$ rpki-client -vvf rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft File: FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft (raw, json) Hash identifier: wTj/XCgVUpFfTgomktv30YxCAUSaDndUICGZR9EIEks= Subject key identifier: C6:5C:2B:64:02:55:8A:6E:7C:37:65:7D:00:71:15:34:2A:03:DA:1B Authority key identifier: 16:01:D8:65:0D:D5:56:B2:AF:B0:83:B2:33:FF:65:AE:3D:AD:15:71 Certificate issuer: /CN=A918FC40/serialNumber=1601D8650DD556B2AFB083B233FF65AE3DAD1571 Certificate serial: 0B1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft Manifest number: 0B08 Signing time: Mon 12 May 2025 19:07:00 +0000 Manifest this update: Mon 12 May 2025 19:06:59 +0000 Manifest next update: Mon 19 May 2025 19:06:59 +0000 Files and hashes: 1: FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl (hash: cK1MK9T4lojceUt+qXcanEe+LIC0QdkO0+4/J2P6Tz0=) 2: B7BC4714BEF011ED9634C070C4F9AE02.roa (hash: hCJDcBpZnY511Q8RFEjySoDwZo6yKwsip9nLzCPAimM=) 3: DCA05C0E419A11EAA5E2BA6EC4F9AE02.roa (hash: PF9MEJvH0IR25ZTC0vJ/AU9NL74Mubr8N6aNLLIh+tY=) 4: DC06CBC0419A11EAA5E2BA6EC4F9AE02.roa (hash: jb+NbLPJbNRFrpXKly3k3uaY8m7AD5q86vW7O0jvGcA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 19:06:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2845 (0xb1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FC40, serialNumber=1601D8650DD556B2AFB083B233FF65AE3DAD1571 Validity Not Before: May 12 19:06:59 2025 GMT Not After : May 19 19:06:59 2025 GMT Subject: CN=682246d3-a020 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:88:c2:4c:1f:20:ab:10:ef:54:a6:4b:5b:22: b3:bc:63:a4:14:01:22:df:ee:37:5a:29:68:5d:fb: 19:2b:40:14:51:06:87:b5:b2:c4:f9:dc:01:6c:9d: ca:e9:1f:f1:8c:cb:0b:ea:55:4c:cd:e0:2b:95:92: df:4b:25:cd:9f:42:2e:33:9d:a0:ff:9e:23:bf:0a: 91:e3:cd:c5:7d:b7:32:44:ab:7f:9e:21:7b:eb:c0: 45:33:c2:6f:61:49:7c:2a:e5:23:97:a7:24:5b:cb: 58:c8:ff:a4:13:09:c7:41:4e:f2:68:bc:27:39:2a: 65:47:41:e1:24:83:4f:c2:f4:07:a2:32:dd:a7:4f: dd:0f:66:30:8e:c2:fd:d7:a9:d5:76:6b:99:5e:98: 9b:ef:e9:84:be:f4:55:b6:9d:13:12:58:b8:b3:54: e5:c2:c4:4b:d3:fe:58:e8:7f:96:ff:61:16:26:bc: 22:db:e0:42:8f:b9:a7:3e:61:f6:ab:42:7a:2f:76: cf:8d:84:70:09:a4:9c:ea:40:ff:30:0b:6a:f6:07: ef:12:56:b3:26:1b:d1:18:7e:38:d4:22:45:ef:31: c0:76:b9:24:3c:60:f9:b4:b8:27:bd:0e:46:54:ab: 4a:c8:34:2d:ae:9b:b1:f1:3d:58:f1:74:60:b1:03: 3b:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:5C:2B:64:02:55:8A:6E:7C:37:65:7D:00:71:15:34:2A:03:DA:1B X509v3 Authority Key Identifier: keyid:16:01:D8:65:0D:D5:56:B2:AF:B0:83:B2:33:FF:65:AE:3D:AD:15:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:59:84:ca:90:e8:97:77:d3:ac:17:1f:30:b2:dd:aa:ff:ab: 72:58:56:f8:7a:a2:d5:98:70:91:95:87:74:88:78:57:14:b0: 25:ef:3d:98:2d:81:10:27:0e:b4:61:9e:8f:95:f7:1e:8d:50: 50:f5:03:b9:cc:60:ae:38:45:e7:70:c1:da:c0:20:5a:84:d0: 06:1b:87:34:f8:94:19:0d:86:c6:aa:a7:ed:69:7d:fd:07:30: 3c:0f:30:d9:17:f3:11:f2:28:07:93:ea:f2:14:40:13:d7:0c: 47:4c:f2:a1:1b:4c:2e:00:0e:dc:41:4d:9c:f5:f2:1a:15:81: 3d:f4:e2:d0:b9:4c:bd:86:e0:86:67:28:54:ac:12:a5:31:fb: ae:bf:c3:d2:d6:d1:5b:98:1a:1d:04:a8:e5:77:6f:11:82:67: 17:5b:b8:c8:14:58:97:bb:38:10:2d:96:b5:00:7f:a0:c0:4f: 68:61:c7:31:af:84:9c:18:9a:26:ab:c6:75:cb:4e:a5:5e:39: c1:97:a1:a1:ea:6b:b9:4a:f2:7e:a1:f8:c3:1e:6a:da:4a:21: 73:06:f7:27:46:d3:ee:18:e1:ca:02:bf:14:36:ce:16:42:e0: d1:08:5d:a0:d8:71:3e:86:d4:c1:40:f9:da:89:05:c5:55:1a: 6f:32:11:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCx0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZDNDAxMTAvBgNVBAUTKDE2MDFEODY1MERENTU2QjJBRkIwODNCMjMzRkY2NUFF M0RBRDE1NzEwHhcNMjUwNTEyMTkwNjU5WhcNMjUwNTE5MTkwNjU5WjAYMRYwFAYD VQQDEw02ODIyNDZkMy1hMDIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqIjCTB8gqxDvVKZLWyKzvGOkFAEi3+43WiloXfsZK0AUUQaHtbLE+dwBbJ3K 6R/xjMsL6lVMzeArlZLfSyXNn0IuM52g/54jvwqR483FfbcyRKt/niF768BFM8Jv YUl8KuUjl6ckW8tYyP+kEwnHQU7yaLwnOSplR0HhJINPwvQHojLdp0/dD2YwjsL9 16nVdmuZXpib7+mEvvRVtp0TEli4s1TlwsRL0/5Y6H+W/2EWJrwi2+BCj7mnPmH2 q0J6L3bPjYRwCaSc6kD/MAtq9gfvElazJhvRGH441CJF7zHAdrkkPGD5tLgnvQ5G VKtKyDQtrpux8T1Y8XRgsQM7JQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMZcK2QC VYpufDdlfQBxFTQqA9obMB8GA1UdIwQYMBaAFBYB2GUN1Vayr7CDsjP/Za49rRVx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkM0MC82MTdGMzUzNjQw RTExMUVBQkM2MkRCMjZDNEY5QUUwMi9GZ0hZWlEzVlZyS3ZzSU95TV85bHJqMnRG WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZnSFlaUTNWVnJLdnNJT3lNXzlscmoydEZYRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkM0MC82MTdGMzUzNjQwRTExMUVBQkM2MkRCMjZDNEY5QUUwMi9GZ0hZWlEzVlZy S3ZzSU95TV85bHJqMnRGWEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1WYTKkOiXd9OsFx8wst2q/6tyWFb4eqLVmHCRlYd0iHhXFLAl7z2Y LYEQJw60YZ6PlfcejVBQ9QO5zGCuOEXncMHawCBahNAGG4c0+JQZDYbGqqftaX39 BzA8DzDZF/MR8igHk+ryFEAT1wxHTPKhG0wuAA7cQU2c9fIaFYE99OLQuUy9huCG ZyhUrBKlMfuuv8PS1tFbmBodBKjld28RgmcXW7jIFFiXuzgQLZa1AH+gwE9oYccx r4ScGJomq8Z1y06lXjnBl6Gh6mu5SvJ+ofjDHmraSiFzBvcnRtPuGOHKAr8UNs4W QuDRCF2g2HE+htTBQPnaiQXFVRpvMhHH -----END CERTIFICATE-----Generated at Wed May 14 07:37:49 2025 by rpki-client