$ rpki-client -vvf rpki.apnic.net/member_repository/A9149E0D/904E747E390911EAB0DE3F49C4F9AE02/FrgD2zk43LFdxZooyXcZ2h_yClM.mft File: FrgD2zk43LFdxZooyXcZ2h_yClM.mft (raw, json) Hash identifier: jb96TUv4OL0rcWjYzoPkHRRXInN9Q1QP/iU1YsNCD5M= Subject key identifier: E7:B8:5D:FE:D5:AC:F5:28:D2:4B:DF:7E:BC:CA:8D:B2:90:2B:80:20 Authority key identifier: 16:B8:03:DB:39:38:DC:B1:5D:C5:9A:28:C9:77:19:DA:1F:F2:0A:53 Certificate issuer: /CN=A9149E0D/serialNumber=16B803DB3938DCB15DC59A28C97719DA1FF20A53 Certificate serial: 0B48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrgD2zk43LFdxZooyXcZ2h_yClM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149E0D/904E747E390911EAB0DE3F49C4F9AE02/FrgD2zk43LFdxZooyXcZ2h_yClM.mft Manifest number: 0B3D Signing time: Fri 30 May 2025 19:21:51 +0000 Manifest this update: Fri 30 May 2025 19:21:50 +0000 Manifest next update: Fri 06 Jun 2025 19:21:50 +0000 Files and hashes: 1: FrgD2zk43LFdxZooyXcZ2h_yClM.crl (hash: tXtzBKmswrkzRTD2zaZotWZUOleBQX5Lale0OM2ZqXU=) 2: C8FB48F808AF11EBAB78DF6BC4F9AE02.roa (hash: QwMnRtpt+1eT07NMpTybXiiH3v3R91ylnqw2cVEHLL0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149E0D/904E747E390911EAB0DE3F49C4F9AE02/FrgD2zk43LFdxZooyXcZ2h_yClM.crl rsync://rpki.apnic.net/member_repository/A9149E0D/904E747E390911EAB0DE3F49C4F9AE02/FrgD2zk43LFdxZooyXcZ2h_yClM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrgD2zk43LFdxZooyXcZ2h_yClM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:21:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2888 (0xb48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149E0D, serialNumber=16B803DB3938DCB15DC59A28C97719DA1FF20A53 Validity Not Before: May 30 19:21:50 2025 GMT Not After : Jun 6 19:21:50 2025 GMT Subject: CN=683a054f-d9bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:ea:a2:7c:8b:7d:84:17:d8:76:c5:73:1e:bc: 4e:27:19:a6:14:b1:22:6c:6f:b6:72:c5:58:46:42: c7:20:15:c3:8d:3f:ff:cc:08:8b:0b:61:48:c6:20: fb:5b:cb:5a:75:fa:ea:54:36:d3:1c:42:01:db:98: c5:b2:b4:8e:78:f6:bb:7d:fb:96:32:25:c9:d6:cd: ba:e5:4a:ba:84:68:2f:79:c9:f2:3d:24:9b:80:b1: 58:5c:07:5d:b1:e5:d3:90:a6:08:75:74:ea:35:45: 32:62:72:c2:0c:a2:2f:17:61:f0:c3:41:16:bd:70: 9c:c1:b1:e7:34:77:b1:7a:4c:08:9b:48:21:dd:ee: 9a:1e:f7:14:15:9f:df:6b:d5:9e:51:02:14:b9:c7: 5d:81:62:4c:7b:a1:e5:15:ac:e2:71:7d:61:12:62: fe:b2:4c:a8:f3:a3:21:44:58:f4:37:0b:83:07:61: ec:20:68:eb:77:37:27:d5:4a:39:02:66:93:ed:5d: 88:80:3b:84:60:10:19:d8:6a:46:cf:c7:53:26:0b: f6:1b:46:25:e0:c2:0a:bd:59:52:ef:6c:38:f7:5f: 65:71:8e:42:f3:e0:00:1c:fa:b1:11:e0:fe:42:7f: d4:d8:f0:92:fe:3d:12:c5:9d:cb:b3:79:75:bc:97: 9a:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:B8:5D:FE:D5:AC:F5:28:D2:4B:DF:7E:BC:CA:8D:B2:90:2B:80:20 X509v3 Authority Key Identifier: keyid:16:B8:03:DB:39:38:DC:B1:5D:C5:9A:28:C9:77:19:DA:1F:F2:0A:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149E0D/904E747E390911EAB0DE3F49C4F9AE02/FrgD2zk43LFdxZooyXcZ2h_yClM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrgD2zk43LFdxZooyXcZ2h_yClM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149E0D/904E747E390911EAB0DE3F49C4F9AE02/FrgD2zk43LFdxZooyXcZ2h_yClM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:05:39:02:52:93:57:7b:80:29:e9:72:61:ba:14:ac:a8:f9: 59:da:21:96:2b:63:fa:73:0e:e0:80:b8:70:67:65:cb:c3:e6: 50:6a:da:26:c8:89:c0:d9:75:6c:97:96:11:86:bf:66:a9:70: 09:b0:ea:79:cc:15:e0:dc:9b:33:89:21:4b:7a:fc:b5:7e:cd: 3b:51:a9:d6:54:ff:4a:22:32:98:fb:ec:4c:e9:cf:cd:cc:f5: 0c:72:47:5b:ac:e1:9a:69:07:62:4c:ec:ed:18:49:ec:da:ac: 16:3b:1e:83:71:9d:76:71:84:e0:63:0d:45:1f:03:99:9c:4a: 1c:d7:28:75:69:24:ab:42:7d:30:9e:09:8d:90:0f:d7:34:9c: e4:38:8d:a1:7d:76:87:c5:09:f9:e0:98:a6:5f:7b:bd:f5:45: 59:6f:ed:5e:27:ed:0f:d0:4d:c5:2c:97:ff:5c:0c:64:76:65: 50:e8:61:c1:7c:81:63:31:fd:4a:a3:8b:cb:05:92:7f:c9:25: ff:63:88:b2:5f:ef:e7:75:a2:86:49:55:3d:49:14:83:01:e0: c5:cc:77:5b:e2:8c:21:a0:60:fa:ff:06:7c:c0:71:bb:64:cd: a1:2b:f9:f9:28:68:61:7e:0c:ac:30:2f:42:ef:cf:9c:94:df: 6e:3e:d2:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC0gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlFMEQxMTAvBgNVBAUTKDE2QjgwM0RCMzkzOERDQjE1REM1OUEyOEM5NzcxOURB MUZGMjBBNTMwHhcNMjUwNTMwMTkyMTUwWhcNMjUwNjA2MTkyMTUwWjAYMRYwFAYD VQQDEw02ODNhMDU0Zi1kOWJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzeqifIt9hBfYdsVzHrxOJxmmFLEibG+2csVYRkLHIBXDjT//zAiLC2FIxiD7 W8tadfrqVDbTHEIB25jFsrSOePa7ffuWMiXJ1s265Uq6hGgvecnyPSSbgLFYXAdd seXTkKYIdXTqNUUyYnLCDKIvF2Hww0EWvXCcwbHnNHexekwIm0gh3e6aHvcUFZ/f a9WeUQIUucddgWJMe6HlFazicX1hEmL+skyo86MhRFj0NwuDB2HsIGjrdzcn1Uo5 AmaT7V2IgDuEYBAZ2GpGz8dTJgv2G0Yl4MIKvVlS72w4919lcY5C8+AAHPqxEeD+ Qn/U2PCS/j0SxZ3Ls3l1vJeaAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOe4Xf7V rPUo0kvffrzKjbKQK4AgMB8GA1UdIwQYMBaAFBa4A9s5ONyxXcWaKMl3Gdof8gpT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUUwRC85MDRFNzQ3RTM5 MDkxMUVBQjBERTNGNDlDNEY5QUUwMi9GcmdEMnprNDNMRmR4Wm9veVhjWjJoX3lD bE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZyZ0Qyems0M0xGZHhab295WGNaMmhfeUNsTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUUwRC85MDRFNzQ3RTM5MDkxMUVBQjBERTNGNDlDNEY5QUUwMi9GcmdEMnprNDNM RmR4Wm9veVhjWjJoX3lDbE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcBTkCUpNXe4Ap6XJhuhSsqPlZ2iGWK2P6cw7ggLhwZ2XLw+ZQatom yInA2XVsl5YRhr9mqXAJsOp5zBXg3JsziSFLevy1fs07UanWVP9KIjKY++xM6c/N zPUMckdbrOGaaQdiTOztGEns2qwWOx6DcZ12cYTgYw1FHwOZnEoc1yh1aSSrQn0w ngmNkA/XNJzkOI2hfXaHxQn54JimX3u99UVZb+1eJ+0P0E3FLJf/XAxkdmVQ6GHB fIFjMf1Ko4vLBZJ/ySX/Y4iyX+/ndaKGSVU9SRSDAeDFzHdb4owhoGD6/wZ8wHG7 ZM2hK/n5KGhhfgysMC9C78+clN9uPtKC -----END CERTIFICATE-----Generated at Sat May 31 17:54:54 2025 by rpki-client