$ rpki-client -vvf rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.mft File: FTyY0zE8xk7bmuFaujtUPkgEWZA.mft (raw, json) Hash identifier: w5w8fgMporvpd06OkQRDRMaBsolf3CyEzSwRjq5LhFU= Subject key identifier: B9:0F:DA:14:6A:29:B1:44:BE:3D:F0:31:F3:A8:2B:6A:8A:71:34:5E Authority key identifier: 15:3C:98:D3:31:3C:C6:4E:DB:9A:E1:5A:BA:3B:54:3E:48:04:59:90 Certificate issuer: /CN=A9167FBA/serialNumber=153C98D3313CC64EDB9AE15ABA3B543E48045990 Certificate serial: 17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTyY0zE8xk7bmuFaujtUPkgEWZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.mft Manifest number: 16 Signing time: Fri 25 Apr 2025 06:59:51 +0000 Manifest this update: Fri 25 Apr 2025 06:59:51 +0000 Manifest next update: Fri 02 May 2025 06:59:51 +0000 Files and hashes: 1: FTyY0zE8xk7bmuFaujtUPkgEWZA.crl (hash: LR/VXl83Qh1ds5+52XlzezALlyz5VjL9Q9RKYkLBbmA=) 2: F552E6BA05A111F082D17325C4F9AE02.roa (hash: IboM73984syJmuqfIfDKvmHL/HfnKXEhHqhYyaPXIGg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.crl rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTyY0zE8xk7bmuFaujtUPkgEWZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:59:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23 (0x17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167FBA, serialNumber=153C98D3313CC64EDB9AE15ABA3B543E48045990 Validity Not Before: Apr 25 06:59:51 2025 GMT Not After : May 2 06:59:51 2025 GMT Subject: CN=680b32e7-8cb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:b0:ba:31:f2:d2:d6:89:56:98:71:b4:51:86: 32:3b:38:95:3e:64:f2:47:c5:d6:69:e2:b3:0a:ae: 71:8f:7d:be:40:7a:87:e3:b1:ec:0f:37:6f:d7:2f: 11:f6:73:9b:e9:30:3c:34:d6:4c:c3:37:b7:b4:98: 65:c8:a4:1b:ca:ef:17:44:e4:08:f5:0b:bd:10:97: 5a:be:22:8a:0b:b8:cc:84:08:3b:7e:88:14:85:9b: f2:4d:df:c7:65:ce:e4:45:66:2b:e2:26:57:d6:a0: fe:ec:9e:8f:de:f7:92:0a:39:9f:c7:37:ae:5d:74: 5f:c1:dd:6f:10:23:ab:85:ef:32:d6:26:14:3e:7e: 55:a5:86:1c:be:c0:95:8c:c5:05:d3:18:0f:47:0b: 79:ff:0f:29:e0:21:03:5a:12:6d:7e:ce:b8:0a:04: b0:40:cb:de:61:86:be:c9:0c:b4:0a:40:cd:7e:63: 72:ab:72:ee:ed:64:f8:42:18:e7:cd:c2:98:11:cd: ed:8c:7a:0d:ea:f9:e5:d5:93:29:6b:4e:6d:ba:ac: 61:c3:4a:83:4a:9d:6c:6f:51:80:87:49:03:b0:5a: 97:9a:2c:ac:e4:cb:29:07:47:81:e1:d1:f7:e6:75: 70:7d:1b:5f:f9:33:be:a3:20:5c:65:41:4d:7e:a1: 42:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:0F:DA:14:6A:29:B1:44:BE:3D:F0:31:F3:A8:2B:6A:8A:71:34:5E X509v3 Authority Key Identifier: keyid:15:3C:98:D3:31:3C:C6:4E:DB:9A:E1:5A:BA:3B:54:3E:48:04:59:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTyY0zE8xk7bmuFaujtUPkgEWZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:f7:e0:22:a6:c7:5b:0a:1c:fa:a0:b6:3e:3e:8b:f2:30:84: 04:26:2f:6e:e0:c8:e3:25:67:97:71:b0:1e:97:4f:11:4d:49: 71:85:55:91:11:a2:5b:18:db:12:f9:02:fe:40:ab:71:5f:a6: d7:e9:8f:e0:ed:53:75:71:de:49:e1:99:80:47:74:9d:23:ce: dd:ae:b0:cf:ba:5c:f2:73:24:92:64:ca:c6:9f:e5:66:ea:e5: 01:e8:5b:7a:43:65:02:aa:d6:d3:24:fc:7d:e8:96:f8:2a:4b: f0:bd:5a:ea:cc:17:bd:59:56:58:e7:55:f6:4c:49:fa:c1:0f: 64:33:f7:04:61:12:19:eb:c0:f1:d7:2c:d7:38:2a:20:ef:36: 57:93:8d:95:b9:a7:82:a7:53:a3:d4:b6:1f:67:60:45:e5:49: e6:61:76:95:9a:4a:53:51:24:98:70:40:f0:ac:39:58:05:19: 6c:82:44:df:13:c8:c5:bc:fb:a4:22:2e:d2:96:10:76:8b:31: 2d:54:44:29:3c:ec:9a:9f:fb:4b:48:38:29:bb:a5:27:cf:0b: f2:62:f8:18:79:8b:9d:6a:30:bb:43:61:c4:3a:5d:3c:b8:d0: a4:ea:a7:48:eb:8a:2d:93:be:9d:c1:22:cd:42:df:d6:85:03: 67:92:ff:33 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 N0ZCQTExMC8GA1UEBRMoMTUzQzk4RDMzMTNDQzY0RURCOUFFMTVBQkEzQjU0M0U0 ODA0NTk5MDAeFw0yNTA0MjUwNjU5NTFaFw0yNTA1MDIwNjU5NTFaMBgxFjAUBgNV BAMTDTY4MGIzMmU3LThjYjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKsLox8tLWiVaYcbRRhjI7OJU+ZPJHxdZp4rMKrnGPfb5AeofjsewPN2/XLxH2 c5vpMDw01kzDN7e0mGXIpBvK7xdE5Aj1C70Ql1q+IooLuMyECDt+iBSFm/JN38dl zuRFZiviJlfWoP7sno/e95IKOZ/HN65ddF/B3W8QI6uF7zLWJhQ+flWlhhy+wJWM xQXTGA9HC3n/DyngIQNaEm1+zrgKBLBAy95hhr7JDLQKQM1+Y3Krcu7tZPhCGOfN wpgRze2Meg3q+eXVkylrTm26rGHDSoNKnWxvUYCHSQOwWpeaLKzkyykHR4Hh0ffm dXB9G1/5M76jIFxlQU1+oUKpAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUuQ/aFGop sUS+PfAx86graopxNF4wHwYDVR0jBBgwFoAUFTyY0zE8xk7bmuFaujtUPkgEWZAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3RkJBLzRCNkUwMEZDMDQ4 RjExRjA4NzJFODU0N0M0RjlBRTAyL0ZUeVkwekU4eGs3Ym11RmF1anRVUGtnRVda QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRlR5WTB6RTh4azdibXVGYXVqdFVQa2dFV1pBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3 RkJBLzRCNkUwMEZDMDQ4RjExRjA4NzJFODU0N0M0RjlBRTAyL0ZUeVkwekU4eGs3 Ym11RmF1anRVUGtnRVdaQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAb34CKmx1sKHPqgtj4+i/IwhAQmL27gyOMlZ5dxsB6XTxFNSXGFVZER olsY2xL5Av5Aq3Ffptfpj+DtU3Vx3knhmYBHdJ0jzt2usM+6XPJzJJJkysaf5Wbq 5QHoW3pDZQKq1tMk/H3olvgqS/C9WurMF71ZVljnVfZMSfrBD2Qz9wRhEhnrwPHX LNc4KiDvNleTjZW5p4KnU6PUth9nYEXlSeZhdpWaSlNRJJhwQPCsOVgFGWyCRN8T yMW8+6QiLtKWEHaLMS1URCk87Jqf+0tIOCm7pSfPC/Ji+Bh5i51qMLtDYcQ6XTy4 0KTqp0jrii2Tvp3BIs1C39aFA2eS/zM= -----END CERTIFICATE-----Generated at Sat Apr 26 17:22:06 2025 by rpki-client