$ rpki-client -vvf rpki.apnic.net/member_repository/A91C654A/71FAB0D8352911EBB80F1349C4F9AE02/Fm664SGI_4_HXurj7PjTvearJxo.mft File: Fm664SGI_4_HXurj7PjTvearJxo.mft (raw, json) Hash identifier: XdWy4Ocgkmix+yfAxq2wpYEDGbCN7Y81lzIei0TfsYM= Subject key identifier: 03:C6:79:A1:6A:A1:A1:B3:83:67:1D:96:7E:E0:31:48:2A:D1:83:58 Authority key identifier: 16:6E:BA:E1:21:88:FF:8F:C7:5E:EA:E3:EC:F8:D3:BD:E6:AB:27:1A Certificate issuer: /CN=A91C654A/serialNumber=166EBAE12188FF8FC75EEAE3ECF8D3BDE6AB271A Certificate serial: 0171 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fm664SGI_4_HXurj7PjTvearJxo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C654A/71FAB0D8352911EBB80F1349C4F9AE02/Fm664SGI_4_HXurj7PjTvearJxo.mft Manifest number: 088A Signing time: Thu 24 Apr 2025 21:40:22 +0000 Manifest this update: Thu 24 Apr 2025 21:40:22 +0000 Manifest next update: Thu 01 May 2025 21:40:22 +0000 Files and hashes: 1: Fm664SGI_4_HXurj7PjTvearJxo.crl (hash: J6dPzCtZ2ZsiuvBcdQ9DVfgvxsSShByjX3K+iRpLg+8=) 2: 50F8849CFDC111ED95AAA041C4F9AE02.roa (hash: 0DD71MyNn/a0ClFzY+negnwcfIlHkrg4N1Q4gkDWcxQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C654A/71FAB0D8352911EBB80F1349C4F9AE02/Fm664SGI_4_HXurj7PjTvearJxo.crl rsync://rpki.apnic.net/member_repository/A91C654A/71FAB0D8352911EBB80F1349C4F9AE02/Fm664SGI_4_HXurj7PjTvearJxo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fm664SGI_4_HXurj7PjTvearJxo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:40:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 369 (0x171) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C654A, serialNumber=166EBAE12188FF8FC75EEAE3ECF8D3BDE6AB271A Validity Not Before: Apr 24 21:40:22 2025 GMT Not After : May 1 21:40:22 2025 GMT Subject: CN=680aafc6-e8f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:6a:13:1d:35:e7:75:b5:b6:24:d6:8c:db:94: e3:bd:3a:92:83:21:0d:51:1e:74:ad:19:75:43:08: 3b:b7:7e:4d:69:64:84:5f:80:ac:df:cf:b8:dd:79: 9f:b4:26:82:be:92:1f:20:81:54:83:3c:97:5b:8d: 9a:70:e6:8a:a5:f9:ae:e7:b3:60:5e:70:1d:7e:84: 7d:d0:a7:85:3c:b1:7d:2f:6a:39:27:40:74:fc:04: 34:0f:51:45:d2:a8:95:9d:45:3a:6d:05:de:31:c8: 3e:10:4b:af:54:21:9f:a3:f0:97:61:2d:37:f8:72: 53:fe:3f:7c:e7:a7:37:8a:3f:94:8e:05:39:90:fd: a4:18:63:2b:19:d9:84:dd:0c:f5:30:5b:27:4a:e0: 85:5e:2a:ef:74:53:f8:30:86:aa:b2:13:61:5d:4c: d1:10:75:b5:1f:b2:73:a4:e8:9f:84:d7:10:e7:6a: 16:84:d8:3f:4d:51:53:43:03:6e:ab:1b:1a:ac:f3: 75:37:8e:1d:98:b1:21:0b:28:ba:e0:1f:76:c9:ee: 4a:26:bb:f8:93:c9:a9:1d:8d:9c:6e:b3:1c:9e:86: f7:4b:ae:62:4a:ae:e2:a1:2a:49:af:73:26:50:21: c9:fe:4c:fc:40:32:24:18:cf:5d:5a:ed:0c:11:0b: ad:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:C6:79:A1:6A:A1:A1:B3:83:67:1D:96:7E:E0:31:48:2A:D1:83:58 X509v3 Authority Key Identifier: keyid:16:6E:BA:E1:21:88:FF:8F:C7:5E:EA:E3:EC:F8:D3:BD:E6:AB:27:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C654A/71FAB0D8352911EBB80F1349C4F9AE02/Fm664SGI_4_HXurj7PjTvearJxo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fm664SGI_4_HXurj7PjTvearJxo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C654A/71FAB0D8352911EBB80F1349C4F9AE02/Fm664SGI_4_HXurj7PjTvearJxo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:bb:5c:da:09:61:24:2c:f7:3a:48:31:57:e3:51:89:a1:58: 61:a8:3b:12:50:80:1e:30:fb:0e:0b:48:15:a8:53:b6:e3:5b: 30:a9:80:4a:67:3b:a5:b8:d2:df:63:af:b6:4f:be:26:88:0c: 2a:1d:61:e3:f7:90:5f:a3:53:8a:89:e7:fc:ae:16:70:cf:33: 93:35:8c:c7:a1:5e:3b:7b:d4:7a:da:4b:57:fd:b6:bc:bd:ef: 59:fa:cb:25:72:c1:68:76:b6:65:6a:eb:ad:95:75:ab:aa:0d: 59:2a:fe:25:79:30:9c:f2:8c:90:2f:6c:42:05:b5:81:1b:07: 25:0a:ea:a9:5c:53:35:d0:f0:f8:81:18:8a:54:1c:68:48:25: eb:a5:b5:bf:5f:c3:0e:b7:c9:17:84:db:d5:ee:63:f3:a0:6d: a9:6e:f6:80:90:60:31:be:11:0d:c6:ae:c9:d5:a8:a1:60:cd: c1:7d:99:b3:3e:60:0c:48:a6:e8:cf:1a:a8:6f:df:cc:b0:e6: b3:7e:fb:b3:38:7c:59:cc:d0:ed:9d:e0:de:06:9f:a3:9f:3c: d1:e4:7a:15:4e:46:9f:48:dc:5b:06:97:e0:05:f4:fd:51:00: 13:1a:7f:92:bf:af:a6:db:37:c7:23:e8:57:5d:70:eb:65:35: c3:4d:2d:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY1NEExMTAvBgNVBAUTKDE2NkVCQUUxMjE4OEZGOEZDNzVFRUFFM0VDRjhEM0JE RTZBQjI3MUEwHhcNMjUwNDI0MjE0MDIyWhcNMjUwNTAxMjE0MDIyWjAYMRYwFAYD VQQDEw02ODBhYWZjNi1lOGY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA12oTHTXndbW2JNaM25TjvTqSgyENUR50rRl1Qwg7t35NaWSEX4Cs38+43Xmf tCaCvpIfIIFUgzyXW42acOaKpfmu57NgXnAdfoR90KeFPLF9L2o5J0B0/AQ0D1FF 0qiVnUU6bQXeMcg+EEuvVCGfo/CXYS03+HJT/j9856c3ij+UjgU5kP2kGGMrGdmE 3Qz1MFsnSuCFXirvdFP4MIaqshNhXUzREHW1H7JzpOifhNcQ52oWhNg/TVFTQwNu qxsarPN1N44dmLEhCyi64B92ye5KJrv4k8mpHY2cbrMcnob3S65iSq7ioSpJr3Mm UCHJ/kz8QDIkGM9dWu0MEQutdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAPGeaFq oaGzg2cdln7gMUgq0YNYMB8GA1UdIwQYMBaAFBZuuuEhiP+Px17q4+z4073mqyca MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjU0QS83MUZBQjBEODM1 MjkxMUVCQjgwRjEzNDlDNEY5QUUwMi9GbTY2NFNHSV80X0hYdXJqN1BqVHZlYXJK eG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZtNjY0U0dJXzRfSFh1cmo3UGpUdmVhckp4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NjU0QS83MUZBQjBEODM1MjkxMUVCQjgwRjEzNDlDNEY5QUUwMi9GbTY2NFNHSV80 X0hYdXJqN1BqVHZlYXJKeG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2u1zaCWEkLPc6SDFX41GJoVhhqDsSUIAeMPsOC0gVqFO241swqYBK ZzuluNLfY6+2T74miAwqHWHj95Bfo1OKief8rhZwzzOTNYzHoV47e9R62ktX/ba8 ve9Z+sslcsFodrZlauutlXWrqg1ZKv4leTCc8oyQL2xCBbWBGwclCuqpXFM10PD4 gRiKVBxoSCXrpbW/X8MOt8kXhNvV7mPzoG2pbvaAkGAxvhENxq7J1aihYM3BfZmz PmAMSKbozxqob9/MsOazfvuzOHxZzNDtneDeBp+jnzzR5HoVTkafSNxbBpfgBfT9 UQATGn+Sv6+m2zfHI+hXXXDrZTXDTS3s -----END CERTIFICATE-----Generated at Sat Apr 26 08:33:52 2025 by rpki-client