$ rpki-client -vvf rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.mft File: fHxDqtDIa183jl18MzKgXeRhJ1A.mft (raw, json) Hash identifier: F/sU8UzI+VBBy3Ae9eHGBZaYGhkK9nKzURC0AxH5/Lg= Subject key identifier: 50:C6:39:08:F5:3C:8C:26:73:A4:EE:BE:98:5F:4E:B1:FA:E1:68:C6 Authority key identifier: 7C:7C:43:AA:D0:C8:6B:5F:37:8E:5D:7C:33:32:A0:5D:E4:61:27:50 Certificate issuer: /CN=A912CA50/serialNumber=7C7C43AAD0C86B5F378E5D7C3332A05DE4612750 Certificate serial: 07D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fHxDqtDIa183jl18MzKgXeRhJ1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.mft Manifest number: 07B7 Signing time: Thu 24 Apr 2025 21:01:42 +0000 Manifest this update: Thu 24 Apr 2025 21:01:42 +0000 Manifest next update: Thu 01 May 2025 21:01:41 +0000 Files and hashes: 1: fHxDqtDIa183jl18MzKgXeRhJ1A.crl (hash: ZgsjKB/bzK3OX0CG4yY8pwzQYOG/xpZqr10+LeeNhgA=) 2: E7EBC9003EE411ED905A3415C4F9AE02.roa (hash: 7145KDk6Ud3gJk6wkOrSSRd7V4t35M2bwdrO78shBPE=) 3: E897EA5A3EE411ED905A3415C4F9AE02.roa (hash: wSUtbGUG6qJCjwBZF3AGH+0iZn8vKCgbBj1wQ7GjPys=) 4: 5035F194413211EDAAFCC96EC4F9AE02.roa (hash: qx6Ck2bt18JzwMSwE91OIh9TX6eoj+EFVUwzhl+omAI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.crl rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fHxDqtDIa183jl18MzKgXeRhJ1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2005 (0x7d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912CA50, serialNumber=7C7C43AAD0C86B5F378E5D7C3332A05DE4612750 Validity Not Before: Apr 24 21:01:42 2025 GMT Not After : May 1 21:01:41 2025 GMT Subject: CN=680aa6b6-227a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:82:9a:dc:86:a3:62:3d:38:3d:99:a3:30:cd: 36:ab:03:81:b5:72:d4:78:68:d6:b0:4f:99:af:45: 8d:81:cf:39:c7:08:7e:df:29:81:1a:22:56:c6:33: 00:90:70:68:63:c9:24:49:76:5b:f5:36:ae:c1:45: 0d:46:be:99:52:eb:a1:d7:a2:aa:b9:01:7c:a5:25: 08:0b:5a:07:87:07:68:6b:40:e1:37:96:a4:8f:53: 6f:d0:ed:0e:da:55:8c:9b:5a:d1:7d:b9:fb:72:a5: d7:17:58:c5:01:dd:dd:c7:28:b2:c5:a5:7b:f7:55: da:51:35:82:07:66:49:93:00:31:a2:84:a7:23:e1: 25:d4:11:81:93:9e:63:5c:55:ff:65:cb:b3:73:48: f7:ec:ba:f3:d1:b5:29:ce:a7:f7:79:44:c3:24:5e: 1f:95:33:e4:91:5a:b1:a7:56:c1:31:44:74:d8:35: 2e:aa:23:4a:ad:e5:e3:7d:8e:c0:1d:3b:af:ac:5a: 41:57:71:60:97:9b:5a:5e:ad:74:53:1f:2b:1a:5a: 2a:4e:e5:19:60:51:b5:56:78:e7:c7:a7:a1:d4:ae: 3d:1f:96:d5:50:51:e0:e3:cb:a4:bb:04:d0:3d:4f: 9e:da:b3:48:16:84:5f:db:3e:63:c8:ab:66:d3:db: d8:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:C6:39:08:F5:3C:8C:26:73:A4:EE:BE:98:5F:4E:B1:FA:E1:68:C6 X509v3 Authority Key Identifier: keyid:7C:7C:43:AA:D0:C8:6B:5F:37:8E:5D:7C:33:32:A0:5D:E4:61:27:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fHxDqtDIa183jl18MzKgXeRhJ1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:af:c0:80:df:32:c6:22:11:2d:49:9f:f2:46:69:26:f4:b2: a5:a4:40:9d:32:83:cf:d8:85:83:29:06:77:9c:07:8b:b3:be: 32:88:b6:bb:5d:f5:c0:ba:55:7e:4f:5b:d0:19:bb:f3:1e:03: 3a:ba:fc:2b:b1:af:43:11:4a:7e:10:7d:1d:d6:95:e9:d1:9f: f7:05:fb:26:cf:0d:a2:05:30:38:8f:84:97:39:c9:fe:5d:e6: 06:7d:7d:20:57:d5:e0:47:17:29:f1:aa:1d:1f:b4:87:28:54: 79:9f:ee:0d:a0:72:0f:71:f6:51:9e:2a:bf:29:ad:24:8d:14: 6e:97:63:cf:ad:3e:b7:8b:54:20:68:ad:13:9a:4a:eb:76:9c: 25:74:83:f6:ee:6e:de:51:cf:6e:d3:61:f0:03:7e:a5:fc:67: 01:7d:96:c8:42:ef:f6:5c:f1:50:83:3a:39:a8:4c:a5:73:77: 63:40:dc:e9:22:ff:f8:00:54:24:79:fe:4c:95:84:d4:75:ad: de:78:73:92:a8:ed:8a:f4:6b:f2:17:b5:ba:6a:79:0a:74:51: 71:4d:38:70:5b:d5:59:78:d3:26:6e:f3:e6:01:c1:a6:a5:d3: ae:8c:50:76:f0:fa:0b:b1:20:ad:06:ac:4d:b0:d9:08:0e:25: 03:50:7a:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkNBNTAxMTAvBgNVBAUTKDdDN0M0M0FBRDBDODZCNUYzNzhFNUQ3QzMzMzJBMDVE RTQ2MTI3NTAwHhcNMjUwNDI0MjEwMTQyWhcNMjUwNTAxMjEwMTQxWjAYMRYwFAYD VQQDEw02ODBhYTZiNi0yMjdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5oKa3IajYj04PZmjMM02qwOBtXLUeGjWsE+Zr0WNgc85xwh+3ymBGiJWxjMA kHBoY8kkSXZb9TauwUUNRr6ZUuuh16KquQF8pSUIC1oHhwdoa0DhN5akj1Nv0O0O 2lWMm1rRfbn7cqXXF1jFAd3dxyiyxaV791XaUTWCB2ZJkwAxooSnI+El1BGBk55j XFX/Zcuzc0j37Lrz0bUpzqf3eUTDJF4flTPkkVqxp1bBMUR02DUuqiNKreXjfY7A HTuvrFpBV3Fgl5taXq10Ux8rGloqTuUZYFG1Vnjnx6eh1K49H5bVUFHg48ukuwTQ PU+e2rNIFoRf2z5jyKtm09vYowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFDGOQj1 PIwmc6TuvphfTrH64WjGMB8GA1UdIwQYMBaAFHx8Q6rQyGtfN45dfDMyoF3kYSdQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQ0E1MC8zODFDMTcxNkZC QTUxMUVBQkJBRUIzNjNDNEY5QUUwMi9mSHhEcXRESWExODNqbDE4TXpLZ1hlUmhK MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZIeERxdERJYTE4M2psMThNektnWGVSaEoxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Q0E1MC8zODFDMTcxNkZCQTUxMUVBQkJBRUIzNjNDNEY5QUUwMi9mSHhEcXRESWEx ODNqbDE4TXpLZ1hlUmhKMUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApr8CA3zLGIhEtSZ/yRmkm9LKlpECdMoPP2IWDKQZ3nAeLs74yiLa7 XfXAulV+T1vQGbvzHgM6uvwrsa9DEUp+EH0d1pXp0Z/3Bfsmzw2iBTA4j4SXOcn+ XeYGfX0gV9XgRxcp8aodH7SHKFR5n+4NoHIPcfZRniq/Ka0kjRRul2PPrT63i1Qg aK0TmkrrdpwldIP27m7eUc9u02HwA36l/GcBfZbIQu/2XPFQgzo5qEylc3djQNzp Iv/4AFQkef5MlYTUda3eeHOSqO2K9GvyF7W6ankKdFFxTThwW9VZeNMmbvPmAcGm pdOujFB28PoLsSCtBqxNsNkIDiUDUHpG -----END CERTIFICATE-----Generated at Sat Apr 26 14:16:23 2025 by rpki-client