$ rpki-client -vvf rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/FKbKvDAuwePc503pi_VYoEK-rFY.mft File: FKbKvDAuwePc503pi_VYoEK-rFY.mft (raw, json) Hash identifier: /Q1cITY6oXdOYHMAf2ZbHMRCjQvd6lBQQIbj6DLXCqM= Subject key identifier: 50:B2:7D:E4:25:AC:00:E9:46:05:30:5B:67:B0:FC:55:30:C6:2A:D4 Authority key identifier: 14:A6:CA:BC:30:2E:C1:E3:DC:E7:4D:E9:8B:F5:58:A0:42:BE:AC:56 Certificate issuer: /CN=A91409DC/serialNumber=14A6CABC302EC1E3DCE74DE98BF558A042BEAC56 Certificate serial: 085D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FKbKvDAuwePc503pi_VYoEK-rFY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/FKbKvDAuwePc503pi_VYoEK-rFY.mft Manifest number: 146B Signing time: Wed 14 May 2025 18:42:49 +0000 Manifest this update: Wed 14 May 2025 18:42:49 +0000 Manifest next update: Wed 21 May 2025 18:42:49 +0000 Files and hashes: 1: FKbKvDAuwePc503pi_VYoEK-rFY.crl (hash: X5njRvdqssI2FgeDg6ueSqq2LG+iwE4ApKT2og5xWWU=) 2: DB78B2684BCD11EE8F976B7EC4F9AE02.roa (hash: LJOeHyhGq5PPmm1YdhMXahy2BlMK+uuqLBs6e3cOua4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/FKbKvDAuwePc503pi_VYoEK-rFY.crl rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/FKbKvDAuwePc503pi_VYoEK-rFY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FKbKvDAuwePc503pi_VYoEK-rFY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 18:42:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2141 (0x85d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91409DC, serialNumber=14A6CABC302EC1E3DCE74DE98BF558A042BEAC56 Validity Not Before: May 14 18:42:49 2025 GMT Not After : May 21 18:42:49 2025 GMT Subject: CN=6824e429-a4d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:a7:6c:5a:7c:68:e2:12:7b:42:9c:84:91:64: c4:cc:9c:ad:f8:fc:4e:75:ee:28:ad:c6:21:81:fd: 01:ae:b1:fc:22:b3:f4:37:bf:1e:cd:0f:b9:c4:29: 12:ee:d4:c7:e2:18:f9:5a:4e:11:76:84:b4:21:76: 14:92:d5:fb:a3:14:8a:79:44:b2:71:df:e3:9b:d6: cb:2f:57:dc:2d:3b:11:a9:db:e9:f1:9a:d1:72:83: 10:78:3f:51:c4:5e:d3:e2:12:d2:6a:78:ef:a4:d9: da:dd:b9:ed:4d:fe:b7:67:bb:a8:4a:c0:e9:bf:a0: c3:5f:62:45:8c:6a:ac:8d:2f:db:f2:dc:95:23:2b: 02:5e:e4:ee:25:a6:55:29:c2:cc:db:27:96:e5:3d: a5:86:a0:da:e2:19:c5:56:78:24:ff:96:10:45:6a: 58:1b:99:70:eb:44:ec:e5:14:aa:1e:94:d8:3b:41: 9b:d2:c3:a5:27:12:02:8e:77:6c:e5:fc:03:2f:68: b4:3a:6b:88:9b:f0:3f:d3:6e:54:c6:88:4b:7b:fd: 02:60:36:34:0c:3d:6d:af:33:45:f9:05:3d:ae:2b: 94:99:34:42:81:6a:d9:38:e5:11:92:59:16:c6:dc: 01:08:c5:7a:0e:b5:54:b8:39:ac:fe:4d:15:00:ce: de:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:B2:7D:E4:25:AC:00:E9:46:05:30:5B:67:B0:FC:55:30:C6:2A:D4 X509v3 Authority Key Identifier: keyid:14:A6:CA:BC:30:2E:C1:E3:DC:E7:4D:E9:8B:F5:58:A0:42:BE:AC:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/FKbKvDAuwePc503pi_VYoEK-rFY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FKbKvDAuwePc503pi_VYoEK-rFY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/FKbKvDAuwePc503pi_VYoEK-rFY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:4d:7b:f9:ab:b8:64:c5:94:52:3d:ae:5f:7a:b2:df:7f:41: be:38:2c:64:9c:a0:ef:29:d6:26:d3:41:27:fe:db:5d:f5:5d: df:6e:3a:b4:ba:c7:dd:40:b2:99:e4:35:21:e5:0f:00:22:9c: af:fa:b1:e7:b6:87:ec:03:cf:18:cf:86:f6:ed:9e:fb:dc:c2: e1:a3:78:f0:0e:22:fc:59:20:50:a8:1c:b3:a1:e6:0b:15:a9: 29:a6:ed:62:05:7b:c3:6d:63:bf:32:b0:20:5b:2b:92:05:eb: 0c:9c:92:3a:d2:29:84:eb:62:db:1e:9b:2a:cb:e5:5a:c8:a2: a7:4f:ff:8f:eb:d5:f0:f9:a4:1e:87:a6:7f:6f:e6:f6:6e:f5: bf:a8:ee:c5:6e:7b:1f:a8:19:fe:7c:1e:ec:7e:4a:a4:ec:af: bd:58:54:ce:b6:15:89:01:c0:fa:65:02:57:b7:d5:42:07:76: 72:85:58:9f:6d:71:fc:46:7b:5a:d0:d9:7e:ea:0d:85:d6:15: ff:2a:d6:79:a2:34:60:05:6d:75:0d:2f:65:1b:ae:22:2b:3a: c8:00:02:48:e8:b2:46:a4:57:8c:17:39:f9:fe:c7:63:f0:56: 86:f7:48:2f:f1:de:ff:fa:cc:46:a0:c5:c1:cf:54:de:93:9b: e6:4d:10:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCF0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA5REMxMTAvBgNVBAUTKDE0QTZDQUJDMzAyRUMxRTNEQ0U3NERFOThCRjU1OEEw NDJCRUFDNTYwHhcNMjUwNTE0MTg0MjQ5WhcNMjUwNTIxMTg0MjQ5WjAYMRYwFAYD VQQDEw02ODI0ZTQyOS1hNGQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArKdsWnxo4hJ7QpyEkWTEzJyt+PxOde4orcYhgf0BrrH8IrP0N78ezQ+5xCkS 7tTH4hj5Wk4RdoS0IXYUktX7oxSKeUSycd/jm9bLL1fcLTsRqdvp8ZrRcoMQeD9R xF7T4hLSanjvpNna3bntTf63Z7uoSsDpv6DDX2JFjGqsjS/b8tyVIysCXuTuJaZV KcLM2yeW5T2lhqDa4hnFVngk/5YQRWpYG5lw60Ts5RSqHpTYO0Gb0sOlJxICjnds 5fwDL2i0OmuIm/A/025UxohLe/0CYDY0DD1trzNF+QU9riuUmTRCgWrZOOURklkW xtwBCMV6DrVUuDms/k0VAM7ekwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFCyfeQl rADpRgUwW2ew/FUwxirUMB8GA1UdIwQYMBaAFBSmyrwwLsHj3OdN6Yv1WKBCvqxW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDlEQy9BNUJCRkFBNjA5 MzUxMUVBQUIxMEM5MUZDNEY5QUUwMi9GS2JLdkRBdXdlUGM1MDNwaV9WWW9FSy1y RlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZLYkt2REF1d2VQYzUwM3BpX1ZZb0VLLXJGWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MDlEQy9BNUJCRkFBNjA5MzUxMUVBQUIxMEM5MUZDNEY5QUUwMi9GS2JLdkRBdXdl UGM1MDNwaV9WWW9FSy1yRlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLTXv5q7hkxZRSPa5ferLff0G+OCxknKDvKdYm00En/ttd9V3fbjq0 usfdQLKZ5DUh5Q8AIpyv+rHntofsA88Yz4b27Z773MLho3jwDiL8WSBQqByzoeYL Fakppu1iBXvDbWO/MrAgWyuSBesMnJI60imE62LbHpsqy+VayKKnT/+P69Xw+aQe h6Z/b+b2bvW/qO7FbnsfqBn+fB7sfkqk7K+9WFTOthWJAcD6ZQJXt9VCB3ZyhVif bXH8Rnta0Nl+6g2F1hX/KtZ5ojRgBW11DS9lG64iKzrIAAJI6LJGpFeMFzn5/sdj 8FaG90gv8d7/+sxGoMXBz1Tek5vmTRD7 -----END CERTIFICATE-----Generated at Fri May 16 02:33:20 2025 by rpki-client