$ rpki-client -vvf rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft File: FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft (raw, json) Hash identifier: 5arOw4o07JkYxu7h7MSnJVJuQZ2Rido7gguhPjJ99vg= Subject key identifier: 25:1A:56:F9:75:81:01:70:A1:DA:01:96:3B:0D:70:D5:68:90:70:5B Authority key identifier: 16:01:D8:65:0D:D5:56:B2:AF:B0:83:B2:33:FF:65:AE:3D:AD:15:71 Certificate issuer: /CN=A918FC40/serialNumber=1601D8650DD556B2AFB083B233FF65AE3DAD1571 Certificate serial: 0B25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft Manifest number: 0B10 Signing time: Fri 30 May 2025 19:26:55 +0000 Manifest this update: Fri 30 May 2025 19:26:54 +0000 Manifest next update: Fri 06 Jun 2025 19:26:54 +0000 Files and hashes: 1: FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl (hash: a7rKWX0KTOl276+RBOAkCmsv0Wzuot1KBORDHBcaFPE=) 2: B7BC4714BEF011ED9634C070C4F9AE02.roa (hash: hCJDcBpZnY511Q8RFEjySoDwZo6yKwsip9nLzCPAimM=) 3: DCA05C0E419A11EAA5E2BA6EC4F9AE02.roa (hash: PF9MEJvH0IR25ZTC0vJ/AU9NL74Mubr8N6aNLLIh+tY=) 4: DC06CBC0419A11EAA5E2BA6EC4F9AE02.roa (hash: jb+NbLPJbNRFrpXKly3k3uaY8m7AD5q86vW7O0jvGcA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:26:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2853 (0xb25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FC40, serialNumber=1601D8650DD556B2AFB083B233FF65AE3DAD1571 Validity Not Before: May 30 19:26:54 2025 GMT Not After : Jun 6 19:26:54 2025 GMT Subject: CN=683a067f-8453 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a3:52:61:b6:0b:2a:fa:6d:fb:a4:81:25:f4: 00:e6:6d:fc:0b:b2:e1:da:52:ff:f1:67:5a:42:00: 23:88:69:0b:92:98:f8:30:1b:a3:19:7b:7f:af:38: bc:0f:ad:52:2f:25:7f:ee:27:53:a9:88:4b:f8:c8: c7:07:5e:f7:25:5c:5c:0e:a9:92:3b:0e:a6:64:6d: ff:60:39:77:38:ff:dd:44:5d:5c:c1:7b:d6:9b:d8: ee:60:4b:0f:c5:f4:96:35:ad:57:d4:9f:db:2f:77: fe:b5:a5:53:81:c2:52:0a:bd:b4:53:1a:8a:aa:06: cc:f0:cc:35:6a:42:76:1e:76:0f:49:75:36:d9:5d: d0:e7:17:c8:9a:f6:7e:44:05:f1:ee:3d:d9:0b:39: 4a:bc:20:90:8d:77:e1:56:37:c6:6f:f3:96:bc:32: ac:0a:6b:cc:ec:d0:a4:56:cb:5f:66:85:10:ba:e6: 25:b7:43:10:51:7d:b0:77:33:bf:92:c3:a8:a0:83: e4:a7:5a:96:65:d7:82:0f:b7:1a:83:f4:2e:b6:7a: 0a:46:bb:6c:1a:8b:d2:f6:b6:b6:f5:95:79:cd:cb: 0c:57:59:f5:ed:76:91:97:c2:d2:13:01:cf:aa:22: 47:5b:59:5f:65:2c:3e:c2:13:be:b8:41:6a:29:75: ef:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:1A:56:F9:75:81:01:70:A1:DA:01:96:3B:0D:70:D5:68:90:70:5B X509v3 Authority Key Identifier: keyid:16:01:D8:65:0D:D5:56:B2:AF:B0:83:B2:33:FF:65:AE:3D:AD:15:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:f9:f6:58:ef:c0:00:86:14:76:fd:59:81:fa:21:fe:0b:a2: 46:70:68:f6:92:97:56:51:22:83:37:b4:af:91:d1:07:d3:2f: 63:33:2d:7f:48:f8:27:ff:b2:0d:4b:6a:f0:3d:31:93:ec:59: d0:76:77:74:c7:c1:0b:b0:35:09:8a:cb:7b:1a:e1:02:39:d2: 8e:cb:e3:7b:7c:d3:fb:22:d3:40:b2:18:3e:d7:da:b2:44:cc: 06:2d:a7:41:93:c1:f4:a6:58:10:92:6e:03:0e:d2:51:37:82: 12:ea:75:a7:61:21:2d:97:f9:ee:b6:bb:66:73:f7:8c:13:e9: 44:a0:f6:a6:4f:f2:3f:e6:0e:c5:2a:25:5b:12:fe:d2:56:bd: 0d:89:28:d3:69:a5:8f:b6:9f:35:f9:d0:c2:42:b5:75:7d:d4: a0:91:91:0b:01:b3:bf:a1:1a:38:0e:07:d7:c1:7a:1f:99:8d: 6d:1b:10:c7:89:7a:9a:f1:65:f9:87:71:2b:1a:3a:14:96:ec: a0:c6:61:e1:54:5c:33:c1:ea:23:80:29:ee:d5:58:70:c1:c0: 23:45:d0:a6:96:cd:fe:c4:5c:d2:7a:d6:71:79:c5:73:1c:c0: 18:14:d3:af:45:b9:7b:5b:66:23:e2:08:66:20:be:3a:a6:8f: 2a:16:f6:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCyUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZDNDAxMTAvBgNVBAUTKDE2MDFEODY1MERENTU2QjJBRkIwODNCMjMzRkY2NUFF M0RBRDE1NzEwHhcNMjUwNTMwMTkyNjU0WhcNMjUwNjA2MTkyNjU0WjAYMRYwFAYD VQQDEw02ODNhMDY3Zi04NDUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtaNSYbYLKvpt+6SBJfQA5m38C7Lh2lL/8WdaQgAjiGkLkpj4MBujGXt/rzi8 D61SLyV/7idTqYhL+MjHB173JVxcDqmSOw6mZG3/YDl3OP/dRF1cwXvWm9juYEsP xfSWNa1X1J/bL3f+taVTgcJSCr20UxqKqgbM8Mw1akJ2HnYPSXU22V3Q5xfImvZ+ RAXx7j3ZCzlKvCCQjXfhVjfGb/OWvDKsCmvM7NCkVstfZoUQuuYlt0MQUX2wdzO/ ksOooIPkp1qWZdeCD7cag/QutnoKRrtsGovS9ra29ZV5zcsMV1n17XaRl8LSEwHP qiJHW1lfZSw+whO+uEFqKXXvEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCUaVvl1 gQFwodoBljsNcNVokHBbMB8GA1UdIwQYMBaAFBYB2GUN1Vayr7CDsjP/Za49rRVx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkM0MC82MTdGMzUzNjQw RTExMUVBQkM2MkRCMjZDNEY5QUUwMi9GZ0hZWlEzVlZyS3ZzSU95TV85bHJqMnRG WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZnSFlaUTNWVnJLdnNJT3lNXzlscmoydEZYRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkM0MC82MTdGMzUzNjQwRTExMUVBQkM2MkRCMjZDNEY5QUUwMi9GZ0hZWlEzVlZy S3ZzSU95TV85bHJqMnRGWEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC++fZY78AAhhR2/VmB+iH+C6JGcGj2kpdWUSKDN7SvkdEH0y9jMy1/ SPgn/7INS2rwPTGT7FnQdnd0x8ELsDUJist7GuECOdKOy+N7fNP7ItNAshg+19qy RMwGLadBk8H0plgQkm4DDtJRN4IS6nWnYSEtl/nutrtmc/eME+lEoPamT/I/5g7F KiVbEv7SVr0NiSjTaaWPtp81+dDCQrV1fdSgkZELAbO/oRo4DgfXwXofmY1tGxDH iXqa8WX5h3ErGjoUluygxmHhVFwzweojgCnu1VhwwcAjRdCmls3+xFzSetZxecVz HMAYFNOvRbl7W2Yj4ghmIL46po8qFvbZ -----END CERTIFICATE-----Generated at Sat May 31 17:16:20 2025 by rpki-client