$ rpki-client -vvf rpki.apnic.net/member_repository/A91A29DA/3E624BAEDA5411EE827CA57DC4F9AE02/FtFKpRNNQRJGTXmS2_HEUvf6KaA.mft File: FtFKpRNNQRJGTXmS2_HEUvf6KaA.mft (raw, json) Hash identifier: M1aMmFZzkxnDNNKqM9bj9lQfoc+0b5nR/6qgyePn/Ug= Subject key identifier: C5:36:B1:75:1A:38:41:9D:C6:3C:E1:CC:A0:5C:4F:7A:A0:08:16:E9 Authority key identifier: 16:D1:4A:A5:13:4D:41:12:46:4D:79:92:DB:F1:C4:52:F7:FA:29:A0 Certificate issuer: /CN=A91A29DA/serialNumber=16D14AA5134D4112464D7992DBF1C452F7FA29A0 Certificate serial: D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FtFKpRNNQRJGTXmS2_HEUvf6KaA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A29DA/3E624BAEDA5411EE827CA57DC4F9AE02/FtFKpRNNQRJGTXmS2_HEUvf6KaA.mft Manifest number: D3 Signing time: Fri 25 Apr 2025 04:38:47 +0000 Manifest this update: Fri 25 Apr 2025 04:38:47 +0000 Manifest next update: Fri 02 May 2025 04:38:47 +0000 Files and hashes: 1: FtFKpRNNQRJGTXmS2_HEUvf6KaA.crl (hash: 73WjM25K5tbBsSWM+bO46toHJc86OnHbThXENooSM3c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A29DA/3E624BAEDA5411EE827CA57DC4F9AE02/FtFKpRNNQRJGTXmS2_HEUvf6KaA.crl rsync://rpki.apnic.net/member_repository/A91A29DA/3E624BAEDA5411EE827CA57DC4F9AE02/FtFKpRNNQRJGTXmS2_HEUvf6KaA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FtFKpRNNQRJGTXmS2_HEUvf6KaA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:38:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 211 (0xd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A29DA, serialNumber=16D14AA5134D4112464D7992DBF1C452F7FA29A0 Validity Not Before: Apr 25 04:38:47 2025 GMT Not After : May 2 04:38:47 2025 GMT Subject: CN=680b11d7-bf86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:56:3e:4c:db:c7:3c:db:cb:a4:b6:ac:97:56: 8e:65:fa:98:0b:34:07:35:44:da:88:d8:76:63:c8: bc:c2:5d:12:3e:7f:29:d8:c7:e2:25:c8:62:ea:8e: 35:a8:f2:d5:3e:78:e6:28:4d:d6:8e:f1:7d:02:e5: f4:b2:e7:ce:9d:e4:27:a7:78:ba:92:84:7c:ef:f8: 83:d6:fb:b3:6b:d5:1e:06:31:0e:5d:9c:eb:27:b8: 40:51:07:1d:1c:2d:d2:9b:09:04:13:e4:e1:9d:f2: 7a:88:50:89:c6:a5:04:e4:f1:c0:8b:26:c3:c9:a8: 8d:ee:12:60:71:90:35:a7:ad:a3:e3:ac:a6:9b:71: a6:77:54:d8:3d:ff:d1:45:1b:ce:1e:a7:9a:01:0f: 10:bd:22:04:e5:48:ed:ab:cd:19:70:6a:b6:04:90: 42:1e:25:2f:3f:6c:fd:80:6a:3e:b3:79:98:f6:d7: ac:fc:34:e6:53:9c:36:61:fc:2a:ee:d6:bb:df:cc: 79:5e:5f:b8:d9:90:fc:6f:7f:e9:c7:35:5b:71:88: ef:ba:bd:6e:f3:db:7d:7c:52:9a:8b:1d:05:21:bc: 6c:33:bd:d4:97:25:f8:fc:df:71:39:c5:f3:e9:57: a3:9e:86:0c:0e:a9:59:5d:c9:11:ba:ee:ee:fa:7a: a8:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:36:B1:75:1A:38:41:9D:C6:3C:E1:CC:A0:5C:4F:7A:A0:08:16:E9 X509v3 Authority Key Identifier: keyid:16:D1:4A:A5:13:4D:41:12:46:4D:79:92:DB:F1:C4:52:F7:FA:29:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A29DA/3E624BAEDA5411EE827CA57DC4F9AE02/FtFKpRNNQRJGTXmS2_HEUvf6KaA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FtFKpRNNQRJGTXmS2_HEUvf6KaA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A29DA/3E624BAEDA5411EE827CA57DC4F9AE02/FtFKpRNNQRJGTXmS2_HEUvf6KaA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:43:d6:72:c7:7b:d5:bf:d2:7e:a4:1c:c2:16:9f:29:a0:6a: fb:bc:9e:e1:1b:b2:f8:ca:9e:e8:ee:74:2f:5a:4c:df:c0:45: 78:97:f0:af:cf:88:b5:9c:7b:6b:1e:4d:d2:ad:88:a2:ea:98: 77:5b:8b:e9:4e:4c:9e:58:1d:59:2a:46:b8:9f:66:a6:b1:50: 52:82:bb:2a:44:06:d1:22:32:60:bc:bb:1f:d2:92:33:db:84: 15:c2:58:5c:78:7a:cf:1b:dc:c5:30:4c:ec:4e:72:0c:eb:48: 41:ca:45:ff:5c:5a:c1:2a:7e:85:ff:61:5f:35:0c:7f:f9:d7: 0d:47:b2:93:5e:c6:3c:61:da:06:9c:1a:86:37:8c:8a:d3:4e: 84:a9:2c:b5:ce:b4:e3:ab:8c:f7:a6:67:92:54:ec:a8:e0:da: ac:6b:2b:61:a9:1f:d1:83:16:ed:c6:cd:ec:7b:5e:13:dd:aa: 60:ab:7d:b7:fa:19:13:d7:1e:24:61:ad:2c:58:e0:0b:64:5b: 81:04:24:6d:2b:d2:15:c4:7f:21:f1:42:e2:83:08:f5:b1:5f: d6:e3:f5:66:5d:77:69:a4:af:5f:0a:59:f7:8c:89:63:69:82: d8:75:84:f8:53:0e:6d:16:b9:b4:ed:1f:76:ef:54:b7:59:17: 0a:8b:bb:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTI5REExMTAvBgNVBAUTKDE2RDE0QUE1MTM0RDQxMTI0NjRENzk5MkRCRjFDNDUy RjdGQTI5QTAwHhcNMjUwNDI1MDQzODQ3WhcNMjUwNTAyMDQzODQ3WjAYMRYwFAYD VQQDEw02ODBiMTFkNy1iZjg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuVY+TNvHPNvLpLasl1aOZfqYCzQHNUTaiNh2Y8i8wl0SPn8p2MfiJchi6o41 qPLVPnjmKE3WjvF9AuX0sufOneQnp3i6koR87/iD1vuza9UeBjEOXZzrJ7hAUQcd HC3SmwkEE+ThnfJ6iFCJxqUE5PHAiybDyaiN7hJgcZA1p62j46ymm3Gmd1TYPf/R RRvOHqeaAQ8QvSIE5Ujtq80ZcGq2BJBCHiUvP2z9gGo+s3mY9tes/DTmU5w2Yfwq 7ta738x5Xl+42ZD8b3/pxzVbcYjvur1u89t9fFKaix0FIbxsM73UlyX4/N9xOcXz 6VejnoYMDqlZXckRuu7u+nqoSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMU2sXUa OEGdxjzhzKBcT3qgCBbpMB8GA1UdIwQYMBaAFBbRSqUTTUESRk15ktvxxFL3+img MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMjlEQS8zRTYyNEJBRURB NTQxMUVFODI3Q0E1N0RDNEY5QUUwMi9GdEZLcFJOTlFSSkdUWG1TMl9IRVV2ZjZL YUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Z0RktwUk5OUVJKR1RYbVMyX0hFVXZmNkthQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MjlEQS8zRTYyNEJBRURBNTQxMUVFODI3Q0E1N0RDNEY5QUUwMi9GdEZLcFJOTlFS SkdUWG1TMl9IRVV2ZjZLYUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWQ9Zyx3vVv9J+pBzCFp8poGr7vJ7hG7L4yp7o7nQvWkzfwEV4l/Cv z4i1nHtrHk3SrYii6ph3W4vpTkyeWB1ZKka4n2amsVBSgrsqRAbRIjJgvLsf0pIz 24QVwlhceHrPG9zFMEzsTnIM60hBykX/XFrBKn6F/2FfNQx/+dcNR7KTXsY8YdoG nBqGN4yK006EqSy1zrTjq4z3pmeSVOyo4NqsaythqR/Rgxbtxs3se14T3apgq323 +hkT1x4kYa0sWOALZFuBBCRtK9IVxH8h8ULigwj1sV/W4/VmXXdppK9fCln3jIlj aYLYdYT4Uw5tFrm07R9271S3WRcKi7tE -----END CERTIFICATE-----Generated at Sat Apr 26 16:41:06 2025 by rpki-client