$ rpki-client -vvf rpki.apnic.net/member_repository/A9169E9B/7A53A61825A311EAA47F0527C4F9AE02/l0lYFtbbSd_t6sTBdCkSb-Pfl_s.mft File: l0lYFtbbSd_t6sTBdCkSb-Pfl_s.mft (raw, json) Hash identifier: 5es9NJWqTVqi30J4to5g/+0EiRKpCCABVj5LIv6pE48= Subject key identifier: 1D:83:EB:5A:69:C8:F7:96:04:D7:E6:A1:B1:A2:D5:C7:30:01:0D:62 Authority key identifier: 97:49:58:16:D6:DB:49:DF:ED:EA:C4:C1:74:29:12:6F:E3:DF:97:FB Certificate issuer: /CN=A9169E9B/serialNumber=97495816D6DB49DFEDEAC4C17429126FE3DF97FB Certificate serial: 0B91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l0lYFtbbSd_t6sTBdCkSb-Pfl_s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169E9B/7A53A61825A311EAA47F0527C4F9AE02/l0lYFtbbSd_t6sTBdCkSb-Pfl_s.mft Manifest number: 0B7F Signing time: Fri 28 Mar 2025 19:12:48 +0000 Manifest this update: Fri 28 Mar 2025 19:12:48 +0000 Manifest next update: Fri 04 Apr 2025 19:12:48 +0000 Files and hashes: 1: l0lYFtbbSd_t6sTBdCkSb-Pfl_s.crl (hash: MN/lD+IzvoNsodmG4OUC+z4oklt/mbC0nKCUautHwBM=) 2: A807146437E411EC9BA3E20AC4F9AE02.roa (hash: dh5ymVZvIc7FqFzTtBzYEQEIMygfVmNQaVU/qA2YVgE=) 3: A6EF086637E411EC9BA3E20AC4F9AE02.roa (hash: K2Zxx9ME49vXDeg1Ffdf+j0UFdQqBnMUQi0IozP8thk=) 4: A64A2A9437E411EC9BA3E20AC4F9AE02.roa (hash: W6nL3EukqFE9RFLXXry6g4CH+1Dbd14zPnwD38PnUxM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169E9B/7A53A61825A311EAA47F0527C4F9AE02/l0lYFtbbSd_t6sTBdCkSb-Pfl_s.crl rsync://rpki.apnic.net/member_repository/A9169E9B/7A53A61825A311EAA47F0527C4F9AE02/l0lYFtbbSd_t6sTBdCkSb-Pfl_s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l0lYFtbbSd_t6sTBdCkSb-Pfl_s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 19:12:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2961 (0xb91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169E9B Validity Not Before: Mar 28 19:12:48 2025 GMT Not After : Apr 4 19:12:48 2025 GMT Subject: CN=67e6f4b0-d3f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:0a:f8:57:dd:2d:3a:e7:ad:ec:ae:67:a5:da: 49:68:51:67:6f:28:05:f1:0c:60:a0:25:1f:3d:a5: 0d:cf:6a:45:2c:e7:e5:2c:1f:74:97:f4:34:aa:01: 94:ac:d7:79:d6:0c:88:33:a3:95:cf:d6:c4:c0:8a: 64:27:4a:d5:2b:f7:b9:6a:95:a2:d9:e6:8a:4d:21: 2b:cc:ed:d2:70:26:a9:7a:ab:d8:60:4f:84:e4:8d: 39:a6:71:5e:e5:e3:81:77:fa:cd:f5:90:aa:fc:cc: ef:fe:b0:50:c3:c1:87:aa:70:c9:c1:df:5a:65:97: 45:59:63:c2:69:ca:bf:b2:4a:ce:9f:99:e4:3a:63: 3d:d6:f5:0d:06:4c:0c:98:2e:8f:e2:76:c9:c9:8f: 0e:f9:d7:21:f3:cb:3f:c4:20:d0:d2:69:05:20:c0: f8:09:0c:1f:74:a1:68:6b:99:d3:bc:df:8e:a0:5b: 0e:fb:12:c5:08:03:b8:8b:7a:56:23:4d:ce:54:32: 5f:7b:ef:b0:c5:27:80:c4:f1:6b:2a:96:3d:07:c7: 9b:bf:64:60:be:ad:1c:26:c2:0c:0e:2b:77:fe:34: 0a:74:9a:d1:3c:3b:77:97:33:49:43:93:4f:aa:52: c0:ca:b1:e7:f6:c6:61:e5:59:fd:59:d4:3a:2f:25: 74:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:83:EB:5A:69:C8:F7:96:04:D7:E6:A1:B1:A2:D5:C7:30:01:0D:62 X509v3 Authority Key Identifier: keyid:97:49:58:16:D6:DB:49:DF:ED:EA:C4:C1:74:29:12:6F:E3:DF:97:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169E9B/7A53A61825A311EAA47F0527C4F9AE02/l0lYFtbbSd_t6sTBdCkSb-Pfl_s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l0lYFtbbSd_t6sTBdCkSb-Pfl_s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169E9B/7A53A61825A311EAA47F0527C4F9AE02/l0lYFtbbSd_t6sTBdCkSb-Pfl_s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:8f:20:a5:7d:96:70:6e:97:1b:9f:66:f9:9d:85:d9:2b:d5: e8:c1:58:fd:35:8b:d4:9c:f1:c1:ea:89:6e:6d:a1:13:80:9b: af:ab:1f:45:54:b5:d0:7a:e7:e5:f3:48:7a:a0:af:59:ef:cf: a7:84:a0:fc:b9:73:64:84:6b:63:e1:de:e1:82:87:3e:4f:bc: 3b:2a:d8:6a:7f:19:86:8c:08:40:f8:19:62:e7:af:4a:18:cc: 9c:c8:5d:e7:ec:c7:7b:de:4f:9e:69:b8:0d:c4:5a:46:be:25: 49:7e:d3:6f:03:78:00:31:96:48:a0:46:4b:10:64:53:0a:0f: 0d:2b:56:64:f6:69:c3:c9:20:36:62:29:c8:26:15:8b:b7:ea: 93:93:1d:fe:75:6d:6e:92:06:62:69:f4:59:65:9a:f6:16:46: dd:4e:a3:ca:78:d6:63:77:cb:26:ab:2a:8f:80:f1:56:79:6d: de:53:40:10:6c:50:d7:22:bd:fc:ad:f8:e8:71:8b:f9:a7:40: aa:33:34:98:09:ca:26:4a:2c:45:98:74:07:b2:b8:d0:20:a3: 60:9a:d5:a7:db:ba:f3:7a:a2:42:34:97:de:46:46:5e:16:18: 6a:71:e1:41:55:fa:d0:7e:52:3a:3b:8f:74:75:06:a3:40:a5: 1e:c0:c7:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC5EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjlFOUIxMTAvBgNVBAUTKDk3NDk1ODE2RDZEQjQ5REZFREVBQzRDMTc0MjkxMjZG RTNERjk3RkIwHhcNMjUwMzI4MTkxMjQ4WhcNMjUwNDA0MTkxMjQ4WjAYMRYwFAYD VQQDEw02N2U2ZjRiMC1kM2YyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzwr4V90tOuet7K5npdpJaFFnbygF8QxgoCUfPaUNz2pFLOflLB90l/Q0qgGU rNd51gyIM6OVz9bEwIpkJ0rVK/e5apWi2eaKTSErzO3ScCapeqvYYE+E5I05pnFe 5eOBd/rN9ZCq/Mzv/rBQw8GHqnDJwd9aZZdFWWPCacq/skrOn5nkOmM91vUNBkwM mC6P4nbJyY8O+dch88s/xCDQ0mkFIMD4CQwfdKFoa5nTvN+OoFsO+xLFCAO4i3pW I03OVDJfe++wxSeAxPFrKpY9B8ebv2Rgvq0cJsIMDit3/jQKdJrRPDt3lzNJQ5NP qlLAyrHn9sZh5Vn9WdQ6LyV0qQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB2D61pp yPeWBNfmobGi1ccwAQ1iMB8GA1UdIwQYMBaAFJdJWBbW20nf7erEwXQpEm/j35f7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OUU5Qi83QTUzQTYxODI1 QTMxMUVBQTQ3RjA1MjdDNEY5QUUwMi9sMGxZRnRiYlNkX3Q2c1RCZENrU2ItUGZs X3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2wwbFlGdGJiU2RfdDZzVEJkQ2tTYi1QZmxfcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OUU5Qi83QTUzQTYxODI1QTMxMUVBQTQ3RjA1MjdDNEY5QUUwMi9sMGxZRnRiYlNk X3Q2c1RCZENrU2ItUGZsX3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBojyClfZZwbpcbn2b5nYXZK9XowVj9NYvUnPHB6olubaETgJuvqx9F VLXQeufl80h6oK9Z78+nhKD8uXNkhGtj4d7hgoc+T7w7KthqfxmGjAhA+Bli569K GMycyF3n7Md73k+eabgNxFpGviVJftNvA3gAMZZIoEZLEGRTCg8NK1Zk9mnDySA2 YinIJhWLt+qTkx3+dW1ukgZiafRZZZr2FkbdTqPKeNZjd8smqyqPgPFWeW3eU0AQ bFDXIr38rfjocYv5p0CqMzSYCcomSixFmHQHsrjQIKNgmtWn27rzeqJCNJfeRkZe FhhqceFBVfrQflI6O490dQajQKUewMfa -----END CERTIFICATE-----Generated at Fri Apr 4 18:35:52 2025 by rpki-client