$ rpki-client -vvf rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.mft File: 1FLGfvaHRDivqZOoStCrwYUWkhs.mft (raw, json) Hash identifier: Hkl6d/g2EYfXnV8RnaS3s8r8dC983M8YDQKdDjlVAG4= Subject key identifier: 5E:36:82:21:14:7A:DB:0C:34:AC:7C:33:B3:D8:79:1A:ED:67:8E:0A Authority key identifier: D4:52:C6:7E:F6:87:44:38:AF:A9:93:A8:4A:D0:AB:C1:85:16:92:1B Certificate issuer: /CN=A915FD27/serialNumber=D452C67EF6874438AFA993A84AD0ABC18516921B Certificate serial: 020A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FLGfvaHRDivqZOoStCrwYUWkhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.mft Manifest number: 0207 Signing time: Sun 11 May 2025 01:33:00 +0000 Manifest this update: Sun 11 May 2025 01:33:00 +0000 Manifest next update: Sun 18 May 2025 01:33:00 +0000 Files and hashes: 1: 1FLGfvaHRDivqZOoStCrwYUWkhs.crl (hash: YjRZcM4mHRHGLvm3usUUqxqkrM/DwfIeKWGdaklsAcQ=) 2: 839EEF2C35F211ED97DF4D2EC4F9AE02.roa (hash: utbaFXvYsbMawkEsGIYiJOGznLub5CBtZ08YosxwrsQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.crl rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FLGfvaHRDivqZOoStCrwYUWkhs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 01:32:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 522 (0x20a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FD27, serialNumber=D452C67EF6874438AFA993A84AD0ABC18516921B Validity Not Before: May 11 01:33:00 2025 GMT Not After : May 18 01:33:00 2025 GMT Subject: CN=681ffe4c-1814 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:ee:02:9e:c8:16:15:76:fc:9a:21:bd:d7:97: b0:e5:b5:c9:37:04:44:36:ed:56:ea:a2:66:56:b9: 2d:6c:72:cf:0e:fa:d6:15:3f:45:0e:00:e3:04:b5: 1b:6d:ac:cb:60:12:cf:02:6d:3d:13:be:16:13:2a: ed:84:2f:2e:23:6a:12:f3:84:69:6e:6e:43:10:ab: 72:8e:55:e5:bf:c4:3f:61:e6:4f:4f:45:7b:6b:6a: b8:f3:73:3d:2c:4c:61:b5:cf:60:5d:aa:03:a0:4f: 16:20:72:e7:9d:93:34:8a:85:99:6c:da:70:e4:cf: 1c:c9:b4:82:cd:f1:4a:c1:15:e5:64:f5:99:44:f2: bf:6b:d8:05:89:17:e4:ee:f6:4f:87:db:99:f4:a8: 70:28:c6:74:4a:16:5a:d0:46:d5:94:fb:1b:cd:74: 7b:67:1c:05:7b:96:b2:d3:46:0a:52:63:cb:1e:39: de:9e:13:30:46:7a:c8:28:18:e0:d2:bc:94:93:45: a6:58:f9:13:0d:0c:b7:84:75:99:c9:71:0c:08:85: 2f:81:49:3f:70:e7:9c:34:bd:37:e7:00:f3:54:91: 7e:ad:9e:0a:39:d5:e0:7d:48:bb:1c:fc:fa:36:2c: 37:a0:ec:75:da:ef:e6:ef:5e:08:d4:92:27:86:55: f9:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:36:82:21:14:7A:DB:0C:34:AC:7C:33:B3:D8:79:1A:ED:67:8E:0A X509v3 Authority Key Identifier: keyid:D4:52:C6:7E:F6:87:44:38:AF:A9:93:A8:4A:D0:AB:C1:85:16:92:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FLGfvaHRDivqZOoStCrwYUWkhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:fa:b3:18:fd:a6:de:10:32:7a:ac:68:6c:a6:8b:7a:02:1a: 9c:8d:49:35:4a:57:b9:b4:3a:da:53:56:8f:a1:45:f9:ef:52: a0:f4:89:7d:d7:e8:09:70:a3:f6:08:ed:81:bb:33:1b:6e:a1: 72:48:32:90:f4:52:cb:cf:a7:74:0b:80:16:28:6f:62:c2:b0: 56:06:9d:9d:62:cf:73:58:05:51:44:84:d4:33:a3:cd:47:fd: f7:68:d4:7b:f8:4c:7b:7f:51:40:08:e7:16:56:93:74:68:16: d8:d3:a3:eb:ee:48:51:09:99:45:f5:3f:65:d9:08:e7:e8:bd: 78:8e:64:1a:db:a5:c8:bd:66:97:89:4b:ae:13:01:6e:18:a5: 11:8d:35:52:cd:0a:79:e0:59:d7:ea:89:4f:57:d7:1c:f8:b7: 79:82:ea:0e:ba:ab:2d:0f:36:16:0e:01:de:2e:22:64:df:8d: 40:e2:7c:0c:66:6b:b3:43:f6:d5:2d:f9:55:c5:39:de:89:37: 41:59:13:d5:82:17:58:c7:96:b8:38:6c:05:5d:8b:08:44:f7: 25:9e:77:7f:1b:93:23:78:c2:1c:87:fb:78:73:b5:7b:ce:c6: 17:fc:17:44:f8:7b:d8:a2:4f:bf:f5:30:e4:16:a7:70:c1:2f: ee:bb:59:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZEMjcxMTAvBgNVBAUTKEQ0NTJDNjdFRjY4NzQ0MzhBRkE5OTNBODRBRDBBQkMx ODUxNjkyMUIwHhcNMjUwNTExMDEzMzAwWhcNMjUwNTE4MDEzMzAwWjAYMRYwFAYD VQQDEw02ODFmZmU0Yy0xODE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArO4CnsgWFXb8miG915ew5bXJNwRENu1W6qJmVrktbHLPDvrWFT9FDgDjBLUb bazLYBLPAm09E74WEyrthC8uI2oS84Rpbm5DEKtyjlXlv8Q/YeZPT0V7a2q483M9 LExhtc9gXaoDoE8WIHLnnZM0ioWZbNpw5M8cybSCzfFKwRXlZPWZRPK/a9gFiRfk 7vZPh9uZ9KhwKMZ0ShZa0EbVlPsbzXR7ZxwFe5ay00YKUmPLHjnenhMwRnrIKBjg 0ryUk0WmWPkTDQy3hHWZyXEMCIUvgUk/cOecNL035wDzVJF+rZ4KOdXgfUi7HPz6 Niw3oOx12u/m714I1JInhlX5IQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF42giEU etsMNKx8M7PYeRrtZ44KMB8GA1UdIwQYMBaAFNRSxn72h0Q4r6mTqErQq8GFFpIb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkQyNy9BODBEQjM4MjM1 RUYxMUVEODIzOUFGMkJDNEY5QUUwMi8xRkxHZnZhSFJEaXZxWk9vU3RDcndZVVdr aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFGTEdmdmFIUkRpdnFaT29TdENyd1lVV2tocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RkQyNy9BODBEQjM4MjM1RUYxMUVEODIzOUFGMkJDNEY5QUUwMi8xRkxHZnZhSFJE aXZxWk9vU3RDcndZVVdraHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAg+rMY/abeEDJ6rGhspot6AhqcjUk1Sle5tDraU1aPoUX571Kg9Il9 1+gJcKP2CO2BuzMbbqFySDKQ9FLLz6d0C4AWKG9iwrBWBp2dYs9zWAVRRITUM6PN R/33aNR7+Ex7f1FACOcWVpN0aBbY06Pr7khRCZlF9T9l2Qjn6L14jmQa26XIvWaX iUuuEwFuGKURjTVSzQp54FnX6olPV9cc+Ld5guoOuqstDzYWDgHeLiJk341A4nwM ZmuzQ/bVLflVxTneiTdBWRPVghdYx5a4OGwFXYsIRPclnnd/G5MjeMIch/t4c7V7 zsYX/BdE+HvYok+/9TDkFqdwwS/uu1mu -----END CERTIFICATE-----Generated at Sun May 11 22:51:12 2025 by rpki-client