$ rpki-client -vvf rpki.apnic.net/member_repository/A9148C7B/5BFCFF8CD63011EA940DA039C4F9AE02/f3lmXmO_PNVtwkoKcNV_mpQt0bg.mft File: f3lmXmO_PNVtwkoKcNV_mpQt0bg.mft (raw, json) Hash identifier: 15YkWxH6NHITMZhkwr9QW4dOTPFzcZQ2+VPaYidjR60= Subject key identifier: 3A:CC:3C:83:F5:EA:50:CA:1A:12:E2:54:F5:AE:E0:DF:C7:E0:EC:39 Authority key identifier: 7F:79:66:5E:63:BF:3C:D5:6D:C2:4A:0A:70:D5:7F:9A:94:2D:D1:B8 Certificate issuer: /CN=A9148C7B/serialNumber=7F79665E63BF3CD56DC24A0A70D57F9A942DD1B8 Certificate serial: 0864 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/f3lmXmO_PNVtwkoKcNV_mpQt0bg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148C7B/5BFCFF8CD63011EA940DA039C4F9AE02/f3lmXmO_PNVtwkoKcNV_mpQt0bg.mft Manifest number: 083A Signing time: Tue 08 Apr 2025 14:47:23 +0000 Manifest this update: Tue 08 Apr 2025 14:47:23 +0000 Manifest next update: Tue 15 Apr 2025 14:47:23 +0000 Files and hashes: 1: f3lmXmO_PNVtwkoKcNV_mpQt0bg.crl (hash: wG5hRPGIOGD8RNZiVIthYL31x2fWRTBaW7bEPKlFZqE=) 2: AB20F8C0DD3311EF8B8A711FC4F9AE02.roa (hash: 1n8TN0elhXHHBL8i9K1T+oGXrUVuH0sd4JxY2m2xOlU=) 3: 664604CCD8E211ED913C4684C4F9AE02.roa (hash: bF+cQvGTN6hj6Su+AW4ebeZcP3ajFMubLlVPlkZn8CY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148C7B/5BFCFF8CD63011EA940DA039C4F9AE02/f3lmXmO_PNVtwkoKcNV_mpQt0bg.crl rsync://rpki.apnic.net/member_repository/A9148C7B/5BFCFF8CD63011EA940DA039C4F9AE02/f3lmXmO_PNVtwkoKcNV_mpQt0bg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/f3lmXmO_PNVtwkoKcNV_mpQt0bg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 14:47:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2148 (0x864) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148C7B Validity Not Before: Apr 8 14:47:23 2025 GMT Not After : Apr 15 14:47:23 2025 GMT Subject: CN=67f536fb-0476 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:e0:18:c9:84:e3:ec:21:00:7e:08:68:91:72: 35:59:a7:53:ea:bd:8a:0e:58:9b:82:43:03:60:a7: ec:0b:83:f1:10:0d:f2:77:ee:1f:4b:16:74:b3:61: f0:1f:d6:8a:61:c7:30:12:19:95:aa:d0:78:3b:69: 2c:f1:4b:8a:46:0f:87:e4:58:dc:30:62:44:0c:74: a2:87:39:ec:19:e0:a5:b4:06:9f:15:89:ad:a4:28: e6:ce:0f:2d:95:be:af:d6:8a:13:f4:39:d3:1f:5d: 20:46:43:10:0b:23:80:8d:57:10:7a:e6:ca:73:ca: 0c:d5:69:9a:d8:66:5f:da:bf:8b:7f:66:ec:25:3f: 38:33:86:51:24:14:fb:04:19:e6:9a:14:ce:59:f1: 06:f0:ea:b6:6d:cc:b4:cd:21:40:ff:59:5c:64:d9: fb:62:3d:72:1c:19:52:04:27:85:37:42:f2:60:d9: 07:b9:e3:6c:eb:b0:d4:c0:ba:2e:4f:73:a9:c2:48: 08:41:4b:3b:68:fa:4c:c0:3b:f8:6b:c7:78:44:ba: c2:e1:71:e5:26:0f:92:5c:ca:f5:c5:28:98:9c:26: ba:a1:7e:ab:1e:51:98:e1:00:c7:ba:44:58:d3:7c: 7a:49:2b:59:f0:a4:ee:1a:49:f5:10:2b:29:b5:dc: 19:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:CC:3C:83:F5:EA:50:CA:1A:12:E2:54:F5:AE:E0:DF:C7:E0:EC:39 X509v3 Authority Key Identifier: keyid:7F:79:66:5E:63:BF:3C:D5:6D:C2:4A:0A:70:D5:7F:9A:94:2D:D1:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148C7B/5BFCFF8CD63011EA940DA039C4F9AE02/f3lmXmO_PNVtwkoKcNV_mpQt0bg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/f3lmXmO_PNVtwkoKcNV_mpQt0bg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148C7B/5BFCFF8CD63011EA940DA039C4F9AE02/f3lmXmO_PNVtwkoKcNV_mpQt0bg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:ee:03:37:79:ec:c6:83:da:4f:f2:bb:25:3e:33:8e:e2:86: 7e:96:89:9d:a1:72:79:07:c4:fc:be:38:0c:4a:85:58:5c:b5: 58:ad:e8:e6:4d:b3:4e:af:9c:b9:0f:f2:c9:d1:d2:3d:73:0b: a5:e7:24:eb:9d:b7:57:4f:5f:e5:db:c4:8d:7f:fe:59:9b:10: cf:31:a4:04:0c:75:7c:50:ee:13:26:d8:75:27:4d:8c:ee:86: 9f:bc:b0:44:87:50:e9:c6:55:4e:ef:50:47:fd:e0:3f:18:d5: b4:48:54:1a:1c:cb:f4:02:0c:cd:35:04:19:5c:7c:4b:03:e9: 57:28:24:76:4b:94:92:ec:5d:c9:b4:4b:a3:61:f1:e6:e5:ff: 00:81:52:28:3f:6c:3b:1b:90:c2:ee:36:0f:cf:b3:99:1d:30: b2:28:0e:c5:f9:2a:1f:74:61:c6:e8:fe:f3:6c:20:2a:08:48: 83:90:b8:7c:b0:55:75:da:ff:70:f7:4a:aa:70:8f:cb:ce:6f: af:b1:36:23:ce:4b:83:ac:56:6d:6f:59:ea:dd:1e:cf:ed:c9: aa:02:dc:91:76:3a:db:fe:09:0d:87:02:cc:92:e9:d4:44:42: a5:d2:be:cd:ff:32:c8:3c:30:87:a5:b6:3f:41:04:8c:ac:f8: 8a:d4:3c:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCGQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhDN0IxMTAvBgNVBAUTKDdGNzk2NjVFNjNCRjNDRDU2REMyNEEwQTcwRDU3RjlB OTQyREQxQjgwHhcNMjUwNDA4MTQ0NzIzWhcNMjUwNDE1MTQ0NzIzWjAYMRYwFAYD VQQDEw02N2Y1MzZmYi0wNDc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyeAYyYTj7CEAfghokXI1WadT6r2KDlibgkMDYKfsC4PxEA3yd+4fSxZ0s2Hw H9aKYccwEhmVqtB4O2ks8UuKRg+H5FjcMGJEDHSihznsGeCltAafFYmtpCjmzg8t lb6v1ooT9DnTH10gRkMQCyOAjVcQeubKc8oM1Wma2GZf2r+Lf2bsJT84M4ZRJBT7 BBnmmhTOWfEG8Oq2bcy0zSFA/1lcZNn7Yj1yHBlSBCeFN0LyYNkHueNs67DUwLou T3OpwkgIQUs7aPpMwDv4a8d4RLrC4XHlJg+SXMr1xSiYnCa6oX6rHlGY4QDHukRY 03x6SStZ8KTuGkn1ECsptdwZbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDrMPIP1 6lDKGhLiVPWu4N/H4Ow5MB8GA1UdIwQYMBaAFH95Zl5jvzzVbcJKCnDVf5qULdG4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEM3Qi81QkZDRkY4Q0Q2 MzAxMUVBOTQwREEwMzlDNEY5QUUwMi9mM2xtWG1PX1BOVnR3a29LY05WX21wUXQw YmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2YzbG1YbU9fUE5WdHdrb0tjTlZfbXBRdDBiZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEM3Qi81QkZDRkY4Q0Q2MzAxMUVBOTQwREEwMzlDNEY5QUUwMi9mM2xtWG1PX1BO VnR3a29LY05WX21wUXQwYmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAz7gM3eezGg9pP8rslPjOO4oZ+lomdoXJ5B8T8vjgMSoVYXLVYrejm TbNOr5y5D/LJ0dI9cwul5yTrnbdXT1/l28SNf/5ZmxDPMaQEDHV8UO4TJth1J02M 7oafvLBEh1DpxlVO71BH/eA/GNW0SFQaHMv0AgzNNQQZXHxLA+lXKCR2S5SS7F3J tEujYfHm5f8AgVIoP2w7G5DC7jYPz7OZHTCyKA7F+SofdGHG6P7zbCAqCEiDkLh8 sFV12v9w90qqcI/Lzm+vsTYjzkuDrFZtb1nq3R7P7cmqAtyRdjrb/gkNhwLMkunU REKl0r7N/zLIPDCHpbY/QQSMrPiK1Dzq -----END CERTIFICATE-----Generated at Thu Apr 10 22:09:51 2025 by rpki-client