$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft File: FOZzxKcds0p1aBNYfkghLaLnczA.mft (raw, json) Hash identifier: 99bHvlgenKa8OHpsQkTclKvQxEtB+1B4HVRCG+G/Hvo= Subject key identifier: F2:10:D5:D9:17:E6:F4:AD:E5:53:F6:67:17:63:F5:6E:6D:6D:A6:51 Authority key identifier: 14:E6:73:C4:A7:1D:B3:4A:75:68:13:58:7E:48:21:2D:A2:E7:73:30 Certificate issuer: /CN=A91A2F33/serialNumber=14E673C4A71DB34A756813587E48212DA2E77330 Certificate serial: 09E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft Manifest number: 09D0 Signing time: Thu 24 Apr 2025 19:52:55 +0000 Manifest this update: Thu 24 Apr 2025 19:52:54 +0000 Manifest next update: Thu 01 May 2025 19:52:54 +0000 Files and hashes: 1: FOZzxKcds0p1aBNYfkghLaLnczA.crl (hash: AForhcXYTEpbXjQ0WLtxuStnyWD8J/fxMb6P0iY4tPs=) 2: 344644CC1DC511EF95607948C4F9AE02.roa (hash: QybxAW0JZTcm7NugQTpG8Jw3MBZeFtzVHU/nStVlT58=) 3: ED99CAA81DC411EF9E620C48C4F9AE02.roa (hash: STg8SBnaSzWjKmwuI5mayylMKelnZKOmUJFv9qSfaQw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.crl rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:52:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2536 (0x9e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2F33, serialNumber=14E673C4A71DB34A756813587E48212DA2E77330 Validity Not Before: Apr 24 19:52:54 2025 GMT Not After : May 1 19:52:54 2025 GMT Subject: CN=680a9697-d55e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:08:16:53:d6:ec:05:76:c9:62:cf:48:3e:7a: 4e:b2:9f:9f:3f:a9:8f:f7:cd:49:1d:df:6f:39:06: 20:8f:26:19:c1:dd:6c:70:e6:74:80:32:03:96:12: 83:77:23:3d:d5:86:78:af:41:f1:ae:71:d0:4d:07: b2:fa:1a:5b:e0:59:10:38:02:59:1c:d3:8a:e4:d0: e5:1c:62:e3:9c:81:9f:38:d6:11:0f:0a:55:02:a6: 73:d9:a0:76:31:9b:d3:3b:b4:5d:45:a3:f4:05:af: 5b:cf:67:2c:09:41:6c:0e:9d:17:1f:49:24:02:af: 5b:f5:f3:f0:fe:29:85:f8:fe:9f:a8:99:28:36:e9: 60:2e:ca:1b:22:7b:b6:b1:77:e5:8b:32:ba:c7:e3: c5:46:23:05:30:c9:47:bb:69:f2:c7:93:ce:8e:d4: 22:9b:5c:a0:2f:95:23:bf:54:40:75:ac:df:0a:4a: 3a:79:0e:8a:6b:fb:cf:e9:45:58:51:74:6d:82:66: cc:ba:f3:bc:d7:95:f9:21:10:49:9e:90:c5:c1:00: 09:28:a9:41:1a:2c:64:d3:a0:01:e4:c2:2b:86:18: d4:24:7f:6b:62:67:59:18:cc:14:bd:2c:89:c1:d8: 55:d6:d1:82:9c:0e:94:06:2c:0c:00:8f:71:73:a6: f3:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:10:D5:D9:17:E6:F4:AD:E5:53:F6:67:17:63:F5:6E:6D:6D:A6:51 X509v3 Authority Key Identifier: keyid:14:E6:73:C4:A7:1D:B3:4A:75:68:13:58:7E:48:21:2D:A2:E7:73:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:6d:ab:e5:06:78:f4:7a:62:43:dc:ea:a7:f1:02:a2:fd:95: 1d:d6:50:62:89:5c:c3:7c:04:a8:9b:c6:87:39:f4:d7:6d:d7: b8:9c:87:e7:f2:0d:ce:78:e6:de:c9:13:3f:e5:97:e6:75:b3: 1b:55:97:f5:63:d3:a6:84:42:59:a8:7f:ee:10:c1:d8:28:39: 8b:15:ea:cf:d1:f7:2f:bc:64:73:78:8b:f0:1b:6c:c1:ab:a9: 8d:13:25:d2:c4:b5:99:0e:ad:54:1b:0a:3a:58:ac:3a:70:47: 7e:50:13:6b:85:98:3b:84:6a:ae:9b:ad:f7:52:c3:59:3c:70: 96:6c:76:77:cc:65:ea:05:7d:76:d1:47:d7:98:59:80:a1:63: d3:8c:98:8e:c4:1b:09:fe:db:2d:d3:91:d9:02:01:e4:d2:5d: 7e:b2:e0:cb:71:f0:ab:4a:4f:44:84:69:ea:01:38:f6:19:54: 29:96:24:cf:30:40:c2:c4:c2:49:92:be:c9:76:21:1f:7c:55: 35:52:d4:56:dc:f6:83:9d:ea:51:40:68:d4:81:44:1b:cb:58: 87:2b:c2:27:1f:e1:07:9e:5c:c6:02:a3:fc:8f:f2:f1:c4:12: a8:71:d4:e5:78:da:78:33:06:56:57:ff:5d:cc:24:c6:36:15: a2:4d:dd:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCegwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJGMzMxMTAvBgNVBAUTKDE0RTY3M0M0QTcxREIzNEE3NTY4MTM1ODdFNDgyMTJE QTJFNzczMzAwHhcNMjUwNDI0MTk1MjU0WhcNMjUwNTAxMTk1MjU0WjAYMRYwFAYD VQQDEw02ODBhOTY5Ny1kNTVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvAgWU9bsBXbJYs9IPnpOsp+fP6mP981JHd9vOQYgjyYZwd1scOZ0gDIDlhKD dyM91YZ4r0HxrnHQTQey+hpb4FkQOAJZHNOK5NDlHGLjnIGfONYRDwpVAqZz2aB2 MZvTO7RdRaP0Ba9bz2csCUFsDp0XH0kkAq9b9fPw/imF+P6fqJkoNulgLsobInu2 sXflizK6x+PFRiMFMMlHu2nyx5POjtQim1ygL5Ujv1RAdazfCko6eQ6Ka/vP6UVY UXRtgmbMuvO815X5IRBJnpDFwQAJKKlBGixk06AB5MIrhhjUJH9rYmdZGMwUvSyJ wdhV1tGCnA6UBiwMAI9xc6bzywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPIQ1dkX 5vSt5VP2Zxdj9W5tbaZRMB8GA1UdIwQYMBaAFBTmc8SnHbNKdWgTWH5IIS2i53Mw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkYzMy9FNkVDMkQ5Mjgw OTExMUVBQUJDREZGNkNDNEY5QUUwMi9GT1p6eEtjZHMwcDFhQk5ZZmtnaExhTG5j ekEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZPWnp4S2NkczBwMWFCTllma2doTGFMbmN6QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MkYzMy9FNkVDMkQ5MjgwOTExMUVBQUJDREZGNkNDNEY5QUUwMi9GT1p6eEtjZHMw cDFhQk5ZZmtnaExhTG5jekEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhbavlBnj0emJD3Oqn8QKi/ZUd1lBiiVzDfASom8aHOfTXbde4nIfn 8g3OeObeyRM/5ZfmdbMbVZf1Y9OmhEJZqH/uEMHYKDmLFerP0fcvvGRzeIvwG2zB q6mNEyXSxLWZDq1UGwo6WKw6cEd+UBNrhZg7hGqum633UsNZPHCWbHZ3zGXqBX12 0UfXmFmAoWPTjJiOxBsJ/tst05HZAgHk0l1+suDLcfCrSk9EhGnqATj2GVQpliTP MEDCxMJJkr7JdiEffFU1UtRW3PaDnepRQGjUgUQby1iHK8InH+EHnlzGAqP8j/Lx xBKocdTleNp4MwZWV/9dzCTGNhWiTd0J -----END CERTIFICATE-----Generated at Sat Apr 26 14:18:34 2025 by rpki-client