$ rpki-client -vvf rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft File: lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft (raw, json) Hash identifier: H9pz0Ki/HJUhQ7Vcpbl8KE9wChBSfJOPgN41YVDtGms= Subject key identifier: 24:5A:D6:01:91:D6:F2:1A:D6:F8:40:30:C6:54:44:60:AD:7D:C9:F0 Authority key identifier: 96:4D:08:72:7D:AE:DA:C7:40:37:AB:9C:43:A5:08:BA:DB:CF:DA:FD Certificate issuer: /CN=A914E0FE/serialNumber=964D08727DAEDAC74037AB9C43A508BADBCFDAFD Certificate serial: 49 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lk0Icn2u2sdAN6ucQ6UIutvP2v0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft Manifest number: 47 Signing time: Sat 05 Apr 2025 06:41:20 +0000 Manifest this update: Sat 05 Apr 2025 06:41:20 +0000 Manifest next update: Sat 12 Apr 2025 06:41:20 +0000 Files and hashes: 1: lk0Icn2u2sdAN6ucQ6UIutvP2v0.crl (hash: ebnWCmqRv1mJUHwFwpjKz+997H+qdRLXAmvBey87n+s=) 2: 8DBD0EBCABCA11EF984C832AC4F9AE02.roa (hash: 8Dmn7khqMXjuTQiezguWUTsHSU/EM/tHFNVuXGCGR0w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.crl rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lk0Icn2u2sdAN6ucQ6UIutvP2v0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 06:41:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73 (0x49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E0FE Validity Not Before: Apr 5 06:41:20 2025 GMT Not After : Apr 12 06:41:20 2025 GMT Subject: CN=67f0d090-1361 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:74:e7:fe:b7:97:a6:01:06:1b:22:c0:c7:23: 9e:02:d4:fd:2a:4f:c0:b0:8a:fc:c5:c3:f5:48:eb: 73:0d:e7:ec:43:ee:db:00:38:d2:82:a6:01:c1:bd: ed:00:c4:da:e8:a3:8c:d8:a9:cc:f5:c1:d3:9d:72: b7:74:f7:0f:df:bd:85:69:ae:c7:71:3c:8a:b5:37: f3:25:7a:61:c0:4f:8f:75:e9:f6:51:0d:48:b9:09: e4:cb:ae:8c:ab:2d:04:34:1e:21:39:c5:55:c2:29: 3b:bb:9e:4f:26:92:3a:ce:98:ec:c7:0b:c9:13:6e: 0c:41:48:55:a2:a2:1f:63:17:62:c0:4e:cd:c5:e3: c3:9a:c4:26:cd:82:be:a6:0d:24:b0:66:b3:16:27: 65:5a:5c:38:80:60:11:6e:c7:fd:b7:bb:d2:e7:b4: 85:fa:71:b6:cb:49:bd:37:e9:a7:3d:71:cd:df:de: c7:00:b6:4f:e1:b1:68:ca:03:16:1d:d0:e7:76:55: 57:57:36:50:8d:c0:60:d5:66:0f:28:5c:5d:ae:9e: c3:b3:fb:90:99:90:26:c0:5d:14:44:f0:bb:aa:e6: e6:ce:6d:fa:d2:e4:f7:53:b3:5a:6b:e5:43:6c:0d: 13:3c:13:cd:03:63:fb:4d:50:03:a8:1e:6d:af:24: 4f:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:5A:D6:01:91:D6:F2:1A:D6:F8:40:30:C6:54:44:60:AD:7D:C9:F0 X509v3 Authority Key Identifier: keyid:96:4D:08:72:7D:AE:DA:C7:40:37:AB:9C:43:A5:08:BA:DB:CF:DA:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lk0Icn2u2sdAN6ucQ6UIutvP2v0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:a1:e8:85:72:3f:ec:da:9c:82:60:3b:1f:cd:4d:d4:e2:ec: 59:05:dd:0a:d3:a4:66:45:55:f9:1d:9f:9c:09:52:66:d7:f7: d7:ae:8e:d5:0d:c8:6d:c4:b8:b4:61:ab:9e:5b:bc:05:75:ea: 0f:ad:de:29:f2:d7:80:c3:de:0e:fb:33:78:a4:47:ed:e9:02: fd:5c:e8:9a:f0:0c:4a:8d:36:9e:99:48:7b:99:bd:f5:73:77: 41:1f:48:a1:7d:5d:f1:3a:17:d8:01:fe:2d:f6:6f:d5:c2:1e: a1:9e:62:fe:be:0f:03:21:d2:85:dd:2b:24:7f:44:cb:d6:7e: db:fb:47:ca:99:94:aa:dc:d0:50:9f:c8:dd:d7:e8:87:3d:47: 6b:1d:de:70:b4:38:14:98:24:c4:06:91:2e:a9:3f:b9:35:31: e7:b1:6a:27:f4:94:0b:22:d2:95:34:10:88:19:3c:b9:51:14: ed:88:ce:8e:1a:36:f6:c0:1d:cb:f0:f2:b2:63:8f:28:0b:6f: 38:7b:ac:c5:78:3f:6e:a1:ce:3f:65:c4:0f:cb:fa:52:7c:78: 1a:3d:15:ac:85:2d:b8:2e:b9:54:ab:9e:f6:25:74:a4:20:8d: 30:92:5a:c8:7f:68:f2:97:07:da:a2:3d:31:a0:e9:66:cd:09: e6:fe:ac:08 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 RTBGRTExMC8GA1UEBRMoOTY0RDA4NzI3REFFREFDNzQwMzdBQjlDNDNBNTA4QkFE QkNGREFGRDAeFw0yNTA0MDUwNjQxMjBaFw0yNTA0MTIwNjQxMjBaMBgxFjAUBgNV BAMTDTY3ZjBkMDkwLTEzNjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDTdOf+t5emAQYbIsDHI54C1P0qT8CwivzFw/VI63MN5+xD7tsAONKCpgHBve0A xNroo4zYqcz1wdOdcrd09w/fvYVprsdxPIq1N/MlemHAT4916fZRDUi5CeTLroyr LQQ0HiE5xVXCKTu7nk8mkjrOmOzHC8kTbgxBSFWioh9jF2LATs3F48OaxCbNgr6m DSSwZrMWJ2VaXDiAYBFux/23u9LntIX6cbbLSb036ac9cc3f3scAtk/hsWjKAxYd 0Od2VVdXNlCNwGDVZg8oXF2unsOz+5CZkCbAXRRE8Luq5ubObfrS5PdTs1pr5UNs DRM8E80DY/tNUAOoHm2vJE/xAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUJFrWAZHW 8hrW+EAwxlREYK19yfAwHwYDVR0jBBgwFoAUlk0Icn2u2sdAN6ucQ6UIutvP2v0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRFMEZFLzJGMkI2RkUyQUJD QTExRUZBOTk0RDEyOUM0RjlBRTAyL2xrMEljbjJ1MnNkQU42dWNRNlVJdXR2UDJ2 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvbGswSWNuMnUyc2RBTjZ1Y1E2VUl1dHZQMnYwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRF MEZFLzJGMkI2RkUyQUJDQTExRUZBOTk0RDEyOUM0RjlBRTAyL2xrMEljbjJ1MnNk QU42dWNRNlVJdXR2UDJ2MC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAICh6IVyP+zanIJgOx/NTdTi7FkF3QrTpGZFVfkdn5wJUmbX99eujtUN yG3EuLRhq55bvAV16g+t3iny14DD3g77M3ikR+3pAv1c6JrwDEqNNp6ZSHuZvfVz d0EfSKF9XfE6F9gB/i32b9XCHqGeYv6+DwMh0oXdKyR/RMvWftv7R8qZlKrc0FCf yN3X6Ic9R2sd3nC0OBSYJMQGkS6pP7k1Meexaif0lAsi0pU0EIgZPLlRFO2Izo4a NvbAHcvw8rJjjygLbzh7rMV4P26hzj9lxA/L+lJ8eBo9FayFLbguuVSrnvYldKQg jTCSWsh/aPKXB9qiPTGg6WbNCeb+rAg= -----END CERTIFICATE-----Generated at Sun Apr 6 12:54:38 2025 by rpki-client