$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft File: ficJop5GIOVCf3NfN8A0c-NrWXo.mft (raw, json) Hash identifier: YdalqCrfSowGcXWSi/uqO5fDmEpCH/CtQCb4q5az1sM= Subject key identifier: E4:C0:74:EF:CE:5F:B7:76:CD:DB:79:CA:37:37:8E:BF:07:F2:8C:FA Authority key identifier: 7E:27:09:A2:9E:46:20:E5:42:7F:73:5F:37:C0:34:73:E3:6B:59:7A Certificate issuer: /CN=A91DD0A4/serialNumber=7E2709A29E4620E5427F735F37C03473E36B597A Certificate serial: 0902 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ficJop5GIOVCf3NfN8A0c-NrWXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft Manifest number: 08F9 Signing time: Mon 12 May 2025 20:13:24 +0000 Manifest this update: Mon 12 May 2025 20:13:24 +0000 Manifest next update: Mon 19 May 2025 20:13:24 +0000 Files and hashes: 1: ficJop5GIOVCf3NfN8A0c-NrWXo.crl (hash: LpOVhpZ68JpEvbRwzHlhOn8vcg9xdhlTILu1ghxxD+Q=) 2: C8CCE2CCAA7411EA9DF2E685C4F9AE02.roa (hash: EY5IebdCRceAV1N2Sno2htu2PUjjGh0mWkvzE1zUnnE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.crl rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ficJop5GIOVCf3NfN8A0c-NrWXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 20:13:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2306 (0x902) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD0A4, serialNumber=7E2709A29E4620E5427F735F37C03473E36B597A Validity Not Before: May 12 20:13:24 2025 GMT Not After : May 19 20:13:24 2025 GMT Subject: CN=68225664-47bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:78:74:e9:26:b6:be:e2:d9:0f:b9:93:7d:aa: 96:66:8b:2a:8e:f2:bc:12:7a:51:9c:75:bb:72:74: 82:42:11:8d:5e:3d:c3:86:5d:5f:cf:48:8f:4d:e7: a2:ca:02:3f:fe:08:c3:73:1d:f4:d6:b3:51:f7:34: ca:95:81:28:94:c2:3f:2a:c6:bd:de:d4:56:17:9c: 47:53:8b:ea:3f:98:4a:ec:99:52:d2:f9:42:72:25: 89:68:4c:ba:c5:0d:29:60:2e:c7:7f:a7:9f:4f:b3: 8a:5a:7f:fc:5a:e1:54:14:40:db:93:30:83:99:be: c8:c7:43:0f:c4:1c:83:66:6b:04:24:73:65:79:b7: af:66:8d:19:d4:d0:4d:08:68:43:f8:72:5c:33:46: f7:a4:f3:9d:e0:00:e7:5e:c4:9a:49:ba:85:ad:64: de:d9:45:2a:ae:6a:04:17:d2:b4:47:87:f3:48:cc: 3f:4f:6b:d6:91:75:3f:28:08:84:7d:0c:f4:b1:69: 68:69:04:7b:ca:22:97:df:9a:c5:81:06:6f:50:47: bd:aa:52:92:d5:3a:fa:f1:08:5b:a8:f6:2b:5f:fb: 45:39:e4:7b:44:e8:5b:0f:1c:a3:9c:4e:83:3e:90: bd:94:0d:84:9d:f7:a0:81:70:85:d9:08:29:74:bc: 16:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:C0:74:EF:CE:5F:B7:76:CD:DB:79:CA:37:37:8E:BF:07:F2:8C:FA X509v3 Authority Key Identifier: keyid:7E:27:09:A2:9E:46:20:E5:42:7F:73:5F:37:C0:34:73:E3:6B:59:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ficJop5GIOVCf3NfN8A0c-NrWXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:09:be:9a:84:ea:21:18:8b:7b:9e:06:d6:fb:65:5f:83:3e: 1e:19:da:f6:6b:15:ee:e6:ab:a5:08:fd:4d:ce:2c:45:bc:41: 28:5f:d6:5a:66:6b:96:b6:67:76:6f:c4:f7:a1:c4:4b:bc:2b: 67:61:37:52:8f:af:a2:8c:bd:eb:a4:ff:7e:a1:43:19:ab:9e: 54:ec:4f:c2:34:3a:56:5c:24:09:a1:33:3a:9a:93:91:5b:b9: dd:3b:69:85:29:b5:9f:9b:55:10:1f:a5:d3:a0:cf:be:97:f5: fb:d9:30:9f:98:13:13:fa:b8:1b:19:00:3c:1d:14:85:18:c9: 8d:dd:54:27:f2:b6:a0:be:df:93:a9:8a:14:7f:57:62:70:33: 1f:d2:80:74:f6:9e:08:0c:d0:8f:49:5b:c1:53:98:b4:2c:8b: d2:12:f7:9c:a1:4a:4e:64:16:cc:c6:4e:c6:16:01:65:ae:b4: a7:97:69:30:d1:ca:ce:62:6d:43:7a:7c:7d:51:59:49:f7:9a: ed:6d:e4:18:f8:b8:ab:53:0e:4e:d8:30:88:c4:be:96:db:2d: 95:11:ab:14:53:6e:19:94:e2:15:25:68:cf:b6:fb:88:5f:45: 8f:93:a4:20:9c:e7:48:c9:11:4b:eb:fb:50:43:e1:72:dc:60: 79:08:cf:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCQIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQwQTQxMTAvBgNVBAUTKDdFMjcwOUEyOUU0NjIwRTU0MjdGNzM1RjM3QzAzNDcz RTM2QjU5N0EwHhcNMjUwNTEyMjAxMzI0WhcNMjUwNTE5MjAxMzI0WjAYMRYwFAYD VQQDEw02ODIyNTY2NC00N2JiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsXh06Sa2vuLZD7mTfaqWZosqjvK8EnpRnHW7cnSCQhGNXj3Dhl1fz0iPTeei ygI//gjDcx301rNR9zTKlYEolMI/Ksa93tRWF5xHU4vqP5hK7JlS0vlCciWJaEy6 xQ0pYC7Hf6efT7OKWn/8WuFUFEDbkzCDmb7Ix0MPxByDZmsEJHNlebevZo0Z1NBN CGhD+HJcM0b3pPOd4ADnXsSaSbqFrWTe2UUqrmoEF9K0R4fzSMw/T2vWkXU/KAiE fQz0sWloaQR7yiKX35rFgQZvUEe9qlKS1Tr68QhbqPYrX/tFOeR7ROhbDxyjnE6D PpC9lA2EnfeggXCF2QgpdLwWwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOTAdO/O X7d2zdt5yjc3jr8H8oz6MB8GA1UdIwQYMBaAFH4nCaKeRiDlQn9zXzfANHPja1l6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDBBNC85NUQ1RTM5MkFB NzMxMUVBQTEwQUNDODRDNEY5QUUwMi9maWNKb3A1R0lPVkNmM05mTjhBMGMtTnJX WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZpY0pvcDVHSU9WQ2YzTmZOOEEwYy1OcldYby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDBBNC85NUQ1RTM5MkFBNzMxMUVBQTEwQUNDODRDNEY5QUUwMi9maWNKb3A1R0lP VkNmM05mTjhBMGMtTnJXWG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiCb6ahOohGIt7ngbW+2Vfgz4eGdr2axXu5qulCP1NzixFvEEoX9Za ZmuWtmd2b8T3ocRLvCtnYTdSj6+ijL3rpP9+oUMZq55U7E/CNDpWXCQJoTM6mpOR W7ndO2mFKbWfm1UQH6XToM++l/X72TCfmBMT+rgbGQA8HRSFGMmN3VQn8ragvt+T qYoUf1dicDMf0oB09p4IDNCPSVvBU5i0LIvSEvecoUpOZBbMxk7GFgFlrrSnl2kw 0crOYm1Denx9UVlJ95rtbeQY+LirUw5O2DCIxL6W2y2VEasUU24ZlOIVJWjPtvuI X0WPk6QgnOdIyRFL6/tQQ+Fy3GB5CM/d -----END CERTIFICATE-----Generated at Wed May 14 08:12:26 2025 by rpki-client