$ rpki-client -vvf rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.mft File: fnHZ0UYSF7D4LAexXE8CnyZySYo.mft (raw, json) Hash identifier: hJhCCUlfYm1CFggBsyEdc8wJAvqDj0KMv/qbeX57aB4= Subject key identifier: 39:F9:2B:6C:2C:F5:59:C6:FA:8F:39:68:C9:48:25:0D:8D:D1:2B:9F Authority key identifier: 7E:71:D9:D1:46:12:17:B0:F8:2C:07:B1:5C:4F:02:9F:26:72:49:8A Certificate issuer: /CN=A91A11A1/serialNumber=7E71D9D1461217B0F82C07B15C4F029F2672498A Certificate serial: 010F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnHZ0UYSF7D4LAexXE8CnyZySYo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.mft Manifest number: 0108 Signing time: Sat 31 May 2025 04:40:46 +0000 Manifest this update: Sat 31 May 2025 04:40:45 +0000 Manifest next update: Sat 07 Jun 2025 04:40:45 +0000 Files and hashes: 1: fnHZ0UYSF7D4LAexXE8CnyZySYo.crl (hash: n+QnTcvliBcX2aDCbW0NpD9KQ47Sy+au7h0+Zom2psw=) 2: FA66BA00BD1311EEBC015623C4F9AE02.roa (hash: 8zPxRe7MaH+hS0FNXaje7YOQ+Hnyx7RIa4mbg2ZFLUE=) 3: F57B503EB05F11EEB6F38532C4F9AE02.roa (hash: Oms7A+5CbFEtaIgmT8kB8Ycz88DQ95dp9Wjdw3xeV+w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.crl rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnHZ0UYSF7D4LAexXE8CnyZySYo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:40:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 271 (0x10f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A11A1, serialNumber=7E71D9D1461217B0F82C07B15C4F029F2672498A Validity Not Before: May 31 04:40:45 2025 GMT Not After : Jun 7 04:40:45 2025 GMT Subject: CN=683a884e-278e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:68:32:e9:1c:cf:48:f9:b5:b3:67:a8:58:6b: 88:a2:ec:f1:56:1d:f3:bb:0e:62:d4:e6:89:1f:bd: 5a:69:44:47:4d:9c:d6:22:ee:e3:1e:a8:4d:37:8c: e3:fb:18:79:66:b9:df:e0:11:d0:80:b5:8d:de:59: ab:3b:e3:35:30:a2:fd:76:bf:d4:76:24:53:6c:1d: 3e:9e:a5:41:db:3d:78:59:45:d4:19:eb:c9:53:ac: c4:47:88:80:99:f6:83:22:55:11:7b:09:3b:cb:ce: c7:35:18:28:df:e5:68:df:84:4e:d0:f6:c9:31:4b: 5a:5e:13:cd:48:4f:2a:5a:e9:28:53:ca:f9:22:38: 71:5f:3b:81:2e:b7:76:f1:bc:f4:9c:ff:82:e8:de: 71:22:c9:4c:ce:61:c7:3e:18:9b:49:e4:79:c9:42: b4:55:0e:28:a1:dd:d8:07:8e:9a:77:10:63:da:29: 4a:52:54:61:b1:09:40:ec:6f:ee:47:f2:e2:f7:b9: 59:27:af:ac:22:77:22:16:24:e8:1d:95:96:85:ac: 82:bb:63:b1:d6:f3:45:01:64:fe:bf:fe:b5:1d:11: 51:7a:dd:9b:d9:fa:0f:a1:16:89:a5:5f:1d:a5:e0: 1c:7d:31:e5:54:6d:ad:e2:be:0d:59:1b:7b:05:2f: 77:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:F9:2B:6C:2C:F5:59:C6:FA:8F:39:68:C9:48:25:0D:8D:D1:2B:9F X509v3 Authority Key Identifier: keyid:7E:71:D9:D1:46:12:17:B0:F8:2C:07:B1:5C:4F:02:9F:26:72:49:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnHZ0UYSF7D4LAexXE8CnyZySYo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:31:20:09:b5:a2:9b:14:c4:d0:84:c4:03:a5:8d:22:a2:fa: 39:4e:6f:ac:ca:8d:18:e4:88:56:b9:ae:6b:c6:ec:37:4d:31: 76:18:44:36:14:d4:9d:2e:2f:30:74:e8:a4:55:ea:17:0a:c3: 46:6f:3d:47:da:7d:db:ef:55:f3:b9:ab:43:7a:ba:53:d1:6e: 1c:4f:c9:32:8b:6f:96:3d:b6:d7:a0:42:f6:0a:de:8c:bc:e9: ed:0e:19:72:63:a6:0e:73:9d:48:d4:84:ca:95:16:0f:9b:15: 75:a3:27:76:73:de:20:da:fb:9f:03:a5:bd:1b:87:e2:70:ed: 38:6a:64:16:8d:49:8b:2f:6e:1b:71:20:1c:92:41:91:28:62: 36:81:1b:50:e7:9f:c7:70:03:64:8d:0e:78:fa:5e:ec:7e:84: db:d9:4f:52:5e:2a:75:d9:15:7b:f1:96:a6:b5:6d:20:6f:2e: d7:9c:a7:9c:2d:23:19:55:4e:3c:66:d1:88:aa:df:6c:9c:75: 55:a8:46:07:d9:c9:7b:0b:ba:1b:c5:7a:8c:d0:c9:15:80:3b: 14:29:30:6d:92:7b:41:9d:54:01:19:2d:29:7b:a8:c2:1c:67: c6:9d:f6:a8:c7:d9:2f:cb:d2:d9:9e:9e:0a:4c:d9:53:84:3d: 04:47:84:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTExQTExMTAvBgNVBAUTKDdFNzFEOUQxNDYxMjE3QjBGODJDMDdCMTVDNEYwMjlG MjY3MjQ5OEEwHhcNMjUwNTMxMDQ0MDQ1WhcNMjUwNjA3MDQ0MDQ1WjAYMRYwFAYD VQQDEw02ODNhODg0ZS0yNzhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuWgy6RzPSPm1s2eoWGuIouzxVh3zuw5i1OaJH71aaURHTZzWIu7jHqhNN4zj +xh5Zrnf4BHQgLWN3lmrO+M1MKL9dr/UdiRTbB0+nqVB2z14WUXUGevJU6zER4iA mfaDIlURewk7y87HNRgo3+Vo34RO0PbJMUtaXhPNSE8qWukoU8r5IjhxXzuBLrd2 8bz0nP+C6N5xIslMzmHHPhibSeR5yUK0VQ4ood3YB46adxBj2ilKUlRhsQlA7G/u R/Li97lZJ6+sInciFiToHZWWhayCu2Ox1vNFAWT+v/61HRFRet2b2foPoRaJpV8d peAcfTHlVG2t4r4NWRt7BS93FQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDn5K2ws 9VnG+o85aMlIJQ2N0SufMB8GA1UdIwQYMBaAFH5x2dFGEhew+CwHsVxPAp8mckmK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTFBMS9BOUI3M0NBOEIw NUYxMUVFOTlDNjU0NzdDNEY5QUUwMi9mbkhaMFVZU0Y3RDRMQWV4WEU4Q255WnlT WW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZuSFowVVlTRjdENExBZXhYRThDbnlaeVNZby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTFBMS9BOUI3M0NBOEIwNUYxMUVFOTlDNjU0NzdDNEY5QUUwMi9mbkhaMFVZU0Y3 RDRMQWV4WEU4Q255WnlTWW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUMSAJtaKbFMTQhMQDpY0iovo5Tm+syo0Y5IhWua5rxuw3TTF2GEQ2 FNSdLi8wdOikVeoXCsNGbz1H2n3b71XzuatDerpT0W4cT8kyi2+WPbbXoEL2Ct6M vOntDhlyY6YOc51I1ITKlRYPmxV1oyd2c94g2vufA6W9G4ficO04amQWjUmLL24b cSAckkGRKGI2gRtQ55/HcANkjQ54+l7sfoTb2U9SXip12RV78ZamtW0gby7XnKec LSMZVU48ZtGIqt9snHVVqEYH2cl7C7obxXqM0MkVgDsUKTBtkntBnVQBGS0pe6jC HGfGnfaox9kvy9LZnp4KTNlThD0ER4Td -----END CERTIFICATE-----Generated at Sat May 31 16:44:55 2025 by rpki-client