$ rpki-client -vvf rpki.apnic.net/member_repository/A914FA25/2BBCBCAA1DAC11EAAF4A3763C4F9AE02/sAFKgwbFLkBPZ8ovjlhvm4aOjKs.mft File: sAFKgwbFLkBPZ8ovjlhvm4aOjKs.mft (raw, json) Hash identifier: LjpF9JC1kEe2f64hZoq7ndyTme7fGVD6P+eF/LtauX0= Subject key identifier: 27:31:68:FC:14:B5:7F:1A:94:09:45:6A:4C:C1:73:5C:8B:33:C7:74 Authority key identifier: B0:01:4A:83:06:C5:2E:40:4F:67:CA:2F:8E:58:6F:9B:86:8E:8C:AB Certificate issuer: /CN=A914FA25/serialNumber=B0014A8306C52E404F67CA2F8E586F9B868E8CAB Certificate serial: C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sAFKgwbFLkBPZ8ovjlhvm4aOjKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914FA25/2BBCBCAA1DAC11EAAF4A3763C4F9AE02/sAFKgwbFLkBPZ8ovjlhvm4aOjKs.mft Manifest number: 0DD1 Signing time: Fri 30 May 2025 19:06:16 +0000 Manifest this update: Fri 30 May 2025 19:06:15 +0000 Manifest next update: Fri 06 Jun 2025 19:06:15 +0000 Files and hashes: 1: sAFKgwbFLkBPZ8ovjlhvm4aOjKs.crl (hash: r6ZN9oXJqd3hyszWLpgkncXWw3bEYRychlpLHGSk87I=) 2: 16D76086A0A811EF88ED2026C4F9AE02.roa (hash: xXVPh1g488DDZ2eC7px+JMoDM3ZGXGyVRE09L+pr9Pc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914FA25/2BBCBCAA1DAC11EAAF4A3763C4F9AE02/sAFKgwbFLkBPZ8ovjlhvm4aOjKs.crl rsync://rpki.apnic.net/member_repository/A914FA25/2BBCBCAA1DAC11EAAF4A3763C4F9AE02/sAFKgwbFLkBPZ8ovjlhvm4aOjKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sAFKgwbFLkBPZ8ovjlhvm4aOjKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:06:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 201 (0xc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914FA25, serialNumber=B0014A8306C52E404F67CA2F8E586F9B868E8CAB Validity Not Before: May 30 19:06:15 2025 GMT Not After : Jun 6 19:06:15 2025 GMT Subject: CN=683a01a8-2148 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f4:ed:41:a2:79:84:d1:b5:bc:c0:de:89:25: 93:31:27:b9:31:a8:7e:0f:5d:0c:37:89:8a:11:be: b7:07:e9:de:e7:12:00:32:5b:df:a5:70:d1:07:7d: de:0f:76:2d:3b:1d:58:66:62:67:d6:ec:e7:07:bd: 0b:f9:b6:41:fd:59:c4:45:0e:a5:8e:cf:74:34:1e: ee:f4:b0:e9:bc:97:9f:52:b1:42:7c:b3:5d:99:d6: af:f8:63:9e:d4:ae:90:cf:63:b1:54:dc:a7:a8:03: 87:44:ef:b4:e8:5e:20:04:f0:b7:68:14:15:9d:48: 2d:e1:5e:bc:7d:96:f1:4d:3b:5b:89:d8:77:ff:2d: 9d:08:ff:b6:9d:3f:97:56:a2:05:27:c3:c4:8b:84: fb:35:02:42:be:b7:7f:ad:46:32:91:b9:8d:48:43: ac:de:e7:e6:62:c6:8a:c2:f6:e4:45:2d:d8:16:b5: e9:37:4f:ea:68:85:0b:ff:54:cd:d1:53:f4:d4:ee: 7d:cc:4d:44:dc:2c:f5:79:a5:7b:44:52:ed:26:20: dc:0a:16:01:0b:80:fe:d9:19:b2:3a:93:85:28:10: 74:a3:e9:d8:37:3e:f5:7c:29:53:27:98:e2:c2:67: eb:38:9d:0c:54:db:f2:a3:d7:a2:c0:e8:08:c4:e7: 83:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:31:68:FC:14:B5:7F:1A:94:09:45:6A:4C:C1:73:5C:8B:33:C7:74 X509v3 Authority Key Identifier: keyid:B0:01:4A:83:06:C5:2E:40:4F:67:CA:2F:8E:58:6F:9B:86:8E:8C:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914FA25/2BBCBCAA1DAC11EAAF4A3763C4F9AE02/sAFKgwbFLkBPZ8ovjlhvm4aOjKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sAFKgwbFLkBPZ8ovjlhvm4aOjKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914FA25/2BBCBCAA1DAC11EAAF4A3763C4F9AE02/sAFKgwbFLkBPZ8ovjlhvm4aOjKs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:af:68:d2:11:02:03:10:e0:8a:bc:fd:07:8a:70:97:85:44: 6a:13:2b:98:fc:99:c0:37:4d:d3:f1:a0:79:d8:45:c1:28:b9: b1:a3:51:8a:36:33:14:37:15:8e:5e:e7:49:7e:f7:98:ac:75: 08:91:3a:a1:0e:4c:e5:9c:1b:38:28:0e:bc:d6:35:6f:15:3b: a7:20:e0:9b:3d:b4:ab:3f:7e:5e:cc:c1:d1:1e:db:5c:50:1b: c0:1c:c0:0b:9f:87:4e:9c:73:5f:39:49:01:7e:ea:85:98:9d: fa:f4:81:e0:78:03:51:9d:72:84:4a:4d:6a:94:75:8c:4b:bf: bf:2e:74:19:a1:ac:ec:f4:c4:50:59:a0:73:32:e8:a6:43:4c: ce:88:14:4a:67:32:9c:f0:cd:9e:68:51:7f:bb:86:ec:07:94: 15:89:da:24:f6:c7:e0:c5:28:f5:d7:fd:e8:61:00:37:27:83: 9e:a3:34:4f:37:fd:d4:98:59:6c:ff:d9:e7:a7:78:4a:af:bd: c7:25:ef:c5:e3:4f:d9:fc:8b:55:3b:9a:24:df:14:b9:35:0d: 58:91:d3:ff:b7:e6:c5:6a:51:96:4c:1c:af:c6:61:91:5c:df: c6:5e:c3:a4:54:c8:05:5f:a9:27:91:c4:86:37:b4:3b:48:a8: 70:9c:5d:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEZBMjUxMTAvBgNVBAUTKEIwMDE0QTgzMDZDNTJFNDA0RjY3Q0EyRjhFNTg2RjlC ODY4RThDQUIwHhcNMjUwNTMwMTkwNjE1WhcNMjUwNjA2MTkwNjE1WjAYMRYwFAYD VQQDEw02ODNhMDFhOC0yMTQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtvTtQaJ5hNG1vMDeiSWTMSe5Mah+D10MN4mKEb63B+ne5xIAMlvfpXDRB33e D3YtOx1YZmJn1uznB70L+bZB/VnERQ6ljs90NB7u9LDpvJefUrFCfLNdmdav+GOe 1K6Qz2OxVNynqAOHRO+06F4gBPC3aBQVnUgt4V68fZbxTTtbidh3/y2dCP+2nT+X VqIFJ8PEi4T7NQJCvrd/rUYykbmNSEOs3ufmYsaKwvbkRS3YFrXpN0/qaIUL/1TN 0VP01O59zE1E3Cz1eaV7RFLtJiDcChYBC4D+2RmyOpOFKBB0o+nYNz71fClTJ5ji wmfrOJ0MVNvyo9eiwOgIxOeDUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCcxaPwU tX8alAlFakzBc1yLM8d0MB8GA1UdIwQYMBaAFLABSoMGxS5AT2fKL45Yb5uGjoyr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RkEyNS8yQkJDQkNBQTFE QUMxMUVBQUY0QTM3NjNDNEY5QUUwMi9zQUZLZ3diRkxrQlBaOG92amxodm00YU9q S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NBRktnd2JGTGtCUFo4b3ZqbGh2bTRhT2pLcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RkEyNS8yQkJDQkNBQTFEQUMxMUVBQUY0QTM3NjNDNEY5QUUwMi9zQUZLZ3diRkxr QlBaOG92amxodm00YU9qS3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjr2jSEQIDEOCKvP0HinCXhURqEyuY/JnAN03T8aB52EXBKLmxo1GK NjMUNxWOXudJfveYrHUIkTqhDkzlnBs4KA681jVvFTunIOCbPbSrP35ezMHRHttc UBvAHMALn4dOnHNfOUkBfuqFmJ369IHgeANRnXKESk1qlHWMS7+/LnQZoazs9MRQ WaBzMuimQ0zOiBRKZzKc8M2eaFF/u4bsB5QVidok9sfgxSj11/3oYQA3J4OeozRP N/3UmFls/9nnp3hKr73HJe/F40/Z/ItVO5ok3xS5NQ1YkdP/t+bFalGWTByvxmGR XN/GXsOkVMgFX6knkcSGN7Q7SKhwnF1+ -----END CERTIFICATE-----Generated at Sat May 31 17:02:15 2025 by rpki-client