$ rpki-client -vvf rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/rTRF20IBCxIVpJ5CfxrnQA14i_s.mft File: rTRF20IBCxIVpJ5CfxrnQA14i_s.mft (raw, json) Hash identifier: 9u6O6ai9O7/cDYPPO9mwJFs3/UCa9cbhFt8+X7Drwxg= Subject key identifier: CE:16:EA:FB:69:C8:98:B7:6C:66:9E:DB:91:E2:52:4E:9F:1D:C5:A8 Authority key identifier: AD:34:45:DB:42:01:0B:12:15:A4:9E:42:7F:1A:E7:40:0D:78:8B:FB Certificate issuer: /CN=A9155647/serialNumber=AD3445DB42010B1215A49E427F1AE7400D788BFB Certificate serial: 012A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rTRF20IBCxIVpJ5CfxrnQA14i_s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/rTRF20IBCxIVpJ5CfxrnQA14i_s.mft Manifest number: FB Signing time: Sat 29 Mar 2025 05:20:08 +0000 Manifest this update: Sat 29 Mar 2025 05:20:08 +0000 Manifest next update: Sat 05 Apr 2025 05:20:08 +0000 Files and hashes: 1: rTRF20IBCxIVpJ5CfxrnQA14i_s.crl (hash: eGyAO0xHXiPupauLPIoWNSW51YM79L4VwBTXNQOGOrw=) 2: F29EB2AC055E11F0B9418419C4F9AE02.roa (hash: 9RU3GNF/IBWYFEojBerIMOXRDZt/4Lz98fS5lte5tRw=) 3: A75C4CD8FAA411EF9D7B5F80C4F9AE02.roa (hash: UR/M76En4r1uz4AqvlYe6bzumLcHbv7IRP0UcS8FSf4=) 4: 8F4855FA719D11EF89D9262FC4F9AE02.roa (hash: hPiEFlCjIc8KK76tsuspz1ONu+ItwEBYhz4W04Yol+g=) 5: 6C8DB570FE1911EEBC22905DC4F9AE02.roa (hash: hPgoNHbP8TnQMLHkO9eUXhsu4qNgnVEZOfgux/wVtSU=) 6: 1B9CFE48055F11F0861EE119C4F9AE02.roa (hash: 14nylsFUPRSwCt2v2VvAV3o9onPAU/KH5Tj7C5lqdlw=) 7: 3D61340AEC3111EF94115E39C4F9AE02.roa (hash: lLzOsxx2NpO50oe/Yl2ghvScYH7yiTqzg3vJh8anvo4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/rTRF20IBCxIVpJ5CfxrnQA14i_s.crl rsync://rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/rTRF20IBCxIVpJ5CfxrnQA14i_s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rTRF20IBCxIVpJ5CfxrnQA14i_s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 298 (0x12a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155647 Validity Not Before: Mar 29 05:20:08 2025 GMT Not After : Apr 5 05:20:08 2025 GMT Subject: CN=67e78308-6ffd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:d6:d9:38:19:64:cf:a5:f4:a6:b7:09:d7:bc: 10:85:26:40:79:ea:39:f8:e3:98:9b:ba:92:7b:d5: 22:b2:ca:b2:eb:0b:55:dc:0f:fe:41:1e:82:db:63: 25:79:82:01:56:45:05:e2:18:8a:a2:77:6a:90:51: 7d:05:59:9b:89:4a:e5:be:b4:7a:28:b6:e9:2d:d6: 9d:e7:97:10:08:69:2d:0a:09:eb:e3:de:1f:98:d4: 4b:d3:95:98:d0:6d:69:cd:c8:da:a5:67:7a:57:c6: b1:be:f8:76:0a:41:53:cf:c1:e2:93:ff:6c:bc:e7: c7:9c:e5:99:7d:23:60:13:d8:7b:91:49:be:be:d1: 63:b8:50:4e:cf:1b:f7:c2:a6:8d:46:b8:f1:29:7f: ab:c0:f5:a8:6d:35:37:72:7e:ae:53:2b:3f:46:53: 59:20:e3:2f:4b:d7:36:6a:37:88:86:68:51:a6:7c: 1f:cb:62:5b:47:45:eb:13:e6:70:bb:29:0b:4f:e4: b6:e3:89:06:bb:41:1a:e8:42:57:13:c9:4b:71:02: a1:28:d2:ed:b5:16:57:61:7a:fb:95:88:f1:2b:95: 0d:b5:67:d2:77:d9:86:e6:7e:62:cd:7a:1f:4b:86: 9d:6a:46:0e:26:9d:8d:fe:96:a3:2b:76:eb:4a:a4: d2:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:16:EA:FB:69:C8:98:B7:6C:66:9E:DB:91:E2:52:4E:9F:1D:C5:A8 X509v3 Authority Key Identifier: keyid:AD:34:45:DB:42:01:0B:12:15:A4:9E:42:7F:1A:E7:40:0D:78:8B:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/rTRF20IBCxIVpJ5CfxrnQA14i_s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rTRF20IBCxIVpJ5CfxrnQA14i_s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/rTRF20IBCxIVpJ5CfxrnQA14i_s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:bf:b6:1a:62:7b:ba:19:c7:12:a6:9d:70:b5:99:c5:b3:74: 44:05:39:e2:3e:f9:54:cc:30:30:76:e7:eb:fe:bc:88:37:bd: 9b:74:b5:32:26:b5:c8:21:32:73:4f:8b:71:ae:e2:79:22:26: bb:21:da:4a:ed:ad:ff:ea:41:e6:65:a8:6b:8c:16:1e:7d:aa: d7:d6:b4:92:b2:c6:f1:17:f1:46:92:42:79:48:42:00:ad:22: 40:10:88:14:4d:f2:5c:86:41:82:71:ea:b7:70:9a:29:36:58: 18:01:54:35:48:79:cb:40:bd:86:e1:c7:00:8e:76:79:21:f0: 60:8a:08:99:6f:e3:23:95:8f:f6:73:fc:c3:50:89:5c:36:b6: 9e:ad:b4:ac:b9:0d:08:9e:ba:72:79:f0:8f:6a:d8:34:ec:ac: 45:ac:56:37:04:46:ef:94:19:fc:d2:4c:cf:39:44:04:58:da: 26:e8:f4:a0:ba:62:96:ca:a8:54:43:5a:51:db:05:27:e0:3c: 08:04:2b:d5:1a:5c:9a:95:26:eb:0b:c1:77:53:7e:d9:d1:d3: b2:23:6a:6b:22:91:ff:e2:26:39:89:cf:80:7f:02:06:eb:df: 9c:96:32:65:9b:b7:f1:f2:55:c0:a6:83:f4:5f:40:c1:b9:00: 36:91:3b:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU2NDcxMTAvBgNVBAUTKEFEMzQ0NURCNDIwMTBCMTIxNUE0OUU0MjdGMUFFNzQw MEQ3ODhCRkIwHhcNMjUwMzI5MDUyMDA4WhcNMjUwNDA1MDUyMDA4WjAYMRYwFAYD VQQDEw02N2U3ODMwOC02ZmZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAztbZOBlkz6X0prcJ17wQhSZAeeo5+OOYm7qSe9Uissqy6wtV3A/+QR6C22Ml eYIBVkUF4hiKondqkFF9BVmbiUrlvrR6KLbpLdad55cQCGktCgnr494fmNRL05WY 0G1pzcjapWd6V8axvvh2CkFTz8Hik/9svOfHnOWZfSNgE9h7kUm+vtFjuFBOzxv3 wqaNRrjxKX+rwPWobTU3cn6uUys/RlNZIOMvS9c2ajeIhmhRpnwfy2JbR0XrE+Zw uykLT+S244kGu0Ea6EJXE8lLcQKhKNLttRZXYXr7lYjxK5UNtWfSd9mG5n5izXof S4adakYOJp2N/pajK3brSqTSEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM4W6vtp yJi3bGae25HiUk6fHcWoMB8GA1UdIwQYMBaAFK00RdtCAQsSFaSeQn8a50ANeIv7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTY0Ny85MDVDMTA0NkYz NkYxMUVFOTk3MkVCNzlDNEY5QUUwMi9yVFJGMjBJQkN4SVZwSjVDZnhyblFBMTRp X3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JUUkYyMElCQ3hJVnBKNUNmeHJuUUExNGlfcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTY0Ny85MDVDMTA0NkYzNkYxMUVFOTk3MkVCNzlDNEY5QUUwMi9yVFJGMjBJQkN4 SVZwSjVDZnhyblFBMTRpX3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqv7YaYnu6GccSpp1wtZnFs3REBTniPvlUzDAwdufr/ryIN72bdLUy JrXIITJzT4txruJ5Iia7IdpK7a3/6kHmZahrjBYefarX1rSSssbxF/FGkkJ5SEIA rSJAEIgUTfJchkGCceq3cJopNlgYAVQ1SHnLQL2G4ccAjnZ5IfBgigiZb+MjlY/2 c/zDUIlcNraerbSsuQ0InrpyefCPatg07KxFrFY3BEbvlBn80kzPOUQEWNom6PSg umKWyqhUQ1pR2wUn4DwIBCvVGlyalSbrC8F3U37Z0dOyI2prIpH/4iY5ic+AfwIG 69+cljJlm7fx8lXApoP0X0DBuQA2kTuO -----END CERTIFICATE-----Generated at Fri Apr 4 22:22:15 2025 by rpki-client