$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft File: FOZzxKcds0p1aBNYfkghLaLnczA.mft (raw, json) Hash identifier: +97sW/HMCFGS9SBvr/L167ZsbbGmvtHja79a9Rah/f0= Subject key identifier: 81:F9:17:EC:59:37:DE:41:C2:A7:30:D4:FF:47:55:5A:3C:3E:DD:EE Authority key identifier: 14:E6:73:C4:A7:1D:B3:4A:75:68:13:58:7E:48:21:2D:A2:E7:73:30 Certificate issuer: /CN=A91A2F33/serialNumber=14E673C4A71DB34A756813587E48212DA2E77330 Certificate serial: 0A01 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft Manifest number: 09E7 Signing time: Fri 06 Jun 2025 20:00:42 +0000 Manifest this update: Fri 06 Jun 2025 20:00:41 +0000 Manifest next update: Fri 13 Jun 2025 20:00:41 +0000 Files and hashes: 1: FOZzxKcds0p1aBNYfkghLaLnczA.crl (hash: LrH7NAgTOw5u4FiTiYM3HXqxRoC2ATE6TJxsIkgU01c=) 2: 344644CC1DC511EF95607948C4F9AE02.roa (hash: rkDHfwPM1DT0Lu0jNtn8nf16whUr6uH9MCf0inhJdfs=) 3: ED99CAA81DC411EF9E620C48C4F9AE02.roa (hash: p62MlJx+4H10Goj45fvAZ4d/rgVHWdc/FettBrr2SX0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.crl rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 20:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2561 (0xa01) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2F33, serialNumber=14E673C4A71DB34A756813587E48212DA2E77330 Validity Not Before: Jun 6 20:00:41 2025 GMT Not After : Jun 13 20:00:41 2025 GMT Subject: CN=684348ea-f792 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:da:12:fd:cd:43:39:a0:f9:7e:8d:8d:59:11: ec:10:d4:7b:e7:71:1a:5d:96:6c:af:ef:9e:1b:25: 85:ba:6b:25:ff:f4:3d:82:a5:95:a9:15:4a:7c:95: 79:57:68:ea:ba:dc:12:e9:99:44:be:29:ec:3a:f2: a4:5c:11:a1:3a:8c:98:2c:40:81:f0:73:41:1d:0e: 3a:60:6f:07:e2:7e:be:2a:32:d2:4d:17:8b:c4:38: 81:fe:b8:8c:65:b6:56:51:54:a3:12:d4:78:1d:8c: ab:68:9b:62:25:94:ec:f4:0c:94:55:31:5e:98:63: 55:f3:43:f1:6c:a0:7d:a3:e0:e1:5f:9d:1a:28:0b: c8:75:08:62:e1:cb:42:35:53:1f:21:d5:99:e0:a6: 3f:e1:47:45:5d:47:98:24:ae:e4:1c:1c:8c:4d:d9: 97:ab:59:41:18:ee:ba:30:3a:67:dd:34:2c:a9:3e: bc:51:72:e9:b7:60:9a:2c:93:9f:a8:64:3c:cc:d1: 6e:c9:b2:62:c6:ec:05:1b:97:5b:b2:f3:e3:ea:1d: 10:47:41:d5:3b:97:9d:95:d6:46:ea:93:29:3a:78: a0:e4:a2:8e:1b:59:18:6b:0b:18:ea:db:80:56:0c: a9:45:01:75:dc:13:14:8f:62:d6:4d:19:01:f9:92: 51:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:F9:17:EC:59:37:DE:41:C2:A7:30:D4:FF:47:55:5A:3C:3E:DD:EE X509v3 Authority Key Identifier: keyid:14:E6:73:C4:A7:1D:B3:4A:75:68:13:58:7E:48:21:2D:A2:E7:73:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:86:a6:d1:7d:03:91:8f:b0:ac:43:78:ea:02:24:71:42:5f: 05:55:ff:48:bc:a1:0e:39:5e:b0:49:a8:81:59:bd:27:a0:2f: d7:a9:2e:28:86:19:d8:d9:f7:77:bc:ce:0d:c0:8d:55:f3:8a: e0:00:7a:ae:4c:f7:55:43:eb:2e:55:98:26:db:0a:85:87:5f: f1:19:c8:e9:ee:01:dd:ff:04:e6:c6:84:ae:62:1d:0f:eb:42: 8b:3e:ad:76:18:f3:56:9a:23:15:47:b7:d5:29:9e:37:c7:01: 26:52:d5:b7:97:87:7c:8d:c4:d0:97:05:61:f2:d6:4c:da:70: c7:45:d4:65:55:06:04:33:a3:3d:21:57:49:1f:bc:96:b1:39: 47:96:01:04:5a:60:7f:1a:87:e2:36:a8:e3:f8:dc:ea:86:43: a2:28:de:d8:93:c5:bc:b6:24:30:57:1a:ad:84:9a:af:4e:91: 15:41:b8:49:e9:29:1b:72:d7:80:5d:dd:75:5c:20:1a:e9:ae: 5a:a5:1a:bb:4f:bc:cc:a2:6c:43:d1:53:e4:5c:01:a6:f5:65: 90:69:90:d6:0f:5b:40:16:9e:11:37:e2:c9:17:b5:12:36:e8: 41:8e:ce:39:12:00:0b:d6:e2:52:f2:69:37:bf:d3:b6:fe:27: 3f:e5:90:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCgEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJGMzMxMTAvBgNVBAUTKDE0RTY3M0M0QTcxREIzNEE3NTY4MTM1ODdFNDgyMTJE QTJFNzczMzAwHhcNMjUwNjA2MjAwMDQxWhcNMjUwNjEzMjAwMDQxWjAYMRYwFAYD VQQDEw02ODQzNDhlYS1mNzkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsNoS/c1DOaD5fo2NWRHsENR753EaXZZsr++eGyWFumsl//Q9gqWVqRVKfJV5 V2jqutwS6ZlEvinsOvKkXBGhOoyYLECB8HNBHQ46YG8H4n6+KjLSTReLxDiB/riM ZbZWUVSjEtR4HYyraJtiJZTs9AyUVTFemGNV80PxbKB9o+DhX50aKAvIdQhi4ctC NVMfIdWZ4KY/4UdFXUeYJK7kHByMTdmXq1lBGO66MDpn3TQsqT68UXLpt2CaLJOf qGQ8zNFuybJixuwFG5dbsvPj6h0QR0HVO5edldZG6pMpOnig5KKOG1kYawsY6tuA VgypRQF13BMUj2LWTRkB+ZJRZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIH5F+xZ N95Bwqcw1P9HVVo8Pt3uMB8GA1UdIwQYMBaAFBTmc8SnHbNKdWgTWH5IIS2i53Mw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkYzMy9FNkVDMkQ5Mjgw OTExMUVBQUJDREZGNkNDNEY5QUUwMi9GT1p6eEtjZHMwcDFhQk5ZZmtnaExhTG5j ekEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZPWnp4S2NkczBwMWFCTllma2doTGFMbmN6QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MkYzMy9FNkVDMkQ5MjgwOTExMUVBQUJDREZGNkNDNEY5QUUwMi9GT1p6eEtjZHMw cDFhQk5ZZmtnaExhTG5jekEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBghqbRfQORj7CsQ3jqAiRxQl8FVf9IvKEOOV6wSaiBWb0noC/XqS4o hhnY2fd3vM4NwI1V84rgAHquTPdVQ+suVZgm2wqFh1/xGcjp7gHd/wTmxoSuYh0P 60KLPq12GPNWmiMVR7fVKZ43xwEmUtW3l4d8jcTQlwVh8tZM2nDHRdRlVQYEM6M9 IVdJH7yWsTlHlgEEWmB/GofiNqjj+NzqhkOiKN7Yk8W8tiQwVxqthJqvTpEVQbhJ 6SkbcteAXd11XCAa6a5apRq7T7zMomxD0VPkXAGm9WWQaZDWD1tAFp4RN+LJF7US NuhBjs45EgAL1uJS8mk3v9O2/ic/5ZCT -----END CERTIFICATE-----Generated at Sat Jun 7 05:34:56 2025 by rpki-client