$ rpki-client -vvf rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft File: rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft (raw, json) Hash identifier: 1dLNlLEaTLuR9LmtmcJvbJZIixVGL6/1uDdc4aID6HM= Subject key identifier: AA:19:E4:39:B6:88:D4:6F:98:C0:3A:36:B5:3B:D8:BB:D2:10:8C:FB Authority key identifier: AC:55:FB:75:BF:E3:43:E4:94:87:D8:51:C0:13:9C:13:64:CA:E9:CE Certificate issuer: /CN=A91A799E/serialNumber=AC55FB75BFE343E49487D851C0139C1364CAE9CE Certificate serial: 065F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFX7db_jQ-SUh9hRwBOcE2TK6c4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft Manifest number: 0655 Signing time: Thu 24 Apr 2025 22:15:00 +0000 Manifest this update: Thu 24 Apr 2025 22:14:59 +0000 Manifest next update: Thu 01 May 2025 22:14:59 +0000 Files and hashes: 1: rFX7db_jQ-SUh9hRwBOcE2TK6c4.crl (hash: qB2i2ntzWrWXwHIl1vPvWrIfwzHi3BWChb2wdpoiCJM=) 2: 6AC62B967FD711EBA2ECB43BC4F9AE02.roa (hash: gL2nII9XEbxnadb0waQYWcnam9MRSvEB52poepWih4w=) 3: 517F49AA822611EB8990276EC4F9AE02.roa (hash: CVEUO3oD78hdPnE1F9V5H7s7rSJsTEHJ4Ohcr53z470=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.crl rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFX7db_jQ-SUh9hRwBOcE2TK6c4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:14:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1631 (0x65f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A799E, serialNumber=AC55FB75BFE343E49487D851C0139C1364CAE9CE Validity Not Before: Apr 24 22:14:59 2025 GMT Not After : May 1 22:14:59 2025 GMT Subject: CN=680ab7e3-9075 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f8:f8:6c:2b:57:ba:e7:50:5d:ca:35:45:3f: fd:79:95:9b:96:4d:57:74:1b:b0:b6:4c:2b:45:d9: ba:8d:d0:d3:10:e2:fb:55:e3:1e:7e:76:ad:60:69: 5d:cb:d1:71:75:f4:c1:2d:80:0f:89:51:81:5c:b2: 5d:e0:bd:02:62:b5:f6:d6:34:c4:26:ce:5d:3e:dc: cd:fb:75:f6:6c:6b:c2:1c:af:8f:05:82:d5:51:13: 3b:24:dd:94:bd:4b:37:c3:d1:5e:7f:b0:7c:3c:ef: 6d:fa:ec:99:54:7a:08:93:f6:2f:47:31:dd:e4:1c: 5c:23:ec:be:46:99:dc:5e:9d:b5:ab:a3:f8:81:88: 8b:62:b8:61:95:3c:1e:ff:8f:41:88:42:1a:93:2f: 5f:82:11:73:17:a9:3c:ea:d1:04:37:f3:19:d9:03: 36:41:ca:bc:65:ce:5a:58:d0:f8:a0:7e:ae:42:28: fa:77:e2:58:c1:fc:9b:63:98:e3:35:f7:03:39:79: 7a:b8:19:12:4a:e9:95:e1:a7:33:1d:69:27:18:ed: 4a:00:3b:9c:0a:d9:55:ec:b2:32:0a:2d:58:ea:df: d6:db:8d:bc:f6:25:3f:88:05:29:84:94:3c:78:f0: c0:29:4a:d5:01:28:e8:92:89:bf:d4:88:8f:7f:fd: 61:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:19:E4:39:B6:88:D4:6F:98:C0:3A:36:B5:3B:D8:BB:D2:10:8C:FB X509v3 Authority Key Identifier: keyid:AC:55:FB:75:BF:E3:43:E4:94:87:D8:51:C0:13:9C:13:64:CA:E9:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFX7db_jQ-SUh9hRwBOcE2TK6c4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:cb:48:9e:20:37:8a:6e:51:2c:8a:6f:ae:30:87:e9:bc:bf: 84:16:e6:26:22:d4:ed:35:61:d1:82:e2:a4:61:4d:4e:da:24: 66:27:b0:91:a4:ac:82:16:12:98:fa:a6:22:95:1d:64:a5:71: 22:bc:c7:93:0b:20:14:58:64:a8:0f:d1:91:e9:0c:02:61:87: 3b:20:43:96:22:ae:79:05:e9:88:81:45:c1:e0:08:f1:3d:3d: 3f:04:2b:66:6e:a1:92:5d:60:01:3b:d5:23:2d:79:99:d7:3f: 53:00:50:6c:b0:9e:c1:4a:d5:85:46:b3:74:0c:d2:c8:39:fb: f4:98:da:9a:24:05:4e:a5:09:20:70:96:20:d0:aa:b1:ac:44: 09:4f:1b:98:da:eb:a5:4e:84:95:bb:ce:e2:f1:0c:d7:7d:94: aa:0c:e4:ca:74:d6:10:bf:5e:aa:63:dc:2f:ea:93:c5:29:97: 42:cd:c3:08:ff:04:f2:5c:3b:b2:b1:7b:75:b4:a2:25:b1:2f: ac:e3:ad:ea:76:a3:91:3b:a7:24:e5:e6:ce:5f:29:36:08:79: 92:da:08:df:db:79:0d:8f:a3:fa:17:b8:43:4c:5f:9d:e1:f8: ec:ca:72:74:e8:68:ac:95:b0:79:35:c4:47:59:91:e8:f6:a3: 92:ca:84:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBl8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc5OUUxMTAvBgNVBAUTKEFDNTVGQjc1QkZFMzQzRTQ5NDg3RDg1MUMwMTM5QzEz NjRDQUU5Q0UwHhcNMjUwNDI0MjIxNDU5WhcNMjUwNTAxMjIxNDU5WjAYMRYwFAYD VQQDEw02ODBhYjdlMy05MDc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvvj4bCtXuudQXco1RT/9eZWblk1XdBuwtkwrRdm6jdDTEOL7VeMefnatYGld y9FxdfTBLYAPiVGBXLJd4L0CYrX21jTEJs5dPtzN+3X2bGvCHK+PBYLVURM7JN2U vUs3w9Fef7B8PO9t+uyZVHoIk/YvRzHd5BxcI+y+RpncXp21q6P4gYiLYrhhlTwe /49BiEIaky9fghFzF6k86tEEN/MZ2QM2Qcq8Zc5aWND4oH6uQij6d+JYwfybY5jj NfcDOXl6uBkSSumV4aczHWknGO1KADucCtlV7LIyCi1Y6t/W24289iU/iAUphJQ8 ePDAKUrVASjokom/1IiPf/1hhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKoZ5Dm2 iNRvmMA6NrU72LvSEIz7MB8GA1UdIwQYMBaAFKxV+3W/40PklIfYUcATnBNkyunO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzk5RS8yNTVDRTgzNDdG RDYxMUVCOUZEMTIzM0JDNEY5QUUwMi9yRlg3ZGJfalEtU1VoOWhSd0JPY0UyVEs2 YzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JGWDdkYl9qUS1TVWg5aFJ3Qk9jRTJUSzZjNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Nzk5RS8yNTVDRTgzNDdGRDYxMUVCOUZEMTIzM0JDNEY5QUUwMi9yRlg3ZGJfalEt U1VoOWhSd0JPY0UyVEs2YzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgy0ieIDeKblEsim+uMIfpvL+EFuYmItTtNWHRguKkYU1O2iRmJ7CR pKyCFhKY+qYilR1kpXEivMeTCyAUWGSoD9GR6QwCYYc7IEOWIq55BemIgUXB4Ajx PT0/BCtmbqGSXWABO9UjLXmZ1z9TAFBssJ7BStWFRrN0DNLIOfv0mNqaJAVOpQkg cJYg0KqxrEQJTxuY2uulToSVu87i8QzXfZSqDOTKdNYQv16qY9wv6pPFKZdCzcMI /wTyXDuysXt1tKIlsS+s463qdqORO6ck5ebOXyk2CHmS2gjf23kNj6P6F7hDTF+d 4fjsynJ06GislbB5NcRHWZHo9qOSyoTq -----END CERTIFICATE-----Generated at Sat Apr 26 13:01:17 2025 by rpki-client