$ rpki-client -vvf rpki.apnic.net/member_repository/A916B0EA/4D8E49B00B7411EAA584001CC4F9AE02/Fd95oAc5vDm3F4kllY3-6ZvgDUI.mft File: Fd95oAc5vDm3F4kllY3-6ZvgDUI.mft (raw, json) Hash identifier: dDh6FgfEtIeuNW/HdU+3bflezZn2ROpKjtudqu0I+WM= Subject key identifier: 16:ED:03:CE:A3:30:A0:CB:60:A9:6A:A1:09:0C:6E:ED:46:80:FB:FC Authority key identifier: 15:DF:79:A0:07:39:BC:39:B7:17:89:25:95:8D:FE:E9:9B:E0:0D:42 Certificate issuer: /CN=A916B0EA/serialNumber=15DF79A00739BC39B7178925958DFEE99BE00D42 Certificate serial: 082C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fd95oAc5vDm3F4kllY3-6ZvgDUI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B0EA/4D8E49B00B7411EAA584001CC4F9AE02/Fd95oAc5vDm3F4kllY3-6ZvgDUI.mft Manifest number: 1445 Signing time: Sat 31 May 2025 18:39:50 +0000 Manifest this update: Sat 31 May 2025 18:39:49 +0000 Manifest next update: Sat 07 Jun 2025 18:39:49 +0000 Files and hashes: 1: Fd95oAc5vDm3F4kllY3-6ZvgDUI.crl (hash: TKoTqm61ACU8n7num9+0+6nvW/06+qUaR55sX5xIgq0=) 2: 6535FEC0345C11F0B4126F3CC4F9AE02.roa (hash: pjUqvx9LjqZcGK0IESA4LP1Wg4xMY3NQqlqvkln9QM0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B0EA/4D8E49B00B7411EAA584001CC4F9AE02/Fd95oAc5vDm3F4kllY3-6ZvgDUI.crl rsync://rpki.apnic.net/member_repository/A916B0EA/4D8E49B00B7411EAA584001CC4F9AE02/Fd95oAc5vDm3F4kllY3-6ZvgDUI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fd95oAc5vDm3F4kllY3-6ZvgDUI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 18:39:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2092 (0x82c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B0EA, serialNumber=15DF79A00739BC39B7178925958DFEE99BE00D42 Validity Not Before: May 31 18:39:49 2025 GMT Not After : Jun 7 18:39:49 2025 GMT Subject: CN=683b4cf5-85ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f1:85:0f:d4:ac:ef:0b:17:be:a7:12:50:b1: 86:5f:4a:5e:aa:7e:48:17:e6:af:6f:e9:cb:95:10: 6a:04:cf:f4:e9:5a:0d:2a:d3:84:ef:ee:f9:21:33: 85:07:cc:7a:48:10:f4:8e:f0:ab:ae:c1:e6:4f:14: 76:4c:9f:e3:68:08:ee:ab:74:3c:cf:4e:a1:56:56: 1c:e3:f1:06:a8:ff:41:53:98:a6:4b:e6:a4:25:12: 26:e6:89:dc:6b:a3:d2:16:5a:e7:78:a8:18:13:83: 7a:f7:a2:e8:77:da:04:e0:e3:1f:ce:ba:d4:c2:de: ec:66:66:be:56:5c:ef:c5:0e:1d:56:55:67:f9:21: 01:ed:0f:9b:f4:2e:de:a7:2f:77:af:1e:a0:ea:54: 33:f4:52:11:c8:4c:41:ed:af:51:b8:b9:ed:6b:79: 25:a7:01:89:23:12:a4:7d:13:94:15:f5:e2:00:d1: a0:fe:32:66:80:c9:b6:e0:75:75:fb:18:52:3d:c5: 1a:98:8c:fc:4a:b4:73:99:2a:35:83:dd:13:24:9a: 68:f0:c5:e6:00:6b:a3:72:e6:93:50:22:ad:8a:24: 8d:fc:15:9e:32:95:ff:2d:ad:82:2a:3e:2f:7c:e5: 7b:b7:36:66:65:11:aa:c1:62:fc:15:9b:86:c5:f3: 73:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:ED:03:CE:A3:30:A0:CB:60:A9:6A:A1:09:0C:6E:ED:46:80:FB:FC X509v3 Authority Key Identifier: keyid:15:DF:79:A0:07:39:BC:39:B7:17:89:25:95:8D:FE:E9:9B:E0:0D:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B0EA/4D8E49B00B7411EAA584001CC4F9AE02/Fd95oAc5vDm3F4kllY3-6ZvgDUI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fd95oAc5vDm3F4kllY3-6ZvgDUI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B0EA/4D8E49B00B7411EAA584001CC4F9AE02/Fd95oAc5vDm3F4kllY3-6ZvgDUI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption dc:c5:eb:e2:73:5c:a0:46:2d:55:11:ca:b8:f2:4c:7c:fc:90: b3:05:2a:f3:19:10:a1:12:78:6c:4d:9e:10:8d:c1:cb:c4:c9: 63:68:f2:dd:f0:95:b9:c2:a5:26:37:c4:a0:51:0c:43:7c:f9: 48:b0:c8:f0:98:3b:55:e1:31:39:8d:b9:6e:3e:27:ad:6d:e8: a1:6c:76:f0:de:38:18:a2:67:be:02:49:ac:06:c1:6e:66:a4: 2b:5c:fd:94:69:21:88:1e:8b:ca:68:4a:3d:69:34:3b:ec:5d: 94:90:84:d5:bf:dd:d7:74:72:6c:6a:0d:ac:72:3d:0f:f2:36: 01:8a:27:76:51:38:57:36:61:b6:c1:2e:22:3b:cf:dc:cf:f3: d2:a0:f5:99:08:00:0a:9a:88:ab:c2:f8:ee:4d:55:c3:5d:46: dd:cc:cd:8d:ee:3d:0a:e5:0a:a5:c1:52:d3:bf:96:69:73:48: f4:93:67:e7:0b:76:fa:f3:dd:71:25:3d:b6:e4:c0:56:1e:e6: c4:a0:12:db:0b:64:5e:03:1e:5b:dc:1f:0e:08:46:ae:15:4f: 14:65:6b:ac:db:60:2c:a8:57:ad:f5:ed:1e:e1:8c:11:91:41: 5d:5f:5d:cb:46:94:23:de:38:41:45:c3:17:59:45:cb:ec:99: 0f:63:d2:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIwRUExMTAvBgNVBAUTKDE1REY3OUEwMDczOUJDMzlCNzE3ODkyNTk1OERGRUU5 OUJFMDBENDIwHhcNMjUwNTMxMTgzOTQ5WhcNMjUwNjA3MTgzOTQ5WjAYMRYwFAYD VQQDEw02ODNiNGNmNS04NWVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtfGFD9Ss7wsXvqcSULGGX0peqn5IF+avb+nLlRBqBM/06VoNKtOE7+75ITOF B8x6SBD0jvCrrsHmTxR2TJ/jaAjuq3Q8z06hVlYc4/EGqP9BU5imS+akJRIm5onc a6PSFlrneKgYE4N696Lod9oE4OMfzrrUwt7sZma+VlzvxQ4dVlVn+SEB7Q+b9C7e py93rx6g6lQz9FIRyExB7a9RuLnta3klpwGJIxKkfROUFfXiANGg/jJmgMm24HV1 +xhSPcUamIz8SrRzmSo1g90TJJpo8MXmAGujcuaTUCKtiiSN/BWeMpX/La2CKj4v fOV7tzZmZRGqwWL8FZuGxfNzhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBbtA86j MKDLYKlqoQkMbu1GgPv8MB8GA1UdIwQYMBaAFBXfeaAHObw5txeJJZWN/umb4A1C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjBFQS80RDhFNDlCMDBC NzQxMUVBQTU4NDAwMUNDNEY5QUUwMi9GZDk1b0FjNXZEbTNGNGtsbFkzLTZadmdE VUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZkOTVvQWM1dkRtM0Y0a2xsWTMtNlp2Z0RVSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjBFQS80RDhFNDlCMDBCNzQxMUVBQTU4NDAwMUNDNEY5QUUwMi9GZDk1b0FjNXZE bTNGNGtsbFkzLTZadmdEVUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDcxevic1ygRi1VEcq48kx8/JCzBSrzGRChEnhsTZ4QjcHLxMljaPLd 8JW5wqUmN8SgUQxDfPlIsMjwmDtV4TE5jbluPietbeihbHbw3jgYome+AkmsBsFu ZqQrXP2UaSGIHovKaEo9aTQ77F2UkITVv93XdHJsag2scj0P8jYBiid2UThXNmG2 wS4iO8/cz/PSoPWZCAAKmoirwvjuTVXDXUbdzM2N7j0K5QqlwVLTv5Zpc0j0k2fn C3b6891xJT225MBWHubEoBLbC2ReAx5b3B8OCEauFU8UZWus22AsqFet9e0e4YwR kUFdX13LRpQj3jhBRcMXWUXL7JkPY9Jq -----END CERTIFICATE-----Generated at Mon Jun 2 07:14:19 2025 by rpki-client