$ rpki-client -vvf rpki.apnic.net/member_repository/A9145E09/8F625C4E08C811F0A0D34E56C4F9AE02/Fz6pPabl71KPpzMJc4hIg92lJ-4.mft File: Fz6pPabl71KPpzMJc4hIg92lJ-4.mft (raw, json) Hash identifier: s8K0OpSFtHZnWH4Y4r/asmHIGhQ2tDFDYoSw5FIF8I0= Subject key identifier: 2D:F4:E4:1D:70:A8:BD:F3:B6:40:AA:90:9F:FE:68:5B:FE:5F:81:0A Authority key identifier: 17:3E:A9:3D:A6:E5:EF:52:8F:A7:33:09:73:88:48:83:DD:A5:27:EE Certificate issuer: /CN=A9145E09/serialNumber=173EA93DA6E5EF528FA7330973884883DDA527EE Certificate serial: 1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fz6pPabl71KPpzMJc4hIg92lJ-4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145E09/8F625C4E08C811F0A0D34E56C4F9AE02/Fz6pPabl71KPpzMJc4hIg92lJ-4.mft Manifest number: 1B Signing time: Tue 13 May 2025 07:10:57 +0000 Manifest this update: Tue 13 May 2025 07:10:57 +0000 Manifest next update: Tue 20 May 2025 07:10:57 +0000 Files and hashes: 1: Fz6pPabl71KPpzMJc4hIg92lJ-4.crl (hash: NPqvs3IJSNkxnlihS69frnZE5WdCAvHoIzdDRwuyDuU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145E09/8F625C4E08C811F0A0D34E56C4F9AE02/Fz6pPabl71KPpzMJc4hIg92lJ-4.crl rsync://rpki.apnic.net/member_repository/A9145E09/8F625C4E08C811F0A0D34E56C4F9AE02/Fz6pPabl71KPpzMJc4hIg92lJ-4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fz6pPabl71KPpzMJc4hIg92lJ-4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 07:10:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27 (0x1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145E09, serialNumber=173EA93DA6E5EF528FA7330973884883DDA527EE Validity Not Before: May 13 07:10:57 2025 GMT Not After : May 20 07:10:57 2025 GMT Subject: CN=6822f081-77c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:4e:2e:e4:24:70:4b:cd:19:34:34:d9:48:6e: 9d:fb:02:ab:05:54:c4:4c:c8:75:ea:9f:c8:32:02: e5:77:a8:6c:21:a6:4a:9a:35:cf:f2:8a:ef:5a:b3: 65:d0:7d:89:bc:a7:49:2c:70:5c:66:6e:b6:25:ee: 9b:3a:76:42:5f:fb:53:ef:c5:3e:9b:bb:55:72:4a: 71:42:7d:2f:0c:21:fb:41:62:7d:35:a9:4e:53:2e: a0:b1:22:e5:9c:a6:42:4c:db:6f:77:7c:3f:4b:b6: 59:96:d7:d6:e1:0e:27:4d:9f:b5:18:86:d6:d3:6e: 1a:91:6e:3b:cd:53:ca:dc:8f:01:eb:e1:34:22:fd: de:1e:80:67:5c:7c:09:24:dc:fa:73:08:d0:bf:47: 0c:b5:0e:84:1a:b1:c0:46:a6:59:89:2c:e6:8f:ab: 74:9a:66:69:b8:0d:7c:cf:6a:e9:3e:34:b4:cb:d1: c3:a9:4f:99:56:66:78:70:20:ae:87:dc:32:db:93: cb:e6:7c:bb:9a:76:e9:21:b3:e2:c5:65:bf:61:00: 2a:ba:89:52:c8:7a:ae:28:80:29:10:ad:5d:fc:2b: e8:0b:76:17:9b:19:7c:96:cf:d4:5e:9d:a5:e2:d9: 9f:75:3d:b9:ae:47:9f:ef:c1:c8:97:11:84:ec:0e: 1f:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:F4:E4:1D:70:A8:BD:F3:B6:40:AA:90:9F:FE:68:5B:FE:5F:81:0A X509v3 Authority Key Identifier: keyid:17:3E:A9:3D:A6:E5:EF:52:8F:A7:33:09:73:88:48:83:DD:A5:27:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145E09/8F625C4E08C811F0A0D34E56C4F9AE02/Fz6pPabl71KPpzMJc4hIg92lJ-4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fz6pPabl71KPpzMJc4hIg92lJ-4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145E09/8F625C4E08C811F0A0D34E56C4F9AE02/Fz6pPabl71KPpzMJc4hIg92lJ-4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:0c:2a:8c:3a:f9:9c:e8:11:ac:d1:16:94:71:6b:72:46:2a: 06:5b:7d:28:c7:d6:ab:67:12:2c:c3:e1:96:6b:ae:5d:5e:04: d3:63:75:56:8f:59:0b:41:0f:a7:10:e3:4e:55:b1:78:37:72: 60:0b:69:74:8c:25:8d:29:75:7d:be:47:ee:96:ac:21:26:32: b3:28:30:2c:40:ac:ad:b8:45:7d:95:54:ee:28:0d:5e:e0:d5: 74:7e:4d:38:6c:04:5c:70:47:70:69:13:3c:c9:80:54:a4:5a: 7a:0f:15:de:e2:da:f8:c1:be:c5:32:a9:35:ef:fa:3b:c5:f1: f9:d8:62:89:01:6c:54:68:78:a4:19:4b:0d:42:0d:2b:7f:14: fe:86:a6:71:98:3d:a7:f6:6b:3f:f6:0d:4c:29:5f:1a:b4:7b: 00:aa:3f:cf:64:8e:11:9b:be:d6:ab:98:8f:5e:d1:7d:3e:b1: 2d:fd:ea:f4:87:bf:3e:01:69:92:8b:95:b5:f6:e8:26:16:77: 71:87:6e:e8:af:90:f3:f9:74:a8:32:a4:f1:e8:39:3f:ee:5d: e1:a7:55:e1:54:d1:ed:c8:6c:56:c7:6b:20:50:bc:31:51:3d: 65:93:c2:e2:79:8c:d1:e9:89:f6:3f:17:41:42:76:95:13:e7: 56:67:c3:4f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NUUwOTExMC8GA1UEBRMoMTczRUE5M0RBNkU1RUY1MjhGQTczMzA5NzM4ODQ4ODNE REE1MjdFRTAeFw0yNTA1MTMwNzEwNTdaFw0yNTA1MjAwNzEwNTdaMBgxFjAUBgNV BAMTDTY4MjJmMDgxLTc3YzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDSTi7kJHBLzRk0NNlIbp37AqsFVMRMyHXqn8gyAuV3qGwhpkqaNc/yiu9as2XQ fYm8p0kscFxmbrYl7ps6dkJf+1PvxT6bu1VySnFCfS8MIftBYn01qU5TLqCxIuWc pkJM2293fD9LtlmW19bhDidNn7UYhtbTbhqRbjvNU8rcjwHr4TQi/d4egGdcfAkk 3PpzCNC/Rwy1DoQascBGplmJLOaPq3SaZmm4DXzPauk+NLTL0cOpT5lWZnhwIK6H 3DLbk8vmfLuadukhs+LFZb9hACq6iVLIeq4ogCkQrV38K+gLdhebGXyWz9RenaXi 2Z91PbmuR5/vwciXEYTsDh85AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQULfTkHXCo vfO2QKqQn/5oW/5fgQowHwYDVR0jBBgwFoAUFz6pPabl71KPpzMJc4hIg92lJ+4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1RTA5LzhGNjI1QzRFMDhD ODExRjBBMEQzNEU1NkM0RjlBRTAyL0Z6NnBQYWJsNzFLUHB6TUpjNGhJZzkybEot NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRno2cFBhYmw3MUtQcHpNSmM0aElnOTJsSi00LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1 RTA5LzhGNjI1QzRFMDhDODExRjBBMEQzNEU1NkM0RjlBRTAyL0Z6NnBQYWJsNzFL UHB6TUpjNGhJZzkybEotNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE0MKow6+ZzoEazRFpRxa3JGKgZbfSjH1qtnEizD4ZZrrl1eBNNjdVaP WQtBD6cQ405VsXg3cmALaXSMJY0pdX2+R+6WrCEmMrMoMCxArK24RX2VVO4oDV7g 1XR+TThsBFxwR3BpEzzJgFSkWnoPFd7i2vjBvsUyqTXv+jvF8fnYYokBbFRoeKQZ Sw1CDSt/FP6GpnGYPaf2az/2DUwpXxq0ewCqP89kjhGbvtarmI9e0X0+sS396vSH vz4BaZKLlbX26CYWd3GHbuivkPP5dKgypPHoOT/uXeGnVeFU0e3IbFbHayBQvDFR PWWTwuJ5jNHpifY/F0FCdpUT51Znw08= -----END CERTIFICATE-----Generated at Wed May 14 07:17:58 2025 by rpki-client