKL6WDI70eVPEaPUgWNzlNzqqBj9gF4hMm5QsjE50C2cI+MIRiw8uFi/ HA2lwGml3mrii9wOrfocviv54wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNgkfg9I SSASl/5GqpMC6FW1J8/9MB8GA1UdIwQYMBaAFBQH4xyH4RYkWdg8OutIjJdanCPx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjEzMS9CRTRBNkNEMDdE NzIxMUVCOENCNjM2NjVDNEY5QUUwMi9GQWZqSElmaEZpUloyRHc2NjBpTWwxcWNJ X0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZBZmpISWZoRmlSWjJEdzY2MGlNbDFxY0lfRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjEzMS9CRTRBNkNEMDdENzIxMUVCOENCNjM2NjVDNEY5QUUwMi9GQWZqSElmaEZp UloyRHc2NjBpTWwxcWNJX0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAG2FfvIDrdeVvphJuYrh0SGTy9YfVieaMzPggjURitlSi7Q03WQGDQ Bbr3MqKs7w01pPOx6LAFsHfbR9WuxZ0iPBK4tofe6QK3aN3f7Fd8/XV/gkp+pgXn 3l0xZf+KP3Z48Zx1jDzt5D+AYa2W0OGUn+Sr5f/6Z4i1VZfyuxp50V/8Cv6Arv7H ggsMt4baWUGK2/b7TFCf565AK9MmDph65/e84+tcryL/fGqqBEtMHV6kR9BaYqHD RG0+gPQbSKO+vQeiABMbOciYVsOE6aKZphZMKhByBqGXl74qBoL8htxiQOLLlV7g HmTvb3EqeAhKiCYOl5baXuPjF82u9JrY -----END CERTIFICATE-----Generated at Fri Apr 4 21:58:29 2025 by rpki-client