$ rpki-client -vvf rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.mft File: X-srwGbHr1fSafdXM_D_g-mQOaM.mft (raw, json) Hash identifier: bzePD88bEWYvmL8u4z4aqk+hRQCcza3oEW5D4F9moRc= Subject key identifier: 92:B5:C4:8F:24:2E:B9:1F:B9:F8:39:87:EC:62:1C:00:30:F9:96:DA Authority key identifier: 5F:EB:2B:C0:66:C7:AF:57:D2:69:F7:57:33:F0:FF:83:E9:90:39:A3 Certificate issuer: /CN=A914E8BF/serialNumber=5FEB2BC066C7AF57D269F75733F0FF83E99039A3 Certificate serial: 0150 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-srwGbHr1fSafdXM_D_g-mQOaM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.mft Manifest number: 0141 Signing time: Sat 05 Apr 2025 03:53:15 +0000 Manifest this update: Sat 05 Apr 2025 03:53:14 +0000 Manifest next update: Sat 12 Apr 2025 03:53:14 +0000 Files and hashes: 1: X-srwGbHr1fSafdXM_D_g-mQOaM.crl (hash: zTar5aegQvLukrronLzSAbgMn7ozxc81j97tQLOJnZE=) 2: D060B5C4B9EA11EFBB71A952C4F9AE02.roa (hash: RH2tA+pDkL65URt1jd9V89/t/7TTanl0u6hNZrCKG3I=) 3: C7D74E2CB9EA11EFBCC89752C4F9AE02.roa (hash: 3zCR20o/KfK/K9C/wTlGB6P7rn/kp0/zxFVVdoqdb8g=) 4: BD8EB1A8B9EA11EF8A218C52C4F9AE02.roa (hash: mR/q70Jk2CRrQySn0SCNQ9Ok1ptByPEBAf3/SOp/6zs=) 5: A16CA728B9EA11EFACF35552C4F9AE02.roa (hash: LIplw0gjYt5TLtVYJx2JRQCdxPLCfIKOl8NOlftLuUc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.crl rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-srwGbHr1fSafdXM_D_g-mQOaM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 336 (0x150) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E8BF Validity Not Before: Apr 5 03:53:14 2025 GMT Not After : Apr 12 03:53:14 2025 GMT Subject: CN=67f0a92b-b0b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:38:66:48:63:f2:45:5a:25:3c:a8:db:71:cd: 01:1e:21:fc:5a:4d:1f:d5:09:ad:33:9e:2d:aa:c6: 24:9e:e9:70:53:06:d7:ad:ff:4d:e9:21:13:99:4c: e5:68:36:f6:9f:f2:d3:9f:f0:df:f4:6e:e7:65:65: c9:f2:8e:dc:89:42:a9:09:88:a2:4a:d6:72:8c:64: 42:b8:62:dc:20:d1:2b:3b:99:40:66:49:c5:6f:2d: 0b:c9:dc:6b:d8:e1:69:54:8e:f0:20:d5:d4:2c:6f: 12:3e:dc:4c:ea:a7:2c:a2:d5:20:0a:db:b7:6f:c0: 85:4d:73:83:8e:bf:36:42:f3:db:b8:b6:5d:e6:b3: 19:82:79:32:d2:b4:76:e8:ce:25:c0:4d:72:f8:47: 02:db:56:01:09:11:0e:27:32:d5:e5:11:42:09:9c: b9:ae:ff:d1:3c:b8:59:06:07:31:fd:86:a1:32:38: 3a:3e:12:44:93:81:93:dc:b6:ed:9c:31:a1:70:bf: ed:4d:73:75:c9:9f:7c:a0:0b:b4:38:d4:12:34:b0: b1:1c:ba:74:d7:c9:43:ec:5f:2a:58:0f:8b:64:b1: 91:16:e6:25:e0:99:d1:b7:14:be:97:9d:3d:6d:e4: 91:37:1c:4b:c2:9e:8b:c5:bc:ea:1b:50:0b:02:de: 75:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:B5:C4:8F:24:2E:B9:1F:B9:F8:39:87:EC:62:1C:00:30:F9:96:DA X509v3 Authority Key Identifier: keyid:5F:EB:2B:C0:66:C7:AF:57:D2:69:F7:57:33:F0:FF:83:E9:90:39:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-srwGbHr1fSafdXM_D_g-mQOaM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:22:7f:f6:37:17:9a:2d:2c:33:74:88:fa:6d:c5:69:dd:e5: 07:bb:2a:4a:58:91:85:5b:3f:84:1c:3e:0c:bd:2c:aa:78:b2: 06:b0:73:84:ba:79:93:c8:7a:ed:e0:2f:85:b1:d0:32:52:e3: 82:3c:66:92:6b:98:cf:3b:75:af:a0:69:fb:d4:6b:86:44:b4: 1c:7c:ad:fa:da:6b:3f:e4:aa:e9:47:31:95:9e:a0:29:b8:e3: 1c:7a:98:ae:e5:ea:75:3d:d8:c0:a7:fd:e0:f1:7c:c6:46:e7: 42:13:8b:f6:2c:6e:12:b0:98:0a:ee:c8:a2:28:06:6d:88:a7: 97:2a:72:58:f4:c4:95:58:ea:01:d5:87:ea:6a:63:f4:d3:08: 44:d7:c6:25:ca:31:cd:6d:3b:c9:60:87:f0:c3:0d:66:f4:d9: ec:8d:7c:74:e1:dd:16:b8:f9:3d:5e:12:ac:93:35:e2:6f:1b: e8:ad:d7:df:d6:f4:c2:d4:94:a7:16:5d:b1:3f:7c:50:8d:ed: 3f:19:91:ab:79:42:f0:89:0b:65:83:90:81:67:3c:46:6c:90: 2f:ce:a9:e7:2d:5f:b5:59:31:97:0d:37:90:bf:c9:8c:37:4d: b3:8b:57:a3:3c:ff:57:63:a3:2e:86:66:bc:b5:5e:b6:92:7b: 24:e2:6e:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU4QkYxMTAvBgNVBAUTKDVGRUIyQkMwNjZDN0FGNTdEMjY5Rjc1NzMzRjBGRjgz RTk5MDM5QTMwHhcNMjUwNDA1MDM1MzE0WhcNMjUwNDEyMDM1MzE0WjAYMRYwFAYD VQQDEw02N2YwYTkyYi1iMGI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1DhmSGPyRVolPKjbcc0BHiH8Wk0f1QmtM54tqsYknulwUwbXrf9N6SETmUzl aDb2n/LTn/Df9G7nZWXJ8o7ciUKpCYiiStZyjGRCuGLcINErO5lAZknFby0Lydxr 2OFpVI7wINXULG8SPtxM6qcsotUgCtu3b8CFTXODjr82QvPbuLZd5rMZgnky0rR2 6M4lwE1y+EcC21YBCREOJzLV5RFCCZy5rv/RPLhZBgcx/YahMjg6PhJEk4GT3Lbt nDGhcL/tTXN1yZ98oAu0ONQSNLCxHLp018lD7F8qWA+LZLGRFuYl4JnRtxS+l509 beSRNxxLwp6LxbzqG1ALAt51UwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJK1xI8k Lrkfufg5h+xiHAAw+ZbaMB8GA1UdIwQYMBaAFF/rK8Bmx69X0mn3VzPw/4PpkDmj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RThCRi9CMzg5Q0YzODQx QTcxMUVFOTJFNUIzNzhDNEY5QUUwMi9YLXNyd0diSHIxZlNhZmRYTV9EX2ctbVFP YU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gtc3J3R2JIcjFmU2FmZFhNX0RfZy1tUU9hTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RThCRi9CMzg5Q0YzODQxQTcxMUVFOTJFNUIzNzhDNEY5QUUwMi9YLXNyd0diSHIx ZlNhZmRYTV9EX2ctbVFPYU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaIn/2NxeaLSwzdIj6bcVp3eUHuypKWJGFWz+EHD4MvSyqeLIGsHOE unmTyHrt4C+FsdAyUuOCPGaSa5jPO3WvoGn71GuGRLQcfK362ms/5KrpRzGVnqAp uOMcepiu5ep1PdjAp/3g8XzGRudCE4v2LG4SsJgK7siiKAZtiKeXKnJY9MSVWOoB 1YfqamP00whE18YlyjHNbTvJYIfwww1m9NnsjXx04d0WuPk9XhKskzXibxvordff 1vTC1JSnFl2xP3xQje0/GZGreULwiQtlg5CBZzxGbJAvzqnnLV+1WTGXDTeQv8mM N02zi1ejPP9XY6Muhma8tV62knsk4m7p -----END CERTIFICATE-----Generated at Sat Apr 5 05:52:21 2025 by rpki-client