$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft File: FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft (raw, json) Hash identifier: FZCX8NwJ3GKu5W9nQ/usYgjoGnWpnNWmtZSZ6JTM9YE= Subject key identifier: DE:34:36:FA:B0:F7:E4:2F:02:CD:C1:F4:21:6F:ED:96:73:4B:87:7B Authority key identifier: 14:7A:0E:04:87:11:B6:25:06:B0:9F:08:8A:05:99:2A:3A:31:02:0A Certificate issuer: /CN=A91DEC3C/serialNumber=147A0E048711B62506B09F088A05992A3A31020A Certificate serial: 019B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FHoOBIcRtiUGsJ8IigWZKjoxAgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft Manifest number: 0198 Signing time: Tue 13 May 2025 02:40:18 +0000 Manifest this update: Tue 13 May 2025 02:40:17 +0000 Manifest next update: Tue 20 May 2025 02:40:17 +0000 Files and hashes: 1: FHoOBIcRtiUGsJ8IigWZKjoxAgo.crl (hash: 7T4ZjW+E4D4DiOCgrozbTSNkWu5W5hKxh5rBmohwPp4=) 2: 5153E9DAC0B911ED99A12312C4F9AE02.roa (hash: pRhFi90u5iaLYPX6g3PP+55Ior11n+chfHkyJHcRUKE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.crl rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FHoOBIcRtiUGsJ8IigWZKjoxAgo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 02:40:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 411 (0x19b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEC3C, serialNumber=147A0E048711B62506B09F088A05992A3A31020A Validity Not Before: May 13 02:40:17 2025 GMT Not After : May 20 02:40:17 2025 GMT Subject: CN=6822b111-4f7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:31:87:87:59:d3:e2:ac:36:f4:47:9b:45:f4: 80:5e:33:9a:cc:ed:40:e0:42:88:e9:77:c4:4f:0d: 5d:36:af:49:3c:59:ac:bd:30:8a:20:c6:95:5a:66: df:9d:84:9d:fb:18:7c:84:31:2c:49:b2:62:ea:ed: 3c:7a:ab:b0:5e:50:a9:8f:fd:51:d9:4e:3c:55:d5: 45:39:3a:3c:43:69:a5:37:af:ed:31:b0:4e:6d:51: 8b:ff:ef:34:e6:a7:3a:53:6b:55:cf:93:40:36:31: 62:c6:d7:57:d4:c0:03:78:9c:b0:eb:e1:e6:a4:93: ca:0b:b4:f5:98:1c:ff:85:32:fa:6c:3b:c0:36:87: b7:b1:bf:fa:fb:41:b1:14:49:53:ce:5f:ff:2f:7c: 37:ca:a2:27:9e:53:a2:87:bd:eb:7f:e2:62:26:e1: 8c:e6:7d:17:a2:70:e3:33:3c:61:fa:29:a7:8f:16: a2:6f:59:7d:78:69:19:60:5a:de:52:27:5e:8c:a6: db:6d:89:6c:69:eb:3a:c4:39:72:20:8b:55:ab:73: d0:70:1f:b9:69:07:6d:85:37:33:1d:51:f9:76:bd: a4:98:8d:0c:2f:0b:5a:57:d1:67:b7:74:6c:f8:12: 95:e0:60:9f:93:2f:af:d4:da:95:18:aa:32:fd:d2: 4f:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:34:36:FA:B0:F7:E4:2F:02:CD:C1:F4:21:6F:ED:96:73:4B:87:7B X509v3 Authority Key Identifier: keyid:14:7A:0E:04:87:11:B6:25:06:B0:9F:08:8A:05:99:2A:3A:31:02:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FHoOBIcRtiUGsJ8IigWZKjoxAgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:ed:93:c8:d5:d2:16:74:1b:27:34:5c:2c:d9:11:e8:0e:a0: c6:18:c5:92:e0:e8:71:32:cc:02:89:c7:1d:40:c7:df:05:4d: 2d:5f:0c:df:97:a4:ad:69:a2:74:37:e6:8a:e5:ff:cd:77:ce: b5:67:80:20:d0:d8:5b:cc:f5:3d:3a:c1:f2:03:99:23:0b:19: 96:3f:e6:e8:89:1e:98:3f:a6:15:df:86:84:6b:3f:af:35:0a: 13:df:96:46:95:1b:2c:79:80:5f:e8:d6:91:06:cb:95:7c:d9: ad:25:21:0b:9e:23:fe:74:f8:4a:5f:3c:1c:a9:db:2e:7e:c4: c1:0a:75:a6:f1:3d:36:f7:8e:86:79:5e:d8:f2:07:a6:69:9c: 71:b5:5d:49:4c:72:39:a9:0f:5c:b4:6c:d4:89:c8:3b:df:72: 6b:b3:f7:06:1b:d6:40:da:af:c3:8d:2f:ef:de:f5:ae:f0:06: 1a:05:40:98:05:04:86:20:3b:dd:de:c7:79:69:b2:b6:1d:5e: 8f:78:38:4c:42:cd:32:6a:93:64:4d:ed:d4:26:64:ce:69:c7: a1:f9:57:46:e2:9a:a4:3e:50:54:7e:a6:2c:55:2a:fc:42:22: 5d:7f:5e:8f:4c:c0:10:31:ab:9b:7f:cf:9b:9a:f6:4a:02:24: a0:33:fd:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVDM0MxMTAvBgNVBAUTKDE0N0EwRTA0ODcxMUI2MjUwNkIwOUYwODhBMDU5OTJB M0EzMTAyMEEwHhcNMjUwNTEzMDI0MDE3WhcNMjUwNTIwMDI0MDE3WjAYMRYwFAYD VQQDEw02ODIyYjExMS00ZjdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1TGHh1nT4qw29EebRfSAXjOazO1A4EKI6XfETw1dNq9JPFmsvTCKIMaVWmbf nYSd+xh8hDEsSbJi6u08equwXlCpj/1R2U48VdVFOTo8Q2mlN6/tMbBObVGL/+80 5qc6U2tVz5NANjFixtdX1MADeJyw6+HmpJPKC7T1mBz/hTL6bDvANoe3sb/6+0Gx FElTzl//L3w3yqInnlOih73rf+JiJuGM5n0XonDjMzxh+imnjxaib1l9eGkZYFre UidejKbbbYlsaes6xDlyIItVq3PQcB+5aQdthTczHVH5dr2kmI0MLwtaV9Fnt3Rs +BKV4GCfky+v1NqVGKoy/dJPOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN40Nvqw 9+QvAs3B9CFv7ZZzS4d7MB8GA1UdIwQYMBaAFBR6DgSHEbYlBrCfCIoFmSo6MQIK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUMzQy9GNjMwODA5NEMw QjQxMUVEQTc3RjcwMEVDNEY5QUUwMi9GSG9PQkljUnRpVUdzSjhJaWdXWktqb3hB Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZIb09CSWNSdGlVR3NKOElpZ1daS2pveEFnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUMzQy9GNjMwODA5NEMwQjQxMUVEQTc3RjcwMEVDNEY5QUUwMi9GSG9PQkljUnRp VUdzSjhJaWdXWktqb3hBZ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBM7ZPI1dIWdBsnNFws2RHoDqDGGMWS4OhxMswCiccdQMffBU0tXwzf l6StaaJ0N+aK5f/Nd861Z4Ag0NhbzPU9OsHyA5kjCxmWP+boiR6YP6YV34aEaz+v NQoT35ZGlRsseYBf6NaRBsuVfNmtJSELniP+dPhKXzwcqdsufsTBCnWm8T02946G eV7Y8gemaZxxtV1JTHI5qQ9ctGzUicg733Jrs/cGG9ZA2q/DjS/v3vWu8AYaBUCY BQSGIDvd3sd5abK2HV6PeDhMQs0yapNkTe3UJmTOaceh+VdG4pqkPlBUfqYsVSr8 QiJdf16PTMAQMaubf8+bmvZKAiSgM/2k -----END CERTIFICATE-----Generated at Wed May 14 00:16:15 2025 by rpki-client