$ rpki-client -vvf rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.mft File: fHxDqtDIa183jl18MzKgXeRhJ1A.mft (raw, json) Hash identifier: SaGm8MMtZeEuUPEvYToe5JITUvDlkZg1J0FatOGqFK0= Subject key identifier: 63:36:44:7D:63:5D:9C:AB:0D:EF:2E:90:27:13:E3:69:4F:5F:1B:7F Authority key identifier: 7C:7C:43:AA:D0:C8:6B:5F:37:8E:5D:7C:33:32:A0:5D:E4:61:27:50 Certificate issuer: /CN=A912CA50/serialNumber=7C7C43AAD0C86B5F378E5D7C3332A05DE4612750 Certificate serial: 07E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fHxDqtDIa183jl18MzKgXeRhJ1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.mft Manifest number: 07C8 Signing time: Fri 30 May 2025 21:23:13 +0000 Manifest this update: Fri 30 May 2025 21:23:12 +0000 Manifest next update: Fri 06 Jun 2025 21:23:12 +0000 Files and hashes: 1: fHxDqtDIa183jl18MzKgXeRhJ1A.crl (hash: W3yxBysJcFwiSk9IemJVQ5rnm8/yKlGEdbo9HL76+vo=) 2: E7EBC9003EE411ED905A3415C4F9AE02.roa (hash: 7145KDk6Ud3gJk6wkOrSSRd7V4t35M2bwdrO78shBPE=) 3: E897EA5A3EE411ED905A3415C4F9AE02.roa (hash: wSUtbGUG6qJCjwBZF3AGH+0iZn8vKCgbBj1wQ7GjPys=) 4: 5035F194413211EDAAFCC96EC4F9AE02.roa (hash: qx6Ck2bt18JzwMSwE91OIh9TX6eoj+EFVUwzhl+omAI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.crl rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fHxDqtDIa183jl18MzKgXeRhJ1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:23:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2022 (0x7e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912CA50, serialNumber=7C7C43AAD0C86B5F378E5D7C3332A05DE4612750 Validity Not Before: May 30 21:23:12 2025 GMT Not After : Jun 6 21:23:12 2025 GMT Subject: CN=683a21c1-01bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:0d:f3:9c:e4:9a:54:0c:5a:67:a1:5b:f4:0c: 18:d4:a2:f0:01:02:0c:c8:ea:03:0a:ea:e6:10:17: b8:26:c7:b0:a7:c7:5a:fe:64:f0:6f:4e:b7:fd:2a: ae:fa:0f:fb:1d:2f:40:99:cb:88:0c:c5:a3:98:fc: 2d:fd:91:b5:ca:c4:fd:69:32:8d:33:07:e9:37:3f: 59:95:c3:ce:33:5b:4e:f2:61:6c:ce:48:02:7d:2e: d4:a4:9c:9c:2c:93:cd:14:df:c4:da:07:8f:0f:52: 69:17:23:e6:71:3f:33:15:87:0f:3e:d6:b1:e0:69: cd:f6:a9:54:f1:40:76:7f:00:8a:3c:3f:a7:e7:73: db:8d:8c:3b:21:9d:a9:df:0c:46:17:54:59:4d:d6: db:f9:cf:49:c1:00:86:29:60:72:81:28:56:3f:56: 7e:bb:88:44:7d:a4:9c:02:72:9d:8b:dd:98:08:ad: 49:9c:7f:72:73:74:7c:7e:9a:cd:7e:c4:8e:58:f3: 79:ca:95:bb:06:7f:30:53:38:41:29:f6:1b:32:87: 98:8d:5c:d4:2e:a3:f3:75:c8:62:a4:e7:3f:96:86: 91:cc:4b:b3:27:a1:3a:69:c1:41:b7:ce:c4:27:7b: 0b:54:cf:d0:46:fa:83:da:7b:4e:51:0b:16:c1:83: e6:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:36:44:7D:63:5D:9C:AB:0D:EF:2E:90:27:13:E3:69:4F:5F:1B:7F X509v3 Authority Key Identifier: keyid:7C:7C:43:AA:D0:C8:6B:5F:37:8E:5D:7C:33:32:A0:5D:E4:61:27:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fHxDqtDIa183jl18MzKgXeRhJ1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:6d:78:99:84:dc:ba:29:e0:bb:ff:cb:71:79:3e:b0:19:0b: 5f:81:38:ec:b1:23:23:1e:03:f3:c2:09:04:aa:a5:d4:4b:e8: 09:68:77:73:b0:24:3e:c8:94:49:3c:16:94:cc:4b:4b:1d:d9: 56:08:1e:54:9b:ac:35:7b:1a:da:fc:25:71:9b:b0:88:39:af: bc:51:d6:64:b3:5c:89:8a:1b:fe:e2:03:50:7b:6c:39:66:7f: 46:ac:61:05:1a:a1:00:0a:e5:c6:78:a2:f7:a1:08:3a:3f:ba: 5e:97:8d:a1:59:89:92:32:1f:a8:bf:f4:b1:3b:6c:12:ce:16: 70:a2:f3:4b:5a:9b:54:20:1b:1e:99:92:99:4a:dd:53:20:97: e6:2e:75:a3:da:e2:66:da:6a:39:54:55:47:d2:ee:99:28:a4: 29:3a:ad:95:f2:10:67:b0:6e:15:59:05:1e:64:f1:bc:8a:86: 3a:4f:6b:06:ce:69:f8:aa:4e:21:43:1a:d3:0b:f8:d6:b4:30: 0e:7c:b4:70:8c:20:9c:93:ae:88:9f:16:99:83:a8:ef:67:3c: 2c:fa:d7:21:25:02:87:a0:73:ab:41:f8:ce:e6:2f:72:1b:0a: fc:64:b5:f5:6b:73:f0:e3:0d:22:b3:81:87:4c:4c:67:0c:f2: 96:ef:db:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkNBNTAxMTAvBgNVBAUTKDdDN0M0M0FBRDBDODZCNUYzNzhFNUQ3QzMzMzJBMDVE RTQ2MTI3NTAwHhcNMjUwNTMwMjEyMzEyWhcNMjUwNjA2MjEyMzEyWjAYMRYwFAYD VQQDEw02ODNhMjFjMS0wMWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxQ3znOSaVAxaZ6Fb9AwY1KLwAQIMyOoDCurmEBe4Jsewp8da/mTwb063/Squ +g/7HS9AmcuIDMWjmPwt/ZG1ysT9aTKNMwfpNz9ZlcPOM1tO8mFszkgCfS7UpJyc LJPNFN/E2gePD1JpFyPmcT8zFYcPPtax4GnN9qlU8UB2fwCKPD+n53PbjYw7IZ2p 3wxGF1RZTdbb+c9JwQCGKWBygShWP1Z+u4hEfaScAnKdi92YCK1JnH9yc3R8fprN fsSOWPN5ypW7Bn8wUzhBKfYbMoeYjVzULqPzdchipOc/loaRzEuzJ6E6acFBt87E J3sLVM/QRvqD2ntOUQsWwYPmbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGM2RH1j XZyrDe8ukCcT42lPXxt/MB8GA1UdIwQYMBaAFHx8Q6rQyGtfN45dfDMyoF3kYSdQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQ0E1MC8zODFDMTcxNkZC QTUxMUVBQkJBRUIzNjNDNEY5QUUwMi9mSHhEcXRESWExODNqbDE4TXpLZ1hlUmhK MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZIeERxdERJYTE4M2psMThNektnWGVSaEoxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Q0E1MC8zODFDMTcxNkZCQTUxMUVBQkJBRUIzNjNDNEY5QUUwMi9mSHhEcXRESWEx ODNqbDE4TXpLZ1hlUmhKMUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJbXiZhNy6KeC7/8txeT6wGQtfgTjssSMjHgPzwgkEqqXUS+gJaHdz sCQ+yJRJPBaUzEtLHdlWCB5Um6w1exra/CVxm7CIOa+8UdZks1yJihv+4gNQe2w5 Zn9GrGEFGqEACuXGeKL3oQg6P7pel42hWYmSMh+ov/SxO2wSzhZwovNLWptUIBse mZKZSt1TIJfmLnWj2uJm2mo5VFVH0u6ZKKQpOq2V8hBnsG4VWQUeZPG8ioY6T2sG zmn4qk4hQxrTC/jWtDAOfLRwjCCck66InxaZg6jvZzws+tchJQKHoHOrQfjO5i9y Gwr8ZLX1a3Pw4w0is4GHTExnDPKW79vL -----END CERTIFICATE-----Generated at Sat May 31 17:17:28 2025 by rpki-client