$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft File: FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft (raw, json) Hash identifier: p72+sSGiVR7LVbE08F9RSlIqwT1IT/B27eJuiGoinkg= Subject key identifier: 49:07:A6:0E:E2:8F:04:19:0B:3E:FD:EB:FD:7D:FE:84:4D:C7:9E:F1 Authority key identifier: 14:7A:0E:04:87:11:B6:25:06:B0:9F:08:8A:05:99:2A:3A:31:02:0A Certificate issuer: /CN=A91DEC3C/serialNumber=147A0E048711B62506B09F088A05992A3A31020A Certificate serial: 0187 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FHoOBIcRtiUGsJ8IigWZKjoxAgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft Manifest number: 0184 Signing time: Thu 03 Apr 2025 02:56:11 +0000 Manifest this update: Thu 03 Apr 2025 02:56:10 +0000 Manifest next update: Thu 10 Apr 2025 02:56:10 +0000 Files and hashes: 1: FHoOBIcRtiUGsJ8IigWZKjoxAgo.crl (hash: BVHwDvZydNm/5S5UsGlniJ8CXRfYG+wtqU1sN7Zxm+I=) 2: 5153E9DAC0B911ED99A12312C4F9AE02.roa (hash: pRhFi90u5iaLYPX6g3PP+55Ior11n+chfHkyJHcRUKE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.crl rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FHoOBIcRtiUGsJ8IigWZKjoxAgo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 02:56:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 391 (0x187) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEC3C Validity Not Before: Apr 3 02:56:10 2025 GMT Not After : Apr 10 02:56:10 2025 GMT Subject: CN=67edf8cb-6746 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:db:f8:5a:20:e6:c7:e1:36:26:88:ce:17:1a: 60:fd:95:64:3d:6a:ab:5f:b8:9c:86:75:ff:4b:eb: 50:64:6f:39:18:b9:2a:5d:e5:5c:26:75:26:b7:fd: 14:63:19:42:20:fd:3c:a2:65:2b:db:3d:4b:80:78: 8a:7e:d0:fc:57:43:51:3d:8c:6d:ef:2d:68:86:b9: 1d:38:ab:bb:61:94:ed:f7:ed:73:69:aa:32:e2:c9: 21:6c:e2:cb:dd:68:fa:c0:86:c0:cb:e9:77:99:1d: 70:49:1e:82:75:e9:a6:4c:f5:18:a1:52:6c:f2:ef: 8b:87:09:e3:36:42:57:ac:0b:5a:02:5c:1c:3b:97: 65:d0:8f:02:bb:4b:ba:98:fd:b7:af:5a:b8:80:97: e4:37:9b:50:ac:fb:45:18:6d:e4:07:26:03:e5:db: 2a:4b:d5:be:a1:4f:1d:a0:31:02:3a:c5:a8:47:8f: 2d:cb:00:ce:a8:63:5a:18:c3:e2:79:19:8c:c9:47: 81:f3:95:59:16:13:3b:6f:93:57:39:a0:1f:0d:b6: c4:e4:b2:96:3f:94:ce:2a:9d:75:3a:b4:66:52:8d: 20:7e:9e:6d:e8:b6:bd:cd:7c:51:b7:6e:5b:da:ec: 74:1c:bc:fd:3d:2c:20:7a:eb:88:6e:b0:00:f3:4d: 12:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:07:A6:0E:E2:8F:04:19:0B:3E:FD:EB:FD:7D:FE:84:4D:C7:9E:F1 X509v3 Authority Key Identifier: keyid:14:7A:0E:04:87:11:B6:25:06:B0:9F:08:8A:05:99:2A:3A:31:02:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FHoOBIcRtiUGsJ8IigWZKjoxAgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:e6:4b:98:eb:fa:de:66:31:67:80:fc:dd:26:bb:5b:f2:00: 37:5f:a2:3f:69:fb:f9:a1:5b:14:ec:7b:48:a0:41:63:3d:e4: 68:a7:32:0c:5f:57:f2:26:9b:22:bc:07:4c:64:ca:3e:61:bb: 69:a9:31:2c:35:8f:49:e8:cf:0b:b1:a7:30:30:38:7d:72:7e: be:01:5f:a9:31:bb:d8:91:e3:56:2b:53:5f:ac:41:ad:46:94: ca:a8:e8:de:98:c3:25:b7:80:4d:01:6c:4a:bd:30:ae:5a:f4: 7f:18:3d:65:70:8e:f0:a2:5a:e3:fa:72:70:1a:57:c5:fe:5c: 53:56:d6:c8:70:4a:c0:23:87:78:4e:7e:84:7b:5a:4e:7c:10: f9:56:65:0f:4b:d7:51:7c:97:cc:bf:f1:b0:b6:2f:3f:4a:3c: d5:18:ed:9a:75:1a:4d:9d:e8:06:e5:c8:7d:ae:9b:40:f1:93: 78:5a:8b:7d:7c:24:ac:45:2d:34:f6:a0:d5:ed:25:02:e1:2b: 70:fc:3c:33:b3:b0:4a:c3:51:39:52:f2:92:25:59:13:41:63: dc:fd:2a:44:2e:3b:ca:4a:4e:0e:8c:89:07:70:b7:91:f4:70: bb:af:ab:ba:5c:9c:3c:9b:84:58:63:ff:8c:23:4d:ef:53:ed: b1:81:99:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVDM0MxMTAvBgNVBAUTKDE0N0EwRTA0ODcxMUI2MjUwNkIwOUYwODhBMDU5OTJB M0EzMTAyMEEwHhcNMjUwNDAzMDI1NjEwWhcNMjUwNDEwMDI1NjEwWjAYMRYwFAYD VQQDEw02N2VkZjhjYi02NzQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArNv4WiDmx+E2JojOFxpg/ZVkPWqrX7ichnX/S+tQZG85GLkqXeVcJnUmt/0U YxlCIP08omUr2z1LgHiKftD8V0NRPYxt7y1ohrkdOKu7YZTt9+1zaaoy4skhbOLL 3Wj6wIbAy+l3mR1wSR6CdemmTPUYoVJs8u+LhwnjNkJXrAtaAlwcO5dl0I8Cu0u6 mP23r1q4gJfkN5tQrPtFGG3kByYD5dsqS9W+oU8doDECOsWoR48tywDOqGNaGMPi eRmMyUeB85VZFhM7b5NXOaAfDbbE5LKWP5TOKp11OrRmUo0gfp5t6La9zXxRt25b 2ux0HLz9PSwgeuuIbrAA800SnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEkHpg7i jwQZCz796/19/oRNx57xMB8GA1UdIwQYMBaAFBR6DgSHEbYlBrCfCIoFmSo6MQIK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUMzQy9GNjMwODA5NEMw QjQxMUVEQTc3RjcwMEVDNEY5QUUwMi9GSG9PQkljUnRpVUdzSjhJaWdXWktqb3hB Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZIb09CSWNSdGlVR3NKOElpZ1daS2pveEFnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUMzQy9GNjMwODA5NEMwQjQxMUVEQTc3RjcwMEVDNEY5QUUwMi9GSG9PQkljUnRp VUdzSjhJaWdXWktqb3hBZ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB05kuY6/reZjFngPzdJrtb8gA3X6I/afv5oVsU7HtIoEFjPeRopzIM X1fyJpsivAdMZMo+YbtpqTEsNY9J6M8LsacwMDh9cn6+AV+pMbvYkeNWK1NfrEGt RpTKqOjemMMlt4BNAWxKvTCuWvR/GD1lcI7wolrj+nJwGlfF/lxTVtbIcErAI4d4 Tn6Ee1pOfBD5VmUPS9dRfJfMv/Gwti8/SjzVGO2adRpNnegG5ch9rptA8ZN4Wot9 fCSsRS009qDV7SUC4Stw/Dwzs7BKw1E5UvKSJVkTQWPc/SpELjvKSk4OjIkHcLeR 9HC7r6u6XJw8m4RYY/+MI03vU+2xgZkw -----END CERTIFICATE-----Generated at Fri Apr 4 21:07:39 2025 by rpki-client