$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2131/BE4A6CD07D7211EB8CB63665C4F9AE02/FAfjHIfhFiRZ2Dw660iMl1qcI_E.mft File: FAfjHIfhFiRZ2Dw660iMl1qcI_E.mft (raw, json) Hash identifier: 7x7SbQboI487d6yjg6cZFhEEmDsF10JPNLvgN5dHM3Q= Subject key identifier: 7A:AC:CA:5B:E2:1F:01:A4:D9:FF:0A:EE:A0:7F:10:FF:A0:0A:B7:C5 Authority key identifier: 14:07:E3:1C:87:E1:16:24:59:D8:3C:3A:EB:48:8C:97:5A:9C:23:F1 Certificate issuer: /CN=A91B2131/serialNumber=1407E31C87E1162459D83C3AEB488C975A9C23F1 Certificate serial: 0670 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FAfjHIfhFiRZ2Dw660iMl1qcI_E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2131/BE4A6CD07D7211EB8CB63665C4F9AE02/FAfjHIfhFiRZ2Dw660iMl1qcI_E.mft Manifest number: 066B Signing time: Fri 30 May 2025 22:35:21 +0000 Manifest this update: Fri 30 May 2025 22:35:20 +0000 Manifest next update: Fri 06 Jun 2025 22:35:20 +0000 Files and hashes: 1: FAfjHIfhFiRZ2Dw660iMl1qcI_E.crl (hash: mbmud389IkudQPZx3Teze+SL8iRRNR3ko1REu8YAX28=) 2: D240E2EE814D11EBB1CE367FC4F9AE02.roa (hash: Qo5xdUrtF15zNycYs0WHF7Yan+dHCZcWYP9fO9pL8S4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2131/BE4A6CD07D7211EB8CB63665C4F9AE02/FAfjHIfhFiRZ2Dw660iMl1qcI_E.crl rsync://rpki.apnic.net/member_repository/A91B2131/BE4A6CD07D7211EB8CB63665C4F9AE02/FAfjHIfhFiRZ2Dw660iMl1qcI_E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FAfjHIfhFiRZ2Dw660iMl1qcI_E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:35:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1648 (0x670) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2131, serialNumber=1407E31C87E1162459D83C3AEB488C975A9C23F1 Validity Not Before: May 30 22:35:20 2025 GMT Not After : Jun 6 22:35:20 2025 GMT Subject: CN=683a32a8-b1c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:5a:07:58:a9:00:f4:99:04:11:37:b1:8b:c0: 5c:26:15:1f:10:6d:77:cd:a3:6b:42:a1:13:a7:8e: b5:55:c2:ee:60:eb:28:38:8f:d2:02:8c:ff:4d:d1: f0:02:03:c8:ba:2b:f8:78:00:08:c5:b6:a6:f0:ad: 0a:b0:d1:84:3f:87:16:fc:0e:37:23:14:05:22:60: 2a:8e:82:4b:ac:82:c4:b4:c8:06:96:05:0d:d6:19: 1a:81:2b:0f:77:42:f9:8e:31:27:d7:fa:72:bb:cf: af:9d:93:6d:01:6c:82:c7:b5:92:b9:bf:72:1d:44: 41:0a:8d:b2:e3:fb:ca:48:63:6c:a4:40:9b:40:0f: 0f:2a:56:59:03:9e:f0:9f:2e:dd:64:fb:c0:f7:e8: 5b:10:47:76:5e:19:4a:e6:a4:4b:9a:8c:4e:3a:16: b3:d5:b9:fb:a6:71:f0:af:9f:02:b1:0a:ef:d5:67: 20:f7:8d:7a:7b:32:05:92:a7:0c:f7:f5:67:cb:ec: f4:29:6f:b1:e5:f1:0e:ae:61:69:fc:66:ca:bd:9f: b1:91:6b:04:99:d6:94:95:fb:fe:aa:10:63:f8:b1: d7:68:14:db:c5:8b:f8:13:f8:11:48:89:4e:a5:07: 91:d1:55:d2:0d:a0:bb:ab:52:3e:57:12:1d:27:db: b6:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:AC:CA:5B:E2:1F:01:A4:D9:FF:0A:EE:A0:7F:10:FF:A0:0A:B7:C5 X509v3 Authority Key Identifier: keyid:14:07:E3:1C:87:E1:16:24:59:D8:3C:3A:EB:48:8C:97:5A:9C:23:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2131/BE4A6CD07D7211EB8CB63665C4F9AE02/FAfjHIfhFiRZ2Dw660iMl1qcI_E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FAfjHIfhFiRZ2Dw660iMl1qcI_E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2131/BE4A6CD07D7211EB8CB63665C4F9AE02/FAfjHIfhFiRZ2Dw660iMl1qcI_E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:55:16:ba:a8:10:ef:cf:fa:c1:44:f1:ea:8e:fe:40:13:32: 3e:40:da:e7:5d:82:c3:22:1a:9a:be:57:57:d7:27:7a:ad:76: f3:0f:5f:b6:51:05:be:6c:8a:e2:5e:7d:3a:61:fc:19:94:d1: 16:29:3e:e3:7d:6d:a6:eb:25:c2:0b:a8:9c:3f:43:91:f8:95: df:d4:b7:da:b9:27:de:aa:36:d5:62:22:3f:af:81:96:c0:64: cb:8c:fa:0b:5c:a4:a7:53:53:ef:a9:00:df:9d:94:3c:6d:39: 81:05:ef:c6:e4:db:e9:4c:94:8a:bd:c3:72:ac:1f:0e:42:fc: 1e:91:b0:c0:4d:f4:ab:c5:12:9b:9c:ac:e3:f2:5c:d0:98:94: 29:8d:59:6f:56:5f:c3:ca:d3:71:8d:5d:54:35:74:52:3f:de: 31:58:1d:f8:20:85:de:32:48:6c:a2:2a:99:c5:db:fb:fb:bb: fe:de:f0:69:f5:1c:7d:4c:b0:ef:98:57:f8:a0:c0:38:6b:ab: a0:1d:51:c7:a4:4e:ca:91:fa:67:f1:42:ae:7d:d2:23:5f:4a: f0:20:f1:6d:9b:86:1c:62:a4:ef:14:f9:80:9b:30:70:55:14: 32:2d:eb:13:4e:01:8f:e9:37:2d:34:1c:d7:91:33:4b:80:53: 73:2f:30:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjIxMzExMTAvBgNVBAUTKDE0MDdFMzFDODdFMTE2MjQ1OUQ4M0MzQUVCNDg4Qzk3 NUE5QzIzRjEwHhcNMjUwNTMwMjIzNTIwWhcNMjUwNjA2MjIzNTIwWjAYMRYwFAYD VQQDEw02ODNhMzJhOC1iMWMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7loHWKkA9JkEETexi8BcJhUfEG13zaNrQqETp461VcLuYOsoOI/SAoz/TdHw AgPIuiv4eAAIxbam8K0KsNGEP4cW/A43IxQFImAqjoJLrILEtMgGlgUN1hkagSsP d0L5jjEn1/pyu8+vnZNtAWyCx7WSub9yHURBCo2y4/vKSGNspECbQA8PKlZZA57w ny7dZPvA9+hbEEd2XhlK5qRLmoxOOhaz1bn7pnHwr58CsQrv1Wcg9416ezIFkqcM 9/Vny+z0KW+x5fEOrmFp/GbKvZ+xkWsEmdaUlfv+qhBj+LHXaBTbxYv4E/gRSIlO pQeR0VXSDaC7q1I+VxIdJ9u2rQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHqsylvi HwGk2f8K7qB/EP+gCrfFMB8GA1UdIwQYMBaAFBQH4xyH4RYkWdg8OutIjJdanCPx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjEzMS9CRTRBNkNEMDdE NzIxMUVCOENCNjM2NjVDNEY5QUUwMi9GQWZqSElmaEZpUloyRHc2NjBpTWwxcWNJ X0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZBZmpISWZoRmlSWjJEdzY2MGlNbDFxY0lfRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjEzMS9CRTRBNkNEMDdENzIxMUVCOENCNjM2NjVDNEY5QUUwMi9GQWZqSElmaEZp UloyRHc2NjBpTWwxcWNJX0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWVRa6qBDvz/rBRPHqjv5AEzI+QNrnXYLDIhqavldX1yd6rXbzD1+2 UQW+bIriXn06YfwZlNEWKT7jfW2m6yXCC6icP0OR+JXf1LfauSfeqjbVYiI/r4GW wGTLjPoLXKSnU1PvqQDfnZQ8bTmBBe/G5NvpTJSKvcNyrB8OQvwekbDATfSrxRKb nKzj8lzQmJQpjVlvVl/DytNxjV1UNXRSP94xWB34IIXeMkhsoiqZxdv7+7v+3vBp 9Rx9TLDvmFf4oMA4a6ugHVHHpE7Kkfpn8UKufdIjX0rwIPFtm4YcYqTvFPmAmzBw VRQyLesTTgGP6TctNBzXkTNLgFNzLzAR -----END CERTIFICATE-----Generated at Sat May 31 16:53:37 2025 by rpki-client