$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF8F4/707765A838A111ED9F3C0C82C4F9AE02/FPn_SiOnILc7r-YDNT8R65c5Jxk.mft File: FPn_SiOnILc7r-YDNT8R65c5Jxk.mft (raw, json) Hash identifier: suLpCJej7Lr2IMKQ/BpwtocKO1dntni2znPeK4FZV84= Subject key identifier: 71:1E:63:C1:74:57:6D:D3:C1:02:80:BD:33:D2:7B:A2:46:74:44:01 Authority key identifier: 14:F9:FF:4A:23:A7:20:B7:3B:AF:E6:03:35:3F:11:EB:97:39:27:19 Certificate issuer: /CN=A91BF8F4/serialNumber=14F9FF4A23A720B73BAFE603353F11EB97392719 Certificate serial: 0206 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FPn_SiOnILc7r-YDNT8R65c5Jxk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF8F4/707765A838A111ED9F3C0C82C4F9AE02/FPn_SiOnILc7r-YDNT8R65c5Jxk.mft Manifest number: 0201 Signing time: Mon 05 May 2025 01:36:18 +0000 Manifest this update: Mon 05 May 2025 01:36:18 +0000 Manifest next update: Mon 12 May 2025 01:36:17 +0000 Files and hashes: 1: FPn_SiOnILc7r-YDNT8R65c5Jxk.crl (hash: 2ksLowm1XkOBqcKMCFieeA683TXu5eFRwOxKy1nJTXM=) 2: 9B3244E038A411EDB5C86A28C4F9AE02.roa (hash: z3vMrh+MfifC7nf/d8HWXEmLlkM4nBll9m3BXQVcSyk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF8F4/707765A838A111ED9F3C0C82C4F9AE02/FPn_SiOnILc7r-YDNT8R65c5Jxk.crl rsync://rpki.apnic.net/member_repository/A91BF8F4/707765A838A111ED9F3C0C82C4F9AE02/FPn_SiOnILc7r-YDNT8R65c5Jxk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FPn_SiOnILc7r-YDNT8R65c5Jxk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 01:36:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 518 (0x206) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF8F4, serialNumber=14F9FF4A23A720B73BAFE603353F11EB97392719 Validity Not Before: May 5 01:36:18 2025 GMT Not After : May 12 01:36:17 2025 GMT Subject: CN=68181612-1977 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:31:c3:e4:47:c0:20:86:49:05:79:08:56:d9: f6:0b:a9:8c:82:bc:b2:89:1c:ff:a0:53:59:30:3c: c0:7a:91:ad:20:9f:12:1f:f0:e0:a0:e0:c2:c5:e5: 51:cd:2c:6d:76:16:ce:27:4f:29:b9:c0:05:a2:b4: 41:1e:43:bc:a9:60:25:78:c3:e7:ac:cc:c4:2e:0c: e7:1f:a9:33:f0:78:0e:17:c3:6a:d9:47:e3:c6:10: 4c:80:ec:fe:be:81:d3:23:38:21:80:92:6e:c7:2c: f6:c8:49:fb:09:8e:b9:41:bd:d1:da:3d:b3:4b:e2: ee:0c:92:7a:fd:32:48:4a:5a:cc:01:79:25:a4:12: da:a4:16:9c:87:42:ba:78:d0:2c:d8:51:16:07:8d: 8b:fb:97:1a:ba:c1:49:a8:2d:b6:19:ec:50:f0:f6: 3f:18:f7:a6:9e:b7:d1:4e:8d:8c:40:19:ee:71:1e: 1c:4c:c8:5c:cf:1d:0b:9d:ad:cb:08:9c:ef:ff:84: 86:c1:a0:bc:83:0d:97:27:41:cb:4b:27:52:9b:3a: 33:35:10:4e:f5:e6:a6:37:a7:16:57:40:42:ce:b6: 90:2a:a8:a1:55:8d:68:39:2a:1e:45:dc:6e:2a:9c: c8:88:26:59:f4:ed:58:e8:de:94:00:f2:92:ff:09: d3:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:1E:63:C1:74:57:6D:D3:C1:02:80:BD:33:D2:7B:A2:46:74:44:01 X509v3 Authority Key Identifier: keyid:14:F9:FF:4A:23:A7:20:B7:3B:AF:E6:03:35:3F:11:EB:97:39:27:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF8F4/707765A838A111ED9F3C0C82C4F9AE02/FPn_SiOnILc7r-YDNT8R65c5Jxk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FPn_SiOnILc7r-YDNT8R65c5Jxk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF8F4/707765A838A111ED9F3C0C82C4F9AE02/FPn_SiOnILc7r-YDNT8R65c5Jxk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:2a:fe:5e:1e:a7:4f:05:7d:76:29:5e:c4:ef:5d:ac:fe:0c: a2:08:38:3c:f5:39:b9:1f:35:46:b0:0a:e6:95:df:93:e3:66: 61:e0:ac:cc:18:70:19:2f:27:33:de:de:b7:a0:79:b3:20:db: c9:e9:a0:f7:d3:57:41:3f:2e:c2:ec:99:4c:09:e4:5d:f1:1c: 39:97:7d:43:0a:5d:05:a1:8a:6f:a1:b9:5f:c0:77:29:71:f9: 81:ae:45:86:c7:20:49:2c:b3:a1:b6:0f:82:67:2c:c3:27:71: 5d:af:57:91:0b:0a:d6:88:87:c6:7b:4e:b4:51:91:cb:06:60: b5:21:66:0d:b9:e0:18:b8:2c:fb:ce:03:c4:00:a1:f8:03:93: 0b:22:92:e7:ac:b3:69:b6:c6:93:61:35:02:64:7a:37:ce:29: d8:4d:47:eb:5e:0a:9d:b6:8a:65:db:c8:b8:49:eb:34:4a:c5: 16:37:e9:49:75:22:f1:36:a7:7c:4c:43:37:25:cb:30:25:80: 44:bf:58:b7:0e:bf:db:57:dc:ee:ff:a1:c7:25:db:44:fa:b5: 39:1c:23:2b:0d:af:ed:34:9b:52:5a:20:39:a7:c0:94:11:c3: a4:bd:c3:10:06:e9:4d:07:0c:c6:7c:f5:79:0c:b3:0d:ee:70: 07:6e:09:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkY4RjQxMTAvBgNVBAUTKDE0RjlGRjRBMjNBNzIwQjczQkFGRTYwMzM1M0YxMUVC OTczOTI3MTkwHhcNMjUwNTA1MDEzNjE4WhcNMjUwNTEyMDEzNjE3WjAYMRYwFAYD VQQDEw02ODE4MTYxMi0xOTc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyTHD5EfAIIZJBXkIVtn2C6mMgryyiRz/oFNZMDzAepGtIJ8SH/DgoODCxeVR zSxtdhbOJ08pucAForRBHkO8qWAleMPnrMzELgznH6kz8HgOF8Nq2UfjxhBMgOz+ voHTIzghgJJuxyz2yEn7CY65Qb3R2j2zS+LuDJJ6/TJISlrMAXklpBLapBach0K6 eNAs2FEWB42L+5causFJqC22GexQ8PY/GPemnrfRTo2MQBnucR4cTMhczx0Lna3L CJzv/4SGwaC8gw2XJ0HLSydSmzozNRBO9eamN6cWV0BCzraQKqihVY1oOSoeRdxu KpzIiCZZ9O1Y6N6UAPKS/wnTOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHEeY8F0 V23TwQKAvTPSe6JGdEQBMB8GA1UdIwQYMBaAFBT5/0ojpyC3O6/mAzU/EeuXOScZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjhGNC83MDc3NjVBODM4 QTExMUVEOUYzQzBDODJDNEY5QUUwMi9GUG5fU2lPbklMYzdyLVlETlQ4UjY1YzVK eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZQbl9TaU9uSUxjN3ItWUROVDhSNjVjNUp4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjhGNC83MDc3NjVBODM4QTExMUVEOUYzQzBDODJDNEY5QUUwMi9GUG5fU2lPbklM YzdyLVlETlQ4UjY1YzVKeGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBKv5eHqdPBX12KV7E712s/gyiCDg89Tm5HzVGsArmld+T42Zh4KzM GHAZLycz3t63oHmzINvJ6aD301dBPy7C7JlMCeRd8Rw5l31DCl0FoYpvoblfwHcp cfmBrkWGxyBJLLOhtg+CZyzDJ3Fdr1eRCwrWiIfGe060UZHLBmC1IWYNueAYuCz7 zgPEAKH4A5MLIpLnrLNptsaTYTUCZHo3zinYTUfrXgqdtopl28i4Ses0SsUWN+lJ dSLxNqd8TEM3JcswJYBEv1i3Dr/bV9zu/6HHJdtE+rU5HCMrDa/tNJtSWiA5p8CU EcOkvcMQBulNBwzGfPV5DLMN7nAHbgnL -----END CERTIFICATE-----Generated at Mon May 5 11:53:36 2025 by rpki-client