$ rpki-client -vvf rpki.apnic.net/member_repository/A911E9B6/7918CB0C7FF511ED9ED4641DC4F9AE02/Loy7jCYAxqCYyVi5ZMMtyxi4A1w.mft File: Loy7jCYAxqCYyVi5ZMMtyxi4A1w.mft (raw, json) Hash identifier: yknv2ftL4Pi/qwhjf0Z92C3lcI0D3w3vVO/nnOMZvVY= Subject key identifier: 84:B0:ED:48:E7:EC:4D:4F:50:BD:5C:46:D7:75:73:79:EB:A0:9B:58 Authority key identifier: 2E:8C:BB:8C:26:00:C6:A0:98:C9:58:B9:64:C3:2D:CB:18:B8:03:5C Certificate issuer: /CN=A911E9B6/serialNumber=2E8CBB8C2600C6A098C958B964C32DCB18B8035C Certificate serial: 01D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Loy7jCYAxqCYyVi5ZMMtyxi4A1w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E9B6/7918CB0C7FF511ED9ED4641DC4F9AE02/Loy7jCYAxqCYyVi5ZMMtyxi4A1w.mft Manifest number: 01B2 Signing time: Sat 29 Mar 2025 02:48:09 +0000 Manifest this update: Sat 29 Mar 2025 02:48:09 +0000 Manifest next update: Sat 05 Apr 2025 02:48:09 +0000 Files and hashes: 1: Loy7jCYAxqCYyVi5ZMMtyxi4A1w.crl (hash: 6CbSD3HyvuTGeYsGggGPa8B/n/X5VrmlnJht45vM2e8=) 2: C3E640EE917811ED904ACF83C4F9AE02.roa (hash: U1JZUMbZcbonZCdC7TOrqHH67lPPcra0baMZ+HxHTq0=) 3: E260EBC4914011EDABD5F778C4F9AE02.roa (hash: ieGx5NwyYQJ4P+cWYrdmLdfua1T4xQkG1QlYm44YGuI=) 4: E1D3A69C914011EDABD5F778C4F9AE02.roa (hash: l7RVqMwsQP+9xoPqxUjrdLeHKAHmKPEPtw0sLICnu70=) 5: 7606086E914611ED8DE00A16C4F9AE02.roa (hash: hpbgzGpeyu8RgvOZ/gDqbosdneW/3yUsLvzIbPJJbgI=) 6: E07C4E34914011EDABD5F778C4F9AE02.roa (hash: yq9F1kGLoVyjrkyUECiqJ2bBsjfNg/O48zntGXKXjfA=) 7: E137AAE4914011EDABD5F778C4F9AE02.roa (hash: 7GFXCtaT3I6JbgFcVp9k1/EsFIeLns+26mNrxLbyEic=) 8: C3481400917811ED904ACF83C4F9AE02.roa (hash: AsDGm3VcGz1RYmwwFN/U13xvQEyWavpIqYrnGKd5AJQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E9B6/7918CB0C7FF511ED9ED4641DC4F9AE02/Loy7jCYAxqCYyVi5ZMMtyxi4A1w.crl rsync://rpki.apnic.net/member_repository/A911E9B6/7918CB0C7FF511ED9ED4641DC4F9AE02/Loy7jCYAxqCYyVi5ZMMtyxi4A1w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Loy7jCYAxqCYyVi5ZMMtyxi4A1w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 02:48:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 466 (0x1d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E9B6 Validity Not Before: Mar 29 02:48:09 2025 GMT Not After : Apr 5 02:48:09 2025 GMT Subject: CN=67e75f69-b4bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ef:8b:cd:8e:c5:d3:81:68:a1:c4:da:72:ea: 59:6f:94:49:d7:2e:35:84:09:d4:78:3e:ec:2a:10: 5e:e3:a7:ff:50:08:41:37:82:57:5c:ac:79:0c:1c: f9:4b:b0:5d:1b:96:43:d9:10:d2:97:d4:a1:41:32: fa:43:fe:b5:c2:d0:dd:1a:ff:a5:1b:ef:1f:51:82: fe:09:a8:fe:80:b3:22:c9:73:96:e0:44:19:e6:bc: ed:7f:3d:29:54:d8:19:66:b9:4f:81:da:5a:22:44: f6:e0:07:9b:ed:40:ff:e1:19:bf:d3:06:ac:2a:d1: 56:3c:a2:2f:ff:8b:7c:b0:07:af:be:4e:42:a4:20: cb:ac:4b:35:f0:25:f8:c2:dc:81:00:26:75:b6:81: b5:ce:07:f9:39:60:6b:c7:94:17:5b:5f:ff:e4:e3: 57:25:76:75:28:5d:41:71:62:6f:7b:17:03:1a:42: 06:77:c8:33:71:a4:33:9a:eb:74:0e:b8:5c:c9:dd: 08:18:a8:e8:de:dc:18:a2:4e:bf:df:20:27:a2:3b: ea:34:c5:0d:18:76:85:ac:1b:d4:4f:c9:75:14:dc: d2:9d:95:94:50:a1:ef:52:8a:fc:95:0e:5c:36:4e: 43:53:cd:17:13:74:1b:65:82:c4:96:e0:07:da:6e: 89:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:B0:ED:48:E7:EC:4D:4F:50:BD:5C:46:D7:75:73:79:EB:A0:9B:58 X509v3 Authority Key Identifier: keyid:2E:8C:BB:8C:26:00:C6:A0:98:C9:58:B9:64:C3:2D:CB:18:B8:03:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E9B6/7918CB0C7FF511ED9ED4641DC4F9AE02/Loy7jCYAxqCYyVi5ZMMtyxi4A1w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Loy7jCYAxqCYyVi5ZMMtyxi4A1w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E9B6/7918CB0C7FF511ED9ED4641DC4F9AE02/Loy7jCYAxqCYyVi5ZMMtyxi4A1w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:68:d8:1c:1d:59:ec:c7:90:6c:88:46:17:e9:b6:bc:b1:f8: 08:07:d9:af:3b:f6:1a:72:8a:c3:9c:ba:d8:db:5c:47:4b:ef: c5:33:68:9d:34:c3:fc:50:bc:b7:9d:9f:dd:42:1e:71:83:1f: 1a:bd:24:68:3f:42:4b:e2:4e:ee:8d:e8:6a:71:e6:e2:40:1f: 64:f0:3e:6f:da:69:ff:80:42:9f:a9:9a:82:71:d1:57:5b:ae: 7c:b1:4a:5e:82:21:64:90:1f:ca:a5:16:78:a7:bf:a5:fa:b4: 32:6f:5b:a6:3b:6f:99:5c:d8:66:95:0d:59:71:93:3f:2a:50: 46:33:e2:fc:c3:45:da:99:f2:bc:55:06:14:14:fc:2f:cf:50: ff:70:e8:e5:28:d4:e7:40:0f:02:c6:26:e9:8f:4d:b7:11:9c: f0:c5:f2:ce:66:a2:ab:02:8f:88:f6:fc:42:85:88:a7:de:55: f9:ac:08:f9:60:fb:aa:5a:94:ab:3a:6c:04:af:e6:d1:2d:f3: f3:c1:1c:cc:25:bd:87:9c:de:ef:4b:e7:87:bd:3c:66:49:14: 38:a2:28:79:c5:41:78:8c:ad:27:70:fd:d3:40:ba:6f:37:fd: d9:e0:c7:d7:3e:69:89:f4:24:de:43:42:d2:05:2a:84:f7:33: c9:a6:01:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU5QjYxMTAvBgNVBAUTKDJFOENCQjhDMjYwMEM2QTA5OEM5NThCOTY0QzMyRENC MThCODAzNUMwHhcNMjUwMzI5MDI0ODA5WhcNMjUwNDA1MDI0ODA5WjAYMRYwFAYD VQQDEw02N2U3NWY2OS1iNGJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAye+LzY7F04FoocTacupZb5RJ1y41hAnUeD7sKhBe46f/UAhBN4JXXKx5DBz5 S7BdG5ZD2RDSl9ShQTL6Q/61wtDdGv+lG+8fUYL+Caj+gLMiyXOW4EQZ5rztfz0p VNgZZrlPgdpaIkT24Aeb7UD/4Rm/0wasKtFWPKIv/4t8sAevvk5CpCDLrEs18CX4 wtyBACZ1toG1zgf5OWBrx5QXW1//5ONXJXZ1KF1BcWJvexcDGkIGd8gzcaQzmut0 Drhcyd0IGKjo3twYok6/3yAnojvqNMUNGHaFrBvUT8l1FNzSnZWUUKHvUor8lQ5c Nk5DU80XE3QbZYLEluAH2m6JSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFISw7Ujn 7E1PUL1cRtd1c3nroJtYMB8GA1UdIwQYMBaAFC6Mu4wmAMagmMlYuWTDLcsYuANc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTlCNi83OTE4Q0IwQzdG RjUxMUVEOUVENDY0MURDNEY5QUUwMi9Mb3k3akNZQXhxQ1l5Vmk1Wk1NdHl4aTRB MXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xveTdqQ1lBeHFDWXlWaTVaTU10eXhpNEExdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTlCNi83OTE4Q0IwQzdGRjUxMUVEOUVENDY0MURDNEY5QUUwMi9Mb3k3akNZQXhx Q1l5Vmk1Wk1NdHl4aTRBMXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAaNgcHVnsx5BsiEYX6ba8sfgIB9mvO/YacorDnLrY21xHS+/FM2id NMP8ULy3nZ/dQh5xgx8avSRoP0JL4k7ujehqcebiQB9k8D5v2mn/gEKfqZqCcdFX W658sUpegiFkkB/KpRZ4p7+l+rQyb1umO2+ZXNhmlQ1ZcZM/KlBGM+L8w0XamfK8 VQYUFPwvz1D/cOjlKNTnQA8Cxibpj023EZzwxfLOZqKrAo+I9vxChYin3lX5rAj5 YPuqWpSrOmwEr+bRLfPzwRzMJb2HnN7vS+eHvTxmSRQ4oih5xUF4jK0ncP3TQLpv N/3Z4MfXPmmJ9CTeQ0LSBSqE9zPJpgGF -----END CERTIFICATE-----Generated at Fri Apr 4 21:58:02 2025 by rpki-client