$ rpki-client -vvf rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.mft File: fnLYAbOKcqtLA3bhLJVBJKrkPG0.mft (raw, json) Hash identifier: K33UutqfCZYXotRom1aK5KsQzZHc5vUg874RD3WSffo= Subject key identifier: 20:97:F9:EB:EB:59:AB:74:62:FD:40:D6:A7:72:9B:96:72:F3:A8:54 Authority key identifier: 7E:72:D8:01:B3:8A:72:AB:4B:03:76:E1:2C:95:41:24:AA:E4:3C:6D Certificate issuer: /CN=A918753F/serialNumber=7E72D801B38A72AB4B0376E12C954124AAE43C6D Certificate serial: 089F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnLYAbOKcqtLA3bhLJVBJKrkPG0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.mft Manifest number: 0894 Signing time: Wed 14 May 2025 20:41:15 +0000 Manifest this update: Wed 14 May 2025 20:41:15 +0000 Manifest next update: Wed 21 May 2025 20:41:15 +0000 Files and hashes: 1: fnLYAbOKcqtLA3bhLJVBJKrkPG0.crl (hash: i93t8IzK09R4lVIXqD7AfURcpWM4lh+U4D/Z4gIScBw=) 2: 10A6E062B70A11EDB851464EC4F9AE02.roa (hash: FH1SU9GKJvbucv0gXmHk6Vc7dPieI2aucBrxBlxHAdE=) 3: 38B92F54E17D11EDBCAFC081C4F9AE02.roa (hash: KcabN84FuC1RCZKB2biZEnUyMb0N5RBlFWlu2grfP8Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.crl rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnLYAbOKcqtLA3bhLJVBJKrkPG0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 20:41:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2207 (0x89f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918753F, serialNumber=7E72D801B38A72AB4B0376E12C954124AAE43C6D Validity Not Before: May 14 20:41:15 2025 GMT Not After : May 21 20:41:15 2025 GMT Subject: CN=6824ffeb-9c1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:0b:13:7b:34:ef:cb:d9:ba:15:c8:aa:b0:65: e6:33:d8:d8:e0:cb:36:99:73:1e:4e:b0:e6:61:8e: ab:4e:6d:f1:3c:55:70:02:50:05:a2:31:fe:26:56: b4:61:fa:cc:af:8b:68:7c:7f:f3:c8:bf:90:76:71: ce:b0:81:86:4e:94:f3:03:e5:96:3f:21:48:22:ec: 33:b6:d4:bf:a4:16:26:12:54:7f:6b:07:c3:f9:04: 9c:ab:84:b1:83:c1:7b:8d:67:e7:e7:4f:ff:c3:6d: 7e:74:3c:d3:a8:fa:b6:68:f7:41:05:1c:5f:3e:39: ed:72:17:b5:5a:04:22:db:57:fa:d6:22:17:f3:95: aa:de:6d:d4:a0:16:b5:c0:62:1c:c0:8a:48:0a:05: ad:6d:1c:8e:31:86:be:79:0b:de:5d:b8:bc:4f:ce: 97:eb:df:d7:06:c5:28:23:eb:60:f6:bc:f8:ab:d8: 8a:52:6c:6b:0c:a3:bb:f7:b2:c7:b0:5f:50:ea:f7: 07:3b:9f:2b:d0:36:71:83:47:92:67:1a:b5:8d:9c: 58:ef:58:a3:3c:d0:3f:3d:71:bb:3b:20:9d:e8:22: b0:1c:e9:7e:0a:8b:62:d6:b4:18:eb:67:99:c2:a0: 43:56:5d:48:fc:bb:19:b7:23:65:a6:36:d3:3c:70: 02:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:97:F9:EB:EB:59:AB:74:62:FD:40:D6:A7:72:9B:96:72:F3:A8:54 X509v3 Authority Key Identifier: keyid:7E:72:D8:01:B3:8A:72:AB:4B:03:76:E1:2C:95:41:24:AA:E4:3C:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnLYAbOKcqtLA3bhLJVBJKrkPG0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:74:57:58:1b:2d:04:67:30:ad:eb:73:5c:bc:1a:34:3d:06: f3:a3:29:91:2d:7c:76:66:e2:de:61:20:60:49:63:90:2c:18: 19:a6:8b:20:46:39:b5:2d:0e:39:e9:52:33:66:a1:ac:29:cf: 02:81:74:09:cd:78:93:aa:04:cc:2e:93:50:1e:25:1d:db:55: da:e9:4e:5e:38:c5:52:1c:18:fb:67:15:0c:93:00:75:8c:36: bf:fb:c8:3f:52:59:b7:c4:51:a3:1d:63:a2:de:83:29:14:0f: db:55:de:96:76:b5:5e:68:c4:5a:16:95:f7:8f:95:92:5c:78: 36:fd:4f:81:d7:9d:ed:e2:f5:a6:69:79:5a:6a:a7:96:c7:4a: e5:25:14:3f:1c:92:67:50:1c:44:9d:8d:6a:2f:b2:02:f2:5c: 4c:b9:95:70:1b:fa:8d:59:90:ac:a0:e4:22:37:df:80:f2:80: b6:d9:52:69:20:84:34:f4:d6:69:f9:e7:8c:9a:c6:7f:76:82: 36:e9:81:0f:c7:f7:69:59:d2:f9:86:ec:63:d4:de:ef:a7:0a: bb:7a:30:9a:2f:8f:f1:5a:dd:18:28:a5:12:77:68:47:8f:be: 5e:9f:18:ef:b5:3e:32:9e:d2:5a:c4:87:3b:a4:47:74:73:1e: b1:46:99:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc1M0YxMTAvBgNVBAUTKDdFNzJEODAxQjM4QTcyQUI0QjAzNzZFMTJDOTU0MTI0 QUFFNDNDNkQwHhcNMjUwNTE0MjA0MTE1WhcNMjUwNTIxMjA0MTE1WjAYMRYwFAYD VQQDEw02ODI0ZmZlYi05YzFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArQsTezTvy9m6FciqsGXmM9jY4Ms2mXMeTrDmYY6rTm3xPFVwAlAFojH+Jla0 YfrMr4tofH/zyL+QdnHOsIGGTpTzA+WWPyFIIuwzttS/pBYmElR/awfD+QScq4Sx g8F7jWfn50//w21+dDzTqPq2aPdBBRxfPjntche1WgQi21f61iIX85Wq3m3UoBa1 wGIcwIpICgWtbRyOMYa+eQveXbi8T86X69/XBsUoI+tg9rz4q9iKUmxrDKO797LH sF9Q6vcHO58r0DZxg0eSZxq1jZxY71ijPNA/PXG7OyCd6CKwHOl+Coti1rQY62eZ wqBDVl1I/LsZtyNlpjbTPHACSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCCX+evr Wat0Yv1A1qdym5Zy86hUMB8GA1UdIwQYMBaAFH5y2AGzinKrSwN24SyVQSSq5Dxt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzUzRi9CREE1N0ZGRUJD MTYxMUVBOUYyQjc0MTJDNEY5QUUwMi9mbkxZQWJPS2NxdExBM2JoTEpWQkpLcmtQ RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZuTFlBYk9LY3F0TEEzYmhMSlZCSktya1BHMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzUzRi9CREE1N0ZGRUJDMTYxMUVBOUYyQjc0MTJDNEY5QUUwMi9mbkxZQWJPS2Nx dExBM2JoTEpWQkpLcmtQRzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmdFdYGy0EZzCt63NcvBo0PQbzoymRLXx2ZuLeYSBgSWOQLBgZposg Rjm1LQ456VIzZqGsKc8CgXQJzXiTqgTMLpNQHiUd21Xa6U5eOMVSHBj7ZxUMkwB1 jDa/+8g/Ulm3xFGjHWOi3oMpFA/bVd6WdrVeaMRaFpX3j5WSXHg2/U+B153t4vWm aXlaaqeWx0rlJRQ/HJJnUBxEnY1qL7IC8lxMuZVwG/qNWZCsoOQiN9+A8oC22VJp IIQ09NZp+eeMmsZ/doI26YEPx/dpWdL5huxj1N7vpwq7ejCaL4/xWt0YKKUSd2hH j75enxjvtT4yntJaxIc7pEd0cx6xRpnK -----END CERTIFICATE-----Generated at Thu May 15 00:24:35 2025 by rpki-client