$ rpki-client -vvf rpki.apnic.net/member_repository/A9187E80/D278CA649E7711EB8C25DB6CC4F9AE02/fLDlglEBxmVEPyz6sZ6E0ad5dZc.mft File: fLDlglEBxmVEPyz6sZ6E0ad5dZc.mft (raw, json) Hash identifier: pZvKK3h3MKRgnS5yz1/Sb5F6IFpDrr1VH0zlk1YPIjc= Subject key identifier: 2A:B4:7F:0C:BA:14:84:D5:3F:57:1C:F8:59:5B:C0:8D:AB:8F:59:11 Authority key identifier: 7C:B0:E5:82:51:01:C6:65:44:3F:2C:FA:B1:9E:84:D1:A7:79:75:97 Certificate issuer: /CN=A9187E80/serialNumber=7CB0E5825101C665443F2CFAB19E84D1A7797597 Certificate serial: 061F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fLDlglEBxmVEPyz6sZ6E0ad5dZc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187E80/D278CA649E7711EB8C25DB6CC4F9AE02/fLDlglEBxmVEPyz6sZ6E0ad5dZc.mft Manifest number: 0610 Signing time: Thu 24 Apr 2025 22:38:22 +0000 Manifest this update: Thu 24 Apr 2025 22:38:22 +0000 Manifest next update: Thu 01 May 2025 22:38:22 +0000 Files and hashes: 1: fLDlglEBxmVEPyz6sZ6E0ad5dZc.crl (hash: 8XAHPntoi9076spXAJlTE2dtr49VPBKHGUqWN+DFKVs=) 2: D043FFB2EEEA11EF8476F316C4F9AE02.roa (hash: 2LmuP3C8i2g82+GxEzyhXfhPVuIYh5+gy6RWprCcpgs=) 3: 76053AC29ED311EBB06C4E4DC4F9AE02.roa (hash: DVBw64dsT56+0QYycGeLUBxP/l2bdU+aNtZ1EMIv6Js=) 4: 1B120B6E563B11EE9C93E334C4F9AE02.roa (hash: cAf8Pq1ZJkKmC+TeXFz0VwR4TUY4CLV62jWZ7ILw/68=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187E80/D278CA649E7711EB8C25DB6CC4F9AE02/fLDlglEBxmVEPyz6sZ6E0ad5dZc.crl rsync://rpki.apnic.net/member_repository/A9187E80/D278CA649E7711EB8C25DB6CC4F9AE02/fLDlglEBxmVEPyz6sZ6E0ad5dZc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fLDlglEBxmVEPyz6sZ6E0ad5dZc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:38:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1567 (0x61f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187E80, serialNumber=7CB0E5825101C665443F2CFAB19E84D1A7797597 Validity Not Before: Apr 24 22:38:22 2025 GMT Not After : May 1 22:38:22 2025 GMT Subject: CN=680abd5e-2cd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:0e:92:4a:ec:4b:bc:da:10:50:ff:9f:31:7c: 4a:36:93:76:92:a2:f7:13:ee:87:85:1b:47:a2:db: 04:1e:32:82:d2:54:f1:d6:ea:64:55:f2:fe:bd:7d: 18:4a:0a:1a:ae:af:9f:17:e6:48:43:a3:aa:f4:65: de:b0:15:52:07:6e:38:f5:7a:44:31:f6:15:30:91: 7d:77:51:4b:ad:cf:2e:8a:de:98:b9:4c:d9:56:63: 3e:93:53:dd:d1:65:57:45:eb:38:43:ec:b1:09:ec: bc:51:7a:fc:ea:3f:1d:58:d0:be:a3:28:a8:8a:eb: f7:eb:22:99:74:18:1a:23:f1:5b:8d:c2:80:26:fe: ec:3c:b8:45:21:5f:23:e2:a5:05:2f:69:c3:88:a7: c0:ef:7e:ce:25:11:f4:ae:c3:51:b5:95:87:a0:7f: 2b:ec:e4:9a:4c:bf:9d:1f:fb:d9:3f:e9:dc:97:bd: 12:5e:df:23:c0:a3:2f:cf:32:83:67:77:72:f1:0b: 18:10:d9:84:0e:32:90:8d:54:c5:16:e6:50:22:99: 65:28:e7:28:39:0a:f3:6f:9e:cf:02:99:9c:47:7e: 03:a0:22:b7:7a:1b:c6:93:25:fc:67:32:63:ae:9f: 95:00:f7:68:db:b9:b8:0b:2e:45:15:38:b1:97:88: 49:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:B4:7F:0C:BA:14:84:D5:3F:57:1C:F8:59:5B:C0:8D:AB:8F:59:11 X509v3 Authority Key Identifier: keyid:7C:B0:E5:82:51:01:C6:65:44:3F:2C:FA:B1:9E:84:D1:A7:79:75:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187E80/D278CA649E7711EB8C25DB6CC4F9AE02/fLDlglEBxmVEPyz6sZ6E0ad5dZc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fLDlglEBxmVEPyz6sZ6E0ad5dZc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187E80/D278CA649E7711EB8C25DB6CC4F9AE02/fLDlglEBxmVEPyz6sZ6E0ad5dZc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:8f:b5:eb:d5:eb:e6:71:55:ca:43:73:a6:72:0c:e3:c2:8b: fc:f1:4c:ce:4e:9d:a6:72:a0:94:06:ee:22:ca:10:fb:b3:5f: 7c:45:82:6e:60:23:f3:35:f9:83:d9:cb:46:71:fd:d3:26:0b: a0:1e:53:c0:6c:ca:23:0c:69:d7:41:8b:b1:b4:5b:67:8e:dc: 23:c0:3e:3e:93:84:50:aa:20:5e:30:4d:17:c2:9d:11:ce:56: 75:32:f2:ce:4d:2a:76:ca:9b:5f:b8:c7:29:dd:8a:d4:fd:c8: 80:f7:99:26:a4:6a:56:d5:52:8d:38:2f:47:5d:c8:47:bd:cd: 8f:59:3a:0e:60:e8:b6:d3:2a:b0:06:5d:d7:4e:59:78:a5:9e: b5:c9:ca:b6:c9:11:2e:7a:c4:52:5d:2d:ce:72:2d:e3:d2:ea: 1a:ef:0a:c1:73:66:1d:bf:81:88:61:82:0c:79:28:9c:65:a3: f1:b2:4c:a6:58:a6:05:50:bf:2f:63:55:82:82:13:c5:ab:94: 4c:bf:bf:10:c4:c7:05:a1:13:40:b4:76:0a:22:dc:8e:ca:75: 07:9d:40:97:e3:48:a9:b1:ea:49:f6:c5:2a:9b:b7:fa:91:96: 97:2d:02:40:1c:50:69:f0:bc:9c:ee:36:ce:ca:66:a5:3f:b9: d5:81:34:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBh8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODdFODAxMTAvBgNVBAUTKDdDQjBFNTgyNTEwMUM2NjU0NDNGMkNGQUIxOUU4NEQx QTc3OTc1OTcwHhcNMjUwNDI0MjIzODIyWhcNMjUwNTAxMjIzODIyWjAYMRYwFAYD VQQDEw02ODBhYmQ1ZS0yY2Q2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Q6SSuxLvNoQUP+fMXxKNpN2kqL3E+6HhRtHotsEHjKC0lTx1upkVfL+vX0Y Sgoarq+fF+ZIQ6Oq9GXesBVSB2449XpEMfYVMJF9d1FLrc8uit6YuUzZVmM+k1Pd 0WVXRes4Q+yxCey8UXr86j8dWNC+oyioiuv36yKZdBgaI/FbjcKAJv7sPLhFIV8j 4qUFL2nDiKfA737OJRH0rsNRtZWHoH8r7OSaTL+dH/vZP+ncl70SXt8jwKMvzzKD Z3dy8QsYENmEDjKQjVTFFuZQIpllKOcoOQrzb57PApmcR34DoCK3ehvGkyX8ZzJj rp+VAPdo27m4Cy5FFTixl4hJgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCq0fwy6 FITVP1cc+FlbwI2rj1kRMB8GA1UdIwQYMBaAFHyw5YJRAcZlRD8s+rGehNGneXWX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4N0U4MC9EMjc4Q0E2NDlF NzcxMUVCOEMyNURCNkNDNEY5QUUwMi9mTERsZ2xFQnhtVkVQeXo2c1o2RTBhZDVk WmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZMRGxnbEVCeG1WRVB5ejZzWjZFMGFkNWRaYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 N0U4MC9EMjc4Q0E2NDlFNzcxMUVCOEMyNURCNkNDNEY5QUUwMi9mTERsZ2xFQnht VkVQeXo2c1o2RTBhZDVkWmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZj7Xr1evmcVXKQ3Omcgzjwov88UzOTp2mcqCUBu4iyhD7s198RYJu YCPzNfmD2ctGcf3TJgugHlPAbMojDGnXQYuxtFtnjtwjwD4+k4RQqiBeME0Xwp0R zlZ1MvLOTSp2yptfuMcp3YrU/ciA95kmpGpW1VKNOC9HXchHvc2PWToOYOi20yqw Bl3XTll4pZ61ycq2yREuesRSXS3Oci3j0uoa7wrBc2Ydv4GIYYIMeSicZaPxskym WKYFUL8vY1WCghPFq5RMv78QxMcFoRNAtHYKItyOynUHnUCX40ipsepJ9sUqm7f6 kZaXLQJAHFBp8Lyc7jbOymalP7nVgTTb -----END CERTIFICATE-----Generated at Sat Apr 26 14:53:58 2025 by rpki-client