$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9D04/7166F38E235C11E88812923FC4F9AE02/fmfojMQDeKlwRj3y0LBgiOZdubA.mft File: fmfojMQDeKlwRj3y0LBgiOZdubA.mft (raw, json) Hash identifier: 9sIZPA7c2oqezZVQtF7v+iErn7E0svB6bJTyIr5ZfAs= Subject key identifier: AE:97:CD:33:C3:04:CE:31:39:58:56:40:16:35:D3:7D:7D:11:9E:8A Authority key identifier: 7E:67:E8:8C:C4:03:78:A9:70:46:3D:F2:D0:B0:60:88:E6:5D:B9:B0 Certificate issuer: /CN=A91C9D04/serialNumber=7E67E88CC40378A970463DF2D0B06088E65DB9B0 Certificate serial: 0905 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fmfojMQDeKlwRj3y0LBgiOZdubA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9D04/7166F38E235C11E88812923FC4F9AE02/fmfojMQDeKlwRj3y0LBgiOZdubA.mft Manifest number: 1EBF Signing time: Thu 24 Apr 2025 16:47:39 +0000 Manifest this update: Thu 24 Apr 2025 16:47:38 +0000 Manifest next update: Thu 01 May 2025 16:47:38 +0000 Files and hashes: 1: fmfojMQDeKlwRj3y0LBgiOZdubA.crl (hash: w2c2Gxtcu2n37rEQom8wSWuT+g2D50aHl6EFy5aM8YI=) 2: A1DFD796A65511EABDAED713C4F9AE02.roa (hash: vKmmh6WIOEqHjc9HRB9xmdHJEo2LxIyyZG3CXzn2ZyE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9D04/7166F38E235C11E88812923FC4F9AE02/fmfojMQDeKlwRj3y0LBgiOZdubA.crl rsync://rpki.apnic.net/member_repository/A91C9D04/7166F38E235C11E88812923FC4F9AE02/fmfojMQDeKlwRj3y0LBgiOZdubA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fmfojMQDeKlwRj3y0LBgiOZdubA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:47:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2309 (0x905) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9D04, serialNumber=7E67E88CC40378A970463DF2D0B06088E65DB9B0 Validity Not Before: Apr 24 16:47:38 2025 GMT Not After : May 1 16:47:38 2025 GMT Subject: CN=680a6b2b-75b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:c8:fe:58:72:b8:6b:cf:a0:29:9c:43:34:85: 86:4d:7c:5b:c7:54:b5:b6:07:e6:75:e8:f2:d7:38: a2:28:b9:7d:c7:76:b0:16:c5:5f:85:a8:fa:f7:c4: 71:5e:6a:3c:2f:82:86:30:cb:68:43:a3:3d:e3:07: 01:a1:2c:4d:12:ad:4c:8f:37:4f:82:63:05:c2:44: eb:c9:9b:9e:b7:5c:eb:d7:b4:13:29:d1:80:6f:dd: 3d:37:d2:ed:d4:d6:2e:2a:4d:e6:2f:fc:ca:38:bd: 26:62:09:7b:ea:58:4f:9b:52:b8:8d:13:35:e5:25: 1d:1c:40:3e:85:03:3a:dc:55:f4:b3:3f:4f:55:c7: 1b:9f:e2:c2:79:43:99:60:97:f8:1e:f9:02:07:79: c1:6a:3b:6c:34:fa:68:96:48:1c:93:98:7d:5b:28: 35:aa:64:f6:14:81:d9:92:3e:02:59:5c:fd:74:54: 3c:dc:4f:34:2a:0a:46:9e:80:ba:16:f4:64:ad:ee: 34:89:46:8e:fd:eb:e4:92:35:0c:3d:d6:be:ba:37: e8:18:16:9c:b9:27:e7:b9:8d:aa:78:2d:1c:4b:2a: 3a:00:7a:5d:3c:ec:5f:33:56:39:34:55:9b:a8:6b: e3:e2:30:ca:12:15:cb:b0:ba:aa:49:18:1e:97:cd: 58:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:97:CD:33:C3:04:CE:31:39:58:56:40:16:35:D3:7D:7D:11:9E:8A X509v3 Authority Key Identifier: keyid:7E:67:E8:8C:C4:03:78:A9:70:46:3D:F2:D0:B0:60:88:E6:5D:B9:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9D04/7166F38E235C11E88812923FC4F9AE02/fmfojMQDeKlwRj3y0LBgiOZdubA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fmfojMQDeKlwRj3y0LBgiOZdubA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9D04/7166F38E235C11E88812923FC4F9AE02/fmfojMQDeKlwRj3y0LBgiOZdubA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:ee:84:cb:a4:72:f6:59:ec:a0:b0:0f:b0:4f:d4:c4:db:54: a8:9e:8d:9b:3c:11:24:29:57:84:e0:d9:55:5e:e3:b7:64:88: 9a:39:68:9c:b5:d0:49:25:61:2f:14:22:3c:df:86:ea:5e:bb: 47:47:a3:68:fa:31:32:a3:bb:8a:9c:6e:75:cc:e1:14:41:84: d7:09:a8:dc:de:6d:4b:ac:65:28:67:94:4c:c1:07:7b:90:0b: e2:73:46:cc:f7:4b:bc:4b:76:33:e6:91:e0:fb:39:bf:f2:d6: 4c:9e:c6:de:96:bb:32:c7:ae:90:0a:ea:6c:8a:15:93:88:af: ca:45:2a:ac:b6:01:7c:7e:40:ff:84:e7:ed:3a:b6:91:f1:f3: b1:f9:23:91:68:2d:b3:25:31:8b:5b:ac:62:6f:a9:34:7b:7b: ed:1e:8b:ba:c7:19:1f:d7:7d:a9:db:3d:a6:1d:9e:76:89:35: f6:ac:da:ad:08:5f:2d:ab:16:03:56:e7:7b:3d:21:e7:14:7e: 26:cb:1f:1c:11:7d:ed:5c:53:4e:b4:61:c7:f3:67:0d:e0:48: 5b:00:9f:f6:45:e7:33:2e:3c:1d:91:4b:50:5e:79:fb:ac:7a: dd:d8:31:ef:70:5d:be:95:40:10:22:8e:83:6e:8c:1f:bb:3c: 9b:d8:38:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlEMDQxMTAvBgNVBAUTKDdFNjdFODhDQzQwMzc4QTk3MDQ2M0RGMkQwQjA2MDg4 RTY1REI5QjAwHhcNMjUwNDI0MTY0NzM4WhcNMjUwNTAxMTY0NzM4WjAYMRYwFAYD VQQDEw02ODBhNmIyYi03NWIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArsj+WHK4a8+gKZxDNIWGTXxbx1S1tgfmdejy1ziiKLl9x3awFsVfhaj698Rx Xmo8L4KGMMtoQ6M94wcBoSxNEq1MjzdPgmMFwkTryZuet1zr17QTKdGAb909N9Lt 1NYuKk3mL/zKOL0mYgl76lhPm1K4jRM15SUdHEA+hQM63FX0sz9PVccbn+LCeUOZ YJf4HvkCB3nBajtsNPpolkgck5h9Wyg1qmT2FIHZkj4CWVz9dFQ83E80KgpGnoC6 FvRkre40iUaO/evkkjUMPda+ujfoGBacuSfnuY2qeC0cSyo6AHpdPOxfM1Y5NFWb qGvj4jDKEhXLsLqqSRgel81YJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK6XzTPD BM4xOVhWQBY10319EZ6KMB8GA1UdIwQYMBaAFH5n6IzEA3ipcEY98tCwYIjmXbmw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUQwNC83MTY2RjM4RTIz NUMxMUU4ODgxMjkyM0ZDNEY5QUUwMi9mbWZvak1RRGVLbHdSajN5MExCZ2lPWmR1 YkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZtZm9qTVFEZUtsd1JqM3kwTEJnaU9aZHViQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUQwNC83MTY2RjM4RTIzNUMxMUU4ODgxMjkyM0ZDNEY5QUUwMi9mbWZvak1RRGVL bHdSajN5MExCZ2lPWmR1YkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/7oTLpHL2WeygsA+wT9TE21Sono2bPBEkKVeE4NlVXuO3ZIiaOWic tdBJJWEvFCI834bqXrtHR6No+jEyo7uKnG51zOEUQYTXCajc3m1LrGUoZ5RMwQd7 kAvic0bM90u8S3Yz5pHg+zm/8tZMnsbelrsyx66QCupsihWTiK/KRSqstgF8fkD/ hOftOraR8fOx+SORaC2zJTGLW6xib6k0e3vtHou6xxkf132p2z2mHZ52iTX2rNqt CF8tqxYDVud7PSHnFH4myx8cEX3tXFNOtGHH82cN4EhbAJ/2ReczLjwdkUtQXnn7 rHrd2DHvcF2+lUAQIo6Dbowfuzyb2Dgu -----END CERTIFICATE-----Generated at Sat Apr 26 15:06:52 2025 by rpki-client