$ rpki-client -vvf rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.mft File: FOVew0KOPSuk3HHBWeX2Bh8WPG0.mft (raw, json) Hash identifier: vi1kCHwVLfmpvK58WZxm91fiOFHtAZrdOkwimd3Z9aI= Subject key identifier: 78:C5:C5:1A:4F:BD:7A:53:8B:C2:FC:6A:8A:81:F4:EB:CC:4D:21:BA Authority key identifier: 14:E5:5E:C3:42:8E:3D:2B:A4:DC:71:C1:59:E5:F6:06:1F:16:3C:6D Certificate issuer: /CN=A916E343/serialNumber=14E55EC3428E3D2BA4DC71C159E5F6061F163C6D Certificate serial: FF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FOVew0KOPSuk3HHBWeX2Bh8WPG0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.mft Manifest number: FF Signing time: Sun 01 Jun 2025 03:59:19 +0000 Manifest this update: Sun 01 Jun 2025 03:59:18 +0000 Manifest next update: Sun 08 Jun 2025 03:59:18 +0000 Files and hashes: 1: FOVew0KOPSuk3HHBWeX2Bh8WPG0.crl (hash: w841bcr0gHnkK5rDMF4ktuZ8AWq5qhFJZGXzzu6HWZg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.crl rsync://rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FOVew0KOPSuk3HHBWeX2Bh8WPG0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 03:59:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 255 (0xff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916E343, serialNumber=14E55EC3428E3D2BA4DC71C159E5F6061F163C6D Validity Not Before: Jun 1 03:59:18 2025 GMT Not After : Jun 8 03:59:18 2025 GMT Subject: CN=683bd016-e3fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:d7:24:68:47:0f:19:17:80:b8:92:05:4c:b7: 72:9c:ec:05:31:a6:da:a7:a1:94:a1:04:f1:3a:8b: e9:1a:b4:b0:99:3b:9b:ea:a5:3a:4b:67:aa:ff:02: 79:a2:f8:f3:bd:2c:86:c0:7c:6f:74:93:3c:37:fa: 7d:82:35:fa:f5:0e:3b:64:35:0d:9d:7c:8e:b6:d2: b1:df:af:be:6b:64:90:1b:26:50:dc:6e:67:0c:65: 04:15:04:a9:ca:e1:53:8f:17:ab:7e:ab:2f:31:7f: 95:b8:ab:cc:3a:d0:91:13:1b:2b:bb:3a:88:4e:56: e4:2a:02:b3:eb:f8:fd:ee:4e:a3:e0:ca:fc:7a:e1: b8:2a:b8:b0:1e:0e:0f:84:90:11:91:80:08:b3:c0: 07:5e:77:f7:1e:ee:5c:83:79:94:44:cc:e8:e8:d2: bf:ed:0f:bc:2d:0b:c6:d9:a9:1f:08:95:9e:ce:58: da:6c:58:68:c5:46:f4:96:ca:d3:59:81:bf:61:06: a7:02:2c:4b:b2:69:27:a9:e8:11:07:33:7b:1c:33: 71:02:81:7f:82:a1:10:45:f2:92:24:8e:34:54:b5: b9:57:97:09:f4:0d:b8:f1:e3:2e:d4:3b:ec:a5:1a: cc:e2:e1:89:ec:5b:20:78:03:b6:67:55:75:f7:84: 25:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:C5:C5:1A:4F:BD:7A:53:8B:C2:FC:6A:8A:81:F4:EB:CC:4D:21:BA X509v3 Authority Key Identifier: keyid:14:E5:5E:C3:42:8E:3D:2B:A4:DC:71:C1:59:E5:F6:06:1F:16:3C:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FOVew0KOPSuk3HHBWeX2Bh8WPG0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:14:04:71:5b:a0:ad:3d:7d:27:3a:5f:25:b5:75:b4:10:78: d1:dc:bd:f2:56:91:05:88:00:af:4e:9c:5a:26:79:e4:d7:b8: 2a:22:3c:0b:99:b4:55:b6:0c:8a:c1:a6:dc:02:24:52:07:8b: b0:89:ad:a6:31:3a:a5:ec:fa:d6:bf:f6:f2:fc:a0:8d:13:9f: 9d:58:de:12:1a:23:1f:07:c1:78:ea:be:26:a4:72:96:34:16: 77:9d:d6:18:21:33:97:36:02:a4:86:0a:78:aa:35:bc:7f:6e: 04:c4:58:6f:c4:ae:86:7c:0e:42:9e:a8:71:a9:f8:ed:bd:f8: 1a:fc:5b:d0:49:e4:48:27:2f:fb:d4:b1:c3:21:56:f6:f3:85: 9a:8b:ce:d6:b0:c9:c4:de:91:71:ab:fe:64:ae:03:37:26:cb: bc:d4:04:be:1f:2c:3f:ef:5b:62:8a:5a:22:6d:6f:3e:94:d2: 75:62:60:17:8e:4a:ca:22:8a:6e:97:8d:ae:79:b0:ef:4d:b0: 74:e6:dc:f4:66:e1:b2:7c:5c:61:03:59:df:9b:aa:b7:b4:57: d8:94:2d:bf:ee:53:80:51:a5:b0:07:83:06:83:ee:e7:d4:21: 1b:54:8e:b0:fc:3e:16:e4:a7:62:53:09:6c:e5:59:61:29:20: 60:0f:ce:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAP8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkUzNDMxMTAvBgNVBAUTKDE0RTU1RUMzNDI4RTNEMkJBNERDNzFDMTU5RTVGNjA2 MUYxNjNDNkQwHhcNMjUwNjAxMDM1OTE4WhcNMjUwNjA4MDM1OTE4WjAYMRYwFAYD VQQDEw02ODNiZDAxNi1lM2ZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0tckaEcPGReAuJIFTLdynOwFMabap6GUoQTxOovpGrSwmTub6qU6S2eq/wJ5 ovjzvSyGwHxvdJM8N/p9gjX69Q47ZDUNnXyOttKx36++a2SQGyZQ3G5nDGUEFQSp yuFTjxerfqsvMX+VuKvMOtCRExsruzqITlbkKgKz6/j97k6j4Mr8euG4KriwHg4P hJARkYAIs8AHXnf3Hu5cg3mURMzo6NK/7Q+8LQvG2akfCJWezljabFhoxUb0lsrT WYG/YQanAixLsmknqegRBzN7HDNxAoF/gqEQRfKSJI40VLW5V5cJ9A248eMu1Dvs pRrM4uGJ7FsgeAO2Z1V194Ql7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHjFxRpP vXpTi8L8aoqB9OvMTSG6MB8GA1UdIwQYMBaAFBTlXsNCjj0rpNxxwVnl9gYfFjxt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RTM0My8zQUU3MzlBRUI5 N0UxMUVFQjNDMjI5NTVDNEY5QUUwMi9GT1ZldzBLT1BTdWszSEhCV2VYMkJoOFdQ RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0ZPVmV3MEtPUFN1azNISEJXZVgyQmg4V1BHMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RTM0My8zQUU3MzlBRUI5N0UxMUVFQjNDMjI5NTVDNEY5QUUwMi9GT1ZldzBLT1BT dWszSEhCV2VYMkJoOFdQRzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/FARxW6CtPX0nOl8ltXW0EHjR3L3yVpEFiACvTpxaJnnk17gqIjwL mbRVtgyKwabcAiRSB4uwia2mMTql7PrWv/by/KCNE5+dWN4SGiMfB8F46r4mpHKW NBZ3ndYYITOXNgKkhgp4qjW8f24ExFhvxK6GfA5Cnqhxqfjtvfga/FvQSeRIJy/7 1LHDIVb284Wai87WsMnE3pFxq/5krgM3Jsu81AS+Hyw/71tiiloibW8+lNJ1YmAX jkrKIopul42uebDvTbB05tz0ZuGyfFxhA1nfm6q3tFfYlC2/7lOAUaWwB4MGg+7n 1CEbVI6w/D4W5KdiUwls5VlhKSBgD86e -----END CERTIFICATE-----Generated at Mon Jun 2 18:49:09 2025 by rpki-client