$ rpki-client -vvf rpki.apnic.net/member_repository/A917EFB8/D980A1721D9511E292150E7E08B02CD2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.mft File: Fw6cdnZDw8H2BXlAhkij8NqEBFo.mft (raw, json) Hash identifier: XFY81Atb6sHYoU6gzclOod+Me6sgbbjJwXKFfxplI3E= Subject key identifier: 20:D2:A7:EF:76:68:96:E2:F5:55:28:F4:96:98:C7:1F:3D:0F:2C:CB Authority key identifier: 17:0E:9C:76:76:43:C3:C1:F6:05:79:40:86:48:A3:F0:DA:84:04:5A Certificate issuer: /CN=A917EFB8/serialNumber=170E9C767643C3C1F60579408648A3F0DA84045A Certificate serial: 347E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917EFB8/D980A1721D9511E292150E7E08B02CD2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.mft Manifest number: 3478 Signing time: Thu 24 Apr 2025 14:48:31 +0000 Manifest this update: Thu 24 Apr 2025 14:48:30 +0000 Manifest next update: Thu 01 May 2025 14:48:30 +0000 Files and hashes: 1: Fw6cdnZDw8H2BXlAhkij8NqEBFo.crl (hash: 4qGDkLbpC0rwAUhx3RyVn2I5i8GdcgQaUPEQkNojicU=) 2: E68E0FD4077B11EB98CA5D1CC4F9AE02.roa (hash: uVTYtUHXjzvA/dK6fjacM7pKV07g+NehzxqIMydfuDY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917EFB8/D980A1721D9511E292150E7E08B02CD2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.crl rsync://rpki.apnic.net/member_repository/A917EFB8/D980A1721D9511E292150E7E08B02CD2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13438 (0x347e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917EFB8, serialNumber=170E9C767643C3C1F60579408648A3F0DA84045A Validity Not Before: Apr 24 14:48:30 2025 GMT Not After : May 1 14:48:30 2025 GMT Subject: CN=680a4f3f-275d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:20:88:71:8d:2c:2a:75:cd:6b:5f:eb:65:c5: ad:57:7f:e1:e2:00:be:4e:d0:5d:d1:a7:29:5b:87: ba:03:b6:8e:28:85:35:73:ba:f1:d0:cc:2a:84:b5: ad:9f:63:d8:dd:eb:b7:2c:73:a1:f9:31:31:e0:67: cf:37:7f:39:ca:77:fa:57:39:43:c6:45:92:2e:3d: 15:bc:b6:79:25:96:a3:e6:07:70:d8:0a:b3:aa:ea: 10:2d:65:b8:f3:30:25:40:a3:42:63:fb:0c:5b:9a: 11:0b:b7:cc:e3:3f:6c:2c:73:d7:c5:d5:27:45:5e: 51:60:31:11:ed:00:34:f7:af:b6:ed:0a:7e:67:d5: fd:04:29:7d:05:7f:d8:b2:f6:b0:a0:a8:06:49:45: 8c:78:d1:9c:45:40:f2:79:04:72:3b:63:2b:d1:ab: 7a:b6:a7:f4:3e:88:c0:b0:b4:c8:14:c0:38:fc:14: a0:18:08:90:21:f6:7c:95:9c:e9:20:70:3c:44:20: 66:6a:41:a5:ac:95:cf:82:77:08:89:72:b1:51:da: cd:79:e2:85:a1:bc:d8:bc:ba:27:0a:03:4a:4c:c5: 6e:2c:61:cf:8e:92:45:e0:57:40:42:d5:b1:a1:f6: 8e:39:4b:28:97:bb:b3:03:a1:fb:e3:a5:9c:47:cb: d1:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:D2:A7:EF:76:68:96:E2:F5:55:28:F4:96:98:C7:1F:3D:0F:2C:CB X509v3 Authority Key Identifier: keyid:17:0E:9C:76:76:43:C3:C1:F6:05:79:40:86:48:A3:F0:DA:84:04:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917EFB8/D980A1721D9511E292150E7E08B02CD2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917EFB8/D980A1721D9511E292150E7E08B02CD2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:ed:15:77:e8:c4:db:66:38:3f:6c:08:0e:ec:d3:aa:5b:bc: 05:46:40:ed:c3:7b:53:24:92:43:1d:ba:09:c8:bb:d8:99:e9: b4:ab:d7:a2:9a:18:7a:ee:fd:16:f1:24:78:8f:1d:a9:5f:bd: 8d:c2:22:9d:0c:30:d8:a8:77:3a:c0:c3:95:d7:c6:83:8d:c0: 9e:84:1b:ae:75:e6:2e:26:74:14:8f:de:36:3e:37:e0:36:8d: 66:13:cb:69:39:e6:fe:ec:95:f9:a8:c1:64:a1:28:63:7d:ae: bd:01:9a:09:7f:6e:7e:68:a5:03:22:91:13:55:1d:2c:cc:44: 23:8f:01:1c:c0:14:25:d5:b5:00:f3:24:b9:d1:e2:f2:07:1d: 89:0a:6d:fb:59:04:17:b2:e6:d7:eb:98:89:a8:42:e7:b4:3b: 7b:f6:85:f9:80:78:af:4a:f1:fc:89:93:26:d6:70:d8:9c:d9: e9:23:05:ef:62:85:55:a3:3c:33:bb:4e:e9:18:a3:61:1e:73: a5:b1:83:f2:23:27:f4:9f:40:ae:9e:5d:64:d1:df:b8:28:aa: 9b:61:80:02:9e:80:1a:61:8c:ed:7c:e6:a3:08:66:31:71:39: ab:25:e2:ee:ef:91:b4:b5:d4:9d:63:8f:68:a6:d5:4e:8a:8a: e0:eb:1b:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNH4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VGQjgxMTAvBgNVBAUTKDE3MEU5Qzc2NzY0M0MzQzFGNjA1Nzk0MDg2NDhBM0Yw REE4NDA0NUEwHhcNMjUwNDI0MTQ0ODMwWhcNMjUwNTAxMTQ0ODMwWjAYMRYwFAYD VQQDEw02ODBhNGYzZi0yNzVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxSCIcY0sKnXNa1/rZcWtV3/h4gC+TtBd0acpW4e6A7aOKIU1c7rx0MwqhLWt n2PY3eu3LHOh+TEx4GfPN385ynf6VzlDxkWSLj0VvLZ5JZaj5gdw2AqzquoQLWW4 8zAlQKNCY/sMW5oRC7fM4z9sLHPXxdUnRV5RYDER7QA096+27Qp+Z9X9BCl9BX/Y svawoKgGSUWMeNGcRUDyeQRyO2Mr0at6tqf0PojAsLTIFMA4/BSgGAiQIfZ8lZzp IHA8RCBmakGlrJXPgncIiXKxUdrNeeKFobzYvLonCgNKTMVuLGHPjpJF4FdAQtWx ofaOOUsol7uzA6H746WcR8vRZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCDSp+92 aJbi9VUo9JaYxx89DyzLMB8GA1UdIwQYMBaAFBcOnHZ2Q8PB9gV5QIZIo/DahARa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUZCOC9EOTgwQTE3MjFE OTUxMUUyOTIxNTBFN0UwOEIwMkNEMi9GdzZjZG5aRHc4SDJCWGxBaGtpajhOcUVC Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Z3NmNkblpEdzhIMkJYbEFoa2lqOE5xRUJGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RUZCOC9EOTgwQTE3MjFEOTUxMUUyOTIxNTBFN0UwOEIwMkNEMi9GdzZjZG5aRHc4 SDJCWGxBaGtpajhOcUVCRm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCx7RV36MTbZjg/bAgO7NOqW7wFRkDtw3tTJJJDHboJyLvYmem0q9ei mhh67v0W8SR4jx2pX72NwiKdDDDYqHc6wMOV18aDjcCehBuudeYuJnQUj942Pjfg No1mE8tpOeb+7JX5qMFkoShjfa69AZoJf25+aKUDIpETVR0szEQjjwEcwBQl1bUA 8yS50eLyBx2JCm37WQQXsubX65iJqELntDt79oX5gHivSvH8iZMm1nDYnNnpIwXv YoVVozwzu07pGKNhHnOlsYPyIyf0n0Cunl1k0d+4KKqbYYACnoAaYYztfOajCGYx cTmrJeLu75G0tdSdY49optVOiorg6xtb -----END CERTIFICATE-----Generated at Sat Apr 26 15:04:34 2025 by rpki-client