$ rpki-client -vvf rpki.apnic.net/member_repository/A9131B38/2DF544547D0B11ECBA239433C4F9AE02/-lmybsZZeADDV53XBz-ktoWnwtI.mft File: -lmybsZZeADDV53XBz-ktoWnwtI.mft (raw, json) Hash identifier: TC9DNQc94zpiDyeksh7HURhY7UOIPeUaORkKfxf3wsk= Subject key identifier: 45:57:01:67:AD:2C:C0:BE:06:82:DC:2F:34:09:E2:C6:55:B1:7C:47 Authority key identifier: FA:59:B2:6E:C6:59:78:00:C3:57:9D:D7:07:3F:A4:B6:85:A7:C2:D2 Certificate issuer: /CN=A9131B38/serialNumber=FA59B26EC6597800C3579DD7073FA4B685A7C2D2 Certificate serial: 03D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-lmybsZZeADDV53XBz-ktoWnwtI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131B38/2DF544547D0B11ECBA239433C4F9AE02/-lmybsZZeADDV53XBz-ktoWnwtI.mft Manifest number: 03CA Signing time: Sat 29 Mar 2025 00:51:18 +0000 Manifest this update: Sat 29 Mar 2025 00:51:17 +0000 Manifest next update: Sat 05 Apr 2025 00:51:17 +0000 Files and hashes: 1: -lmybsZZeADDV53XBz-ktoWnwtI.crl (hash: vdn+R4jWIpWvwC7WplLW0Nwsqe2c1575t3nojsOLTpM=) 2: 445C8236B69311EC9650A57CC4F9AE02.roa (hash: /iDRAphVdSgU2e36vGmGSufKHFaLvSp39p6b7uKMJro=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131B38/2DF544547D0B11ECBA239433C4F9AE02/-lmybsZZeADDV53XBz-ktoWnwtI.crl rsync://rpki.apnic.net/member_repository/A9131B38/2DF544547D0B11ECBA239433C4F9AE02/-lmybsZZeADDV53XBz-ktoWnwtI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-lmybsZZeADDV53XBz-ktoWnwtI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 00:51:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 976 (0x3d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131B38 Validity Not Before: Mar 29 00:51:17 2025 GMT Not After : Apr 5 00:51:17 2025 GMT Subject: CN=67e74406-f8da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:6a:f2:86:38:e9:d2:c6:6c:6b:63:9f:5e:9f: c9:82:de:a6:25:4a:32:e9:df:4a:94:ef:e4:32:71: 9c:0b:b8:dc:5d:99:7e:1b:39:d8:11:b9:d7:72:63: b8:f2:c2:f0:68:f3:97:91:e3:c8:df:56:11:ac:23: 15:5d:0a:93:3b:b0:60:e8:af:de:36:a1:d6:f2:cb: 76:f7:07:30:96:3e:96:25:07:f7:72:b1:ce:d3:4d: 92:3a:d8:19:cd:08:4f:66:ef:31:05:2d:de:e1:52: 49:66:97:63:c5:ed:f1:cc:26:0d:93:6e:27:6d:f9: 61:8f:81:33:fa:15:57:bb:ed:13:d8:26:c3:6c:1e: a0:11:9e:ec:aa:69:6c:32:f5:40:c7:44:04:09:03: b8:b1:5c:40:17:4d:9c:5e:a6:e2:09:5d:be:06:50: be:4c:cb:57:29:64:87:9b:3a:05:34:bd:a4:bd:1c: 6e:91:26:ea:b5:03:06:08:0d:03:1f:24:77:93:6f: 5a:5c:5d:fa:07:ff:88:14:0e:70:35:d2:b5:b5:45: 21:07:d2:27:fc:2d:1d:f3:6e:fe:46:b6:39:38:4b: de:04:d9:58:43:93:dd:d5:cb:02:f1:a5:e9:51:18: a4:2c:6d:a2:ae:f0:f9:53:ff:45:55:21:2a:b4:fa: 0b:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:57:01:67:AD:2C:C0:BE:06:82:DC:2F:34:09:E2:C6:55:B1:7C:47 X509v3 Authority Key Identifier: keyid:FA:59:B2:6E:C6:59:78:00:C3:57:9D:D7:07:3F:A4:B6:85:A7:C2:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131B38/2DF544547D0B11ECBA239433C4F9AE02/-lmybsZZeADDV53XBz-ktoWnwtI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-lmybsZZeADDV53XBz-ktoWnwtI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131B38/2DF544547D0B11ECBA239433C4F9AE02/-lmybsZZeADDV53XBz-ktoWnwtI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:ac:97:0e:f1:f1:bc:aa:46:bd:ef:4a:7f:47:34:b8:60:17: a3:e7:60:30:3c:87:75:b8:ec:bd:60:1a:95:ac:89:73:15:48: aa:fb:f5:d1:2d:2d:5e:c1:8d:e0:0c:4a:61:b1:a8:2b:e3:85: dd:e5:be:70:98:1b:4c:2c:ba:75:a9:3c:da:30:28:33:47:e5: 10:43:f9:80:57:fd:47:93:56:56:31:e2:48:16:e7:aa:21:dc: 36:40:bb:77:0f:47:e8:02:b4:e6:7e:2d:47:bd:d8:03:b5:88: 62:5a:cc:10:1a:e2:a2:c7:e7:af:a7:6b:d0:16:39:be:9b:8d: 5b:41:a6:37:0c:dd:cc:31:9c:62:ad:39:46:a6:5e:9b:8f:76: e1:b7:50:67:b6:b6:7f:95:31:7a:d4:5c:17:8a:bf:43:71:f4: c1:2b:23:87:66:2e:58:17:8e:2d:96:fa:6c:8e:6c:c1:48:b1: 9f:2b:bd:6d:60:6e:d3:81:40:61:a6:d3:fc:79:8c:be:d7:db: ef:65:2b:d1:d6:cb:d3:27:fb:7a:80:cd:0e:05:f5:ce:22:ef: f1:94:ef:f0:4e:2c:c9:d4:34:79:d9:82:5f:cd:90:69:98:9a: dc:c5:bc:66:d3:f5:75:9e:f5:1f:8f:37:65:be:8e:5e:20:98: d5:92:d7:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFCMzgxMTAvBgNVBAUTKEZBNTlCMjZFQzY1OTc4MDBDMzU3OURENzA3M0ZBNEI2 ODVBN0MyRDIwHhcNMjUwMzI5MDA1MTE3WhcNMjUwNDA1MDA1MTE3WjAYMRYwFAYD VQQDEw02N2U3NDQwNi1mOGRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA42ryhjjp0sZsa2OfXp/Jgt6mJUoy6d9KlO/kMnGcC7jcXZl+GznYEbnXcmO4 8sLwaPOXkePI31YRrCMVXQqTO7Bg6K/eNqHW8st29wcwlj6WJQf3crHO002SOtgZ zQhPZu8xBS3e4VJJZpdjxe3xzCYNk24nbflhj4Ez+hVXu+0T2CbDbB6gEZ7sqmls MvVAx0QECQO4sVxAF02cXqbiCV2+BlC+TMtXKWSHmzoFNL2kvRxukSbqtQMGCA0D HyR3k29aXF36B/+IFA5wNdK1tUUhB9In/C0d827+RrY5OEveBNlYQ5Pd1csC8aXp URikLG2irvD5U/9FVSEqtPoLqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEVXAWet LMC+BoLcLzQJ4sZVsXxHMB8GA1UdIwQYMBaAFPpZsm7GWXgAw1ed1wc/pLaFp8LS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUIzOC8yREY1NDQ1NDdE MEIxMUVDQkEyMzk0MzNDNEY5QUUwMi8tbG15YnNaWmVBRERWNTNYQnota3RvV253 dEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1sbXlic1paZUFERFY1M1hCei1rdG9Xbnd0SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUIzOC8yREY1NDQ1NDdEMEIxMUVDQkEyMzk0MzNDNEY5QUUwMi8tbG15YnNaWmVB RERWNTNYQnota3RvV253dEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClrJcO8fG8qka970p/RzS4YBej52AwPId1uOy9YBqVrIlzFUiq+/XR LS1ewY3gDEphsagr44Xd5b5wmBtMLLp1qTzaMCgzR+UQQ/mAV/1Hk1ZWMeJIFueq Idw2QLt3D0foArTmfi1HvdgDtYhiWswQGuKix+evp2vQFjm+m41bQaY3DN3MMZxi rTlGpl6bj3bht1BntrZ/lTF61FwXir9DcfTBKyOHZi5YF44tlvpsjmzBSLGfK71t YG7TgUBhptP8eYy+19vvZSvR1svTJ/t6gM0OBfXOIu/xlO/wTizJ1DR52YJfzZBp mJrcxbxm0/V1nvUfjzdlvo5eIJjVktcB -----END CERTIFICATE-----Generated at Fri Apr 4 22:32:03 2025 by rpki-client