$ rpki-client -vvf rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.mft File: fnLYAbOKcqtLA3bhLJVBJKrkPG0.mft (raw, json) Hash identifier: vAi1yF7GzyXjCNtKRDGzJQOFdnfIHep6GPnrZFyW1Es= Subject key identifier: 8F:88:9E:01:7F:55:EF:44:33:20:63:E0:89:63:C8:C1:56:88:56:7B Authority key identifier: 7E:72:D8:01:B3:8A:72:AB:4B:03:76:E1:2C:95:41:24:AA:E4:3C:6D Certificate issuer: /CN=A918753F/serialNumber=7E72D801B38A72AB4B0376E12C954124AAE43C6D Certificate serial: 0895 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnLYAbOKcqtLA3bhLJVBJKrkPG0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.mft Manifest number: 088A Signing time: Thu 24 Apr 2025 20:27:47 +0000 Manifest this update: Thu 24 Apr 2025 20:27:46 +0000 Manifest next update: Thu 01 May 2025 20:27:46 +0000 Files and hashes: 1: fnLYAbOKcqtLA3bhLJVBJKrkPG0.crl (hash: wscgjAcUl4Q5YYl7ChcTw8UJKowiFblEdGkX4v895bQ=) 2: 10A6E062B70A11EDB851464EC4F9AE02.roa (hash: FH1SU9GKJvbucv0gXmHk6Vc7dPieI2aucBrxBlxHAdE=) 3: 38B92F54E17D11EDBCAFC081C4F9AE02.roa (hash: KcabN84FuC1RCZKB2biZEnUyMb0N5RBlFWlu2grfP8Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.crl rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnLYAbOKcqtLA3bhLJVBJKrkPG0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:27:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2197 (0x895) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918753F, serialNumber=7E72D801B38A72AB4B0376E12C954124AAE43C6D Validity Not Before: Apr 24 20:27:46 2025 GMT Not After : May 1 20:27:46 2025 GMT Subject: CN=680a9ec2-c7f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:da:8b:3d:30:15:48:7e:f7:97:5c:c6:77:63: 7a:49:1f:6d:9d:ed:b4:50:04:58:61:82:92:f1:ca: 7d:03:0c:9f:4a:6d:2d:9a:6d:cf:ea:7a:49:06:b7: 12:28:f1:8d:ca:a2:9a:db:fc:de:8d:a5:88:4a:9e: 61:0b:0c:40:b5:7a:02:70:09:ee:fd:bf:f3:ea:a2: dc:ff:27:40:de:36:65:8a:e3:9f:05:9f:12:c3:e3: 02:b2:59:7d:c8:6e:ad:95:95:b3:8b:66:d3:57:a8: af:41:88:b1:8d:66:54:83:3b:37:c8:38:54:68:41: ae:ce:bf:9e:1f:d5:ea:e5:0b:4e:3f:22:74:ea:78: 8d:e8:93:06:55:0e:88:5f:f0:f5:8f:33:39:12:92: ed:3d:c0:1a:c6:63:20:c1:a1:5c:87:c4:0e:c4:b7: c5:63:b1:e3:cb:51:8b:8b:7c:77:78:6a:e4:5c:0a: bb:83:d1:cd:c0:c2:52:db:2b:ad:16:dc:a7:96:97: b5:a9:ca:fe:0f:04:86:f4:d3:bd:3f:87:1b:bb:ca: dd:1e:d8:ab:30:a9:fd:ef:9b:d8:5a:1b:0e:5a:cb: 56:8d:12:9b:7b:98:45:c7:4b:6e:9f:6f:88:ee:2f: 2f:d7:9a:e0:79:9a:fe:d5:f2:66:ad:f0:98:0e:69: 61:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:88:9E:01:7F:55:EF:44:33:20:63:E0:89:63:C8:C1:56:88:56:7B X509v3 Authority Key Identifier: keyid:7E:72:D8:01:B3:8A:72:AB:4B:03:76:E1:2C:95:41:24:AA:E4:3C:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnLYAbOKcqtLA3bhLJVBJKrkPG0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:54:bb:94:dc:a0:0f:a4:cb:20:4f:b8:76:2f:07:0d:bd:06: 28:75:32:aa:73:59:f4:1d:20:88:2b:1f:69:e7:6b:d0:83:a1: 50:9a:77:33:f1:27:52:66:b2:b9:39:8d:71:56:7a:fe:cf:28: 9b:74:4a:c0:92:dd:97:7b:3a:d8:49:4a:75:69:5f:ec:6a:52: 6a:5f:54:f6:ad:23:e4:5b:69:30:7f:f7:2d:ad:66:f9:31:57: 86:85:78:50:ff:25:ab:9d:34:70:1e:d1:c6:81:4d:ed:97:3b: ad:6d:fe:65:d5:0f:ac:ba:3f:31:2f:bf:7d:41:91:6d:79:ed: a2:44:14:dd:f9:a0:d5:9b:8c:e7:ad:06:ea:c4:e8:c2:10:f5: 8a:bf:de:7f:e7:a1:d8:31:34:f0:d5:6a:b2:b5:cf:40:36:72: 04:28:63:73:70:1e:c2:13:9e:a1:ac:dd:a3:93:03:ed:e0:e4: 51:3b:e6:7b:47:ec:19:77:3c:13:a4:6e:cf:fe:cd:26:f6:1b: d6:11:c9:bc:fe:da:ad:7f:69:22:73:db:e1:53:bd:25:06:91: 65:59:ee:51:d0:1a:a6:fa:7a:fa:51:bc:d9:32:a3:31:3f:1b: cf:e5:d1:a1:06:98:25:69:8b:ce:4a:8e:73:4d:ef:59:0b:f4: b3:43:50:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc1M0YxMTAvBgNVBAUTKDdFNzJEODAxQjM4QTcyQUI0QjAzNzZFMTJDOTU0MTI0 QUFFNDNDNkQwHhcNMjUwNDI0MjAyNzQ2WhcNMjUwNTAxMjAyNzQ2WjAYMRYwFAYD VQQDEw02ODBhOWVjMi1jN2YzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAotqLPTAVSH73l1zGd2N6SR9tne20UARYYYKS8cp9AwyfSm0tmm3P6npJBrcS KPGNyqKa2/zejaWISp5hCwxAtXoCcAnu/b/z6qLc/ydA3jZliuOfBZ8Sw+MCsll9 yG6tlZWzi2bTV6ivQYixjWZUgzs3yDhUaEGuzr+eH9Xq5QtOPyJ06niN6JMGVQ6I X/D1jzM5EpLtPcAaxmMgwaFch8QOxLfFY7Hjy1GLi3x3eGrkXAq7g9HNwMJS2yut Ftynlpe1qcr+DwSG9NO9P4cbu8rdHtirMKn975vYWhsOWstWjRKbe5hFx0tun2+I 7i8v15rgeZr+1fJmrfCYDmlh1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI+IngF/ Ve9EMyBj4IljyMFWiFZ7MB8GA1UdIwQYMBaAFH5y2AGzinKrSwN24SyVQSSq5Dxt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzUzRi9CREE1N0ZGRUJD MTYxMUVBOUYyQjc0MTJDNEY5QUUwMi9mbkxZQWJPS2NxdExBM2JoTEpWQkpLcmtQ RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZuTFlBYk9LY3F0TEEzYmhMSlZCSktya1BHMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzUzRi9CREE1N0ZGRUJDMTYxMUVBOUYyQjc0MTJDNEY5QUUwMi9mbkxZQWJPS2Nx dExBM2JoTEpWQkpLcmtQRzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkVLuU3KAPpMsgT7h2LwcNvQYodTKqc1n0HSCIKx9p52vQg6FQmncz 8SdSZrK5OY1xVnr+zyibdErAkt2XezrYSUp1aV/salJqX1T2rSPkW2kwf/ctrWb5 MVeGhXhQ/yWrnTRwHtHGgU3tlzutbf5l1Q+suj8xL799QZFtee2iRBTd+aDVm4zn rQbqxOjCEPWKv95/56HYMTTw1Wqytc9ANnIEKGNzcB7CE56hrN2jkwPt4ORRO+Z7 R+wZdzwTpG7P/s0m9hvWEcm8/tqtf2kic9vhU70lBpFlWe5R0Bqm+nr6UbzZMqMx PxvP5dGhBpglaYvOSo5zTe9ZC/SzQ1AR -----END CERTIFICATE-----Generated at Sat Apr 26 14:21:13 2025 by rpki-client