$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5EBA/72E54CFE2C5311EF91BF7C30C4F9AE02/FW1KnG8V6ytLPzZ9afqiUQEoB4g.mft File: FW1KnG8V6ytLPzZ9afqiUQEoB4g.mft (raw, json) Hash identifier: XwDamw5P8928DMPAGnAJpmiJTjQMDsHuuYItKCu+BPQ= Subject key identifier: 99:17:B4:66:FD:05:69:0A:9F:20:35:83:82:75:DC:F1:02:17:A2:B4 Authority key identifier: 15:6D:4A:9C:6F:15:EB:2B:4B:3F:36:7D:69:FA:A2:51:01:28:07:88 Certificate issuer: /CN=A91A5EBA/serialNumber=156D4A9C6F15EB2B4B3F367D69FAA25101280788 Certificate serial: A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FW1KnG8V6ytLPzZ9afqiUQEoB4g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5EBA/72E54CFE2C5311EF91BF7C30C4F9AE02/FW1KnG8V6ytLPzZ9afqiUQEoB4g.mft Manifest number: A2 Signing time: Fri 25 Apr 2025 05:12:17 +0000 Manifest this update: Fri 25 Apr 2025 05:12:16 +0000 Manifest next update: Fri 02 May 2025 05:12:16 +0000 Files and hashes: 1: FW1KnG8V6ytLPzZ9afqiUQEoB4g.crl (hash: tzlhXi7cqmBjgVP4dmmy0nZlOZxqFjjjfAfOBoJloAA=) 2: 80F32E7C2C5511EF83ECC535C4F9AE02.roa (hash: AqGZytLz79ZmCSne/bhw4dD+/PQ46qKOd6q10ehPEX0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5EBA/72E54CFE2C5311EF91BF7C30C4F9AE02/FW1KnG8V6ytLPzZ9afqiUQEoB4g.crl rsync://rpki.apnic.net/member_repository/A91A5EBA/72E54CFE2C5311EF91BF7C30C4F9AE02/FW1KnG8V6ytLPzZ9afqiUQEoB4g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FW1KnG8V6ytLPzZ9afqiUQEoB4g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:12:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 164 (0xa4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5EBA, serialNumber=156D4A9C6F15EB2B4B3F367D69FAA25101280788 Validity Not Before: Apr 25 05:12:16 2025 GMT Not After : May 2 05:12:16 2025 GMT Subject: CN=680b19b0-09cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:aa:fb:0a:a5:ea:55:ce:69:39:f6:6e:80:f0: 30:9d:52:7b:e8:28:16:89:1a:f9:40:3b:53:9e:2f: 8d:f6:af:29:36:2e:1b:f2:41:82:ae:00:4a:7e:56: 53:56:ac:b8:95:5b:54:13:bb:80:31:90:8b:2e:69: cb:b5:06:0c:93:8e:08:9b:a2:8e:87:05:f3:3c:ee: 9c:10:a0:0a:30:3a:16:25:bc:3e:c8:8a:4f:e2:ec: b6:84:93:a2:91:fe:ad:89:a9:4c:40:dd:4f:a1:f6: d5:1f:46:88:64:66:68:02:e4:17:96:4d:e8:89:d2: 36:ab:a8:92:65:d1:ab:23:2d:34:5c:b0:e3:47:95: 18:da:7d:a4:53:9f:2e:0e:74:8b:9f:d1:3e:cf:39: 98:90:13:6f:2b:08:fc:df:f5:e0:bc:3c:19:21:37: d6:1c:5d:aa:42:81:6a:87:44:59:03:41:43:57:87: 76:a3:d6:9b:66:7f:af:3e:64:76:8a:72:bc:94:3b: fe:15:83:ed:dc:e1:0f:20:62:30:09:ce:37:bb:0c: 56:c2:bc:ee:c4:cb:6c:a9:44:a1:85:f0:84:84:d6: e7:1a:24:b3:02:7a:b3:75:35:7a:fb:67:2e:7f:d7: 9b:85:d1:5e:ee:6e:82:fc:b5:ce:3a:9b:d7:37:ca: 29:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:17:B4:66:FD:05:69:0A:9F:20:35:83:82:75:DC:F1:02:17:A2:B4 X509v3 Authority Key Identifier: keyid:15:6D:4A:9C:6F:15:EB:2B:4B:3F:36:7D:69:FA:A2:51:01:28:07:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5EBA/72E54CFE2C5311EF91BF7C30C4F9AE02/FW1KnG8V6ytLPzZ9afqiUQEoB4g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FW1KnG8V6ytLPzZ9afqiUQEoB4g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5EBA/72E54CFE2C5311EF91BF7C30C4F9AE02/FW1KnG8V6ytLPzZ9afqiUQEoB4g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:8f:2b:11:32:81:ba:84:0e:6f:a2:cc:3c:2c:b0:12:37:fb: 49:fd:ac:cd:31:f6:49:78:52:6d:93:b7:a1:fe:48:98:cb:c0: 36:e2:33:bc:ff:4c:d6:53:7f:c3:d1:2c:7d:b0:ff:f2:f9:80: b2:85:35:8c:1e:66:f7:7a:15:3f:48:e2:b7:0e:23:8a:ad:1f: c1:1e:77:e5:d7:f0:d1:c1:df:2a:af:80:93:ab:1d:0f:35:31: 95:66:0a:c4:ae:33:ff:ff:ea:7f:a6:5d:51:a6:78:5c:ae:eb: 0a:f9:5a:5f:29:79:c7:d8:a0:0d:ab:47:e0:46:27:7a:b9:18: 16:45:cd:6b:50:16:fa:39:09:cc:85:30:bc:44:2e:42:3b:cc: 58:64:1f:0f:fe:dd:43:44:a6:91:05:f6:c9:5e:e9:cc:3a:14: 93:c4:5f:04:29:3e:a1:d0:20:a1:e3:17:a4:c7:e4:83:57:f9: b6:22:bb:5e:8a:38:a6:b6:7e:00:3b:51:2d:c7:5e:00:0b:9a: ea:0c:d0:c7:57:7a:29:66:1e:7e:99:56:e8:fc:30:fd:22:78: 51:c1:d9:61:9b:9e:71:97:7d:5d:f5:47:dd:ce:2f:28:0d:4d: 53:6d:51:04:eb:72:c3:a8:3b:8e:d4:be:1e:23:de:af:76:77: 45:7f:e1:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVFQkExMTAvBgNVBAUTKDE1NkQ0QTlDNkYxNUVCMkI0QjNGMzY3RDY5RkFBMjUx MDEyODA3ODgwHhcNMjUwNDI1MDUxMjE2WhcNMjUwNTAyMDUxMjE2WjAYMRYwFAYD VQQDEw02ODBiMTliMC0wOWNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzKr7CqXqVc5pOfZugPAwnVJ76CgWiRr5QDtTni+N9q8pNi4b8kGCrgBKflZT Vqy4lVtUE7uAMZCLLmnLtQYMk44Im6KOhwXzPO6cEKAKMDoWJbw+yIpP4uy2hJOi kf6tialMQN1PofbVH0aIZGZoAuQXlk3oidI2q6iSZdGrIy00XLDjR5UY2n2kU58u DnSLn9E+zzmYkBNvKwj83/XgvDwZITfWHF2qQoFqh0RZA0FDV4d2o9abZn+vPmR2 inK8lDv+FYPt3OEPIGIwCc43uwxWwrzuxMtsqUShhfCEhNbnGiSzAnqzdTV6+2cu f9ebhdFe7m6C/LXOOpvXN8opgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJkXtGb9 BWkKnyA1g4J13PECF6K0MB8GA1UdIwQYMBaAFBVtSpxvFesrSz82fWn6olEBKAeI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUVCQS83MkU1NENGRTJD NTMxMUVGOTFCRjdDMzBDNEY5QUUwMi9GVzFLbkc4VjZ5dExQelo5YWZxaVVRRW9C NGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZXMUtuRzhWNnl0TFB6WjlhZnFpVVFFb0I0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUVCQS83MkU1NENGRTJDNTMxMUVGOTFCRjdDMzBDNEY5QUUwMi9GVzFLbkc4VjZ5 dExQelo5YWZxaVVRRW9CNGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0jysRMoG6hA5vosw8LLASN/tJ/azNMfZJeFJtk7eh/kiYy8A24jO8 /0zWU3/D0Sx9sP/y+YCyhTWMHmb3ehU/SOK3DiOKrR/BHnfl1/DRwd8qr4CTqx0P NTGVZgrErjP//+p/pl1RpnhcrusK+VpfKXnH2KANq0fgRid6uRgWRc1rUBb6OQnM hTC8RC5CO8xYZB8P/t1DRKaRBfbJXunMOhSTxF8EKT6h0CCh4xekx+SDV/m2Irte ijimtn4AO1Etx14AC5rqDNDHV3opZh5+mVbo/DD9InhRwdlhm55xl31d9Ufdzi8o DU1TbVEE63LDqDuO1L4eI96vdndFf+Hj -----END CERTIFICATE-----Generated at Sat Apr 26 04:01:32 2025 by rpki-client