$ rpki-client -vvf rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.mft File: FN2GhClPGzOjE6-48OuhyKADeAk.mft (raw, json) Hash identifier: qKUiNXepmw1soM4Y3e2v8Uosvldqnyj29JsHIdTH+s4= Subject key identifier: 34:E0:CC:86:85:E3:27:78:9B:1A:67:9A:5D:AA:6A:6A:99:B3:A6:3F Authority key identifier: 14:DD:86:84:29:4F:1B:33:A3:13:AF:B8:F0:EB:A1:C8:A0:03:78:09 Certificate issuer: /CN=A9160A05/serialNumber=14DD8684294F1B33A313AFB8F0EBA1C8A0037809 Certificate serial: 62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FN2GhClPGzOjE6-48OuhyKADeAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.mft Manifest number: 5D Signing time: Thu 13 Mar 2025 05:13:51 +0000 Manifest this update: Thu 13 Mar 2025 05:13:51 +0000 Manifest next update: Thu 20 Mar 2025 05:13:50 +0000 Files and hashes: 1: FN2GhClPGzOjE6-48OuhyKADeAk.crl (hash: P5IFHiz0bhgL7kJFZYVb6iKBSyYv88UEQIxeDHw7/Yw=) 2: F7981812F38811EFAC05053AC4F9AE02.roa (hash: 5lT3BqV6fkCasuiMvgjtWS+QEDtMQ2WoJeVX5lRFOMY=) 3: E9B0903AF38811EF81B8CE39C4F9AE02.roa (hash: fdQ7jvoBEvlEALSb2JWdt2czQvJjt/S2kzFg/FmzHag=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.crl rsync://rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FN2GhClPGzOjE6-48OuhyKADeAk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 05:13:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 98 (0x62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160A05 Validity Not Before: Mar 13 05:13:51 2025 GMT Not After : Mar 20 05:13:50 2025 GMT Subject: CN=67d2698f-87fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:f8:0c:aa:dd:88:01:74:df:39:d1:07:89:5f: b5:5f:56:69:8f:5b:9e:f2:0a:24:86:bb:af:7c:2d: fb:61:ed:a3:82:8a:e1:15:b0:36:79:04:59:72:cc: 8d:18:e3:c0:da:c0:e8:1c:13:38:c9:9b:d3:01:70: ce:9b:82:6e:49:19:1b:56:64:af:ba:35:7a:e4:4b: c4:bb:07:72:06:9a:3f:3e:2e:48:a8:43:bc:c3:40: 68:1e:d5:a9:ab:bf:14:da:50:6e:5c:86:87:f6:72: 37:e3:51:5c:c0:d8:6d:0c:82:1d:46:4b:24:93:2f: f5:eb:3b:df:e3:b5:95:e4:64:4d:3b:48:eb:91:2c: 0b:46:c9:05:de:30:e2:71:ee:cb:7a:d8:d9:18:d0: 7b:d9:57:ae:0f:7b:b9:eb:39:b7:97:a0:55:8c:62: b1:69:75:fe:bc:d1:09:42:97:e1:25:62:e8:97:da: 64:de:a6:bf:2c:3f:8b:13:b0:d6:fd:16:1f:14:ff: 3f:54:d5:69:b9:8f:7e:30:a0:c4:38:d2:2f:00:c3: 7f:6c:44:0d:5e:8b:ce:a5:9b:65:bd:5d:eb:79:47: e4:74:d7:4e:55:8d:12:13:ca:46:84:1d:3c:6d:84: 16:a9:3d:d4:e4:3e:47:64:a3:a1:5b:21:59:db:17: 67:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:E0:CC:86:85:E3:27:78:9B:1A:67:9A:5D:AA:6A:6A:99:B3:A6:3F X509v3 Authority Key Identifier: keyid:14:DD:86:84:29:4F:1B:33:A3:13:AF:B8:F0:EB:A1:C8:A0:03:78:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FN2GhClPGzOjE6-48OuhyKADeAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:c0:64:00:3b:e4:1d:11:8d:6d:1b:aa:14:47:c3:cc:0b:a1: ab:80:32:7a:89:1a:e1:7a:a1:38:32:1d:a6:cb:e2:4a:a6:8b: d8:7a:a9:e0:c4:59:2e:29:fc:65:ba:74:51:1e:38:26:15:a0: c1:40:3a:a1:9f:eb:0a:ee:9e:d2:45:dc:a8:05:ab:da:eb:7a: c6:bb:33:bd:29:0d:22:ad:c4:52:ad:62:b9:db:3f:76:e7:67: 9e:2a:90:85:ab:b6:56:4f:e2:d7:66:78:d0:13:a1:83:b6:31: 2e:c2:cb:ec:4c:5d:7e:ed:c9:bd:ad:fc:ee:94:13:ec:8a:ba: 6d:d1:71:23:97:df:65:b8:42:b6:87:56:b8:61:27:1e:0d:b2: ea:d2:e4:ee:d1:cd:94:f6:ec:e3:e3:29:6a:86:b7:2e:df:9c: d6:e5:8f:be:9c:79:9a:90:fb:0a:d7:5b:9f:6e:a8:d4:ae:f2: ec:15:5f:e4:69:56:04:60:b1:ac:ec:0c:6d:dc:07:75:8e:f3: e4:30:24:ac:4a:1b:c7:78:0f:0e:5c:28:0f:cd:d6:9b:0c:ff: 42:09:1b:7f:c9:ad:2e:6a:df:11:c0:90:8b:60:ec:c0:22:fb: 03:c8:bc:5a:53:0a:1b:4f:b8:dc:19:92:8a:a9:33:fb:c4:24: c6:68:a7:9e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MEEwNTExMC8GA1UEBRMoMTRERDg2ODQyOTRGMUIzM0EzMTNBRkI4RjBFQkExQzhB MDAzNzgwOTAeFw0yNTAzMTMwNTEzNTFaFw0yNTAzMjAwNTEzNTBaMBgxFjAUBgNV BAMTDTY3ZDI2OThmLTg3ZmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCv+Ayq3YgBdN850QeJX7VfVmmPW57yCiSGu698Lfth7aOCiuEVsDZ5BFlyzI0Y 48DawOgcEzjJm9MBcM6bgm5JGRtWZK+6NXrkS8S7B3IGmj8+LkioQ7zDQGge1amr vxTaUG5chof2cjfjUVzA2G0Mgh1GSySTL/XrO9/jtZXkZE07SOuRLAtGyQXeMOJx 7st62NkY0HvZV64Pe7nrObeXoFWMYrFpdf680QlCl+ElYuiX2mTepr8sP4sTsNb9 Fh8U/z9U1Wm5j34woMQ40i8Aw39sRA1ei86lm2W9Xet5R+R0105VjRITykaEHTxt hBapPdTkPkdko6FbIVnbF2fdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUNODMhoXj J3ibGmeaXapqapmzpj8wHwYDVR0jBBgwFoAUFN2GhClPGzOjE6+48OuhyKADeAkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYwQTA1L0QxN0M4ODY4N0M4 QTExRUY4RkFCNjkwOUM0RjlBRTAyL0ZOMkdoQ2xQR3pPakU2LTQ4T3VoeUtBRGVB ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRk4yR2hDbFBHek9qRTYtNDhPdWh5S0FEZUFrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYw QTA1L0QxN0M4ODY4N0M4QTExRUY4RkFCNjkwOUM0RjlBRTAyL0ZOMkdoQ2xQR3pP akU2LTQ4T3VoeUtBRGVBay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJDAZAA75B0RjW0bqhRHw8wLoauAMnqJGuF6oTgyHabL4kqmi9h6qeDE WS4p/GW6dFEeOCYVoMFAOqGf6wruntJF3KgFq9rresa7M70pDSKtxFKtYrnbP3bn Z54qkIWrtlZP4tdmeNAToYO2MS7Cy+xMXX7tyb2t/O6UE+yKum3RcSOX32W4QraH VrhhJx4NsurS5O7RzZT27OPjKWqGty7fnNblj76ceZqQ+wrXW59uqNSu8uwVX+Rp VgRgsazsDG3cB3WO8+QwJKxKG8d4Dw5cKA/N1psM/0IJG3/JrS5q3xHAkItg7MAi +wPIvFpTChtPuNwZkoqpM/vEJMZop54= -----END CERTIFICATE-----Generated at Thu Mar 13 21:30:57 2025 by rpki-client