$ rpki-client -vvf rpki.apnic.net/member_repository/A9149063/6889ADF274BC11EA95099D2BC4F9AE02/l5f3hScG7hxCxopeRQtXL47lCBg.mft File: l5f3hScG7hxCxopeRQtXL47lCBg.mft (raw, json) Hash identifier: fUNNog9Rx+Jo4LIvxFRrAl1kZnTEiXOctoO9ZUqNttM= Subject key identifier: AA:B3:8D:B8:00:00:F5:D1:61:0A:7C:F5:71:E4:DC:56:FB:90:69:91 Authority key identifier: 97:97:F7:85:27:06:EE:1C:42:C6:8A:5E:45:0B:57:2F:8E:E5:08:18 Certificate issuer: /CN=A9149063/serialNumber=9797F7852706EE1C42C68A5E450B572F8EE50818 Certificate serial: 09F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l5f3hScG7hxCxopeRQtXL47lCBg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149063/6889ADF274BC11EA95099D2BC4F9AE02/l5f3hScG7hxCxopeRQtXL47lCBg.mft Manifest number: 09EC Signing time: Tue 08 Apr 2025 19:45:28 +0000 Manifest this update: Tue 08 Apr 2025 19:45:28 +0000 Manifest next update: Tue 15 Apr 2025 19:45:28 +0000 Files and hashes: 1: l5f3hScG7hxCxopeRQtXL47lCBg.crl (hash: IFYNh278NvCkRCkOiZe+FqtummZFS0Z1KzrOlmoRIGA=) 2: 1EDD32B274BE11EA97202132C4F9AE02.roa (hash: JqF51wPgFYJ7/1JQa4bjka146YP84yRB+gx/lfzcoqw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149063/6889ADF274BC11EA95099D2BC4F9AE02/l5f3hScG7hxCxopeRQtXL47lCBg.crl rsync://rpki.apnic.net/member_repository/A9149063/6889ADF274BC11EA95099D2BC4F9AE02/l5f3hScG7hxCxopeRQtXL47lCBg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l5f3hScG7hxCxopeRQtXL47lCBg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 19:45:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2546 (0x9f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149063 Validity Not Before: Apr 8 19:45:28 2025 GMT Not After : Apr 15 19:45:28 2025 GMT Subject: CN=67f57cd8-1c3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:1a:fb:e3:92:6d:a1:93:17:c6:a2:23:f4:89: 27:28:f1:12:2c:82:09:da:95:87:6c:a0:2c:1a:63: 0e:d6:26:c0:26:ea:0c:07:e4:93:bc:d2:1f:6a:4e: 31:52:aa:06:25:2e:12:8d:76:cf:80:e7:27:70:90: 95:c0:74:20:6d:ca:73:6c:a3:e4:ac:1e:0e:5b:6a: 02:d8:2e:7c:4e:81:67:40:35:e3:bb:86:92:dc:0c: 8a:0e:40:df:fc:b2:c7:32:34:cb:88:29:69:ef:1e: 34:b9:e5:da:27:42:35:02:ee:4b:ec:61:3f:44:ec: ea:e7:df:9a:61:5e:d8:2b:d0:e4:51:db:18:32:9c: ef:52:b2:09:f2:8d:3c:91:f5:95:d1:d5:e3:6a:cc: 9d:22:d3:d3:80:e0:54:06:1b:d1:35:4d:82:41:4c: 47:77:30:8c:41:73:00:3a:92:2c:c8:11:e2:b7:6a: 76:2f:4b:64:54:86:e1:b3:e2:75:34:78:f8:bd:d5: 97:42:75:f8:35:0f:ba:8b:0d:80:b2:47:52:46:19: f6:9e:38:da:7b:f5:61:94:10:bb:e8:2e:b3:46:eb: 8c:c2:7f:50:10:0d:9b:10:44:57:18:70:1b:d2:b5: bc:df:3a:97:fe:08:4c:c6:54:d1:3f:19:ce:7b:c9: 5f:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:B3:8D:B8:00:00:F5:D1:61:0A:7C:F5:71:E4:DC:56:FB:90:69:91 X509v3 Authority Key Identifier: keyid:97:97:F7:85:27:06:EE:1C:42:C6:8A:5E:45:0B:57:2F:8E:E5:08:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149063/6889ADF274BC11EA95099D2BC4F9AE02/l5f3hScG7hxCxopeRQtXL47lCBg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l5f3hScG7hxCxopeRQtXL47lCBg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149063/6889ADF274BC11EA95099D2BC4F9AE02/l5f3hScG7hxCxopeRQtXL47lCBg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:52:c8:96:de:a9:b6:49:be:72:b3:e7:13:68:ba:8b:05:c0: e1:9c:4b:2e:6e:31:93:81:12:ba:c5:19:27:a0:bd:d7:9b:3a: 8a:2f:cc:e9:63:d0:44:03:de:c3:32:70:e8:c7:7a:10:e1:5e: 7a:e9:0f:23:5f:41:85:9e:f9:ca:97:3c:b6:c8:43:08:fe:f9: bd:f4:c0:6c:bb:81:1c:30:e7:e2:90:36:65:21:82:8b:06:85: 8f:e4:4e:4f:f2:f4:42:da:c8:22:aa:06:29:ef:28:b4:34:6e: 87:96:8a:52:5c:65:85:3c:0a:b7:5b:91:a4:ed:82:68:1a:c5: 91:65:59:3f:ae:6e:96:9e:b6:85:49:c0:c9:40:af:38:28:7f: ac:18:f3:17:22:81:16:fa:4d:3f:6d:6c:3f:f9:dd:1b:c9:e1: 65:04:fe:ad:60:30:19:c8:b6:b5:a4:5f:e3:f5:e2:ae:85:58: 65:5a:b2:a7:70:75:be:1b:28:47:f6:7b:87:de:48:66:44:46: d4:3d:23:12:00:55:ba:dc:7d:a0:4b:0c:3c:bd:e1:97:2a:f5: ca:f6:44:c6:cb:88:8c:f1:3e:ad:60:9a:d9:87:13:2e:42:71: ce:28:a6:ae:50:67:09:df:4b:fb:5c:99:2e:6a:1e:99:8c:61: d9:4f:99:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCfIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDkwNjMxMTAvBgNVBAUTKDk3OTdGNzg1MjcwNkVFMUM0MkM2OEE1RTQ1MEI1NzJG OEVFNTA4MTgwHhcNMjUwNDA4MTk0NTI4WhcNMjUwNDE1MTk0NTI4WjAYMRYwFAYD VQQDEw02N2Y1N2NkOC0xYzNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuhr745JtoZMXxqIj9IknKPESLIIJ2pWHbKAsGmMO1ibAJuoMB+STvNIfak4x UqoGJS4SjXbPgOcncJCVwHQgbcpzbKPkrB4OW2oC2C58ToFnQDXju4aS3AyKDkDf /LLHMjTLiClp7x40ueXaJ0I1Au5L7GE/ROzq59+aYV7YK9DkUdsYMpzvUrIJ8o08 kfWV0dXjasydItPTgOBUBhvRNU2CQUxHdzCMQXMAOpIsyBHit2p2L0tkVIbhs+J1 NHj4vdWXQnX4NQ+6iw2AskdSRhn2njjae/VhlBC76C6zRuuMwn9QEA2bEERXGHAb 0rW83zqX/ghMxlTRPxnOe8lfGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKqzjbgA APXRYQp89XHk3Fb7kGmRMB8GA1UdIwQYMBaAFJeX94UnBu4cQsaKXkULVy+O5QgY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OTA2My82ODg5QURGMjc0 QkMxMUVBOTUwOTlEMkJDNEY5QUUwMi9sNWYzaFNjRzdoeEN4b3BlUlF0WEw0N2xD QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w1ZjNoU2NHN2h4Q3hvcGVSUXRYTDQ3bENCZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OTA2My82ODg5QURGMjc0QkMxMUVBOTUwOTlEMkJDNEY5QUUwMi9sNWYzaFNjRzdo eEN4b3BlUlF0WEw0N2xDQmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQUsiW3qm2Sb5ys+cTaLqLBcDhnEsubjGTgRK6xRknoL3XmzqKL8zp Y9BEA97DMnDox3oQ4V566Q8jX0GFnvnKlzy2yEMI/vm99MBsu4EcMOfikDZlIYKL BoWP5E5P8vRC2sgiqgYp7yi0NG6HlopSXGWFPAq3W5Gk7YJoGsWRZVk/rm6WnraF ScDJQK84KH+sGPMXIoEW+k0/bWw/+d0byeFlBP6tYDAZyLa1pF/j9eKuhVhlWrKn cHW+GyhH9nuH3khmREbUPSMSAFW63H2gSww8veGXKvXK9kTGy4iM8T6tYJrZhxMu QnHOKKauUGcJ30v7XJkuah6ZjGHZT5lj -----END CERTIFICATE-----Generated at Thu Apr 10 19:02:15 2025 by rpki-client