$ rpki-client -vvf rpki.apnic.net/member_repository/A9145E09/8F625C4E08C811F0A0D34E56C4F9AE02/Fz6pPabl71KPpzMJc4hIg92lJ-4.mft File: Fz6pPabl71KPpzMJc4hIg92lJ-4.mft (raw, json) Hash identifier: vK5My1ux2F2HWX952CoBO3+QCxGB6LNRKDc2cml2i6E= Subject key identifier: A4:99:6A:45:2C:B3:E1:F6:F7:BA:69:07:D1:48:8A:D8:65:8D:69:87 Authority key identifier: 17:3E:A9:3D:A6:E5:EF:52:8F:A7:33:09:73:88:48:83:DD:A5:27:EE Certificate issuer: /CN=A9145E09/serialNumber=173EA93DA6E5EF528FA7330973884883DDA527EE Certificate serial: 12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fz6pPabl71KPpzMJc4hIg92lJ-4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145E09/8F625C4E08C811F0A0D34E56C4F9AE02/Fz6pPabl71KPpzMJc4hIg92lJ-4.mft Manifest number: 12 Signing time: Fri 25 Apr 2025 07:02:21 +0000 Manifest this update: Fri 25 Apr 2025 07:02:20 +0000 Manifest next update: Fri 02 May 2025 07:02:20 +0000 Files and hashes: 1: Fz6pPabl71KPpzMJc4hIg92lJ-4.crl (hash: +Bbgdq15v6FhrmYoN2B45ErG8b2CejtBzrCMVoPyHYE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145E09/8F625C4E08C811F0A0D34E56C4F9AE02/Fz6pPabl71KPpzMJc4hIg92lJ-4.crl rsync://rpki.apnic.net/member_repository/A9145E09/8F625C4E08C811F0A0D34E56C4F9AE02/Fz6pPabl71KPpzMJc4hIg92lJ-4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fz6pPabl71KPpzMJc4hIg92lJ-4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:02:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18 (0x12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145E09, serialNumber=173EA93DA6E5EF528FA7330973884883DDA527EE Validity Not Before: Apr 25 07:02:20 2025 GMT Not After : May 2 07:02:20 2025 GMT Subject: CN=680b337c-681d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:11:a9:fe:a3:da:4e:cb:8b:b5:7a:05:8a:11: c6:ca:eb:1d:54:ec:51:21:87:17:49:b6:6c:6e:73: 4f:6c:43:52:84:0b:eb:01:51:f3:19:d6:6e:43:94: 2d:a9:fd:74:d1:4f:9e:1e:44:60:af:3a:ad:94:b9: 13:41:7e:ad:e4:6a:a5:57:f1:fa:41:cb:1d:b8:72: 08:9d:7d:03:d9:47:47:3d:88:c5:a4:bb:ab:21:cd: 44:98:6d:bc:9b:56:ff:c1:c8:77:f5:44:00:07:db: 6f:e9:95:ec:51:48:56:d3:5e:de:df:ae:c0:0c:53: a5:6e:3c:ec:15:51:07:34:f8:54:bc:fe:d5:44:af: 0c:83:c6:09:1b:6a:d6:fb:d6:24:55:66:23:9d:75: 15:35:bc:ef:1f:4f:7a:1f:a8:f4:50:91:24:a8:94: df:87:cf:46:86:6c:2b:a3:79:fb:c3:db:f5:0c:3c: 47:96:ec:4d:81:d3:65:ac:7e:4d:0e:34:78:d8:54: bf:c2:23:86:ad:31:4d:29:0c:6d:9e:1e:0f:fe:a1: 91:63:c0:29:83:4c:c0:70:fa:c6:2b:e1:84:0b:a4: 91:e5:22:c4:78:31:00:5d:5e:40:18:c3:7d:8d:e4: b4:d8:34:dd:86:d5:1c:49:4c:af:8a:c8:98:46:e1: 75:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:99:6A:45:2C:B3:E1:F6:F7:BA:69:07:D1:48:8A:D8:65:8D:69:87 X509v3 Authority Key Identifier: keyid:17:3E:A9:3D:A6:E5:EF:52:8F:A7:33:09:73:88:48:83:DD:A5:27:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145E09/8F625C4E08C811F0A0D34E56C4F9AE02/Fz6pPabl71KPpzMJc4hIg92lJ-4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fz6pPabl71KPpzMJc4hIg92lJ-4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145E09/8F625C4E08C811F0A0D34E56C4F9AE02/Fz6pPabl71KPpzMJc4hIg92lJ-4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:6a:32:b4:c1:83:c6:c6:2f:0c:65:bc:12:a5:cc:2f:57:4e: 70:7b:1d:2a:00:f0:f1:58:03:98:78:a5:be:ca:6d:f4:b0:47: fa:f9:5e:ab:3d:35:62:ea:e9:ae:79:df:58:9f:d0:f3:68:52: f6:1d:ec:81:57:c0:91:f9:32:d6:95:ec:28:ab:89:a4:68:76: f0:63:68:43:ec:4c:48:a6:cf:59:a2:5d:94:52:2f:1d:46:39: 7e:f8:18:28:7f:18:e2:c4:8c:64:71:9d:91:f4:a9:93:27:a8: be:cc:b7:6c:e0:fc:22:e1:92:47:6e:da:25:e8:ef:c9:e5:63: 82:d9:7f:9a:a0:11:b5:6b:ac:97:03:6d:36:a6:9d:5e:90:fd: 64:53:7f:5f:92:4d:5b:e4:e2:34:6f:33:d7:2f:6a:e6:ca:7c: 96:73:f0:8d:32:26:bf:36:93:65:7c:fd:f0:33:3b:2e:f2:52: 24:5a:9b:b2:6a:b9:23:a1:74:d4:a9:1c:be:00:72:03:a4:ae: ba:92:13:e9:97:ef:51:2f:91:bc:f1:20:2e:48:2f:f7:21:b3: 43:5c:5e:c5:af:fb:b6:02:4f:cb:1b:a8:1a:81:d9:4d:8a:40: c6:96:37:42:20:82:42:c8:00:7d:5b:81:5c:2e:0b:91:c8:98: 2b:d4:00:38 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NUUwOTExMC8GA1UEBRMoMTczRUE5M0RBNkU1RUY1MjhGQTczMzA5NzM4ODQ4ODNE REE1MjdFRTAeFw0yNTA0MjUwNzAyMjBaFw0yNTA1MDIwNzAyMjBaMBgxFjAUBgNV BAMTDTY4MGIzMzdjLTY4MWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6Ean+o9pOy4u1egWKEcbK6x1U7FEhhxdJtmxuc09sQ1KEC+sBUfMZ1m5DlC2p /XTRT54eRGCvOq2UuRNBfq3kaqVX8fpByx24cgidfQPZR0c9iMWku6shzUSYbbyb Vv/ByHf1RAAH22/plexRSFbTXt7frsAMU6VuPOwVUQc0+FS8/tVErwyDxgkbatb7 1iRVZiOddRU1vO8fT3ofqPRQkSSolN+Hz0aGbCujefvD2/UMPEeW7E2B02Wsfk0O NHjYVL/CI4atMU0pDG2eHg/+oZFjwCmDTMBw+sYr4YQLpJHlIsR4MQBdXkAYw32N 5LTYNN2G1RxJTK+KyJhG4XUJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUpJlqRSyz 4fb3umkH0UiK2GWNaYcwHwYDVR0jBBgwFoAUFz6pPabl71KPpzMJc4hIg92lJ+4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1RTA5LzhGNjI1QzRFMDhD ODExRjBBMEQzNEU1NkM0RjlBRTAyL0Z6NnBQYWJsNzFLUHB6TUpjNGhJZzkybEot NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRno2cFBhYmw3MUtQcHpNSmM0aElnOTJsSi00LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1 RTA5LzhGNjI1QzRFMDhDODExRjBBMEQzNEU1NkM0RjlBRTAyL0Z6NnBQYWJsNzFL UHB6TUpjNGhJZzkybEotNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIhqMrTBg8bGLwxlvBKlzC9XTnB7HSoA8PFYA5h4pb7KbfSwR/r5Xqs9 NWLq6a5531if0PNoUvYd7IFXwJH5MtaV7CiriaRodvBjaEPsTEimz1miXZRSLx1G OX74GCh/GOLEjGRxnZH0qZMnqL7Mt2zg/CLhkkdu2iXo78nlY4LZf5qgEbVrrJcD bTamnV6Q/WRTf1+STVvk4jRvM9cvaubKfJZz8I0yJr82k2V8/fAzOy7yUiRam7Jq uSOhdNSpHL4AcgOkrrqSE+mX71EvkbzxIC5IL/chs0NcXsWv+7YCT8sbqBqB2U2K QMaWN0IggkLIAH1bgVwuC5HImCvUADg= -----END CERTIFICATE-----Generated at Sat Apr 26 04:30:46 2025 by rpki-client