$ rpki-client -vvf rpki.apnic.net/member_repository/A9125A95/AA60C8EC617211ECA3172086C4F9AE02/_fz0IvXEZi3h5GQ6JxwEax4hxK0.mft File: _fz0IvXEZi3h5GQ6JxwEax4hxK0.mft (raw, json) Hash identifier: 8X6BLMb0Mt2m3hfHh+/+D1TuFah74QENROlrToImrkc= Subject key identifier: 5F:08:26:C2:AF:B7:B0:80:65:02:0D:20:36:85:02:60:FE:EC:ED:79 Authority key identifier: FD:FC:F4:22:F5:C4:66:2D:E1:E4:64:3A:27:1C:04:6B:1E:21:C4:AD Certificate issuer: /CN=A9125A95/serialNumber=FDFCF422F5C4662DE1E4643A271C046B1E21C4AD Certificate serial: 0421 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_fz0IvXEZi3h5GQ6JxwEax4hxK0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125A95/AA60C8EC617211ECA3172086C4F9AE02/_fz0IvXEZi3h5GQ6JxwEax4hxK0.mft Manifest number: 041D Signing time: Fri 25 Apr 2025 00:10:31 +0000 Manifest this update: Fri 25 Apr 2025 00:10:30 +0000 Manifest next update: Fri 02 May 2025 00:10:30 +0000 Files and hashes: 1: _fz0IvXEZi3h5GQ6JxwEax4hxK0.crl (hash: Q4KlECXCcoXcf1T82H6QPEM0/zCAdMzytNfD0yV8onk=) 2: AF506F14630811EC97879243C4F9AE02.roa (hash: 2rxDZmn8FcPG24Wlb4Jg090ASKMT6CB+r3+3kvhWtoQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125A95/AA60C8EC617211ECA3172086C4F9AE02/_fz0IvXEZi3h5GQ6JxwEax4hxK0.crl rsync://rpki.apnic.net/member_repository/A9125A95/AA60C8EC617211ECA3172086C4F9AE02/_fz0IvXEZi3h5GQ6JxwEax4hxK0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_fz0IvXEZi3h5GQ6JxwEax4hxK0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:10:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1057 (0x421) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125A95, serialNumber=FDFCF422F5C4662DE1E4643A271C046B1E21C4AD Validity Not Before: Apr 25 00:10:30 2025 GMT Not After : May 2 00:10:30 2025 GMT Subject: CN=680ad2f7-3ba9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:18:b0:f5:bb:da:76:6a:c0:a0:c5:15:c4:aa: 46:63:b7:a7:fc:bd:c3:fa:b1:e2:92:01:f0:e8:14: 63:7f:a0:30:78:18:d4:07:50:e3:30:09:e6:4c:d7: 0e:2f:3c:a6:43:3e:90:cf:1e:e9:b6:a0:c1:47:86: e2:00:18:e0:64:1d:84:04:9f:6d:c2:41:a5:73:d6: bf:90:63:85:4d:2f:a4:a0:77:95:90:b1:e1:42:cc: 14:30:a6:17:b8:74:27:1c:16:a4:4b:dd:25:ed:f7: a8:57:a7:39:45:b1:92:c8:c8:85:2b:02:2e:b8:1b: ff:fc:21:4f:c1:95:15:a8:5f:38:fe:83:ba:db:d0: 8e:3a:f1:0b:ea:ac:03:bc:0a:ae:12:3e:38:00:97: 26:20:84:8f:1e:a1:2e:d9:78:25:7a:ea:19:59:4d: 71:8f:6b:b0:f4:24:92:7a:98:27:4e:31:96:c8:b1: 27:2d:41:d3:31:81:c3:40:ae:48:5e:6e:34:ba:f1: 7c:c6:9b:da:20:de:df:58:40:50:e0:93:33:81:f7: 79:12:65:42:56:dd:17:a2:39:d3:a6:59:51:46:60: a4:e1:14:8c:24:b6:cf:d7:1e:2e:5f:5f:95:4c:bd: 79:f6:35:c7:bb:34:fe:bf:66:d9:be:23:8d:8b:f0: bd:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:08:26:C2:AF:B7:B0:80:65:02:0D:20:36:85:02:60:FE:EC:ED:79 X509v3 Authority Key Identifier: keyid:FD:FC:F4:22:F5:C4:66:2D:E1:E4:64:3A:27:1C:04:6B:1E:21:C4:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125A95/AA60C8EC617211ECA3172086C4F9AE02/_fz0IvXEZi3h5GQ6JxwEax4hxK0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_fz0IvXEZi3h5GQ6JxwEax4hxK0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125A95/AA60C8EC617211ECA3172086C4F9AE02/_fz0IvXEZi3h5GQ6JxwEax4hxK0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:f4:47:0a:ef:0e:38:60:a6:ea:58:2f:cb:1e:0d:a3:bd:7b: a8:5f:4b:0c:51:72:11:a4:f6:3c:07:de:a0:83:ab:87:dd:69: 40:e1:76:18:f1:e5:ef:db:bd:af:2d:d9:1d:c2:65:72:67:aa: 94:07:50:f8:5e:58:fd:93:2a:da:45:e1:97:34:5b:9f:04:90: b8:51:e9:85:08:77:e3:46:bd:03:84:57:09:44:ba:06:28:d7: af:14:54:75:c3:57:0e:ff:52:c8:13:b8:e3:cc:7b:74:99:dc: 16:1a:6c:b2:f8:59:b4:69:6d:d0:38:21:1e:d4:82:7c:03:42: fc:f7:fe:c5:7e:38:3d:eb:72:49:6e:4c:51:38:17:d3:0f:f9: 1f:e7:79:6e:48:69:86:23:c7:06:20:a4:b8:a0:59:dc:2f:46: ad:80:74:e9:19:1b:c1:09:c3:78:89:f9:84:62:ea:38:72:22: ce:1d:ea:fd:f0:a1:33:a8:c9:6e:49:90:6d:38:7a:86:95:55: 85:0a:76:c9:f4:cd:bd:6a:ff:ca:79:43:33:45:e9:dd:73:9c: 1c:8c:88:43:73:b8:ad:62:85:0e:ef:de:c6:ed:11:0b:06:20: b8:2e:43:81:0a:c3:40:0e:ee:7c:8d:50:64:d8:85:42:2f:4a: 48:0c:78:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVBOTUxMTAvBgNVBAUTKEZERkNGNDIyRjVDNDY2MkRFMUU0NjQzQTI3MUMwNDZC MUUyMUM0QUQwHhcNMjUwNDI1MDAxMDMwWhcNMjUwNTAyMDAxMDMwWjAYMRYwFAYD VQQDEw02ODBhZDJmNy0zYmE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqhiw9bvadmrAoMUVxKpGY7en/L3D+rHikgHw6BRjf6AweBjUB1DjMAnmTNcO LzymQz6Qzx7ptqDBR4biABjgZB2EBJ9twkGlc9a/kGOFTS+koHeVkLHhQswUMKYX uHQnHBakS90l7feoV6c5RbGSyMiFKwIuuBv//CFPwZUVqF84/oO629COOvEL6qwD vAquEj44AJcmIISPHqEu2XgleuoZWU1xj2uw9CSSepgnTjGWyLEnLUHTMYHDQK5I Xm40uvF8xpvaIN7fWEBQ4JMzgfd5EmVCVt0XojnTpllRRmCk4RSMJLbP1x4uX1+V TL159jXHuzT+v2bZviONi/C9XQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF8IJsKv t7CAZQINIDaFAmD+7O15MB8GA1UdIwQYMBaAFP389CL1xGYt4eRkOiccBGseIcSt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUE5NS9BQTYwQzhFQzYx NzIxMUVDQTMxNzIwODZDNEY5QUUwMi9fZnowSXZYRVppM2g1R1E2Snh3RWF4NGh4 SzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19mejBJdlhFWmkzaDVHUTZKeHdFYXg0aHhLMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUE5NS9BQTYwQzhFQzYxNzIxMUVDQTMxNzIwODZDNEY5QUUwMi9fZnowSXZYRVpp M2g1R1E2Snh3RWF4NGh4SzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA69EcK7w44YKbqWC/LHg2jvXuoX0sMUXIRpPY8B96gg6uH3WlA4XYY 8eXv272vLdkdwmVyZ6qUB1D4Xlj9kyraReGXNFufBJC4UemFCHfjRr0DhFcJRLoG KNevFFR1w1cO/1LIE7jjzHt0mdwWGmyy+Fm0aW3QOCEe1IJ8A0L89/7Ffjg963JJ bkxROBfTD/kf53luSGmGI8cGIKS4oFncL0atgHTpGRvBCcN4ifmEYuo4ciLOHer9 8KEzqMluSZBtOHqGlVWFCnbJ9M29av/KeUMzRendc5wcjIhDc7itYoUO797G7REL BiC4LkOBCsNADu58jVBk2IVCL0pIDHgu -----END CERTIFICATE-----Generated at Sat Apr 26 04:36:09 2025 by rpki-client