$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6F07/C13D81D8052911EA82D74337C4F9AE02/Fi6Vb4jdPgmmsETYsrQt6xCoPaE.mft File: Fi6Vb4jdPgmmsETYsrQt6xCoPaE.mft (raw, json) Hash identifier: hRaPBOX/JvNWNSBhsY6GlEkcm/4y/p5rM9+uzyTOOfI= Subject key identifier: 9B:3D:64:1C:22:6A:AC:E0:A3:F8:C1:F8:E1:15:E0:4D:04:9D:C6:2D Authority key identifier: 16:2E:95:6F:88:DD:3E:09:A6:B0:44:D8:B2:B4:2D:EB:10:A8:3D:A1 Certificate issuer: /CN=A91E6F07/serialNumber=162E956F88DD3E09A6B044D8B2B42DEB10A83DA1 Certificate serial: 0C2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fi6Vb4jdPgmmsETYsrQt6xCoPaE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6F07/C13D81D8052911EA82D74337C4F9AE02/Fi6Vb4jdPgmmsETYsrQt6xCoPaE.mft Manifest number: 1462 Signing time: Thu 24 Apr 2025 18:24:00 +0000 Manifest this update: Thu 24 Apr 2025 18:24:00 +0000 Manifest next update: Thu 01 May 2025 18:24:00 +0000 Files and hashes: 1: Fi6Vb4jdPgmmsETYsrQt6xCoPaE.crl (hash: NMRt2Eu+ovX+YwyXlNqIyzuJZUCG0NCaUSQK2LvPnlE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6F07/C13D81D8052911EA82D74337C4F9AE02/Fi6Vb4jdPgmmsETYsrQt6xCoPaE.crl rsync://rpki.apnic.net/member_repository/A91E6F07/C13D81D8052911EA82D74337C4F9AE02/Fi6Vb4jdPgmmsETYsrQt6xCoPaE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fi6Vb4jdPgmmsETYsrQt6xCoPaE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:23:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3116 (0xc2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6F07, serialNumber=162E956F88DD3E09A6B044D8B2B42DEB10A83DA1 Validity Not Before: Apr 24 18:24:00 2025 GMT Not After : May 1 18:24:00 2025 GMT Subject: CN=680a81c0-88e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:3d:5c:72:64:af:92:60:47:4e:cc:06:d0:68: 02:e9:56:0d:e2:14:24:82:b2:88:74:4c:a5:d0:ac: b0:d5:d9:a2:1f:f4:f0:c7:80:21:65:6f:80:71:42: f0:15:c3:c3:0c:29:1a:cc:ab:f4:2e:ed:c3:d4:d1: 46:06:78:f2:4b:30:54:d0:8a:84:32:0d:b2:9c:b3: e5:93:66:6f:99:f6:fa:fa:d5:0a:49:9c:ab:b0:33: d3:f8:37:fe:34:b2:9c:6f:7d:66:7a:d2:ff:08:d1: 65:cc:54:e8:b9:6a:27:a8:e0:f1:23:a0:d0:db:f6: c0:c7:62:c4:bd:33:b9:01:b2:18:9d:f6:c4:63:9c: 25:d4:1a:2a:99:5e:55:64:3f:09:e8:f6:6d:50:db: 69:ce:a2:1f:a5:e8:0e:65:eb:91:7f:27:f5:f8:02: 4d:d9:c7:17:e5:cc:75:4c:5a:20:34:0f:8a:f4:87: 31:68:9f:b5:80:f2:85:a1:93:3a:52:0f:f4:e8:f5: 8f:f9:d5:52:2d:3f:24:3c:56:50:a0:37:77:0d:d4: 99:1e:f0:23:f1:cc:bc:6b:57:b4:cb:91:49:2e:7e: b7:94:85:a7:c4:ae:a4:82:c1:cf:d1:73:ea:19:fb: e6:dd:31:4a:a9:9c:0f:68:10:30:18:a1:18:84:ce: 9f:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:3D:64:1C:22:6A:AC:E0:A3:F8:C1:F8:E1:15:E0:4D:04:9D:C6:2D X509v3 Authority Key Identifier: keyid:16:2E:95:6F:88:DD:3E:09:A6:B0:44:D8:B2:B4:2D:EB:10:A8:3D:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6F07/C13D81D8052911EA82D74337C4F9AE02/Fi6Vb4jdPgmmsETYsrQt6xCoPaE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fi6Vb4jdPgmmsETYsrQt6xCoPaE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6F07/C13D81D8052911EA82D74337C4F9AE02/Fi6Vb4jdPgmmsETYsrQt6xCoPaE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:14:c4:55:bb:20:03:c4:b5:66:c0:7b:7a:34:9d:f3:ba:c6: 88:1e:1a:09:54:79:30:9f:e2:1c:31:81:07:12:41:67:db:d7: c3:df:0e:85:28:0b:e7:e7:49:58:ee:ef:6a:fe:de:df:0c:c3: 8d:aa:1a:32:46:ad:5a:57:8e:ed:3d:52:1d:fc:d2:77:bd:cd: df:86:50:72:28:44:95:b3:8c:d0:0c:92:aa:4d:c8:07:92:16: 23:9b:61:59:41:16:00:ed:75:93:e5:9e:f9:3b:ef:13:33:b8: 89:73:b0:75:9b:8c:47:36:67:86:5b:63:7e:6a:12:8d:10:a5: 8f:2e:bc:2a:60:f5:9e:9b:f3:3e:75:a5:71:0f:6f:0b:18:19: 8c:88:b5:f6:ff:c9:ca:5e:75:b9:03:7f:61:13:90:58:b6:db: 14:bf:87:5d:28:e7:15:50:05:ae:c7:b6:da:2e:73:35:41:e5: 82:7e:2c:93:0a:63:62:d7:49:c2:9c:56:ca:22:a8:f9:3c:f6: b3:45:8b:f0:d9:64:07:8b:35:6f:2a:df:8e:47:ca:8b:8e:7b: 6f:9f:28:3e:5c:56:77:94:87:d1:05:8d:dc:30:b1:a4:cf:46: 60:50:5e:69:45:f8:63:e5:f8:c8:20:5b:86:43:01:66:56:94: 61:a7:89:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZGMDcxMTAvBgNVBAUTKDE2MkU5NTZGODhERDNFMDlBNkIwNDREOEIyQjQyREVC MTBBODNEQTEwHhcNMjUwNDI0MTgyNDAwWhcNMjUwNTAxMTgyNDAwWjAYMRYwFAYD VQQDEw02ODBhODFjMC04OGU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoj1ccmSvkmBHTswG0GgC6VYN4hQkgrKIdEyl0Kyw1dmiH/Twx4AhZW+AcULw FcPDDCkazKv0Lu3D1NFGBnjySzBU0IqEMg2ynLPlk2Zvmfb6+tUKSZyrsDPT+Df+ NLKcb31metL/CNFlzFTouWonqODxI6DQ2/bAx2LEvTO5AbIYnfbEY5wl1BoqmV5V ZD8J6PZtUNtpzqIfpegOZeuRfyf1+AJN2ccX5cx1TFogNA+K9IcxaJ+1gPKFoZM6 Ug/06PWP+dVSLT8kPFZQoDd3DdSZHvAj8cy8a1e0y5FJLn63lIWnxK6kgsHP0XPq Gfvm3TFKqZwPaBAwGKEYhM6fuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJs9ZBwi aqzgo/jB+OEV4E0EncYtMB8GA1UdIwQYMBaAFBYulW+I3T4JprBE2LK0LesQqD2h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkYwNy9DMTNEODFEODA1 MjkxMUVBODJENzQzMzdDNEY5QUUwMi9GaTZWYjRqZFBnbW1zRVRZc3JRdDZ4Q29Q YUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZpNlZiNGpkUGdtbXNFVFlzclF0NnhDb1BhRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkYwNy9DMTNEODFEODA1MjkxMUVBODJENzQzMzdDNEY5QUUwMi9GaTZWYjRqZFBn bW1zRVRZc3JRdDZ4Q29QYUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKFMRVuyADxLVmwHt6NJ3zusaIHhoJVHkwn+IcMYEHEkFn29fD3w6F KAvn50lY7u9q/t7fDMONqhoyRq1aV47tPVId/NJ3vc3fhlByKESVs4zQDJKqTcgH khYjm2FZQRYA7XWT5Z75O+8TM7iJc7B1m4xHNmeGW2N+ahKNEKWPLrwqYPWem/M+ daVxD28LGBmMiLX2/8nKXnW5A39hE5BYttsUv4ddKOcVUAWux7baLnM1QeWCfiyT CmNi10nCnFbKIqj5PPazRYvw2WQHizVvKt+OR8qLjntvnyg+XFZ3lIfRBY3cMLGk z0ZgUF5pRfhj5fjIIFuGQwFmVpRhp4n4 -----END CERTIFICATE-----Generated at Sat Apr 26 04:19:58 2025 by rpki-client