$ rpki-client -vvf rpki.apnic.net/member_repository/A9189BB3/A4478674DFCE11EB959B501FC4F9AE02/FSj2PSjz4TZpAsa2SvWGbMuo2sQ.mft File: FSj2PSjz4TZpAsa2SvWGbMuo2sQ.mft (raw, json) Hash identifier: c7avAr8cOxFatO1wc14esiiGkFVG0rTTVk+rqcgxXZg= Subject key identifier: A3:83:7B:66:AD:76:B5:07:66:5E:45:FC:C2:28:A0:7E:C1:B9:B2:39 Authority key identifier: 15:28:F6:3D:28:F3:E1:36:69:02:C6:B6:4A:F5:86:6C:CB:A8:DA:C4 Certificate issuer: /CN=A9189BB3/serialNumber=1528F63D28F3E1366902C6B64AF5866CCBA8DAC4 Certificate serial: 0581 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FSj2PSjz4TZpAsa2SvWGbMuo2sQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189BB3/A4478674DFCE11EB959B501FC4F9AE02/FSj2PSjz4TZpAsa2SvWGbMuo2sQ.mft Manifest number: 0574 Signing time: Thu 24 Apr 2025 23:09:52 +0000 Manifest this update: Thu 24 Apr 2025 23:09:51 +0000 Manifest next update: Thu 01 May 2025 23:09:51 +0000 Files and hashes: 1: FSj2PSjz4TZpAsa2SvWGbMuo2sQ.crl (hash: +U2bGMkJ9v0TQChsHqaLjOHYI+E/JUT209ctW+z/sDc=) 2: AB532852B38911ED825BDC70C4F9AE02.roa (hash: ANHxtKugodgoKSgnFI0z3Q5CTPRRYAMndCAFyQe7v1g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189BB3/A4478674DFCE11EB959B501FC4F9AE02/FSj2PSjz4TZpAsa2SvWGbMuo2sQ.crl rsync://rpki.apnic.net/member_repository/A9189BB3/A4478674DFCE11EB959B501FC4F9AE02/FSj2PSjz4TZpAsa2SvWGbMuo2sQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FSj2PSjz4TZpAsa2SvWGbMuo2sQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:09:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1409 (0x581) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189BB3, serialNumber=1528F63D28F3E1366902C6B64AF5866CCBA8DAC4 Validity Not Before: Apr 24 23:09:51 2025 GMT Not After : May 1 23:09:51 2025 GMT Subject: CN=680ac4bf-93b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:9d:bf:a3:f3:0f:c1:1b:77:ca:96:5e:a3:20: 8d:88:dc:c2:9e:41:ef:e8:e3:a9:cf:77:1e:a5:5a: 8d:b8:7c:9a:4e:bc:93:20:18:ea:38:46:4f:8c:11: cd:6e:b6:92:2c:05:b1:56:ad:29:71:4d:5f:9e:93: 91:43:8b:61:18:01:7a:41:29:8c:b5:c1:69:20:35: c1:e3:90:f5:95:41:0d:7f:d2:12:f8:bf:ae:b2:a9: 67:08:c6:e8:df:a7:59:2d:73:6a:64:f2:65:c0:60: ab:89:d7:14:62:de:cb:ef:b6:bc:eb:3c:1a:15:26: b7:83:10:7b:1d:a8:54:d3:66:94:2e:31:f0:c4:e7: e7:58:ad:92:3d:68:f9:64:68:2c:62:93:fe:17:7a: 0c:ab:6a:7b:23:00:be:be:7a:69:46:7b:62:ea:2c: f7:0e:ac:8d:b8:54:34:41:3c:34:cb:52:57:17:bc: 81:f0:a1:44:4f:00:d0:bc:b3:a5:46:3b:2c:38:2f: 5e:44:6d:39:58:8a:4d:d8:52:26:89:04:6c:b0:63: d4:e9:19:e7:af:67:6b:c2:2d:61:20:a7:b0:5a:69: 49:86:7a:b1:e7:89:5b:bc:67:81:a1:e9:7e:e8:6e: fc:0c:ef:3b:75:6f:95:a6:83:16:40:f2:94:b5:0a: 8a:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:83:7B:66:AD:76:B5:07:66:5E:45:FC:C2:28:A0:7E:C1:B9:B2:39 X509v3 Authority Key Identifier: keyid:15:28:F6:3D:28:F3:E1:36:69:02:C6:B6:4A:F5:86:6C:CB:A8:DA:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189BB3/A4478674DFCE11EB959B501FC4F9AE02/FSj2PSjz4TZpAsa2SvWGbMuo2sQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FSj2PSjz4TZpAsa2SvWGbMuo2sQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189BB3/A4478674DFCE11EB959B501FC4F9AE02/FSj2PSjz4TZpAsa2SvWGbMuo2sQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:c5:8f:05:33:b0:cb:2c:97:23:72:a2:b5:33:c4:63:87:38: 26:56:08:37:d3:0a:cc:7e:4d:26:10:7b:6f:45:79:a9:86:07: 9e:4a:26:1c:29:0d:49:d0:ce:e5:8d:33:f0:39:62:77:fc:1f: 8a:cc:10:fa:7b:06:c6:83:30:3c:24:0e:ed:02:b8:2c:52:43: 62:6a:58:57:b6:6f:5f:d2:15:f6:5c:8a:dc:ce:ce:cc:cd:6b: 4f:28:8e:d4:bf:5a:3c:20:46:e1:6d:de:db:79:fe:5c:f9:1c: 10:a5:7a:03:fd:12:24:bc:a9:08:5b:d5:af:a2:61:2b:68:da: dd:b6:5f:cb:a6:46:e1:77:df:1a:40:08:71:73:c9:a7:9d:a5: be:9c:a7:d5:71:a9:d8:47:db:e2:b8:14:87:ac:94:e4:22:c2: 3d:3e:93:a1:8a:8d:63:73:37:14:b3:7b:bc:44:72:a4:30:fe: e6:d2:9e:11:5e:87:f6:b4:18:79:a7:5c:dd:dc:a9:85:1a:b1: c3:dd:a8:82:09:02:5a:99:20:49:2d:a2:72:ba:bc:0d:cd:79: f5:a1:fc:4a:f6:43:2f:0f:e8:76:91:a2:a4:05:ea:1e:25:d2: 6b:fb:6c:60:df:90:e8:ae:a0:d1:dd:8b:e3:94:40:be:d2:97: 26:7d:56:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODlCQjMxMTAvBgNVBAUTKDE1MjhGNjNEMjhGM0UxMzY2OTAyQzZCNjRBRjU4NjZD Q0JBOERBQzQwHhcNMjUwNDI0MjMwOTUxWhcNMjUwNTAxMjMwOTUxWjAYMRYwFAYD VQQDEw02ODBhYzRiZi05M2I2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqJ2/o/MPwRt3ypZeoyCNiNzCnkHv6OOpz3cepVqNuHyaTryTIBjqOEZPjBHN braSLAWxVq0pcU1fnpORQ4thGAF6QSmMtcFpIDXB45D1lUENf9IS+L+usqlnCMbo 36dZLXNqZPJlwGCridcUYt7L77a86zwaFSa3gxB7HahU02aULjHwxOfnWK2SPWj5 ZGgsYpP+F3oMq2p7IwC+vnppRnti6iz3DqyNuFQ0QTw0y1JXF7yB8KFETwDQvLOl RjssOC9eRG05WIpN2FImiQRssGPU6Rnnr2drwi1hIKewWmlJhnqx54lbvGeBoel+ 6G78DO87dW+VpoMWQPKUtQqKdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKODe2at drUHZl5F/MIooH7BubI5MB8GA1UdIwQYMBaAFBUo9j0o8+E2aQLGtkr1hmzLqNrE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OUJCMy9BNDQ3ODY3NERG Q0UxMUVCOTU5QjUwMUZDNEY5QUUwMi9GU2oyUFNqejRUWnBBc2EyU3ZXR2JNdW8y c1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZTajJQU2p6NFRacEFzYTJTdldHYk11bzJzUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OUJCMy9BNDQ3ODY3NERGQ0UxMUVCOTU5QjUwMUZDNEY5QUUwMi9GU2oyUFNqejRU WnBBc2EyU3ZXR2JNdW8yc1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGxY8FM7DLLJcjcqK1M8RjhzgmVgg30wrMfk0mEHtvRXmphgeeSiYc KQ1J0M7ljTPwOWJ3/B+KzBD6ewbGgzA8JA7tArgsUkNialhXtm9f0hX2XIrczs7M zWtPKI7Uv1o8IEbhbd7bef5c+RwQpXoD/RIkvKkIW9WvomEraNrdtl/Lpkbhd98a QAhxc8mnnaW+nKfVcanYR9viuBSHrJTkIsI9PpOhio1jczcUs3u8RHKkMP7m0p4R Xof2tBh5p1zd3KmFGrHD3aiCCQJamSBJLaJyurwNzXn1ofxK9kMvD+h2kaKkBeoe JdJr+2xg35DorqDR3YvjlEC+0pcmfVbh -----END CERTIFICATE-----Generated at Sat Apr 26 14:59:31 2025 by rpki-client