$ rpki-client -vvf rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.mft File: 1FLGfvaHRDivqZOoStCrwYUWkhs.mft (raw, json) Hash identifier: 901YGA7UgojAzXEivPcHYJW9CHB9yvj3mjrK8bzoNrM= Subject key identifier: 18:4D:24:AD:9E:CB:63:F0:32:8A:74:3E:A7:63:7C:56:D9:39:D1:2C Authority key identifier: D4:52:C6:7E:F6:87:44:38:AF:A9:93:A8:4A:D0:AB:C1:85:16:92:1B Certificate issuer: /CN=A915FD27/serialNumber=D452C67EF6874438AFA993A84AD0ABC18516921B Certificate serial: 0213 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FLGfvaHRDivqZOoStCrwYUWkhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.mft Manifest number: 0210 Signing time: Sat 31 May 2025 02:11:00 +0000 Manifest this update: Sat 31 May 2025 02:11:00 +0000 Manifest next update: Sat 07 Jun 2025 02:11:00 +0000 Files and hashes: 1: 1FLGfvaHRDivqZOoStCrwYUWkhs.crl (hash: hh0M+FrWZ/vCORypf6Py1Jh5isgbYFnPx2zaOsZzr4o=) 2: 839EEF2C35F211ED97DF4D2EC4F9AE02.roa (hash: utbaFXvYsbMawkEsGIYiJOGznLub5CBtZ08YosxwrsQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.crl rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FLGfvaHRDivqZOoStCrwYUWkhs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:10:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 531 (0x213) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FD27, serialNumber=D452C67EF6874438AFA993A84AD0ABC18516921B Validity Not Before: May 31 02:11:00 2025 GMT Not After : Jun 7 02:11:00 2025 GMT Subject: CN=683a6534-1740 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:08:dc:79:44:48:05:f6:c3:e5:00:81:6a:14: c0:5b:11:8b:eb:8c:c9:a4:6c:85:e4:8c:ad:61:6b: 68:aa:94:ce:81:ec:fc:48:d3:1a:5d:1c:43:c8:ec: 13:ec:18:e9:71:b7:b2:b6:5f:0e:4a:a8:2c:f6:e8: db:d6:9e:91:51:0f:0a:de:53:5d:a4:d5:ce:3f:fb: e1:76:c4:44:5b:5b:d5:c9:e0:2d:83:43:b4:e6:a8: 24:af:bf:db:6b:0c:a7:1c:a1:25:3e:c6:4f:f8:1f: 02:f4:42:36:1e:7b:de:35:b0:a4:90:13:52:1a:66: 58:8c:b1:92:8d:2a:ba:b1:29:42:4d:7e:4d:e4:cd: 77:74:d7:f4:a7:0e:2b:de:95:8a:a7:7f:6a:ac:cd: e1:cc:a6:e3:a2:2e:b2:ad:be:c5:c5:32:03:c5:a4: 48:1a:5e:de:ca:f8:5d:ca:4c:8c:b0:c2:96:e0:dd: 74:5c:fa:27:cb:d8:d4:f2:c7:18:dc:ce:9c:ac:02: 7b:cb:ff:a6:2d:07:85:42:60:47:f8:8a:d9:e4:3f: cd:ee:83:11:79:72:ea:46:15:2d:ae:48:69:93:e2: 2b:e0:89:b8:2f:bb:bf:cf:86:e0:d0:40:94:6f:47: 0f:f6:2a:80:ed:c3:70:60:c5:01:0c:7c:7d:fc:db: 47:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:4D:24:AD:9E:CB:63:F0:32:8A:74:3E:A7:63:7C:56:D9:39:D1:2C X509v3 Authority Key Identifier: keyid:D4:52:C6:7E:F6:87:44:38:AF:A9:93:A8:4A:D0:AB:C1:85:16:92:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FLGfvaHRDivqZOoStCrwYUWkhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:37:f0:24:d6:13:5f:cb:47:b1:7d:01:16:91:83:9c:35:1f: df:b3:59:bd:ac:75:7b:c5:74:49:28:ea:12:a2:db:d2:ac:41: 0e:53:0d:3a:63:bb:c3:8f:71:cf:de:66:be:ec:e4:b3:a7:e0: 84:9e:2f:64:c9:0b:5e:50:e2:fb:70:49:5e:0d:c3:cd:2d:a7: 0b:3d:1b:e7:76:c3:15:94:a5:25:1b:3c:2a:ce:a7:57:49:70: 78:20:51:d7:02:90:33:a1:d0:08:64:77:d1:2b:86:d9:1f:91: db:67:a3:5d:d5:ac:4e:30:69:13:10:f0:c7:31:bf:89:88:23: 94:37:fc:97:c9:96:08:2b:e5:38:91:84:8d:e7:bc:92:55:d7: 03:6c:5c:e9:a5:ff:f7:b7:58:38:f7:60:df:4b:36:24:80:5e: f0:5c:65:2e:ab:45:4d:3e:10:21:07:6c:53:10:60:37:53:9c: 8d:7b:19:ee:ad:44:e1:fe:0f:d4:33:4d:3b:0c:ca:28:25:3c: da:83:4d:45:95:b3:ed:08:64:f7:4d:74:e2:7c:e2:ca:ad:7c: c7:1d:d5:6b:5a:e3:a2:60:64:f0:3c:1a:10:2a:61:43:00:0c: 9e:a3:7f:b9:a6:b9:45:b0:4d:e9:98:c6:e7:1c:d7:00:0f:e8: 75:c6:f3:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZEMjcxMTAvBgNVBAUTKEQ0NTJDNjdFRjY4NzQ0MzhBRkE5OTNBODRBRDBBQkMx ODUxNjkyMUIwHhcNMjUwNTMxMDIxMTAwWhcNMjUwNjA3MDIxMTAwWjAYMRYwFAYD VQQDEw02ODNhNjUzNC0xNzQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsQjceURIBfbD5QCBahTAWxGL64zJpGyF5IytYWtoqpTOgez8SNMaXRxDyOwT 7Bjpcbeytl8OSqgs9ujb1p6RUQ8K3lNdpNXOP/vhdsREW1vVyeAtg0O05qgkr7/b awynHKElPsZP+B8C9EI2HnveNbCkkBNSGmZYjLGSjSq6sSlCTX5N5M13dNf0pw4r 3pWKp39qrM3hzKbjoi6yrb7FxTIDxaRIGl7eyvhdykyMsMKW4N10XPony9jU8scY 3M6crAJ7y/+mLQeFQmBH+IrZ5D/N7oMReXLqRhUtrkhpk+Ir4Im4L7u/z4bg0ECU b0cP9iqA7cNwYMUBDHx9/NtHMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBhNJK2e y2PwMop0PqdjfFbZOdEsMB8GA1UdIwQYMBaAFNRSxn72h0Q4r6mTqErQq8GFFpIb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkQyNy9BODBEQjM4MjM1 RUYxMUVEODIzOUFGMkJDNEY5QUUwMi8xRkxHZnZhSFJEaXZxWk9vU3RDcndZVVdr aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFGTEdmdmFIUkRpdnFaT29TdENyd1lVV2tocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RkQyNy9BODBEQjM4MjM1RUYxMUVEODIzOUFGMkJDNEY5QUUwMi8xRkxHZnZhSFJE aXZxWk9vU3RDcndZVVdraHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7N/Ak1hNfy0exfQEWkYOcNR/fs1m9rHV7xXRJKOoSotvSrEEOUw06 Y7vDj3HP3ma+7OSzp+CEni9kyQteUOL7cEleDcPNLacLPRvndsMVlKUlGzwqzqdX SXB4IFHXApAzodAIZHfRK4bZH5HbZ6Nd1axOMGkTEPDHMb+JiCOUN/yXyZYIK+U4 kYSN57ySVdcDbFzppf/3t1g492DfSzYkgF7wXGUuq0VNPhAhB2xTEGA3U5yNexnu rUTh/g/UM007DMooJTzag01FlbPtCGT3TXTifOLKrXzHHdVrWuOiYGTwPBoQKmFD AAyeo3+5prlFsE3pmMbnHNcAD+h1xvNP -----END CERTIFICATE-----Generated at Sat May 31 16:47:51 2025 by rpki-client