$ rpki-client -vvf rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.mft File: FTyY0zE8xk7bmuFaujtUPkgEWZA.mft (raw, json) Hash identifier: JEE51MxUX4Ih0pRMMS+MWIdcVC/GgIouN5r9oY9Eh+c= Subject key identifier: 2B:7B:24:52:84:B6:2F:22:9A:D1:32:C4:9B:91:A0:79:EA:AC:C9:2F Authority key identifier: 15:3C:98:D3:31:3C:C6:4E:DB:9A:E1:5A:BA:3B:54:3E:48:04:59:90 Certificate issuer: /CN=A9167FBA/serialNumber=153C98D3313CC64EDB9AE15ABA3B543E48045990 Certificate serial: 22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTyY0zE8xk7bmuFaujtUPkgEWZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.mft Manifest number: 21 Signing time: Sat 17 May 2025 07:20:49 +0000 Manifest this update: Sat 17 May 2025 07:20:49 +0000 Manifest next update: Sat 24 May 2025 07:20:49 +0000 Files and hashes: 1: FTyY0zE8xk7bmuFaujtUPkgEWZA.crl (hash: hCt8/0/N1zMDy951LgXH5JTepJjG8Himtb5PQLTtJeA=) 2: F552E6BA05A111F082D17325C4F9AE02.roa (hash: IboM73984syJmuqfIfDKvmHL/HfnKXEhHqhYyaPXIGg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.crl rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTyY0zE8xk7bmuFaujtUPkgEWZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 07:20:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34 (0x22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167FBA, serialNumber=153C98D3313CC64EDB9AE15ABA3B543E48045990 Validity Not Before: May 17 07:20:49 2025 GMT Not After : May 24 07:20:49 2025 GMT Subject: CN=682838d1-715d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:cb:b2:51:6e:70:c1:98:7b:8e:3c:74:ac:12: 86:9a:61:59:20:8e:cd:8d:0e:58:1a:ad:8d:e0:41: da:12:12:b3:f0:67:0b:f7:74:75:0e:88:88:97:0a: 1f:8e:aa:8c:ca:f1:eb:0a:3f:e5:5a:ea:91:5d:86: a2:fb:30:ce:30:79:d6:6e:2b:ff:cf:b2:ce:4d:d7: 91:be:65:1e:3d:de:f1:7c:8d:58:96:f0:64:9a:f0: 5a:f2:96:6c:0f:90:9d:bc:ae:00:4e:08:69:92:14: ec:4c:e3:2d:60:cd:bc:7a:ed:0a:c3:2e:2f:95:f9: 32:7f:9e:f6:04:1f:71:5e:34:89:3c:22:50:51:5c: 0e:7b:70:60:af:e6:f6:35:83:53:9a:e5:62:72:92: aa:34:ed:eb:a9:ab:2d:05:3d:18:94:95:2a:d9:db: ca:d6:de:57:b8:d7:07:82:57:03:2c:9c:e1:8e:49: 03:87:46:5e:aa:3e:02:e6:f1:8a:a1:62:bf:36:6e: d4:68:d6:8a:7a:51:95:ad:26:d5:01:95:51:b6:b4: 30:2e:72:52:81:ff:23:89:eb:17:13:c4:b4:9e:c6: 11:30:1b:75:17:57:ee:b4:44:05:99:55:68:d5:1d: 0c:a7:ae:b2:a8:4d:4f:3a:aa:b2:ad:da:59:a8:4f: 20:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:7B:24:52:84:B6:2F:22:9A:D1:32:C4:9B:91:A0:79:EA:AC:C9:2F X509v3 Authority Key Identifier: keyid:15:3C:98:D3:31:3C:C6:4E:DB:9A:E1:5A:BA:3B:54:3E:48:04:59:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTyY0zE8xk7bmuFaujtUPkgEWZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:e6:b3:fd:27:db:a4:90:28:4d:94:1a:cd:ce:0d:a4:09:f0: 99:c0:03:57:92:46:60:00:fa:1a:b9:57:9a:12:92:c3:07:f0: 5b:4a:88:3b:96:fd:f7:b7:19:b5:6c:bd:01:ff:54:1d:80:87: 74:df:ae:79:d6:01:bd:77:82:da:33:e8:89:5b:6d:cb:ef:8b: 3f:32:28:f8:77:a2:56:d2:6d:d4:16:8d:30:fd:26:34:72:f0: 3d:93:bc:99:8c:e9:46:78:da:da:3d:ee:da:cc:12:6b:49:d3: 32:a7:ed:09:93:22:14:cf:53:5b:03:7e:93:c9:c3:ed:21:cb: 43:c3:80:67:7d:2a:83:13:0b:bf:14:cf:27:15:da:c9:ba:ca: fe:c8:78:7f:b0:2d:f8:05:6e:9c:da:3f:26:75:75:f9:07:8c: da:ad:e2:4f:0a:43:c2:f4:3f:3d:24:82:61:be:f5:6c:7b:6a: 43:79:94:2c:d6:7d:b5:12:94:d3:9a:b1:dd:c4:cb:4a:4a:d4: d3:47:bc:7f:54:97:16:82:35:d3:df:25:91:2c:3d:10:4a:d5: 7b:79:e9:39:b3:3b:1d:54:4b:a8:66:a3:a0:dd:f5:fd:d6:44: 28:02:69:94:26:cc:b9:53:04:1b:be:01:98:36:07:35:1a:11: d4:aa:03:68 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 N0ZCQTExMC8GA1UEBRMoMTUzQzk4RDMzMTNDQzY0RURCOUFFMTVBQkEzQjU0M0U0 ODA0NTk5MDAeFw0yNTA1MTcwNzIwNDlaFw0yNTA1MjQwNzIwNDlaMBgxFjAUBgNV BAMTDTY4MjgzOGQxLTcxNWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDby7JRbnDBmHuOPHSsEoaaYVkgjs2NDlgarY3gQdoSErPwZwv3dHUOiIiXCh+O qozK8esKP+Va6pFdhqL7MM4wedZuK//Pss5N15G+ZR493vF8jViW8GSa8FrylmwP kJ28rgBOCGmSFOxM4y1gzbx67QrDLi+V+TJ/nvYEH3FeNIk8IlBRXA57cGCv5vY1 g1Oa5WJykqo07eupqy0FPRiUlSrZ28rW3le41weCVwMsnOGOSQOHRl6qPgLm8Yqh Yr82btRo1op6UZWtJtUBlVG2tDAuclKB/yOJ6xcTxLSexhEwG3UXV+60RAWZVWjV HQynrrKoTU86qrKt2lmoTyAPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUK3skUoS2 LyKa0TLEm5GgeeqsyS8wHwYDVR0jBBgwFoAUFTyY0zE8xk7bmuFaujtUPkgEWZAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3RkJBLzRCNkUwMEZDMDQ4 RjExRjA4NzJFODU0N0M0RjlBRTAyL0ZUeVkwekU4eGs3Ym11RmF1anRVUGtnRVda QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRlR5WTB6RTh4azdibXVGYXVqdFVQa2dFV1pBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3 RkJBLzRCNkUwMEZDMDQ4RjExRjA4NzJFODU0N0M0RjlBRTAyL0ZUeVkwekU4eGs3 Ym11RmF1anRVUGtnRVdaQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACHms/0n26SQKE2UGs3ODaQJ8JnAA1eSRmAA+hq5V5oSksMH8FtKiDuW /fe3GbVsvQH/VB2Ah3TfrnnWAb13gtoz6Ilbbcvviz8yKPh3olbSbdQWjTD9JjRy 8D2TvJmM6UZ42to97trMEmtJ0zKn7QmTIhTPU1sDfpPJw+0hy0PDgGd9KoMTC78U zycV2sm6yv7IeH+wLfgFbpzaPyZ1dfkHjNqt4k8KQ8L0Pz0kgmG+9Wx7akN5lCzW fbUSlNOasd3Ey0pK1NNHvH9UlxaCNdPfJZEsPRBK1Xt56TmzOx1US6hmo6Dd9f3W RCgCaZQmzLlTBBu+AZg2BzUaEdSqA2g= -----END CERTIFICATE-----Generated at Sun May 18 02:16:33 2025 by rpki-client