$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft File: ficJop5GIOVCf3NfN8A0c-NrWXo.mft (raw, json) Hash identifier: IvM7VASBXhpXGGfLoyQmT+5JbQgt4Cia/ypsZoYXkh4= Subject key identifier: D8:96:B3:46:1A:98:64:C3:0E:58:47:E8:20:92:49:8F:2B:98:76:8A Authority key identifier: 7E:27:09:A2:9E:46:20:E5:42:7F:73:5F:37:C0:34:73:E3:6B:59:7A Certificate issuer: /CN=A91DD0A4/serialNumber=7E2709A29E4620E5427F735F37C03473E36B597A Certificate serial: 090B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ficJop5GIOVCf3NfN8A0c-NrWXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft Manifest number: 0902 Signing time: Fri 30 May 2025 20:35:58 +0000 Manifest this update: Fri 30 May 2025 20:35:58 +0000 Manifest next update: Fri 06 Jun 2025 20:35:58 +0000 Files and hashes: 1: ficJop5GIOVCf3NfN8A0c-NrWXo.crl (hash: mRewE2ozgOeJyeQ3L7VpLiLLgAEQWwFM74M8uRlthkw=) 2: C8CCE2CCAA7411EA9DF2E685C4F9AE02.roa (hash: EY5IebdCRceAV1N2Sno2htu2PUjjGh0mWkvzE1zUnnE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.crl rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ficJop5GIOVCf3NfN8A0c-NrWXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:35:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2315 (0x90b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD0A4, serialNumber=7E2709A29E4620E5427F735F37C03473E36B597A Validity Not Before: May 30 20:35:58 2025 GMT Not After : Jun 6 20:35:58 2025 GMT Subject: CN=683a16ae-4d67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:7b:b6:70:a9:14:9c:46:7b:5f:b7:cc:f2:0d: 62:d8:02:6f:f1:58:f6:ff:c8:ca:ee:d6:51:9d:31: ba:52:ff:b3:ba:4f:d1:96:ad:a4:e5:eb:56:9a:c0: 94:c6:3f:dd:c9:36:9b:3d:33:66:78:b7:e6:5c:6e: ad:49:82:27:8d:2b:c7:a4:e7:7b:bc:cc:03:87:ae: 75:1c:20:74:b9:3b:88:03:dc:0a:ad:cb:30:c6:80: 9a:17:56:04:57:03:61:42:ae:28:db:7d:80:15:5e: 63:20:fc:8c:fd:70:dd:ca:4c:02:80:43:5c:a1:a4: f3:78:a9:db:84:0c:d7:b8:2b:2f:f2:45:74:bf:7a: fb:0a:36:56:93:b1:9a:9a:19:09:88:cb:b3:7a:16: 7b:bf:e2:bc:98:3f:03:dd:e0:bb:b5:75:21:c9:72: 0d:3c:6c:7e:3f:48:0b:16:be:db:58:31:8b:39:fb: d0:69:8f:15:0e:ef:7e:0c:5f:63:f6:2a:16:89:3e: e7:8f:0b:3d:1b:48:7e:b5:3d:c8:11:8b:6e:41:73: 96:8b:78:e1:de:5d:f0:7d:24:c1:3a:93:52:9a:c6: 39:3e:dc:fb:24:75:1b:7f:22:e9:48:44:55:5b:30: a5:0f:68:96:bc:4d:ef:a7:ae:d0:a1:09:fe:38:9f: eb:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:96:B3:46:1A:98:64:C3:0E:58:47:E8:20:92:49:8F:2B:98:76:8A X509v3 Authority Key Identifier: keyid:7E:27:09:A2:9E:46:20:E5:42:7F:73:5F:37:C0:34:73:E3:6B:59:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ficJop5GIOVCf3NfN8A0c-NrWXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:2b:d0:fc:69:15:6e:f8:26:b8:d3:3d:94:27:07:39:62:f0: 67:39:c6:5f:0a:52:e9:a1:19:e2:7f:ad:79:b1:1a:91:60:8d: 85:37:a2:14:df:e9:1d:d4:d8:e8:1b:b5:3a:93:80:fe:93:ea: 65:f4:37:85:78:23:c9:71:5b:5f:13:85:3d:c5:87:44:45:2d: d8:f7:71:0a:4a:e6:47:b5:cb:da:bc:0b:bc:44:18:a2:59:87: 8b:e0:0b:27:5a:5f:22:f8:94:76:88:ba:96:44:fc:26:60:84: 99:47:f8:ec:05:af:41:bb:3d:8b:da:58:f9:e4:67:94:3c:c1: ee:9a:c9:5e:1c:db:a4:ff:8d:2b:75:2f:c3:87:ec:e2:6e:a4: 53:17:b1:5c:f7:6c:2a:0d:12:33:9e:28:f9:b6:8b:92:b5:83: c7:f4:24:cc:51:ff:8c:77:9e:63:cc:fd:2c:de:e9:1b:b5:a1: c3:3d:0a:89:ea:9c:e8:c5:d9:0d:db:64:6d:23:62:76:d5:15: 51:cb:a3:69:31:c6:af:ef:12:f2:ac:c1:94:05:4e:47:06:6a: 1a:1b:f8:d6:78:78:01:be:20:94:b5:de:c2:e9:97:3c:f3:b7: 6e:40:09:f9:14:24:cf:58:95:b6:86:b9:06:ff:0e:b0:2e:a8: a6:10:74:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQwQTQxMTAvBgNVBAUTKDdFMjcwOUEyOUU0NjIwRTU0MjdGNzM1RjM3QzAzNDcz RTM2QjU5N0EwHhcNMjUwNTMwMjAzNTU4WhcNMjUwNjA2MjAzNTU4WjAYMRYwFAYD VQQDEw02ODNhMTZhZS00ZDY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzHu2cKkUnEZ7X7fM8g1i2AJv8Vj2/8jK7tZRnTG6Uv+zuk/Rlq2k5etWmsCU xj/dyTabPTNmeLfmXG6tSYInjSvHpOd7vMwDh651HCB0uTuIA9wKrcswxoCaF1YE VwNhQq4o232AFV5jIPyM/XDdykwCgENcoaTzeKnbhAzXuCsv8kV0v3r7CjZWk7Ga mhkJiMuzehZ7v+K8mD8D3eC7tXUhyXINPGx+P0gLFr7bWDGLOfvQaY8VDu9+DF9j 9ioWiT7njws9G0h+tT3IEYtuQXOWi3jh3l3wfSTBOpNSmsY5Ptz7JHUbfyLpSERV WzClD2iWvE3vp67QoQn+OJ/rBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNiWs0Ya mGTDDlhH6CCSSY8rmHaKMB8GA1UdIwQYMBaAFH4nCaKeRiDlQn9zXzfANHPja1l6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDBBNC85NUQ1RTM5MkFB NzMxMUVBQTEwQUNDODRDNEY5QUUwMi9maWNKb3A1R0lPVkNmM05mTjhBMGMtTnJX WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZpY0pvcDVHSU9WQ2YzTmZOOEEwYy1OcldYby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDBBNC85NUQ1RTM5MkFBNzMxMUVBQTEwQUNDODRDNEY5QUUwMi9maWNKb3A1R0lP VkNmM05mTjhBMGMtTnJXWG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOK9D8aRVu+Ca40z2UJwc5YvBnOcZfClLpoRnif615sRqRYI2FN6IU 3+kd1NjoG7U6k4D+k+pl9DeFeCPJcVtfE4U9xYdERS3Y93EKSuZHtcvavAu8RBii WYeL4AsnWl8i+JR2iLqWRPwmYISZR/jsBa9Buz2L2lj55GeUPMHumsleHNuk/40r dS/Dh+zibqRTF7Fc92wqDRIznij5touStYPH9CTMUf+Md55jzP0s3ukbtaHDPQqJ 6pzoxdkN22RtI2J21RVRy6NpMcav7xLyrMGUBU5HBmoaG/jWeHgBviCUtd7C6Zc8 87duQAn5FCTPWJW2hrkG/w6wLqimEHSD -----END CERTIFICATE-----Generated at Sat May 31 17:18:56 2025 by rpki-client