$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft File: FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft (raw, json) Hash identifier: UbieNx/0YHJK7ZxVAl+dcHaDXCJh7OQ38BolNNiLly4= Subject key identifier: 01:E2:03:F4:3A:09:2D:73:0F:3F:AF:4D:9C:31:D0:96:0B:52:6A:C0 Authority key identifier: 14:7A:0E:04:87:11:B6:25:06:B0:9F:08:8A:05:99:2A:3A:31:02:0A Certificate issuer: /CN=A91DEC3C/serialNumber=147A0E048711B62506B09F088A05992A3A31020A Certificate serial: 01AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FHoOBIcRtiUGsJ8IigWZKjoxAgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft Manifest number: 01A7 Signing time: Fri 13 Jun 2025 02:17:20 +0000 Manifest this update: Fri 13 Jun 2025 02:17:19 +0000 Manifest next update: Fri 20 Jun 2025 02:17:19 +0000 Files and hashes: 1: FHoOBIcRtiUGsJ8IigWZKjoxAgo.crl (hash: 1g9f6azIlDQFftfeOzXn/kYi/CrQZA722fraZsWBOf4=) 2: 5153E9DAC0B911ED99A12312C4F9AE02.roa (hash: pRhFi90u5iaLYPX6g3PP+55Ior11n+chfHkyJHcRUKE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.crl rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FHoOBIcRtiUGsJ8IigWZKjoxAgo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 02:17:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 426 (0x1aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEC3C, serialNumber=147A0E048711B62506B09F088A05992A3A31020A Validity Not Before: Jun 13 02:17:19 2025 GMT Not After : Jun 20 02:17:19 2025 GMT Subject: CN=684b8a2f-97ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:bf:b9:e0:c1:c7:ec:fe:e6:39:80:3a:42:81: 61:63:5e:0c:10:f7:29:2b:81:1d:76:a2:fd:a3:7c: 61:98:78:84:41:77:c5:a3:e5:a7:d1:73:e1:89:6e: a8:99:97:24:6f:10:a9:ef:c1:a0:93:31:73:9e:ce: 7f:d3:6f:76:40:07:f8:57:63:d2:14:85:5f:03:82: e4:10:d4:c4:27:8b:6c:3b:2d:d8:e3:9a:2c:65:65: 2e:2e:c2:4c:3b:57:10:b1:08:8d:04:3d:5d:11:1c: 9f:4b:24:a6:b6:c4:c9:a6:c1:b8:99:13:1d:e6:33: 3e:0e:41:7b:7b:f6:f1:11:20:2d:45:c5:22:b9:ed: cb:ec:75:45:5e:f0:37:f1:6f:26:8b:37:2f:80:cc: 45:a7:ee:7f:a0:1d:26:19:c8:aa:da:0b:55:b7:52: c0:15:84:b9:62:4a:4c:21:7b:f7:86:16:fa:37:a0: 4b:5d:a1:bc:4f:4f:c7:39:3e:72:21:0f:63:a6:8f: 24:91:94:08:35:ca:9d:6f:d0:f5:c4:8e:43:bb:1e: 25:d8:ce:7b:e8:80:7d:e1:6d:86:f4:81:74:19:23: df:bc:04:c2:46:c9:50:aa:26:d0:39:7b:e4:d9:96: eb:ff:e8:b4:55:3d:af:c1:9a:29:9e:17:4d:55:e5: 07:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:E2:03:F4:3A:09:2D:73:0F:3F:AF:4D:9C:31:D0:96:0B:52:6A:C0 X509v3 Authority Key Identifier: keyid:14:7A:0E:04:87:11:B6:25:06:B0:9F:08:8A:05:99:2A:3A:31:02:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FHoOBIcRtiUGsJ8IigWZKjoxAgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:e6:2b:da:66:b4:8e:2e:12:a9:2c:98:07:94:65:f0:e2:9c: 3a:ac:09:f6:01:24:8c:b4:54:35:30:ff:80:8f:cb:d8:33:16: 68:65:93:39:39:01:38:9f:94:ce:b4:06:39:57:24:4b:5e:5c: 4a:bb:d6:37:2e:1a:3e:e4:8a:98:0a:67:01:0c:a8:42:9b:b6: 41:ab:85:00:1e:c0:b0:cc:f7:b2:90:9c:1a:1b:57:62:63:16: 64:93:a9:42:7d:5f:84:97:ae:e6:0c:6a:d1:36:ad:ef:23:a7: 3e:ef:c6:df:7b:ed:3f:70:56:6a:17:2a:e5:ea:cb:b3:fd:e5: 6f:75:ed:ee:80:56:29:ba:21:a9:74:f3:65:4e:6d:bb:4c:67: c8:16:d1:e7:6a:b6:0b:2d:69:80:7d:6e:b4:15:6b:3f:9f:8d: 8e:0f:9c:a3:83:fb:a4:47:ad:be:06:bd:25:2f:f6:ae:46:46: 61:06:f6:81:86:76:ca:61:d2:cf:a1:35:4b:a7:8e:1b:6f:87: 85:09:63:ef:e8:1e:5f:6a:a7:fd:82:58:f5:79:6f:f4:1b:8c: 56:2d:94:81:75:c6:c8:81:91:8a:57:41:bb:4d:67:a1:31:0b: 5d:12:8a:33:fe:5e:24:6e:6f:be:2d:bd:39:10:b5:7a:8b:28: 14:9e:e5:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVDM0MxMTAvBgNVBAUTKDE0N0EwRTA0ODcxMUI2MjUwNkIwOUYwODhBMDU5OTJB M0EzMTAyMEEwHhcNMjUwNjEzMDIxNzE5WhcNMjUwNjIwMDIxNzE5WjAYMRYwFAYD VQQDEw02ODRiOGEyZi05N2FkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv7+54MHH7P7mOYA6QoFhY14MEPcpK4EddqL9o3xhmHiEQXfFo+Wn0XPhiW6o mZckbxCp78GgkzFzns5/0292QAf4V2PSFIVfA4LkENTEJ4tsOy3Y45osZWUuLsJM O1cQsQiNBD1dERyfSySmtsTJpsG4mRMd5jM+DkF7e/bxESAtRcUiue3L7HVFXvA3 8W8mizcvgMxFp+5/oB0mGciq2gtVt1LAFYS5YkpMIXv3hhb6N6BLXaG8T0/HOT5y IQ9jpo8kkZQINcqdb9D1xI5Dux4l2M576IB94W2G9IF0GSPfvATCRslQqibQOXvk 2Zbr/+i0VT2vwZopnhdNVeUHywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAHiA/Q6 CS1zDz+vTZwx0JYLUmrAMB8GA1UdIwQYMBaAFBR6DgSHEbYlBrCfCIoFmSo6MQIK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUMzQy9GNjMwODA5NEMw QjQxMUVEQTc3RjcwMEVDNEY5QUUwMi9GSG9PQkljUnRpVUdzSjhJaWdXWktqb3hB Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZIb09CSWNSdGlVR3NKOElpZ1daS2pveEFnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUMzQy9GNjMwODA5NEMwQjQxMUVEQTc3RjcwMEVDNEY5QUUwMi9GSG9PQkljUnRp VUdzSjhJaWdXWktqb3hBZ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCG5ivaZrSOLhKpLJgHlGXw4pw6rAn2ASSMtFQ1MP+Aj8vYMxZoZZM5 OQE4n5TOtAY5VyRLXlxKu9Y3Lho+5IqYCmcBDKhCm7ZBq4UAHsCwzPeykJwaG1di YxZkk6lCfV+El67mDGrRNq3vI6c+78bfe+0/cFZqFyrl6suz/eVvde3ugFYpuiGp dPNlTm27TGfIFtHnarYLLWmAfW60FWs/n42OD5yjg/ukR62+Br0lL/auRkZhBvaB hnbKYdLPoTVLp44bb4eFCWPv6B5faqf9glj1eW/0G4xWLZSBdcbIgZGKV0G7TWeh MQtdEooz/l4kbm++Lb05ELV6iygUnuU7 -----END CERTIFICATE-----Generated at Sat Jun 14 18:48:42 2025 by rpki-client