$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft File: FOZzxKcds0p1aBNYfkghLaLnczA.mft (raw, json) Hash identifier: +9Hb47dLKNzwyRprgH9PnXdwgwE3/L+QXPI+46IKMLw= Subject key identifier: AE:D5:96:6A:9B:E1:91:2A:D9:14:EA:E3:5A:95:CA:9F:C9:BE:82:A1 Authority key identifier: 14:E6:73:C4:A7:1D:B3:4A:75:68:13:58:7E:48:21:2D:A2:E7:73:30 Certificate issuer: /CN=A91A2F33/serialNumber=14E673C4A71DB34A756813587E48212DA2E77330 Certificate serial: 09F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft Manifest number: 09DB Signing time: Mon 12 May 2025 19:48:56 +0000 Manifest this update: Mon 12 May 2025 19:48:55 +0000 Manifest next update: Mon 19 May 2025 19:48:55 +0000 Files and hashes: 1: FOZzxKcds0p1aBNYfkghLaLnczA.crl (hash: JHe2GDlp9Hx6rrFCStsHacAwQL1wo2AIRStARQfy2Yc=) 2: 344644CC1DC511EF95607948C4F9AE02.roa (hash: rkDHfwPM1DT0Lu0jNtn8nf16whUr6uH9MCf0inhJdfs=) 3: ED99CAA81DC411EF9E620C48C4F9AE02.roa (hash: p62MlJx+4H10Goj45fvAZ4d/rgVHWdc/FettBrr2SX0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.crl rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 19:48:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2549 (0x9f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2F33, serialNumber=14E673C4A71DB34A756813587E48212DA2E77330 Validity Not Before: May 12 19:48:55 2025 GMT Not After : May 19 19:48:55 2025 GMT Subject: CN=682250a7-e6cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:cc:33:7d:fb:3e:92:c7:07:89:c8:5d:9b:e7: b7:df:f4:0b:62:24:72:24:ac:68:2b:1a:f6:74:83: af:22:49:73:3a:18:52:76:82:f2:71:9e:a7:d4:7a: 30:41:b4:fb:14:30:e0:40:6a:f6:3b:74:24:09:fc: 24:e0:1b:c2:84:d2:a8:d5:bd:b4:82:46:39:f7:38: a2:3d:1c:4b:94:48:dc:e3:20:14:f0:fb:a8:23:82: 2f:05:b8:d8:9c:99:fb:14:76:a4:ca:5a:58:3a:6f: d3:30:1a:40:7b:b5:58:ff:3b:c3:98:07:df:be:e1: 7e:a7:16:4c:71:b9:60:37:de:8a:6e:9e:55:32:b1: 0f:da:61:72:c4:72:0d:f4:84:2a:b9:b6:1e:68:c6: 63:f0:49:14:d0:52:7b:6f:a3:ec:a8:a2:9d:5c:18: f8:7b:30:e3:17:95:c0:7b:0f:f2:19:c1:e5:9d:e9: 29:03:98:c6:d9:6d:e0:ba:c9:56:b8:0b:fb:ba:e3: 88:df:d7:88:03:5f:82:87:c5:0c:d3:49:f3:ba:e0: d5:93:68:05:77:b9:30:b2:b9:0c:4b:4b:38:28:e0: c9:15:d9:b7:c2:c6:86:68:ae:b4:b4:05:0a:44:5b: 2a:5e:14:c5:3b:51:2b:9f:a3:fb:d5:ad:8d:a6:26: 4a:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:D5:96:6A:9B:E1:91:2A:D9:14:EA:E3:5A:95:CA:9F:C9:BE:82:A1 X509v3 Authority Key Identifier: keyid:14:E6:73:C4:A7:1D:B3:4A:75:68:13:58:7E:48:21:2D:A2:E7:73:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:12:2e:7f:07:c7:b4:3e:d4:74:92:ad:63:89:e9:2c:a0:1a: c1:6b:ee:95:06:85:5c:73:3c:e6:40:e6:66:89:40:07:2b:be: 38:70:ad:1c:a7:ac:d8:ce:02:09:fb:01:6d:38:78:a2:86:1e: 14:e1:29:e1:99:3b:f7:e7:f9:65:7c:a4:6f:5d:3b:1f:fe:2b: 8e:03:eb:e9:9b:1c:86:a1:de:36:16:a8:9e:c6:8b:45:8f:53: d8:d8:23:84:7e:19:21:ff:6a:ed:36:b8:d4:3d:81:f3:40:23: e7:6e:c8:01:a1:ac:e6:0a:42:b1:e1:1e:cf:3b:3e:e1:96:99: 84:53:d5:54:cb:29:8c:25:15:65:7a:1b:89:84:23:cb:c2:81: ef:8a:cd:20:a1:d6:31:5c:8f:9f:e7:c8:90:3e:3a:2b:98:12: 08:ce:54:ad:0d:8c:27:ab:7d:0e:58:21:9d:81:23:ad:f2:87: ed:14:b1:a4:05:44:10:ae:84:d4:8a:d6:dc:75:1c:f6:87:86: 5a:56:f8:2c:19:a6:99:7a:2d:38:bd:0c:f5:73:87:75:c8:01: 9c:48:40:76:97:11:98:f6:c6:f8:12:b4:80:5b:ca:d7:26:e5: d0:74:08:85:4a:a0:36:4c:a8:73:fe:03:41:dc:4f:e6:4d:e3: b2:43:b1:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCfUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJGMzMxMTAvBgNVBAUTKDE0RTY3M0M0QTcxREIzNEE3NTY4MTM1ODdFNDgyMTJE QTJFNzczMzAwHhcNMjUwNTEyMTk0ODU1WhcNMjUwNTE5MTk0ODU1WjAYMRYwFAYD VQQDEw02ODIyNTBhNy1lNmNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnswzffs+kscHichdm+e33/QLYiRyJKxoKxr2dIOvIklzOhhSdoLycZ6n1How QbT7FDDgQGr2O3QkCfwk4BvChNKo1b20gkY59ziiPRxLlEjc4yAU8PuoI4IvBbjY nJn7FHakylpYOm/TMBpAe7VY/zvDmAffvuF+pxZMcblgN96Kbp5VMrEP2mFyxHIN 9IQqubYeaMZj8EkU0FJ7b6PsqKKdXBj4ezDjF5XAew/yGcHlnekpA5jG2W3guslW uAv7uuOI39eIA1+Ch8UM00nzuuDVk2gFd7kwsrkMS0s4KODJFdm3wsaGaK60tAUK RFsqXhTFO1Ern6P71a2NpiZKYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK7Vlmqb 4ZEq2RTq41qVyp/JvoKhMB8GA1UdIwQYMBaAFBTmc8SnHbNKdWgTWH5IIS2i53Mw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkYzMy9FNkVDMkQ5Mjgw OTExMUVBQUJDREZGNkNDNEY5QUUwMi9GT1p6eEtjZHMwcDFhQk5ZZmtnaExhTG5j ekEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZPWnp4S2NkczBwMWFCTllma2doTGFMbmN6QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MkYzMy9FNkVDMkQ5MjgwOTExMUVBQUJDREZGNkNDNEY5QUUwMi9GT1p6eEtjZHMw cDFhQk5ZZmtnaExhTG5jekEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXEi5/B8e0PtR0kq1jieksoBrBa+6VBoVcczzmQOZmiUAHK744cK0c p6zYzgIJ+wFtOHiihh4U4SnhmTv35/llfKRvXTsf/iuOA+vpmxyGod42FqiexotF j1PY2COEfhkh/2rtNrjUPYHzQCPnbsgBoazmCkKx4R7POz7hlpmEU9VUyymMJRVl ehuJhCPLwoHvis0godYxXI+f58iQPjormBIIzlStDYwnq30OWCGdgSOt8oftFLGk BUQQroTUitbcdRz2h4ZaVvgsGaaZei04vQz1c4d1yAGcSEB2lxGY9sb4ErSAW8rX JuXQdAiFSqA2TKhz/gNB3E/mTeOyQ7Fc -----END CERTIFICATE-----Generated at Wed May 14 19:56:34 2025 by rpki-client