$ rpki-client -vvf rpki.apnic.net/member_repository/A9173CF2/1AE9034681EE11EBBE35495FC4F9AE02/FEfUS0n3kG3GNzGl2Y2FLsELd0U.mft File: FEfUS0n3kG3GNzGl2Y2FLsELd0U.mft (raw, json) Hash identifier: DZ2RI7RvqGHK2vlT5wNZ0SvxCJ772nx8YMLflUNWjJY= Subject key identifier: 90:6C:4D:D5:97:E0:BB:E0:D4:06:54:8A:97:CE:03:F7:B1:FF:FE:41 Authority key identifier: 14:47:D4:4B:49:F7:90:6D:C6:37:31:A5:D9:8D:85:2E:C1:0B:77:45 Certificate issuer: /CN=A9173CF2/serialNumber=1447D44B49F7906DC63731A5D98D852EC10B7745 Certificate serial: 065C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FEfUS0n3kG3GNzGl2Y2FLsELd0U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173CF2/1AE9034681EE11EBBE35495FC4F9AE02/FEfUS0n3kG3GNzGl2Y2FLsELd0U.mft Manifest number: 0657 Signing time: Sat 10 May 2025 22:05:30 +0000 Manifest this update: Sat 10 May 2025 22:05:29 +0000 Manifest next update: Sat 17 May 2025 22:05:29 +0000 Files and hashes: 1: FEfUS0n3kG3GNzGl2Y2FLsELd0U.crl (hash: apgyu8hVE27xRY/vwAks8LynN/Hm7YdZnnRiEwJy8sA=) 2: D9E7CFF681EF11EBAEE9D17AC4F9AE02.roa (hash: ZbglDjurwe6qJhjv9yc/alHsSUDwI/+N2E8sYgdY/Mk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173CF2/1AE9034681EE11EBBE35495FC4F9AE02/FEfUS0n3kG3GNzGl2Y2FLsELd0U.crl rsync://rpki.apnic.net/member_repository/A9173CF2/1AE9034681EE11EBBE35495FC4F9AE02/FEfUS0n3kG3GNzGl2Y2FLsELd0U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FEfUS0n3kG3GNzGl2Y2FLsELd0U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 22:05:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1628 (0x65c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173CF2, serialNumber=1447D44B49F7906DC63731A5D98D852EC10B7745 Validity Not Before: May 10 22:05:29 2025 GMT Not After : May 17 22:05:29 2025 GMT Subject: CN=681fcdaa-aa17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:08:8c:fa:1d:0c:03:58:45:1a:30:2d:7c:05: 9c:dc:10:76:e6:b1:34:f5:a4:30:6d:0f:fc:31:9f: e2:56:e3:53:1f:1b:3f:ed:99:a4:50:ab:dc:8b:25: 4a:47:69:75:1c:34:d8:1c:ad:cb:16:80:a2:5e:41: 6a:a7:b6:b2:00:62:28:fc:1e:88:de:04:03:32:27: 94:b7:9d:a9:88:a1:9d:cf:b5:ae:e9:9d:80:2c:73: b5:c9:f9:2f:05:e8:18:9f:0d:bf:0c:23:91:d6:bf: 09:8a:2f:51:d2:c2:12:25:86:fc:be:27:7f:5c:dc: 6b:ce:27:64:14:dd:a8:81:bd:31:7a:b2:98:bc:96: 31:da:ff:49:26:ac:3d:0a:72:e3:48:4d:28:56:02: 1c:f2:ab:c2:2f:6d:7b:21:a7:11:e6:77:90:1d:41: a6:8a:f4:2f:f9:1f:bc:65:f7:c4:d4:65:29:9c:e9: 9b:98:af:ea:6e:0b:b7:08:6a:26:78:33:7a:10:a2: b8:46:e0:a8:52:e1:be:c4:55:f8:a7:2f:1c:05:eb: 03:c0:42:10:94:77:d1:52:ae:e9:d0:81:3c:bf:5a: 5a:41:cf:0b:07:da:4e:82:5c:e3:2f:4e:06:dc:42: 8e:57:5c:16:d6:ce:f5:a9:3b:f9:4b:12:de:06:e0: fc:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:6C:4D:D5:97:E0:BB:E0:D4:06:54:8A:97:CE:03:F7:B1:FF:FE:41 X509v3 Authority Key Identifier: keyid:14:47:D4:4B:49:F7:90:6D:C6:37:31:A5:D9:8D:85:2E:C1:0B:77:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173CF2/1AE9034681EE11EBBE35495FC4F9AE02/FEfUS0n3kG3GNzGl2Y2FLsELd0U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FEfUS0n3kG3GNzGl2Y2FLsELd0U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173CF2/1AE9034681EE11EBBE35495FC4F9AE02/FEfUS0n3kG3GNzGl2Y2FLsELd0U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:87:5b:3d:06:21:65:79:31:8c:f5:4f:45:a0:15:45:9c:3c: 0b:af:32:1c:93:a3:d6:be:48:b3:5f:2f:2d:c3:af:c4:cd:7a: 7c:73:b1:2b:dd:c0:82:40:f4:bf:02:b1:32:94:a4:8f:a8:92: 63:ec:99:a5:00:40:b4:ea:b8:a2:f1:39:e9:30:40:19:b9:12: 0e:e5:de:6f:fd:cc:cd:4b:70:0b:fb:94:30:b9:99:a7:de:7c: 8e:bf:f5:a5:69:f6:ff:c3:28:79:fe:56:cb:3c:2c:7b:d2:bf: 59:60:42:1d:16:c5:f5:b2:b7:0a:25:bf:13:2c:6c:82:fe:21: b1:34:31:17:18:49:6f:08:9e:2d:94:da:93:b0:d6:54:b0:df: eb:2d:28:ad:a1:b6:ad:64:65:43:fd:cf:34:e3:62:17:00:da: 92:e0:8c:b6:42:04:ea:14:86:77:93:6d:85:77:a8:f2:5b:27: 3d:61:d0:f9:47:b2:a2:c8:2a:79:57:b9:5e:16:1f:b2:b9:44: b7:36:17:4b:8d:fe:fb:b6:82:75:5a:20:65:70:e4:4a:14:82: 43:18:ae:71:0c:0b:27:b0:93:4c:fa:40:1b:94:56:0e:cd:cd: 74:2e:e1:d8:ee:eb:c7:54:9f:c9:c3:cb:80:1c:1a:f4:b9:95: 7c:42:9c:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDRjIxMTAvBgNVBAUTKDE0NDdENDRCNDlGNzkwNkRDNjM3MzFBNUQ5OEQ4NTJF QzEwQjc3NDUwHhcNMjUwNTEwMjIwNTI5WhcNMjUwNTE3MjIwNTI5WjAYMRYwFAYD VQQDEw02ODFmY2RhYS1hYTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArwiM+h0MA1hFGjAtfAWc3BB25rE09aQwbQ/8MZ/iVuNTHxs/7ZmkUKvciyVK R2l1HDTYHK3LFoCiXkFqp7ayAGIo/B6I3gQDMieUt52piKGdz7Wu6Z2ALHO1yfkv BegYnw2/DCOR1r8Jii9R0sISJYb8vid/XNxrzidkFN2ogb0xerKYvJYx2v9JJqw9 CnLjSE0oVgIc8qvCL217IacR5neQHUGmivQv+R+8ZffE1GUpnOmbmK/qbgu3CGom eDN6EKK4RuCoUuG+xFX4py8cBesDwEIQlHfRUq7p0IE8v1paQc8LB9pOglzjL04G 3EKOV1wW1s71qTv5SxLeBuD89wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJBsTdWX 4Lvg1AZUipfOA/ex//5BMB8GA1UdIwQYMBaAFBRH1EtJ95BtxjcxpdmNhS7BC3dF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0NGMi8xQUU5MDM0Njgx RUUxMUVCQkUzNTQ5NUZDNEY5QUUwMi9GRWZVUzBuM2tHM0dOekdsMlkyRkxzRUxk MFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZFZlVTMG4za0czR056R2wyWTJGTHNFTGQwVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0NGMi8xQUU5MDM0NjgxRUUxMUVCQkUzNTQ5NUZDNEY5QUUwMi9GRWZVUzBuM2tH M0dOekdsMlkyRkxzRUxkMFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBh1s9BiFleTGM9U9FoBVFnDwLrzIck6PWvkizXy8tw6/EzXp8c7Er 3cCCQPS/ArEylKSPqJJj7JmlAEC06rii8TnpMEAZuRIO5d5v/czNS3AL+5QwuZmn 3nyOv/Wlafb/wyh5/lbLPCx70r9ZYEIdFsX1srcKJb8TLGyC/iGxNDEXGElvCJ4t lNqTsNZUsN/rLSitobatZGVD/c8042IXANqS4Iy2QgTqFIZ3k22Fd6jyWyc9YdD5 R7KiyCp5V7leFh+yuUS3NhdLjf77toJ1WiBlcORKFIJDGK5xDAsnsJNM+kAblFYO zc10LuHY7uvHVJ/Jw8uAHBr0uZV8QpzG -----END CERTIFICATE-----Generated at Sun May 11 19:10:14 2025 by rpki-client