$ rpki-client -vvf rpki.apnic.net/member_repository/A91810B4/77D52AA016B511ED9803A272C4F9AE02/FTtjqTdzsliYghhmVd7zBEbdhg0.mft File: FTtjqTdzsliYghhmVd7zBEbdhg0.mft (raw, json) Hash identifier: REGCuDyKsvKExV6BW1DM2CabeEKVtI6sqdF4RbdfXO8= Subject key identifier: D7:8D:B0:1B:4B:AE:BC:28:7F:40:7C:F8:89:2E:CF:BA:66:90:F6:CA Authority key identifier: 15:3B:63:A9:37:73:B2:58:98:82:18:66:55:DE:F3:04:46:DD:86:0D Certificate issuer: /CN=A91810B4/serialNumber=153B63A93773B2589882186655DEF30446DD860D Certificate serial: 025B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTtjqTdzsliYghhmVd7zBEbdhg0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91810B4/77D52AA016B511ED9803A272C4F9AE02/FTtjqTdzsliYghhmVd7zBEbdhg0.mft Manifest number: 0257 Signing time: Sun 11 May 2025 01:20:42 +0000 Manifest this update: Sun 11 May 2025 01:20:41 +0000 Manifest next update: Sun 18 May 2025 01:20:41 +0000 Files and hashes: 1: FTtjqTdzsliYghhmVd7zBEbdhg0.crl (hash: DobUL/59Q4ZWrj9nNWzl50K6jnFleJRqIxOv6A7xGKQ=) 2: 27A32D7A16BA11EDB0E9E464C4F9AE02.roa (hash: uux+o2sOdsirWh/aoHrxCjsCKmrUczbEHaZJtHyFOgA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91810B4/77D52AA016B511ED9803A272C4F9AE02/FTtjqTdzsliYghhmVd7zBEbdhg0.crl rsync://rpki.apnic.net/member_repository/A91810B4/77D52AA016B511ED9803A272C4F9AE02/FTtjqTdzsliYghhmVd7zBEbdhg0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTtjqTdzsliYghhmVd7zBEbdhg0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 01:20:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 603 (0x25b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91810B4, serialNumber=153B63A93773B2589882186655DEF30446DD860D Validity Not Before: May 11 01:20:41 2025 GMT Not After : May 18 01:20:41 2025 GMT Subject: CN=681ffb6a-b91f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:f3:00:f8:f2:fb:53:00:05:21:a3:3d:7f:3c: 13:61:c0:bf:11:56:84:5b:65:7c:a6:d7:55:3e:be: b1:84:cf:67:5d:50:79:25:4b:89:c2:ae:e5:63:5a: d3:ac:85:5e:40:aa:a6:ac:a2:5b:7d:78:76:e9:f4: d7:71:ef:25:8c:3b:fc:b6:7f:1b:0b:14:4c:9f:f3: de:d5:89:46:9a:d3:aa:44:3b:a1:cd:c7:b3:73:ab: 5a:46:59:3d:fa:f2:01:dd:17:aa:cc:05:06:58:9b: 73:0e:b8:f6:6f:17:e3:44:a6:8a:59:37:15:b1:18: e9:65:a6:40:0e:06:ea:73:07:62:77:af:19:4e:b1: 0a:e6:43:0f:49:42:2c:2f:f4:cf:17:47:48:22:0c: a4:cd:f3:83:74:00:4e:45:ba:72:1f:fe:e7:8a:9e: c7:ce:6f:54:58:6b:08:b4:d0:bf:41:06:f4:79:4e: 7a:01:6e:2c:bd:4a:9e:60:5f:1e:df:be:1f:b1:4f: d7:c7:34:36:bb:5e:ce:54:8d:08:e2:c0:fd:ed:47: 0c:d9:18:de:63:cb:98:4b:c4:d4:1d:50:98:8e:28: ff:5e:23:3a:66:b9:5f:fe:c4:30:10:4f:0d:31:0e: cd:1d:00:67:3d:e7:4a:29:29:54:43:57:33:55:f9: 40:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:8D:B0:1B:4B:AE:BC:28:7F:40:7C:F8:89:2E:CF:BA:66:90:F6:CA X509v3 Authority Key Identifier: keyid:15:3B:63:A9:37:73:B2:58:98:82:18:66:55:DE:F3:04:46:DD:86:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91810B4/77D52AA016B511ED9803A272C4F9AE02/FTtjqTdzsliYghhmVd7zBEbdhg0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTtjqTdzsliYghhmVd7zBEbdhg0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91810B4/77D52AA016B511ED9803A272C4F9AE02/FTtjqTdzsliYghhmVd7zBEbdhg0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:e8:2f:8d:5f:f1:75:04:1b:a9:8c:b4:9b:0e:d8:ef:86:5f: 45:f7:06:a1:2a:f3:1c:59:17:39:e8:93:c1:21:22:89:77:a0: 87:08:c3:73:f9:ea:73:7e:8e:7b:a8:88:e4:6b:de:c2:15:be: 45:c5:c0:31:71:5b:b5:72:0b:40:20:c6:27:a6:67:ce:b4:17: 72:a6:65:d2:b0:19:d7:be:b5:f6:1c:42:b2:21:a9:88:56:45: 43:7c:82:cc:26:b1:22:6c:5a:29:f3:86:dd:c1:71:db:7c:1b: 3c:3b:e1:fb:26:89:87:a8:c5:0c:16:3c:74:a5:c7:5d:3e:db: 2b:83:b0:39:6f:08:56:6f:d2:bf:16:7e:80:8d:07:d5:88:34: 6c:75:b2:2d:25:e8:bd:54:2b:95:92:c3:c1:a1:7c:c3:40:d5: 08:c9:06:cd:fa:5d:e4:eb:3b:82:35:03:27:e6:03:b8:6a:d7: c6:28:53:8b:15:f7:8c:21:81:ce:28:3a:d2:a2:1c:fa:a3:58: de:30:9a:49:d9:2a:24:c4:2c:c5:4c:ee:3f:c4:65:05:d3:c2: c0:10:63:fb:58:e8:10:8f:bf:94:ed:91:21:37:76:f6:4d:19: 94:99:20:58:71:9b:30:88:d3:d8:be:57:11:fe:3e:2b:cb:df: c0:bb:46:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODEwQjQxMTAvBgNVBAUTKDE1M0I2M0E5Mzc3M0IyNTg5ODgyMTg2NjU1REVGMzA0 NDZERDg2MEQwHhcNMjUwNTExMDEyMDQxWhcNMjUwNTE4MDEyMDQxWjAYMRYwFAYD VQQDEw02ODFmZmI2YS1iOTFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5/MA+PL7UwAFIaM9fzwTYcC/EVaEW2V8ptdVPr6xhM9nXVB5JUuJwq7lY1rT rIVeQKqmrKJbfXh26fTXce8ljDv8tn8bCxRMn/Pe1YlGmtOqRDuhzcezc6taRlk9 +vIB3ReqzAUGWJtzDrj2bxfjRKaKWTcVsRjpZaZADgbqcwdid68ZTrEK5kMPSUIs L/TPF0dIIgykzfODdABORbpyH/7nip7Hzm9UWGsItNC/QQb0eU56AW4svUqeYF8e 374fsU/XxzQ2u17OVI0I4sD97UcM2RjeY8uYS8TUHVCYjij/XiM6Zrlf/sQwEE8N MQ7NHQBnPedKKSlUQ1czVflAqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNeNsBtL rrwof0B8+Ikuz7pmkPbKMB8GA1UdIwQYMBaAFBU7Y6k3c7JYmIIYZlXe8wRG3YYN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTBCNC83N0Q1MkFBMDE2 QjUxMUVEOTgwM0EyNzJDNEY5QUUwMi9GVHRqcVRkenNsaVlnaGhtVmQ3ekJFYmRo ZzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZUdGpxVGR6c2xpWWdoaG1WZDd6QkViZGhnMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MTBCNC83N0Q1MkFBMDE2QjUxMUVEOTgwM0EyNzJDNEY5QUUwMi9GVHRqcVRkenNs aVlnaGhtVmQ3ekJFYmRoZzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBM6C+NX/F1BBupjLSbDtjvhl9F9wahKvMcWRc56JPBISKJd6CHCMNz +epzfo57qIjka97CFb5FxcAxcVu1cgtAIMYnpmfOtBdypmXSsBnXvrX2HEKyIamI VkVDfILMJrEibFop84bdwXHbfBs8O+H7JomHqMUMFjx0pcddPtsrg7A5bwhWb9K/ Fn6AjQfViDRsdbItJei9VCuVksPBoXzDQNUIyQbN+l3k6zuCNQMn5gO4atfGKFOL FfeMIYHOKDrSohz6o1jeMJpJ2SokxCzFTO4/xGUF08LAEGP7WOgQj7+U7ZEhN3b2 TRmUmSBYcZswiNPYvlcR/j4ry9/Au0Yi -----END CERTIFICATE-----Generated at Mon May 12 18:19:48 2025 by rpki-client