$ rpki-client -vvf rpki.apnic.net/member_repository/A917EFB8/D980A1721D9511E292150E7E08B02CD2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.mft File: Fw6cdnZDw8H2BXlAhkij8NqEBFo.mft (raw, json) Hash identifier: ufseuJXm68M0rr610X2WJEBYgxLe8omG2hVB8mN4XyU= Subject key identifier: 2B:87:DF:AE:9B:1B:E2:8B:65:1F:BD:14:00:DA:22:77:23:67:08:A9 Authority key identifier: 17:0E:9C:76:76:43:C3:C1:F6:05:79:40:86:48:A3:F0:DA:84:04:5A Certificate issuer: /CN=A917EFB8/serialNumber=170E9C767643C3C1F60579408648A3F0DA84045A Certificate serial: 3498 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917EFB8/D980A1721D9511E292150E7E08B02CD2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.mft Manifest number: 3492 Signing time: Sat 14 Jun 2025 14:48:44 +0000 Manifest this update: Sat 14 Jun 2025 14:48:43 +0000 Manifest next update: Sat 21 Jun 2025 14:48:43 +0000 Files and hashes: 1: Fw6cdnZDw8H2BXlAhkij8NqEBFo.crl (hash: tD5Qg/D/knR0EHamnvhf/hrA2AoS8VQI21XaRqB0Tig=) 2: E68E0FD4077B11EB98CA5D1CC4F9AE02.roa (hash: uVTYtUHXjzvA/dK6fjacM7pKV07g+NehzxqIMydfuDY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917EFB8/D980A1721D9511E292150E7E08B02CD2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.crl rsync://rpki.apnic.net/member_repository/A917EFB8/D980A1721D9511E292150E7E08B02CD2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 14:48:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13464 (0x3498) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917EFB8, serialNumber=170E9C767643C3C1F60579408648A3F0DA84045A Validity Not Before: Jun 14 14:48:43 2025 GMT Not After : Jun 21 14:48:43 2025 GMT Subject: CN=684d8bcc-accb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:1d:30:ed:97:ed:72:37:5f:cd:98:42:44:70: 26:dd:ea:7a:dc:c5:8b:cb:dc:f6:e4:88:22:df:fc: 66:ea:9b:46:9d:ef:fe:8b:8f:c8:55:cc:7e:0f:d7: a0:56:97:78:a2:ba:87:68:8e:2e:45:5a:59:16:c8: d0:3e:89:ea:5c:95:e1:22:c9:fc:59:3c:91:a7:95: 11:eb:11:9b:84:24:96:62:53:f6:64:51:22:e8:40: 9d:45:0e:a9:b9:d8:88:24:0a:00:67:52:e1:75:d4: 4a:5f:44:16:49:0f:98:fe:52:1a:73:fa:e0:ec:e5: 1f:98:ec:c8:48:80:48:ac:94:4b:89:85:a9:24:37: cc:6a:4d:9f:a2:dc:72:3c:89:ce:75:78:c5:a3:18: 55:bf:f1:8b:2b:27:9e:19:1d:f6:a2:c4:87:2a:82: 85:9c:fb:06:a9:d5:63:89:7d:45:99:09:93:96:2f: 35:dc:ee:d0:6d:3e:d6:0a:6f:4f:ce:24:ae:64:03: b4:75:2e:b1:87:e6:c8:f1:80:b0:cd:9d:a2:00:b1: 0e:04:53:c3:4f:af:a4:d7:cc:f2:61:87:f4:6d:12: 14:4b:ea:53:64:fe:42:ed:7f:bf:21:0d:f3:85:20: 6a:33:d6:28:af:55:15:aa:60:00:61:56:4f:0b:da: a4:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:87:DF:AE:9B:1B:E2:8B:65:1F:BD:14:00:DA:22:77:23:67:08:A9 X509v3 Authority Key Identifier: keyid:17:0E:9C:76:76:43:C3:C1:F6:05:79:40:86:48:A3:F0:DA:84:04:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917EFB8/D980A1721D9511E292150E7E08B02CD2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917EFB8/D980A1721D9511E292150E7E08B02CD2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:54:d8:a1:6f:12:b5:fe:f8:3b:3e:54:40:8d:68:da:17:44: 22:0e:73:9c:26:74:66:aa:94:ef:a9:70:4d:42:d0:65:16:11: 9a:53:24:42:55:4c:67:9c:96:c3:67:b1:cd:19:ca:dd:18:52: 81:ce:12:99:16:d9:ed:37:ed:06:83:f9:5c:3e:2e:81:39:e9: 82:17:4f:a3:c8:65:0c:8e:8c:02:d9:d2:ac:22:9d:9b:10:0a: 28:00:45:0b:51:75:6d:72:3c:00:2d:95:0f:d6:d7:c5:b5:f1: 29:6e:5c:58:4c:64:c0:00:79:e0:68:85:e6:69:35:a6:41:8d: 93:54:c8:6b:92:71:b8:9b:31:e8:5f:d9:db:df:8f:d3:b8:38: 32:51:e5:e6:92:b0:74:c9:97:10:fe:37:db:44:68:35:3e:f4: d0:26:e0:b9:c8:7d:84:fe:42:5c:35:1b:e5:dc:04:d0:fc:42: 2c:49:3d:9c:5a:b6:19:7f:ec:a8:f4:74:f3:29:b5:ca:8b:e2: 56:2b:42:6d:f8:a8:23:90:43:83:4c:cd:04:ad:21:48:be:36: e0:f8:d7:13:fc:24:8b:c1:bc:0f:3e:a2:59:84:e9:e7:e2:6a: 2b:b2:08:7b:db:01:bf:49:91:47:48:dd:db:0d:90:ee:81:b1: ec:3b:ef:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VGQjgxMTAvBgNVBAUTKDE3MEU5Qzc2NzY0M0MzQzFGNjA1Nzk0MDg2NDhBM0Yw REE4NDA0NUEwHhcNMjUwNjE0MTQ0ODQzWhcNMjUwNjIxMTQ0ODQzWjAYMRYwFAYD VQQDEw02ODRkOGJjYy1hY2NiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnR0w7ZftcjdfzZhCRHAm3ep63MWLy9z25Igi3/xm6ptGne/+i4/IVcx+D9eg Vpd4orqHaI4uRVpZFsjQPonqXJXhIsn8WTyRp5UR6xGbhCSWYlP2ZFEi6ECdRQ6p udiIJAoAZ1LhddRKX0QWSQ+Y/lIac/rg7OUfmOzISIBIrJRLiYWpJDfMak2fotxy PInOdXjFoxhVv/GLKyeeGR32osSHKoKFnPsGqdVjiX1FmQmTli813O7QbT7WCm9P ziSuZAO0dS6xh+bI8YCwzZ2iALEOBFPDT6+k18zyYYf0bRIUS+pTZP5C7X+/IQ3z hSBqM9Yor1UVqmAAYVZPC9qkCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCuH366b G+KLZR+9FADaIncjZwipMB8GA1UdIwQYMBaAFBcOnHZ2Q8PB9gV5QIZIo/DahARa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUZCOC9EOTgwQTE3MjFE OTUxMUUyOTIxNTBFN0UwOEIwMkNEMi9GdzZjZG5aRHc4SDJCWGxBaGtpajhOcUVC Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Z3NmNkblpEdzhIMkJYbEFoa2lqOE5xRUJGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RUZCOC9EOTgwQTE3MjFEOTUxMUUyOTIxNTBFN0UwOEIwMkNEMi9GdzZjZG5aRHc4 SDJCWGxBaGtpajhOcUVCRm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlVNihbxK1/vg7PlRAjWjaF0QiDnOcJnRmqpTvqXBNQtBlFhGaUyRC VUxnnJbDZ7HNGcrdGFKBzhKZFtntN+0Gg/lcPi6BOemCF0+jyGUMjowC2dKsIp2b EAooAEULUXVtcjwALZUP1tfFtfEpblxYTGTAAHngaIXmaTWmQY2TVMhrknG4mzHo X9nb34/TuDgyUeXmkrB0yZcQ/jfbRGg1PvTQJuC5yH2E/kJcNRvl3ATQ/EIsST2c WrYZf+yo9HTzKbXKi+JWK0Jt+KgjkEODTM0ErSFIvjbg+NcT/CSLwbwPPqJZhOnn 4morsgh72wG/SZFHSN3bDZDugbHsO++3 -----END CERTIFICATE-----Generated at Sun Jun 15 10:01:25 2025 by rpki-client