$ rpki-client -vvf rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.mft File: 1fozYzT5muNj6lhn0o6KUCMeQiA.mft (raw, json) Hash identifier: TPBr8kB4UCOwYNlio/DgHZ6DI2iruFQLWDcf4HsTVas= Subject key identifier: DC:11:AE:3A:91:A7:A4:77:5F:DF:69:1D:AB:7B:BB:0A:C8:72:E9:9C Authority key identifier: D5:FA:33:63:34:F9:9A:E3:63:EA:58:67:D2:8E:8A:50:23:1E:42:20 Certificate issuer: /CN=A915F2B8/serialNumber=D5FA336334F99AE363EA5867D28E8A50231E4220 Certificate serial: 019C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fozYzT5muNj6lhn0o6KUCMeQiA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.mft Manifest number: 0199 Signing time: Sat 31 May 2025 03:06:36 +0000 Manifest this update: Sat 31 May 2025 03:06:36 +0000 Manifest next update: Sat 07 Jun 2025 03:06:35 +0000 Files and hashes: 1: 1fozYzT5muNj6lhn0o6KUCMeQiA.crl (hash: GDlCeC+ZIV8zjCL7NkaZgU5zO5JXMK7vATn8pt4crrc=) 2: 207C45B0CC2F11EDABE25F72C4F9AE02.roa (hash: 445y7dnFbGIJcED/nA18M8HZ1X9DaCKTToZbs8yrxpI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.crl rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fozYzT5muNj6lhn0o6KUCMeQiA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:06:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 412 (0x19c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915F2B8, serialNumber=D5FA336334F99AE363EA5867D28E8A50231E4220 Validity Not Before: May 31 03:06:36 2025 GMT Not After : Jun 7 03:06:35 2025 GMT Subject: CN=683a723c-5be7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:66:df:8e:09:6e:fc:dc:be:8a:2e:4f:83:68: 91:8a:df:14:ec:19:ac:7a:d7:5b:ab:10:eb:5e:bf: 13:13:7d:0f:ee:d5:e8:6d:5a:61:8c:6a:20:3b:1a: 78:c5:a9:c9:2f:fe:d3:16:32:ce:59:f2:f5:1d:2c: 0b:62:ef:02:68:04:c5:4c:6e:9c:46:7d:c6:27:13: 6a:9a:74:cb:9a:02:fe:76:c3:8a:a3:6e:10:e8:db: 82:cc:a3:28:12:2b:39:30:ab:17:80:65:9f:09:db: 42:a1:83:f9:5e:3c:8c:f8:a2:05:6c:e2:89:c7:59: 22:74:b3:69:e6:7e:cf:84:d4:60:66:31:2b:08:7a: 20:6f:a4:16:c2:56:b5:f3:b4:8c:8c:c2:69:eb:34: a8:90:e0:17:ab:ea:0f:ba:f3:f7:ff:8c:fb:61:44: c6:6a:d6:88:20:ae:e9:59:04:e9:8f:54:21:e0:9e: d8:07:87:3d:b8:0a:7b:7a:01:e1:fc:2a:4f:0f:da: 04:c6:73:35:b4:2d:f1:0c:96:c5:f8:5a:bd:da:b4: 11:07:9f:2a:d0:b9:e6:1c:3f:ea:86:80:08:a4:ac: 7d:62:12:cc:7c:8d:c1:29:2d:79:e5:f9:d7:2b:b3: 53:41:cf:1c:1c:1b:20:64:ca:c5:c6:74:ac:2d:70: 06:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:11:AE:3A:91:A7:A4:77:5F:DF:69:1D:AB:7B:BB:0A:C8:72:E9:9C X509v3 Authority Key Identifier: keyid:D5:FA:33:63:34:F9:9A:E3:63:EA:58:67:D2:8E:8A:50:23:1E:42:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fozYzT5muNj6lhn0o6KUCMeQiA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:46:95:93:23:3e:f0:63:0e:7d:62:c3:e4:99:d6:87:1e:3c: 04:e5:83:bb:b2:66:60:79:44:f4:f6:56:3a:24:2b:6d:0a:a7: 23:33:f7:d4:e5:51:ba:5d:53:3a:6f:a5:6d:0c:28:24:cf:77: 16:42:1b:18:40:ea:13:40:e4:f9:96:27:6e:87:9c:6c:99:77: d6:d6:dc:b5:5e:78:b6:3e:89:23:bd:ee:c5:13:55:90:b4:b5: 41:5b:e1:76:06:ee:6e:9d:f2:be:b7:46:9c:1c:a4:c7:99:c9: 89:bf:e2:86:74:86:c4:ee:a2:62:76:25:66:28:aa:c4:22:9c: cd:7c:c5:0f:42:c3:98:f8:38:4e:5d:21:23:57:88:37:54:b8: 3a:17:5e:58:ca:91:4a:80:c0:95:1c:f1:73:d5:66:8a:cd:39: 12:c4:33:30:ee:26:87:e0:10:49:2b:44:90:42:4e:cb:15:67: d0:75:a6:9d:00:6f:75:62:21:2a:36:f3:bb:95:66:0a:cf:6e: 46:9a:1d:5e:7d:d8:b7:4d:54:86:9b:d3:38:15:a1:fd:9c:9a: 9b:4a:cd:9d:e2:42:85:78:b6:85:87:ff:88:92:e2:89:0e:42: 12:05:87:fa:5c:2b:45:44:07:84:ef:c5:3a:00:20:34:7d:b6: 9b:55:05:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUYyQjgxMTAvBgNVBAUTKEQ1RkEzMzYzMzRGOTlBRTM2M0VBNTg2N0QyOEU4QTUw MjMxRTQyMjAwHhcNMjUwNTMxMDMwNjM2WhcNMjUwNjA3MDMwNjM1WjAYMRYwFAYD VQQDEw02ODNhNzIzYy01YmU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlGbfjglu/Ny+ii5Pg2iRit8U7BmsetdbqxDrXr8TE30P7tXobVphjGogOxp4 xanJL/7TFjLOWfL1HSwLYu8CaATFTG6cRn3GJxNqmnTLmgL+dsOKo24Q6NuCzKMo Eis5MKsXgGWfCdtCoYP5XjyM+KIFbOKJx1kidLNp5n7PhNRgZjErCHogb6QWwla1 87SMjMJp6zSokOAXq+oPuvP3/4z7YUTGataIIK7pWQTpj1Qh4J7YB4c9uAp7egHh /CpPD9oExnM1tC3xDJbF+Fq92rQRB58q0LnmHD/qhoAIpKx9YhLMfI3BKS155fnX K7NTQc8cHBsgZMrFxnSsLXAGmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNwRrjqR p6R3X99pHat7uwrIcumcMB8GA1UdIwQYMBaAFNX6M2M0+ZrjY+pYZ9KOilAjHkIg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RjJCOC8yRjE3NjA4QUND MkMxMUVEQjk4NjA1NzFDNEY5QUUwMi8xZm96WXpUNW11Tmo2bGhuMG82S1VDTWVR aUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFmb3pZelQ1bXVOajZsaG4wbzZLVUNNZVFpQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RjJCOC8yRjE3NjA4QUNDMkMxMUVEQjk4NjA1NzFDNEY5QUUwMi8xZm96WXpUNW11 Tmo2bGhuMG82S1VDTWVRaUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdRpWTIz7wYw59YsPkmdaHHjwE5YO7smZgeUT09lY6JCttCqcjM/fU 5VG6XVM6b6VtDCgkz3cWQhsYQOoTQOT5liduh5xsmXfW1ty1Xni2Pokjve7FE1WQ tLVBW+F2Bu5unfK+t0acHKTHmcmJv+KGdIbE7qJidiVmKKrEIpzNfMUPQsOY+DhO XSEjV4g3VLg6F15YypFKgMCVHPFz1WaKzTkSxDMw7iaH4BBJK0SQQk7LFWfQdaad AG91YiEqNvO7lWYKz25Gmh1efdi3TVSGm9M4FaH9nJqbSs2d4kKFeLaFh/+IkuKJ DkISBYf6XCtFRAeE78U6ACA0fbabVQVL -----END CERTIFICATE-----Generated at Sat May 31 17:51:38 2025 by rpki-client