$ rpki-client -vvf rpki.apnic.net/member_repository/A913EDDF/54785796376411EEA5AA7A58C4F9AE02/FeHN3a7M6rtlZl4wrPRF-XKWY-E.mft File: FeHN3a7M6rtlZl4wrPRF-XKWY-E.mft (raw, json) Hash identifier: Y7dI19LS2s1fFLQJ4Km5be1g33QF3GljmWZXnmCKTAE= Subject key identifier: 9F:C5:9C:29:CB:00:D5:37:37:93:69:E6:DF:D8:DA:46:F9:99:E0:65 Authority key identifier: 15:E1:CD:DD:AE:CC:EA:BB:65:66:5E:30:AC:F4:45:F9:72:96:63:E1 Certificate issuer: /CN=A913EDDF/serialNumber=15E1CDDDAECCEABB65665E30ACF445F9729663E1 Certificate serial: 0172 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FeHN3a7M6rtlZl4wrPRF-XKWY-E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913EDDF/54785796376411EEA5AA7A58C4F9AE02/FeHN3a7M6rtlZl4wrPRF-XKWY-E.mft Manifest number: 016B Signing time: Thu 03 Jul 2025 04:03:24 +0000 Manifest this update: Thu 03 Jul 2025 04:03:23 +0000 Manifest next update: Thu 10 Jul 2025 04:03:23 +0000 Files and hashes: 1: FeHN3a7M6rtlZl4wrPRF-XKWY-E.crl (hash: 0PgkMwTqTDLfUg/E+2EjxS7PFtVmVA1zBAZ8cGzfFZs=) 2: 95230C121C1111F084CA9515C4F9AE02.roa (hash: hgr5I50eoqsMN7OIf/s1uoqBvdP/VsEUv2s02BBmOBI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913EDDF/54785796376411EEA5AA7A58C4F9AE02/FeHN3a7M6rtlZl4wrPRF-XKWY-E.crl rsync://rpki.apnic.net/member_repository/A913EDDF/54785796376411EEA5AA7A58C4F9AE02/FeHN3a7M6rtlZl4wrPRF-XKWY-E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FeHN3a7M6rtlZl4wrPRF-XKWY-E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 370 (0x172) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913EDDF, serialNumber=15E1CDDDAECCEABB65665E30ACF445F9729663E1 Validity Not Before: Jul 3 04:03:23 2025 GMT Not After : Jul 10 04:03:23 2025 GMT Subject: CN=6866010b-ba18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:54:36:ad:06:08:72:44:75:70:43:1f:be:00: 75:e2:cf:33:56:0f:7b:8e:fa:b5:7c:6f:1a:79:b3: 57:4e:0f:b3:69:4d:fa:61:79:f0:c6:4f:67:22:db: c6:36:16:ed:4f:ae:6b:02:1e:9e:b2:09:32:a5:1f: 3a:04:f0:fb:04:88:4f:b3:38:e5:59:a9:ef:ae:ad: 0d:d0:0a:d5:ed:46:c3:f7:e6:48:bb:e7:6a:77:4e: ea:b6:39:e9:1e:66:0e:50:82:10:56:5c:7a:c0:d7: 4b:9c:57:fa:97:0b:60:28:59:93:43:56:9a:fe:ee: c7:69:6c:7a:27:a2:e8:bf:7c:51:19:b7:41:bc:da: d6:1f:49:d2:c9:d3:63:06:33:7c:de:cd:0b:38:f7: fd:2a:fd:9c:85:b0:c4:5c:d0:ac:44:ef:ad:a8:45: 24:d5:92:1f:63:eb:91:76:32:2b:97:c4:25:d5:82: 54:42:b0:5c:4a:06:8f:6a:3a:01:a0:f5:66:df:48: 4a:6f:d5:95:3f:03:72:f9:56:c1:6e:c2:2f:8f:9e: 04:08:d3:19:7c:87:f0:45:bb:c2:05:69:99:81:6c: fe:57:05:dc:54:48:00:44:0a:a4:7e:8c:f8:25:02: a8:b5:91:29:de:ca:1b:4f:78:2e:f3:f8:8d:52:75: 78:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:C5:9C:29:CB:00:D5:37:37:93:69:E6:DF:D8:DA:46:F9:99:E0:65 X509v3 Authority Key Identifier: keyid:15:E1:CD:DD:AE:CC:EA:BB:65:66:5E:30:AC:F4:45:F9:72:96:63:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913EDDF/54785796376411EEA5AA7A58C4F9AE02/FeHN3a7M6rtlZl4wrPRF-XKWY-E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FeHN3a7M6rtlZl4wrPRF-XKWY-E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913EDDF/54785796376411EEA5AA7A58C4F9AE02/FeHN3a7M6rtlZl4wrPRF-XKWY-E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:4c:a7:f2:d7:9b:b5:80:7f:a0:09:03:df:db:af:31:34:9a: 0f:39:0e:03:ef:1a:45:37:a9:f2:c7:26:b6:74:e0:49:32:23: e7:a0:1a:66:23:f0:98:95:45:7b:54:2d:27:9a:19:7f:9c:81: ef:ca:22:86:79:d9:a5:82:84:f8:79:13:df:74:b3:9d:33:aa: d7:a9:f2:a1:fd:b7:7e:b1:06:03:a5:7c:47:8d:33:d2:30:00: a0:77:bf:c3:fb:37:7a:57:f8:b5:9f:a8:3b:6a:f8:8a:01:dc: 82:c6:c4:ec:00:64:41:7c:8c:f0:57:66:c5:69:63:c7:62:07: 6a:63:54:60:37:5f:5c:ea:0a:ee:b7:38:08:bd:5f:c2:a4:a8: 16:83:8f:ca:63:7f:68:81:05:53:e9:45:e8:ec:7e:01:26:0c: 9a:6d:12:33:48:55:d7:ab:17:fa:5b:bd:80:c0:7d:ae:43:f2: fc:aa:81:fc:64:ac:0c:e2:db:a5:53:a7:81:76:e4:f8:9b:a9: 20:4b:bb:6b:44:05:4f:bc:5f:18:fd:52:9a:ec:a0:64:1a:b0: 28:00:06:ff:37:55:33:d8:db:2d:9d:11:99:ed:30:16:3e:b6: 08:62:83:eb:f1:75:4b:56:a7:f3:43:bd:65:31:75:9b:69:53: 8b:99:97:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0VEREYxMTAvBgNVBAUTKDE1RTFDREREQUVDQ0VBQkI2NTY2NUUzMEFDRjQ0NUY5 NzI5NjYzRTEwHhcNMjUwNzAzMDQwMzIzWhcNMjUwNzEwMDQwMzIzWjAYMRYwFAYD VQQDEw02ODY2MDEwYi1iYTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmVQ2rQYIckR1cEMfvgB14s8zVg97jvq1fG8aebNXTg+zaU36YXnwxk9nItvG NhbtT65rAh6esgkypR86BPD7BIhPszjlWanvrq0N0ArV7UbD9+ZIu+dqd07qtjnp HmYOUIIQVlx6wNdLnFf6lwtgKFmTQ1aa/u7HaWx6J6Lov3xRGbdBvNrWH0nSydNj BjN83s0LOPf9Kv2chbDEXNCsRO+tqEUk1ZIfY+uRdjIrl8Ql1YJUQrBcSgaPajoB oPVm30hKb9WVPwNy+VbBbsIvj54ECNMZfIfwRbvCBWmZgWz+VwXcVEgARAqkfoz4 JQKotZEp3sobT3gu8/iNUnV4LwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ/FnCnL ANU3N5Np5t/Y2kb5meBlMB8GA1UdIwQYMBaAFBXhzd2uzOq7ZWZeMKz0RflylmPh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRURERi81NDc4NTc5NjM3 NjQxMUVFQTVBQTdBNThDNEY5QUUwMi9GZUhOM2E3TTZydGxabDR3clBSRi1YS1dZ LUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZlSE4zYTdNNnJ0bFpsNHdyUFJGLVhLV1ktRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RURERi81NDc4NTc5NjM3NjQxMUVFQTVBQTdBNThDNEY5QUUwMi9GZUhOM2E3TTZy dGxabDR3clBSRi1YS1dZLUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvTKfy15u1gH+gCQPf268xNJoPOQ4D7xpFN6nyxya2dOBJMiPnoBpm I/CYlUV7VC0nmhl/nIHvyiKGedmlgoT4eRPfdLOdM6rXqfKh/bd+sQYDpXxHjTPS MACgd7/D+zd6V/i1n6g7aviKAdyCxsTsAGRBfIzwV2bFaWPHYgdqY1RgN19c6gru tzgIvV/CpKgWg4/KY39ogQVT6UXo7H4BJgyabRIzSFXXqxf6W72AwH2uQ/L8qoH8 ZKwM4tulU6eBduT4m6kgS7trRAVPvF8Y/VKa7KBkGrAoAAb/N1Uz2NstnRGZ7TAW PrYIYoPr8XVLVqfzQ71lMXWbaVOLmZdg -----END CERTIFICATE-----Generated at Fri Jul 4 22:23:01 2025 by rpki-client