$ rpki-client -vvf rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.mft File: -xaxnfv3ymrECmtqNT94V4kX4P0.mft (raw, json) Hash identifier: BGX6Po8wPIY4zS/nsc2z2XXawkP6jmtqMPk1nryXihs= Subject key identifier: 01:1D:45:1A:F7:10:03:6D:BA:E6:C8:E0:EE:2D:1D:3F:4D:54:4D:CA Authority key identifier: FB:16:B1:9D:FB:F7:CA:6A:C4:0A:6B:6A:35:3F:78:57:89:17:E0:FD Certificate issuer: /CN=A9146CB4/serialNumber=FB16B19DFBF7CA6AC40A6B6A353F78578917E0FD Certificate serial: 015E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xaxnfv3ymrECmtqNT94V4kX4P0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.mft Manifest number: 015A Signing time: Sat 29 Mar 2025 03:59:01 +0000 Manifest this update: Sat 29 Mar 2025 03:59:00 +0000 Manifest next update: Sat 05 Apr 2025 03:59:00 +0000 Files and hashes: 1: -xaxnfv3ymrECmtqNT94V4kX4P0.crl (hash: 2+lKs7CiZD89SpG+ltRXV3JLQz/t9+GIPm1lz5aUofA=) 2: DFC662EC415B11EE9E83852AC4F9AE02.roa (hash: JQglPoDIL3Eq1y2JiUK8F3q2nUek/I2P1c153lPMYTA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.crl rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xaxnfv3ymrECmtqNT94V4kX4P0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 03:59:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 350 (0x15e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146CB4 Validity Not Before: Mar 29 03:59:00 2025 GMT Not After : Apr 5 03:59:00 2025 GMT Subject: CN=67e77005-c934 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:fd:02:21:b6:f2:1d:53:a7:e0:6a:40:cc:ad: 59:db:91:47:e7:23:84:d0:c4:1e:d5:87:ba:20:73: 46:72:9c:80:e4:04:23:24:07:56:9a:65:89:9e:5f: 75:b9:e8:f2:29:6e:32:d0:e6:11:39:40:38:fa:bc: 29:d4:68:e0:5d:40:ca:a5:64:2e:af:64:02:32:9b: 24:07:a6:0f:9e:e1:3e:48:ae:f8:aa:2a:6c:8d:02: 9f:10:02:8a:b9:a6:b6:4b:f1:fc:02:5e:08:13:d1: 7b:3d:6e:14:46:f6:a0:b6:33:29:98:d2:86:06:a8: 5e:57:a8:c6:b9:5e:53:f7:96:5b:8c:53:18:83:33: eb:2e:8a:16:b9:e5:49:56:c6:8e:53:69:af:af:36: 36:2c:33:a9:4f:ad:48:bd:79:76:66:d3:7a:ad:a2: 0f:5b:7c:a6:7e:5c:22:37:96:8f:b0:6c:d7:4f:f6: ff:67:4e:8a:41:1e:39:bf:9d:60:60:aa:c0:9a:c4: 2d:4a:54:d3:7f:a2:b4:c6:5d:00:21:64:a0:45:5f: 48:aa:cb:1c:45:34:1d:e7:b5:e1:ac:84:4a:28:0a: cf:3d:90:c8:8c:4a:e2:07:18:64:38:57:49:a2:c6: 3d:36:e8:db:f2:1d:6d:8b:2c:a4:03:88:65:55:30: 20:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:1D:45:1A:F7:10:03:6D:BA:E6:C8:E0:EE:2D:1D:3F:4D:54:4D:CA X509v3 Authority Key Identifier: keyid:FB:16:B1:9D:FB:F7:CA:6A:C4:0A:6B:6A:35:3F:78:57:89:17:E0:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xaxnfv3ymrECmtqNT94V4kX4P0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:e8:b3:87:b2:48:d3:5b:f6:dd:51:a8:d8:14:f6:2d:db:5c: a4:e2:54:a3:36:d8:32:5f:5d:9d:d3:8a:76:c9:23:86:a8:83: 13:ac:40:17:07:ab:71:38:58:39:b6:e7:21:d6:68:37:cf:18: 0c:2b:7e:9d:41:db:4d:16:60:93:1a:60:91:46:8b:63:a9:a1: 14:fc:f5:54:05:8c:d5:18:06:61:84:c0:5d:57:16:84:c4:8f: 47:d8:b7:6b:e1:71:f0:b0:50:c9:54:96:c6:d7:cf:aa:46:a9: ef:54:5b:0c:3e:01:7f:a3:16:50:76:a7:6d:e1:e2:b3:7b:bd: 68:3e:ec:2f:10:b9:88:1e:ae:fd:0f:f2:6e:ea:4b:6d:e9:8e: 6d:67:73:30:87:49:d1:e8:38:d2:88:a8:b6:ff:f5:4d:3b:33: d2:58:5d:e1:52:fd:c3:01:12:e4:98:db:da:ba:10:b6:82:5e: 2a:e4:68:a9:f7:a9:5d:ea:d0:35:24:a0:0e:97:e2:68:f9:30: f4:35:d6:5d:15:9f:c2:65:71:18:b6:7a:96:75:51:f7:fa:05: f0:02:b9:4a:bc:ac:8e:f1:63:1a:87:c6:7f:f5:1a:6e:b9:8e: b5:13:b4:98:6d:6e:a9:ab:25:12:4c:b4:cb:97:c0:2f:4f:4d: fd:d1:33:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAV4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZDQjQxMTAvBgNVBAUTKEZCMTZCMTlERkJGN0NBNkFDNDBBNkI2QTM1M0Y3ODU3 ODkxN0UwRkQwHhcNMjUwMzI5MDM1OTAwWhcNMjUwNDA1MDM1OTAwWjAYMRYwFAYD VQQDEw02N2U3NzAwNS1jOTM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6P0CIbbyHVOn4GpAzK1Z25FH5yOE0MQe1Ye6IHNGcpyA5AQjJAdWmmWJnl91 uejyKW4y0OYROUA4+rwp1GjgXUDKpWQur2QCMpskB6YPnuE+SK74qipsjQKfEAKK uaa2S/H8Al4IE9F7PW4URvagtjMpmNKGBqheV6jGuV5T95ZbjFMYgzPrLooWueVJ VsaOU2mvrzY2LDOpT61IvXl2ZtN6raIPW3ymflwiN5aPsGzXT/b/Z06KQR45v51g YKrAmsQtSlTTf6K0xl0AIWSgRV9IqsscRTQd57XhrIRKKArPPZDIjEriBxhkOFdJ osY9Nujb8h1tiyykA4hlVTAgjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAEdRRr3 EANtuubI4O4tHT9NVE3KMB8GA1UdIwQYMBaAFPsWsZ3798pqxAprajU/eFeJF+D9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkNCNC8yQTg0RDFEOEZE QzgxMUVEOTcyRURCMUVDNEY5QUUwMi8teGF4bmZ2M3ltckVDbXRxTlQ5NFY0a1g0 UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy14YXhuZnYzeW1yRUNtdHFOVDk0VjRrWDRQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkNCNC8yQTg0RDFEOEZEQzgxMUVEOTcyRURCMUVDNEY5QUUwMi8teGF4bmZ2M3lt ckVDbXRxTlQ5NFY0a1g0UDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCP6LOHskjTW/bdUajYFPYt21yk4lSjNtgyX12d04p2ySOGqIMTrEAX B6txOFg5tuch1mg3zxgMK36dQdtNFmCTGmCRRotjqaEU/PVUBYzVGAZhhMBdVxaE xI9H2Ldr4XHwsFDJVJbG18+qRqnvVFsMPgF/oxZQdqdt4eKze71oPuwvELmIHq79 D/Ju6ktt6Y5tZ3Mwh0nR6DjSiKi2//VNOzPSWF3hUv3DARLkmNvauhC2gl4q5Gip 96ld6tA1JKAOl+Jo+TD0NdZdFZ/CZXEYtnqWdVH3+gXwArlKvKyO8WMah8Z/9Rpu uY61E7SYbW6pqyUSTLTLl8AvT0390TMF -----END CERTIFICATE-----Generated at Fri Apr 4 22:01:52 2025 by rpki-client