$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft File: FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft (raw, json) Hash identifier: XMGVtuiUBYlcROQDC7RNM8RpNHfmagXPHP/1FFCcHRM= Subject key identifier: 6C:F5:8A:8B:59:41:32:48:B2:05:74:C5:CA:97:3F:22:B5:95:10:9E Authority key identifier: 14:7A:0E:04:87:11:B6:25:06:B0:9F:08:8A:05:99:2A:3A:31:02:0A Certificate issuer: /CN=A91DEC3C/serialNumber=147A0E048711B62506B09F088A05992A3A31020A Certificate serial: 0192 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FHoOBIcRtiUGsJ8IigWZKjoxAgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft Manifest number: 018F Signing time: Fri 25 Apr 2025 02:39:29 +0000 Manifest this update: Fri 25 Apr 2025 02:39:29 +0000 Manifest next update: Fri 02 May 2025 02:39:29 +0000 Files and hashes: 1: FHoOBIcRtiUGsJ8IigWZKjoxAgo.crl (hash: jpxkpBkzJbYNms13Be3fb5gZPwcNJ9iruwM1d48pxK8=) 2: 5153E9DAC0B911ED99A12312C4F9AE02.roa (hash: pRhFi90u5iaLYPX6g3PP+55Ior11n+chfHkyJHcRUKE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.crl rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FHoOBIcRtiUGsJ8IigWZKjoxAgo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:39:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 402 (0x192) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEC3C, serialNumber=147A0E048711B62506B09F088A05992A3A31020A Validity Not Before: Apr 25 02:39:29 2025 GMT Not After : May 2 02:39:29 2025 GMT Subject: CN=680af5e1-71ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:c7:1b:7a:92:c3:95:3a:89:8a:fa:f8:35:35: 33:34:87:30:71:0b:fa:23:ab:c8:7f:9b:c2:1b:cf: 95:0b:d2:e4:1f:5f:f5:92:26:1c:d5:68:65:b1:5b: af:5e:d1:68:16:58:e9:42:2d:9f:79:18:1f:b8:dc: f7:4f:a2:12:7d:12:2c:34:31:cb:86:4c:da:b2:5f: f9:cd:07:56:ac:ba:88:3a:8f:b8:fd:47:47:a1:3f: 58:7a:8b:bc:2f:65:1b:3f:d4:f6:38:15:13:8c:6c: af:61:e8:23:b2:81:cf:aa:d6:c3:73:b5:04:d5:b5: 1f:56:61:1d:a4:56:a6:39:74:0a:77:c3:8b:c9:2c: de:c3:a1:d2:9c:5b:3d:7d:c3:ad:61:4c:fd:1d:d7: 93:7f:ed:20:a0:a7:4a:b9:0b:0f:b0:a7:da:97:79: 27:9c:9c:23:7e:00:45:7d:ce:fc:4e:ee:0b:97:ab: 97:39:c5:da:fb:0d:5b:56:9e:3d:36:cf:8f:23:0b: da:28:a9:48:27:d7:99:bd:83:94:9e:c5:17:ec:66: 54:a2:de:e0:38:1c:71:15:6c:00:0a:17:b2:6b:8b: 2b:6a:0e:7c:57:37:2a:90:16:0e:a2:a5:ca:ce:1f: 1d:cb:c5:ba:19:bc:2b:3d:63:be:98:96:8e:f3:a0: 0f:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:F5:8A:8B:59:41:32:48:B2:05:74:C5:CA:97:3F:22:B5:95:10:9E X509v3 Authority Key Identifier: keyid:14:7A:0E:04:87:11:B6:25:06:B0:9F:08:8A:05:99:2A:3A:31:02:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FHoOBIcRtiUGsJ8IigWZKjoxAgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:31:48:42:50:2c:4a:a4:ee:78:ff:b1:18:0c:f4:7a:5e:c5: 00:a7:0f:4f:59:34:3b:54:37:a2:15:54:ee:aa:1b:3c:1c:43: 82:88:2d:6e:74:ad:b6:66:68:6b:b7:5d:66:89:d1:24:b6:4e: c4:b5:90:0c:9e:ab:07:9e:3e:6e:49:6f:d7:4c:cb:2b:c5:56: b4:08:ed:dc:c7:24:c5:be:51:c9:e0:51:d9:45:03:37:b2:ca: e1:1a:a0:97:ed:77:73:45:47:c9:46:34:0a:8d:ea:17:7f:2a: 8f:df:03:ac:3c:1c:6d:9e:2e:c0:a0:55:1b:d7:6a:41:81:c0: ad:fc:a7:87:c7:84:5b:9e:ef:f7:61:72:01:2d:f8:5a:97:5e: 50:24:00:1d:f9:e0:60:a3:9c:a9:59:73:38:69:3f:8b:43:96: 7e:88:0e:de:44:42:41:e9:0e:2a:38:10:0a:dd:87:65:1e:db: 40:3d:3f:a4:8c:56:ee:7d:91:e0:9c:85:cb:cc:9c:25:3b:02: cc:9f:38:70:7e:b7:ca:73:28:fa:8e:02:3a:0b:64:84:de:ca: b2:e6:f8:bc:31:d4:c9:89:44:f6:a8:8d:44:b0:a9:6e:83:08: 43:7d:f5:01:09:cd:b9:7e:0c:d8:9d:ae:d0:6e:64:e7:26:e3: 1d:76:cc:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVDM0MxMTAvBgNVBAUTKDE0N0EwRTA0ODcxMUI2MjUwNkIwOUYwODhBMDU5OTJB M0EzMTAyMEEwHhcNMjUwNDI1MDIzOTI5WhcNMjUwNTAyMDIzOTI5WjAYMRYwFAYD VQQDEw02ODBhZjVlMS03MWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn8cbepLDlTqJivr4NTUzNIcwcQv6I6vIf5vCG8+VC9LkH1/1kiYc1WhlsVuv XtFoFljpQi2feRgfuNz3T6ISfRIsNDHLhkzasl/5zQdWrLqIOo+4/UdHoT9Yeou8 L2UbP9T2OBUTjGyvYegjsoHPqtbDc7UE1bUfVmEdpFamOXQKd8OLySzew6HSnFs9 fcOtYUz9HdeTf+0goKdKuQsPsKfal3knnJwjfgBFfc78Tu4Ll6uXOcXa+w1bVp49 Ns+PIwvaKKlIJ9eZvYOUnsUX7GZUot7gOBxxFWwACheya4srag58VzcqkBYOoqXK zh8dy8W6GbwrPWO+mJaO86AP4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGz1iotZ QTJIsgV0xcqXPyK1lRCeMB8GA1UdIwQYMBaAFBR6DgSHEbYlBrCfCIoFmSo6MQIK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUMzQy9GNjMwODA5NEMw QjQxMUVEQTc3RjcwMEVDNEY5QUUwMi9GSG9PQkljUnRpVUdzSjhJaWdXWktqb3hB Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZIb09CSWNSdGlVR3NKOElpZ1daS2pveEFnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUMzQy9GNjMwODA5NEMwQjQxMUVEQTc3RjcwMEVDNEY5QUUwMi9GSG9PQkljUnRp VUdzSjhJaWdXWktqb3hBZ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEMUhCUCxKpO54/7EYDPR6XsUApw9PWTQ7VDeiFVTuqhs8HEOCiC1u dK22Zmhrt11midEktk7EtZAMnqsHnj5uSW/XTMsrxVa0CO3cxyTFvlHJ4FHZRQM3 ssrhGqCX7XdzRUfJRjQKjeoXfyqP3wOsPBxtni7AoFUb12pBgcCt/KeHx4Rbnu/3 YXIBLfhal15QJAAd+eBgo5ypWXM4aT+LQ5Z+iA7eREJB6Q4qOBAK3YdlHttAPT+k jFbufZHgnIXLzJwlOwLMnzhwfrfKcyj6jgI6C2SE3sqy5vi8MdTJiUT2qI1EsKlu gwhDffUBCc25fgzYna7QbmTnJuMddsyQ -----END CERTIFICATE-----Generated at Sat Apr 26 04:20:37 2025 by rpki-client