$ rpki-client -vvf rpki.apnic.net/member_repository/A913EDDF/54785796376411EEA5AA7A58C4F9AE02/FeHN3a7M6rtlZl4wrPRF-XKWY-E.mft File: FeHN3a7M6rtlZl4wrPRF-XKWY-E.mft (raw, json) Hash identifier: UWH1LwiEswgO+G6TgAU39QaBD74wsrFWY4UdipQ01VQ= Subject key identifier: CF:CA:B1:5F:97:69:69:28:EE:4E:6E:67:3C:75:95:8F:A5:33:AA:7B Authority key identifier: 15:E1:CD:DD:AE:CC:EA:BB:65:66:5E:30:AC:F4:45:F9:72:96:63:E1 Certificate issuer: /CN=A913EDDF/serialNumber=15E1CDDDAECCEABB65665E30ACF445F9729663E1 Certificate serial: 0159 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FeHN3a7M6rtlZl4wrPRF-XKWY-E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913EDDF/54785796376411EEA5AA7A58C4F9AE02/FeHN3a7M6rtlZl4wrPRF-XKWY-E.mft Manifest number: 0152 Signing time: Tue 13 May 2025 03:27:42 +0000 Manifest this update: Tue 13 May 2025 03:27:42 +0000 Manifest next update: Tue 20 May 2025 03:27:42 +0000 Files and hashes: 1: FeHN3a7M6rtlZl4wrPRF-XKWY-E.crl (hash: uF6x6+6vb7/3IbHXp44H8Yzx300nu1oSse5aesoWrak=) 2: 95230C121C1111F084CA9515C4F9AE02.roa (hash: hgr5I50eoqsMN7OIf/s1uoqBvdP/VsEUv2s02BBmOBI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913EDDF/54785796376411EEA5AA7A58C4F9AE02/FeHN3a7M6rtlZl4wrPRF-XKWY-E.crl rsync://rpki.apnic.net/member_repository/A913EDDF/54785796376411EEA5AA7A58C4F9AE02/FeHN3a7M6rtlZl4wrPRF-XKWY-E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FeHN3a7M6rtlZl4wrPRF-XKWY-E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 03:27:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 345 (0x159) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913EDDF, serialNumber=15E1CDDDAECCEABB65665E30ACF445F9729663E1 Validity Not Before: May 13 03:27:42 2025 GMT Not After : May 20 03:27:42 2025 GMT Subject: CN=6822bc2e-ef50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:18:ce:05:30:a8:5a:43:08:ba:e9:89:8d:ff: ab:a5:7b:b0:b9:9b:f0:1f:55:36:c1:ad:f7:8b:6e: 8f:a5:7a:8d:a4:ae:f2:bd:ee:53:45:56:9f:7b:53: c3:fb:83:12:df:7d:76:50:e5:77:41:66:80:9b:7b: 14:c2:3b:4a:00:a2:d1:51:53:b9:35:f2:4f:77:fd: 6a:55:d1:86:1b:d3:1e:d1:9b:1a:06:81:72:8c:60: 43:88:91:cd:d7:07:8f:e3:fc:13:1e:62:f3:99:8a: 58:2f:c7:38:9f:7d:bf:47:47:52:25:e3:a4:cc:6f: 6c:00:02:2a:c9:48:13:69:14:d8:4e:4f:19:af:a8: 83:c0:d5:9d:34:ff:ef:d1:15:b3:dc:f1:61:af:12: f2:3d:c8:fa:89:ad:4a:38:4f:f7:31:54:1e:40:5e: 68:30:bf:fa:1a:0f:82:fd:41:32:1a:b1:39:d5:6c: f1:76:a5:6e:f7:cf:81:b1:13:3a:d9:11:f2:b2:07: c7:e7:54:86:c3:d9:a7:88:11:fd:6c:d0:5c:29:0e: bc:d0:ba:10:f3:95:48:dd:06:d6:c6:ca:21:85:52: f1:b1:9f:83:2d:b3:e1:75:f7:98:73:d7:fc:fb:03: e8:3c:e1:81:18:03:c0:a6:9a:58:ca:f0:dc:a2:e5: b8:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:CA:B1:5F:97:69:69:28:EE:4E:6E:67:3C:75:95:8F:A5:33:AA:7B X509v3 Authority Key Identifier: keyid:15:E1:CD:DD:AE:CC:EA:BB:65:66:5E:30:AC:F4:45:F9:72:96:63:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913EDDF/54785796376411EEA5AA7A58C4F9AE02/FeHN3a7M6rtlZl4wrPRF-XKWY-E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FeHN3a7M6rtlZl4wrPRF-XKWY-E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913EDDF/54785796376411EEA5AA7A58C4F9AE02/FeHN3a7M6rtlZl4wrPRF-XKWY-E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:9c:85:71:ae:cb:19:d1:66:33:c4:89:d9:9b:bb:aa:73:72: 43:d9:44:64:59:3a:4c:86:03:e5:92:a7:93:21:f8:43:6d:80: 32:5c:98:57:b2:18:43:73:60:92:97:7f:1b:49:db:cc:c9:6a: 68:9b:13:3f:11:02:70:67:df:ee:63:3d:4b:53:62:92:0e:4b: f7:dc:46:78:d0:7a:bb:4b:69:51:f3:d1:78:4e:55:0d:61:c6: 1d:5b:0e:33:10:56:95:e5:57:a3:d1:5e:93:ee:9d:6a:1c:8c: 07:1c:69:3c:41:34:a6:b7:ca:d7:f2:3e:ea:c3:96:ea:6d:80: 77:4b:61:51:59:72:e2:e1:02:de:c8:0a:50:85:cb:49:1c:8c: e5:bc:f9:02:07:4c:4f:29:54:5d:85:a9:ac:8f:84:26:1c:37: 51:6a:27:54:f8:04:cd:4b:f3:f5:4f:ea:49:e6:8d:66:52:b9: 93:70:83:aa:47:18:f6:0c:83:d2:a3:02:0f:da:65:27:93:10: f4:ee:bb:b5:37:b4:bd:22:a8:6e:54:92:f3:a3:90:46:24:01: 25:fa:a3:ab:70:59:4d:e5:28:86:99:6d:21:41:11:3c:9f:46: bf:8d:93:a1:7b:81:a0:9f:58:7d:57:a6:a4:f3:69:b3:86:49: f0:25:40:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0VEREYxMTAvBgNVBAUTKDE1RTFDREREQUVDQ0VBQkI2NTY2NUUzMEFDRjQ0NUY5 NzI5NjYzRTEwHhcNMjUwNTEzMDMyNzQyWhcNMjUwNTIwMDMyNzQyWjAYMRYwFAYD VQQDEw02ODIyYmMyZS1lZjUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwRjOBTCoWkMIuumJjf+rpXuwuZvwH1U2wa33i26PpXqNpK7yve5TRVafe1PD +4MS3312UOV3QWaAm3sUwjtKAKLRUVO5NfJPd/1qVdGGG9Me0ZsaBoFyjGBDiJHN 1weP4/wTHmLzmYpYL8c4n32/R0dSJeOkzG9sAAIqyUgTaRTYTk8Zr6iDwNWdNP/v 0RWz3PFhrxLyPcj6ia1KOE/3MVQeQF5oML/6Gg+C/UEyGrE51WzxdqVu98+BsRM6 2RHysgfH51SGw9mniBH9bNBcKQ680LoQ85VI3QbWxsohhVLxsZ+DLbPhdfeYc9f8 +wPoPOGBGAPApppYyvDcouW4/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM/KsV+X aWko7k5uZzx1lY+lM6p7MB8GA1UdIwQYMBaAFBXhzd2uzOq7ZWZeMKz0RflylmPh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRURERi81NDc4NTc5NjM3 NjQxMUVFQTVBQTdBNThDNEY5QUUwMi9GZUhOM2E3TTZydGxabDR3clBSRi1YS1dZ LUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZlSE4zYTdNNnJ0bFpsNHdyUFJGLVhLV1ktRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RURERi81NDc4NTc5NjM3NjQxMUVFQTVBQTdBNThDNEY5QUUwMi9GZUhOM2E3TTZy dGxabDR3clBSRi1YS1dZLUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjnIVxrssZ0WYzxInZm7uqc3JD2URkWTpMhgPlkqeTIfhDbYAyXJhX shhDc2CSl38bSdvMyWpomxM/EQJwZ9/uYz1LU2KSDkv33EZ40Hq7S2lR89F4TlUN YcYdWw4zEFaV5Vej0V6T7p1qHIwHHGk8QTSmt8rX8j7qw5bqbYB3S2FRWXLi4QLe yApQhctJHIzlvPkCB0xPKVRdhamsj4QmHDdRaidU+ATNS/P1T+pJ5o1mUrmTcIOq Rxj2DIPSowIP2mUnkxD07ru1N7S9IqhuVJLzo5BGJAEl+qOrcFlN5SiGmW0hQRE8 n0a/jZOhe4Ggn1h9V6ak82mzhknwJUBj -----END CERTIFICATE-----Generated at Wed May 14 19:41:09 2025 by rpki-client