$ rpki-client -vvf rpki.apnic.net/member_repository/A918681B/C43FBD061A3A11EC8FBF417BC4F9AE02/0fxphnCiQetFTVXFZ6paY1rwoGM.mft File: 0fxphnCiQetFTVXFZ6paY1rwoGM.mft (raw, json) Hash identifier: l+duXBXtt2KjQBUE96Bq6E6a2FGaKKUdggxJs3QFy6Y= Subject key identifier: A0:F4:41:53:85:33:5B:BB:70:DE:66:53:4B:64:6B:69:2B:9C:A7:E9 Authority key identifier: D1:FC:69:86:70:A2:41:EB:45:4D:55:C5:67:AA:5A:63:5A:F0:A0:63 Certificate issuer: /CN=A918681B/serialNumber=D1FC698670A241EB454D55C567AA5A635AF0A063 Certificate serial: 04FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fxphnCiQetFTVXFZ6paY1rwoGM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918681B/C43FBD061A3A11EC8FBF417BC4F9AE02/0fxphnCiQetFTVXFZ6paY1rwoGM.mft Manifest number: 04F3 Signing time: Fri 30 May 2025 23:57:05 +0000 Manifest this update: Fri 30 May 2025 23:57:04 +0000 Manifest next update: Fri 06 Jun 2025 23:57:04 +0000 Files and hashes: 1: 0fxphnCiQetFTVXFZ6paY1rwoGM.crl (hash: 9jgQLxjbPjA5MjS/0AoTWplxk1WOiaJOeVWK4VznwiU=) 2: 5D4D3E261A3E11ECB42D0B80C4F9AE02.roa (hash: Am0tyv0SW/vQBy5lGTGy4TYfxwQ9Lc6UrqhzC51ywy4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918681B/C43FBD061A3A11EC8FBF417BC4F9AE02/0fxphnCiQetFTVXFZ6paY1rwoGM.crl rsync://rpki.apnic.net/member_repository/A918681B/C43FBD061A3A11EC8FBF417BC4F9AE02/0fxphnCiQetFTVXFZ6paY1rwoGM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fxphnCiQetFTVXFZ6paY1rwoGM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 23:57:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1279 (0x4ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918681B, serialNumber=D1FC698670A241EB454D55C567AA5A635AF0A063 Validity Not Before: May 30 23:57:04 2025 GMT Not After : Jun 6 23:57:04 2025 GMT Subject: CN=683a45d0-c9f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:50:c2:7b:3a:15:f6:9d:c7:c7:8a:ba:ae:d4: 8e:5c:62:d0:37:68:4e:00:3a:34:07:bf:2b:88:97: f2:af:08:9f:bc:7a:f2:cd:5f:46:25:4a:a4:1e:cd: 24:7d:bd:11:3b:28:b7:20:d9:b4:2e:86:91:18:7c: f6:a1:ad:d1:e0:60:51:b0:03:c6:3f:12:9a:fe:f7: 9f:7c:71:f6:45:7c:cc:ab:97:1e:54:88:ae:d8:35: db:1b:39:90:70:ef:65:58:f4:e9:bc:ca:f2:5d:e6: 05:04:f5:ef:c8:9f:1e:eb:ad:64:03:e5:11:85:2e: 28:16:50:f7:e2:6a:cf:a0:48:a3:96:95:0a:bc:7a: f9:93:6c:9e:fe:90:9a:7d:a4:76:27:44:6f:6c:86: 21:59:92:29:ff:b6:c2:dd:06:b4:fe:56:d2:72:fd: 0d:5f:83:0c:21:9f:81:3d:14:f5:49:cf:8a:27:86: 13:af:3e:59:91:c0:ed:87:e8:10:17:92:27:94:8b: b3:a0:7c:98:03:94:8b:18:78:6c:48:7e:13:c1:42: 88:91:87:d7:c0:77:80:f2:47:be:d3:c8:cf:8e:0d: e3:86:63:61:ec:7e:fe:3c:e8:80:77:fc:4a:0e:cd: 96:cc:36:bc:3e:64:7a:ce:96:71:4a:2a:7c:5b:79: ff:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:F4:41:53:85:33:5B:BB:70:DE:66:53:4B:64:6B:69:2B:9C:A7:E9 X509v3 Authority Key Identifier: keyid:D1:FC:69:86:70:A2:41:EB:45:4D:55:C5:67:AA:5A:63:5A:F0:A0:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918681B/C43FBD061A3A11EC8FBF417BC4F9AE02/0fxphnCiQetFTVXFZ6paY1rwoGM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fxphnCiQetFTVXFZ6paY1rwoGM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918681B/C43FBD061A3A11EC8FBF417BC4F9AE02/0fxphnCiQetFTVXFZ6paY1rwoGM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:3f:34:92:7b:35:55:e9:2d:40:94:09:fb:62:de:60:d5:e7: 13:34:ff:fb:48:1e:f8:74:0b:7e:77:63:e6:bd:7d:c9:f0:dc: ae:72:ef:79:e3:67:27:0d:88:31:ea:70:c4:05:03:ef:7f:dc: a8:f8:19:cc:87:cb:dc:06:ba:92:54:88:a2:0d:b6:94:cf:04: 08:58:36:e3:15:61:44:21:19:5d:76:c7:9c:02:71:3b:99:b4: e3:2e:7c:71:f9:67:70:c5:b7:be:db:53:67:77:d5:2c:b6:3d: f3:77:44:57:77:a4:f8:a2:a4:c8:57:ec:1e:c1:a6:5f:7e:6c: fa:aa:4b:fd:95:3a:57:36:02:4c:0c:5e:90:04:92:3a:3e:09: d8:a3:b2:7f:18:61:7e:ef:07:85:c9:6b:00:89:4f:3d:2f:34: 65:9a:46:1b:23:d1:10:43:58:a8:cf:0f:1d:c1:b4:dc:f7:48: 8f:86:ea:fb:04:44:25:8e:75:7b:f6:08:f5:01:dc:25:e3:25: ff:dd:aa:2c:0e:47:42:f5:2b:40:f0:6c:76:ab:ca:4c:5c:0a: bf:a7:11:d7:8b:4c:dd:19:85:78:cd:c2:96:9b:fb:15:a0:8e: f1:29:58:c9:91:da:7b:84:cb:7c:73:9d:97:7f:4e:f4:0d:91: 5f:85:7d:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBP8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY4MUIxMTAvBgNVBAUTKEQxRkM2OTg2NzBBMjQxRUI0NTRENTVDNTY3QUE1QTYz NUFGMEEwNjMwHhcNMjUwNTMwMjM1NzA0WhcNMjUwNjA2MjM1NzA0WjAYMRYwFAYD VQQDEw02ODNhNDVkMC1jOWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy1DCezoV9p3Hx4q6rtSOXGLQN2hOADo0B78riJfyrwifvHryzV9GJUqkHs0k fb0ROyi3INm0LoaRGHz2oa3R4GBRsAPGPxKa/veffHH2RXzMq5ceVIiu2DXbGzmQ cO9lWPTpvMryXeYFBPXvyJ8e661kA+URhS4oFlD34mrPoEijlpUKvHr5k2ye/pCa faR2J0RvbIYhWZIp/7bC3Qa0/lbScv0NX4MMIZ+BPRT1Sc+KJ4YTrz5ZkcDth+gQ F5InlIuzoHyYA5SLGHhsSH4TwUKIkYfXwHeA8ke+08jPjg3jhmNh7H7+POiAd/xK Ds2WzDa8PmR6zpZxSip8W3n/dQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKD0QVOF M1u7cN5mU0tka2krnKfpMB8GA1UdIwQYMBaAFNH8aYZwokHrRU1VxWeqWmNa8KBj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjgxQi9DNDNGQkQwNjFB M0ExMUVDOEZCRjQxN0JDNEY5QUUwMi8wZnhwaG5DaVFldEZUVlhGWjZwYVkxcndv R00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBmeHBobkNpUWV0RlRWWEZaNnBhWTFyd29HTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjgxQi9DNDNGQkQwNjFBM0ExMUVDOEZCRjQxN0JDNEY5QUUwMi8wZnhwaG5DaVFl dEZUVlhGWjZwYVkxcndvR00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFPzSSezVV6S1AlAn7Yt5g1ecTNP/7SB74dAt+d2PmvX3J8Nyucu95 42cnDYgx6nDEBQPvf9yo+BnMh8vcBrqSVIiiDbaUzwQIWDbjFWFEIRlddsecAnE7 mbTjLnxx+Wdwxbe+21Nnd9Ustj3zd0RXd6T4oqTIV+wewaZffmz6qkv9lTpXNgJM DF6QBJI6PgnYo7J/GGF+7weFyWsAiU89LzRlmkYbI9EQQ1iozw8dwbTc90iPhur7 BEQljnV79gj1Adwl4yX/3aosDkdC9StA8Gx2q8pMXAq/pxHXi0zdGYV4zcKWm/sV oI7xKVjJkdp7hMt8c52Xf070DZFfhX0Y -----END CERTIFICATE-----Generated at Sat May 31 17:11:21 2025 by rpki-client