$ rpki-client -vvf rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft File: 09Fa7ppPiuXCgRCKfS062B1Oec0.mft (raw, json) Hash identifier: fvY5RlGwXumOs9OfNlqG9olBGvtGiNScC1mfuo9yN7Y= Subject key identifier: EF:20:06:43:CB:65:2A:29:53:C0:1A:5A:9E:13:18:45:60:91:6C:EA Authority key identifier: D3:D1:5A:EE:9A:4F:8A:E5:C2:81:10:8A:7D:2D:3A:D8:1D:4E:79:CD Certificate issuer: /CN=A91397C2/serialNumber=D3D15AEE9A4F8AE5C281108A7D2D3AD81D4E79CD Certificate serial: 07E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09Fa7ppPiuXCgRCKfS062B1Oec0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft Manifest number: 07C0 Signing time: Thu 24 Apr 2025 21:02:10 +0000 Manifest this update: Thu 24 Apr 2025 21:02:09 +0000 Manifest next update: Thu 01 May 2025 21:02:09 +0000 Files and hashes: 1: 09Fa7ppPiuXCgRCKfS062B1Oec0.crl (hash: xevoQ88i7OkQ85Oo65M9CSrxNB6RD6S6GImCioEnbNI=) 2: BF07B0DA16AF11F08B8C4061C4F9AE02.roa (hash: m5fvUWDyLmphSj+hveftDjH5v8ZvHtc3dCRNArmrofc=) 3: 29BC840E002711EB8FA6A142C4F9AE02.roa (hash: RVujGjgRtNml2s4B1MbyglZHc1wuuQ8z+GSwbNfvR2o=) 4: 1070E6CA9A8311EF8BE0F826C4F9AE02.roa (hash: 5usMHuwC29/GKSbCm/Fabiikjfpjet0V04t/dPRj3vM=) 5: BE79CDCE16AF11F08B8C4061C4F9AE02.roa (hash: AjNKnPWs+wQxA57p7oeqhPGR6IMIStHtSJ7A+NHTTwU=) 6: 38BE1074FC0F11EA8DEF4D28C4F9AE02.roa (hash: iWWPKNMJez26/4BW7/wljyQN/N1JrdnLJYQsd0J35V0=) 7: 3AA556009A8411EFB791ED77C4F9AE02.roa (hash: vJqvl3p3GZGjPo1+bFOu/lz3UGNmQtiNtsOQmfP7QoU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.crl rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09Fa7ppPiuXCgRCKfS062B1Oec0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:02:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2018 (0x7e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91397C2, serialNumber=D3D15AEE9A4F8AE5C281108A7D2D3AD81D4E79CD Validity Not Before: Apr 24 21:02:09 2025 GMT Not After : May 1 21:02:09 2025 GMT Subject: CN=680aa6d1-3d2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:eb:70:37:8d:c7:57:37:64:c9:1d:58:e8:77: fb:f5:44:e7:f3:d9:3b:2d:9a:a6:3c:3d:e9:26:a2: 48:63:fb:e8:8a:40:88:02:be:31:f4:78:5c:9f:29: 67:4d:e8:f6:4b:d7:7c:49:9b:6b:d3:3c:a8:18:bf: 73:e3:48:4e:e4:44:af:81:85:4e:07:c7:d4:ca:1a: e2:09:47:14:7d:e9:b4:7b:6c:c7:cd:9e:75:da:2f: 5d:2a:61:09:d9:07:20:d3:4c:0e:fd:22:c0:45:bc: 57:4e:22:eb:4b:b7:80:7e:cc:a0:73:6f:04:0f:ec: c6:60:ed:f9:08:06:e2:0d:4f:22:78:f1:d3:75:cf: 9f:81:ae:07:6f:b7:68:ea:bc:16:b4:a5:24:2b:d7: 9a:00:50:d4:29:65:1c:3b:e0:35:16:8f:b5:1f:28: 37:4d:93:f1:a7:ae:c5:0d:53:4b:fb:8d:2a:53:8a: 1a:6b:21:10:c6:ec:e7:81:51:cf:29:8b:d2:af:cb: fb:16:62:fb:27:88:cd:c3:5e:db:ce:c3:82:c5:8f: e4:6d:15:cd:e5:a7:28:03:cd:f0:65:d0:11:7f:d3: 21:5e:db:b7:3a:93:68:a8:17:79:58:b5:e1:4e:88: 09:a9:45:f4:83:78:06:b5:89:78:f9:c6:63:19:f8: e8:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:20:06:43:CB:65:2A:29:53:C0:1A:5A:9E:13:18:45:60:91:6C:EA X509v3 Authority Key Identifier: keyid:D3:D1:5A:EE:9A:4F:8A:E5:C2:81:10:8A:7D:2D:3A:D8:1D:4E:79:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09Fa7ppPiuXCgRCKfS062B1Oec0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:36:69:f3:2b:78:a7:58:f8:f1:31:f9:20:36:74:54:b7:54: 3f:69:59:20:d8:65:f2:41:3a:ed:85:3c:02:bf:42:42:ed:45: e7:af:16:37:4f:77:ea:ef:3d:b3:be:72:53:46:aa:a0:09:59: cc:09:63:fe:d5:b3:96:35:78:d2:3c:89:f4:99:e2:b0:d6:38: 8e:57:a3:43:a0:1e:7b:6a:b0:f3:ca:d5:05:4a:02:5e:fd:24: 60:0c:8d:7d:fb:66:61:9d:bb:2d:b1:fd:ea:b9:ce:57:35:31: 9c:4b:ec:46:c4:b4:f2:72:32:d0:fb:b4:b8:5d:79:4e:49:d7: 27:97:7c:ff:8d:c4:73:09:2b:39:e4:e5:49:1e:12:c2:3b:0c: 49:b1:e9:a3:bb:9b:f0:7a:68:7f:74:e2:d9:11:23:24:43:aa: 54:27:8a:f8:ec:42:f8:98:72:22:25:f9:49:fc:7f:b4:0c:ee: 8f:07:7d:a5:f4:7d:19:9a:01:71:50:41:ed:4f:67:d9:9d:f0: 99:01:36:fc:ee:78:71:ff:93:35:e3:1f:c2:84:7e:46:91:23: 01:83:31:9f:f8:d0:12:b0:4d:b8:31:d5:97:ce:fa:1b:76:69: 3d:dd:4c:ea:f0:97:ff:65:c6:b6:75:8d:1c:61:2b:c8:f7:41: 17:03:ba:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk3QzIxMTAvBgNVBAUTKEQzRDE1QUVFOUE0RjhBRTVDMjgxMTA4QTdEMkQzQUQ4 MUQ0RTc5Q0QwHhcNMjUwNDI0MjEwMjA5WhcNMjUwNTAxMjEwMjA5WjAYMRYwFAYD VQQDEw02ODBhYTZkMS0zZDJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqutwN43HVzdkyR1Y6Hf79UTn89k7LZqmPD3pJqJIY/voikCIAr4x9Hhcnyln Tej2S9d8SZtr0zyoGL9z40hO5ESvgYVOB8fUyhriCUcUfem0e2zHzZ512i9dKmEJ 2Qcg00wO/SLARbxXTiLrS7eAfsygc28ED+zGYO35CAbiDU8iePHTdc+fga4Hb7do 6rwWtKUkK9eaAFDUKWUcO+A1Fo+1Hyg3TZPxp67FDVNL+40qU4oaayEQxuzngVHP KYvSr8v7FmL7J4jNw17bzsOCxY/kbRXN5acoA83wZdARf9MhXtu3OpNoqBd5WLXh TogJqUX0g3gGtYl4+cZjGfjo/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO8gBkPL ZSopU8AaWp4TGEVgkWzqMB8GA1UdIwQYMBaAFNPRWu6aT4rlwoEQin0tOtgdTnnN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTdDMi80RTQyNkRFOEZC RUExMUVBOTQwQTFEMTlDNEY5QUUwMi8wOUZhN3BwUGl1WENnUkNLZlMwNjJCMU9l YzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA5RmE3cHBQaXVYQ2dSQ0tmUzA2MkIxT2VjMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTdDMi80RTQyNkRFOEZCRUExMUVBOTQwQTFEMTlDNEY5QUUwMi8wOUZhN3BwUGl1 WENnUkNLZlMwNjJCMU9lYzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/NmnzK3inWPjxMfkgNnRUt1Q/aVkg2GXyQTrthTwCv0JC7UXnrxY3 T3fq7z2zvnJTRqqgCVnMCWP+1bOWNXjSPIn0meKw1jiOV6NDoB57arDzytUFSgJe /SRgDI19+2Zhnbstsf3quc5XNTGcS+xGxLTycjLQ+7S4XXlOSdcnl3z/jcRzCSs5 5OVJHhLCOwxJsemju5vwemh/dOLZESMkQ6pUJ4r47EL4mHIiJflJ/H+0DO6PB32l 9H0ZmgFxUEHtT2fZnfCZATb87nhx/5M14x/ChH5GkSMBgzGf+NASsE24MdWXzvob dmk93Uzq8Jf/Zca2dY0cYSvI90EXA7oB -----END CERTIFICATE-----Generated at Sat Apr 26 05:49:20 2025 by rpki-client