$ rpki-client -vvf rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/cFErPTLQXcMlQemOV1oxxTIHNkg.mft File: cFErPTLQXcMlQemOV1oxxTIHNkg.mft (raw, json) Hash identifier: P3hrZO7wfNWIt+Gk90QoMbyVAO9ptvdehky/fLm1Nno= Subject key identifier: AA:5A:58:D7:57:D7:BB:1E:A6:76:0E:03:A9:7D:4E:9F:A8:6B:05:41 Authority key identifier: 70:51:2B:3D:32:D0:5D:C3:25:41:E9:8E:57:5A:31:C5:32:07:36:48 Certificate issuer: /CN=A918D75D/serialNumber=70512B3D32D05DC32541E98E575A31C532073648 Certificate serial: 060A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cFErPTLQXcMlQemOV1oxxTIHNkg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/cFErPTLQXcMlQemOV1oxxTIHNkg.mft Manifest number: 0605 Signing time: Fri 30 May 2025 23:04:23 +0000 Manifest this update: Fri 30 May 2025 23:04:23 +0000 Manifest next update: Fri 06 Jun 2025 23:04:23 +0000 Files and hashes: 1: cFErPTLQXcMlQemOV1oxxTIHNkg.crl (hash: RQjBpVX5E+OGFNgb1BeOgj2yB815G9JemwAW1pD5/iM=) 2: D0763FECA68A11EB9F23D74FC4F9AE02.roa (hash: otn7zJrk0PPbtnlH9qLQ0UvTzJRXUBW5NBaU6fJKloc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/cFErPTLQXcMlQemOV1oxxTIHNkg.crl rsync://rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/cFErPTLQXcMlQemOV1oxxTIHNkg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cFErPTLQXcMlQemOV1oxxTIHNkg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 23:04:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1546 (0x60a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D75D, serialNumber=70512B3D32D05DC32541E98E575A31C532073648 Validity Not Before: May 30 23:04:23 2025 GMT Not After : Jun 6 23:04:23 2025 GMT Subject: CN=683a3977-f689 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:04:a4:ba:14:10:df:4d:78:28:3b:09:df:91: a0:7c:c3:7b:b0:8a:be:32:13:5b:89:aa:74:8e:86: 4c:94:32:46:85:32:4f:51:35:34:40:b3:ce:23:86: 63:c4:e8:05:6f:83:8a:04:6c:84:2a:1e:dd:e0:af: 73:fb:98:35:40:d3:6d:e5:c5:86:45:4d:2a:eb:e5: d0:54:63:f9:23:35:8a:10:fc:c2:b3:1e:77:76:91: f1:94:26:46:ae:a8:7f:78:24:2e:bf:59:da:4a:dc: 3d:a4:40:98:87:6e:59:b7:b1:ad:04:20:2e:54:54: b1:ab:14:7d:b5:6a:96:0f:42:f0:e7:dc:d3:ac:8e: 02:40:82:e6:98:2d:ee:8e:3a:04:e7:6d:e2:d6:4a: 0b:e3:92:e8:16:2e:02:aa:9d:d0:a5:b2:a4:25:f1: 85:fe:4d:b5:ad:ae:d7:d9:0b:6a:9c:25:4b:f2:eb: 31:d1:14:72:4a:89:34:7c:90:c8:13:02:40:d8:f4: 4e:60:c9:4d:59:ea:1e:d0:5a:80:62:ce:dc:be:5f: f6:bf:e5:3c:1f:3d:54:68:41:ff:09:5c:d3:0e:2c: b2:4e:a9:d2:f6:27:87:58:7d:9e:54:c0:ba:4c:1b: 30:bc:1d:46:d0:be:7f:23:ba:93:1a:44:00:ab:d1: 0f:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:5A:58:D7:57:D7:BB:1E:A6:76:0E:03:A9:7D:4E:9F:A8:6B:05:41 X509v3 Authority Key Identifier: keyid:70:51:2B:3D:32:D0:5D:C3:25:41:E9:8E:57:5A:31:C5:32:07:36:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/cFErPTLQXcMlQemOV1oxxTIHNkg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cFErPTLQXcMlQemOV1oxxTIHNkg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/cFErPTLQXcMlQemOV1oxxTIHNkg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:83:c2:45:b6:2e:0f:6d:02:14:87:bb:fe:9a:3d:1a:31:ca: 41:93:a0:ba:91:d3:b5:4b:c8:f6:22:a3:7c:ff:14:fc:98:6e: 74:97:97:06:82:a3:81:9c:c1:15:cc:ca:1a:ca:95:ff:25:09: d7:90:9b:9b:25:16:de:81:f6:1d:b7:eb:38:1f:15:ee:98:79: 41:94:29:c2:fb:fe:64:2e:57:84:af:01:f9:7e:50:63:12:32: 3b:5d:52:52:ee:47:15:e3:49:0a:bb:6d:ce:5e:4d:6a:e8:51: 10:99:4d:1b:62:d3:ab:48:b6:bf:04:7a:67:a0:38:1c:43:38: da:a1:22:5c:6b:20:c4:45:34:5f:7b:b5:76:c9:02:87:80:ea: 8d:7a:52:e1:61:94:ce:0d:59:90:f9:86:a8:de:2f:95:32:b0: fe:fb:70:b5:a4:3e:21:9d:eb:95:89:5b:2d:a4:7b:1c:5f:84: 83:2c:fa:e5:e9:82:ea:dd:62:3e:2d:36:8b:84:fc:1c:ad:51: d8:24:13:cd:70:69:10:1f:8a:af:e5:35:c3:41:29:72:ec:9f: 77:67:04:51:0e:53:9b:4b:c7:be:6b:45:b4:ce:8b:1a:5e:ff: 99:f7:5f:be:25:a2:1f:7d:9b:5e:81:12:25:f1:21:a4:bb:b4: 89:5d:dc:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBgowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ3NUQxMTAvBgNVBAUTKDcwNTEyQjNEMzJEMDVEQzMyNTQxRTk4RTU3NUEzMUM1 MzIwNzM2NDgwHhcNMjUwNTMwMjMwNDIzWhcNMjUwNjA2MjMwNDIzWjAYMRYwFAYD VQQDEw02ODNhMzk3Ny1mNjg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAygSkuhQQ3014KDsJ35GgfMN7sIq+MhNbiap0joZMlDJGhTJPUTU0QLPOI4Zj xOgFb4OKBGyEKh7d4K9z+5g1QNNt5cWGRU0q6+XQVGP5IzWKEPzCsx53dpHxlCZG rqh/eCQuv1naStw9pECYh25Zt7GtBCAuVFSxqxR9tWqWD0Lw59zTrI4CQILmmC3u jjoE523i1koL45LoFi4Cqp3QpbKkJfGF/k21ra7X2QtqnCVL8usx0RRySok0fJDI EwJA2PROYMlNWeoe0FqAYs7cvl/2v+U8Hz1UaEH/CVzTDiyyTqnS9ieHWH2eVMC6 TBswvB1G0L5/I7qTGkQAq9EPWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKpaWNdX 17sepnYOA6l9Tp+oawVBMB8GA1UdIwQYMBaAFHBRKz0y0F3DJUHpjldaMcUyBzZI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDc1RC83RTI3MkY3Q0E2 ODkxMUVCQTQ0QjAyNEZDNEY5QUUwMi9jRkVyUFRMUVhjTWxRZW1PVjFveHhUSUhO a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NGRXJQVExRWGNNbFFlbU9WMW94eFRJSE5rZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDc1RC83RTI3MkY3Q0E2ODkxMUVCQTQ0QjAyNEZDNEY5QUUwMi9jRkVyUFRMUVhj TWxRZW1PVjFveHhUSUhOa2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbg8JFti4PbQIUh7v+mj0aMcpBk6C6kdO1S8j2IqN8/xT8mG50l5cG gqOBnMEVzMoaypX/JQnXkJubJRbegfYdt+s4HxXumHlBlCnC+/5kLleErwH5flBj EjI7XVJS7kcV40kKu23OXk1q6FEQmU0bYtOrSLa/BHpnoDgcQzjaoSJcayDERTRf e7V2yQKHgOqNelLhYZTODVmQ+Yao3i+VMrD++3C1pD4hneuViVstpHscX4SDLPrl 6YLq3WI+LTaLhPwcrVHYJBPNcGkQH4qv5TXDQSly7J93ZwRRDlObS8e+a0W0zosa Xv+Z91++JaIffZtegRIl8SGku7SJXdzv -----END CERTIFICATE-----Generated at Sat May 31 17:20:40 2025 by rpki-client