$ rpki-client -vvf rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.mft File: 1fozYzT5muNj6lhn0o6KUCMeQiA.mft (raw, json) Hash identifier: HsfI9OadZ2VrtIM4kWW7gSqKR3rZ+idz1qn11UTEPGo= Subject key identifier: B0:4F:05:5B:8C:DE:F8:1F:6F:CF:90:B6:24:32:40:33:67:53:48:B9 Authority key identifier: D5:FA:33:63:34:F9:9A:E3:63:EA:58:67:D2:8E:8A:50:23:1E:42:20 Certificate issuer: /CN=A915F2B8/serialNumber=D5FA336334F99AE363EA5867D28E8A50231E4220 Certificate serial: 017A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fozYzT5muNj6lhn0o6KUCMeQiA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.mft Manifest number: 0178 Signing time: Sat 29 Mar 2025 03:15:02 +0000 Manifest this update: Sat 29 Mar 2025 03:15:02 +0000 Manifest next update: Sat 05 Apr 2025 03:15:02 +0000 Files and hashes: 1: 1fozYzT5muNj6lhn0o6KUCMeQiA.crl (hash: 9BmMAknB3TMKNFf2pplzDggPoGkzvpLlud+iOdm+p4E=) 2: 207C45B0CC2F11EDABE25F72C4F9AE02.roa (hash: 2eqS5cjF9sa6KMzGcQfKPVCA5SVXZZKPARO3qSqHB6Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.crl rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fozYzT5muNj6lhn0o6KUCMeQiA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 03:15:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 378 (0x17a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915F2B8 Validity Not Before: Mar 29 03:15:02 2025 GMT Not After : Apr 5 03:15:02 2025 GMT Subject: CN=67e765b6-47fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:0b:36:8d:75:3e:64:35:6e:bc:f3:fc:5a:e8: bf:87:50:da:3b:1d:5a:9e:c8:74:ae:b3:c8:6c:6e: 62:b9:17:2e:31:3b:29:77:ea:63:8c:66:e2:ab:19: 1a:5e:7d:a0:b3:48:ee:d4:ec:0f:c7:22:24:30:3e: ad:f8:43:2c:86:46:6c:32:cd:bd:e8:b1:2f:6f:04: 9c:4a:7d:fa:2b:c3:a3:7d:40:02:eb:8c:f5:4a:9e: 0d:fc:52:c2:96:5d:1f:81:89:2a:09:03:50:c2:9d: d8:c9:76:6d:c1:27:f1:70:73:75:43:59:39:89:c7: ad:5b:86:53:f8:16:6f:29:19:f7:0c:8e:7f:48:e4: 2c:e0:8e:1f:c5:ec:9c:06:06:a5:90:5e:75:28:9c: 48:d4:39:3d:51:eb:8a:f0:cd:81:e7:54:72:7d:2f: b2:35:2e:8b:ed:e5:85:8a:d7:82:02:04:1e:68:fc: 47:47:32:67:0e:52:30:30:45:6b:1f:3c:c1:e4:84: 03:01:b6:b3:30:79:3a:86:da:f8:38:35:38:68:64: df:7d:08:db:13:61:3d:73:06:b5:80:00:38:9d:f1: 66:69:96:5e:86:a7:b4:b3:16:37:78:8a:b6:ea:c1: f7:f7:60:41:b7:9d:1e:e9:4b:3e:ab:e0:90:48:4b: 11:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:4F:05:5B:8C:DE:F8:1F:6F:CF:90:B6:24:32:40:33:67:53:48:B9 X509v3 Authority Key Identifier: keyid:D5:FA:33:63:34:F9:9A:E3:63:EA:58:67:D2:8E:8A:50:23:1E:42:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fozYzT5muNj6lhn0o6KUCMeQiA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:1d:a4:8f:fa:b3:34:26:1a:40:ed:af:41:91:d2:a9:fb:4a: bb:41:c8:55:63:b8:93:2d:c9:45:6c:67:e5:11:c0:0c:56:9c: 35:09:6e:ac:39:67:4a:62:a4:0c:e6:42:93:ad:09:f8:41:6c: 8b:bb:de:b3:d8:35:8b:92:67:aa:a4:0e:31:26:a2:8e:0a:04: 22:74:51:17:bf:f7:19:d8:85:91:3a:07:4e:4f:a1:01:4c:89: 3f:bc:07:c7:a6:34:f4:91:a4:32:66:96:2f:d8:ed:1a:a5:d7: df:d0:db:76:e7:d2:34:dc:b0:49:81:15:3f:a9:11:da:3a:f9: 44:91:82:4a:9a:d3:83:7c:96:0c:7c:96:e3:aa:e2:0e:90:f3: c4:5f:72:10:0c:bd:65:b5:c0:c7:53:cf:87:14:cc:ac:67:06: 0f:7f:6e:ca:a6:03:45:ab:33:83:27:84:00:b7:fe:aa:7d:60: f7:55:de:8a:d4:f1:28:5d:52:53:41:92:46:e6:6e:10:a7:85: 27:f2:3b:57:7d:65:b7:99:07:07:66:32:b8:a3:27:52:5d:c3: d2:84:e9:f4:11:a1:78:b2:fa:07:f7:9f:ec:50:07:7b:fd:f2: 9a:04:e4:16:9d:5f:00:a7:05:67:36:f4:a2:3e:05:16:67:02: 65:2d:07:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUYyQjgxMTAvBgNVBAUTKEQ1RkEzMzYzMzRGOTlBRTM2M0VBNTg2N0QyOEU4QTUw MjMxRTQyMjAwHhcNMjUwMzI5MDMxNTAyWhcNMjUwNDA1MDMxNTAyWjAYMRYwFAYD VQQDEw02N2U3NjViNi00N2ZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsQs2jXU+ZDVuvPP8Wui/h1DaOx1ansh0rrPIbG5iuRcuMTspd+pjjGbiqxka Xn2gs0ju1OwPxyIkMD6t+EMshkZsMs296LEvbwScSn36K8OjfUAC64z1Sp4N/FLC ll0fgYkqCQNQwp3YyXZtwSfxcHN1Q1k5icetW4ZT+BZvKRn3DI5/SOQs4I4fxeyc BgalkF51KJxI1Dk9UeuK8M2B51RyfS+yNS6L7eWFiteCAgQeaPxHRzJnDlIwMEVr HzzB5IQDAbazMHk6htr4ODU4aGTffQjbE2E9cwa1gAA4nfFmaZZehqe0sxY3eIq2 6sH392BBt50e6Us+q+CQSEsRNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLBPBVuM 3vgfb8+QtiQyQDNnU0i5MB8GA1UdIwQYMBaAFNX6M2M0+ZrjY+pYZ9KOilAjHkIg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RjJCOC8yRjE3NjA4QUND MkMxMUVEQjk4NjA1NzFDNEY5QUUwMi8xZm96WXpUNW11Tmo2bGhuMG82S1VDTWVR aUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFmb3pZelQ1bXVOajZsaG4wbzZLVUNNZVFpQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RjJCOC8yRjE3NjA4QUNDMkMxMUVEQjk4NjA1NzFDNEY5QUUwMi8xZm96WXpUNW11 Tmo2bGhuMG82S1VDTWVRaUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEHaSP+rM0JhpA7a9BkdKp+0q7QchVY7iTLclFbGflEcAMVpw1CW6s OWdKYqQM5kKTrQn4QWyLu96z2DWLkmeqpA4xJqKOCgQidFEXv/cZ2IWROgdOT6EB TIk/vAfHpjT0kaQyZpYv2O0apdff0Nt259I03LBJgRU/qRHaOvlEkYJKmtODfJYM fJbjquIOkPPEX3IQDL1ltcDHU8+HFMysZwYPf27KpgNFqzODJ4QAt/6qfWD3Vd6K 1PEoXVJTQZJG5m4Qp4Un8jtXfWW3mQcHZjK4oydSXcPShOn0EaF4svoH95/sUAd7 /fKaBOQWnV8ApwVnNvSiPgUWZwJlLQfu -----END CERTIFICATE-----Generated at Fri Apr 4 22:36:58 2025 by rpki-client