$ rpki-client -vvf rpki.apnic.net/member_repository/A917F247/6D22EAF08F0311ECA5C9FE12C4F9AE02/kEojXLR0fghgD8HSa5P1HEZ066o.mft File: kEojXLR0fghgD8HSa5P1HEZ066o.mft (raw, json) Hash identifier: ZGnw9Ljm9vvg5CYOXzeWvdJFiK1w1WWAdeThkbTVm9U= Subject key identifier: 2B:D1:DB:14:A4:46:24:BA:38:C5:61:B7:7E:CF:A8:56:15:3D:07:33 Authority key identifier: 90:4A:23:5C:B4:74:7E:08:60:0F:C1:D2:6B:93:F5:1C:46:74:EB:AA Certificate issuer: /CN=A917F247/serialNumber=904A235CB4747E08600FC1D26B93F51C4674EBAA Certificate serial: 03C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kEojXLR0fghgD8HSa5P1HEZ066o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F247/6D22EAF08F0311ECA5C9FE12C4F9AE02/kEojXLR0fghgD8HSa5P1HEZ066o.mft Manifest number: 03AB Signing time: Wed 09 Apr 2025 00:26:59 +0000 Manifest this update: Wed 09 Apr 2025 00:26:58 +0000 Manifest next update: Wed 16 Apr 2025 00:26:58 +0000 Files and hashes: 1: kEojXLR0fghgD8HSa5P1HEZ066o.crl (hash: Hr/4T83QzSgtx8unkAPYtZlGpi2nRKIk7toiezkNrwE=) 2: CA2F11AE8F0511ECB2497B14C4F9AE02.roa (hash: 2wBvjopI6Vu44IOAbgZoKB38msMcdFtbrAtro1uYtcs=) 3: 155309DAFF3B11EF87CAB56EC4F9AE02.roa (hash: sKV1Z0cYRUE+VWc2YxnGxIUnhyBPTtnJSFk2o11IcBY=) 4: C99952B88F0511ECB2497B14C4F9AE02.roa (hash: lMMU3olW5BuoTZQ6q1+8/uYyxoqh/0x3DcqtcEwX+/M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F247/6D22EAF08F0311ECA5C9FE12C4F9AE02/kEojXLR0fghgD8HSa5P1HEZ066o.crl rsync://rpki.apnic.net/member_repository/A917F247/6D22EAF08F0311ECA5C9FE12C4F9AE02/kEojXLR0fghgD8HSa5P1HEZ066o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kEojXLR0fghgD8HSa5P1HEZ066o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 00:26:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 961 (0x3c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F247 Validity Not Before: Apr 9 00:26:58 2025 GMT Not After : Apr 16 00:26:58 2025 GMT Subject: CN=67f5bed3-fbd8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:b2:cb:12:41:91:ce:39:05:53:8b:33:a5:52: a5:d7:23:8b:97:ca:93:cf:c1:22:29:98:fc:0a:24: 49:5e:33:d5:0d:e1:69:5d:1b:85:82:fb:b2:57:a9: ce:1a:f7:3f:89:b9:76:5d:a2:d9:60:c0:d9:64:49: 40:ae:2d:3c:0e:23:83:fc:af:3d:f0:26:8c:d2:a2: 3c:f1:84:1a:63:2d:28:8b:ee:9c:c8:7a:24:5f:22: b0:2d:0d:80:e0:b4:58:f5:a0:1f:0e:b3:5f:ab:71: 7a:97:47:34:aa:f1:ca:19:b2:51:41:a7:81:c2:7a: 7d:d5:4c:dd:c6:45:62:4b:40:f0:50:a4:9b:c2:dc: ea:0c:a0:0e:95:e1:7b:78:0b:ba:a6:12:dd:d0:ac: 1b:31:1b:e0:36:59:53:47:f6:60:5a:8f:69:57:d6: 1d:07:26:f8:69:8f:9e:cc:94:34:06:e2:e9:00:20: 43:90:b6:3e:51:89:3c:1b:de:cb:db:d1:de:26:3f: 5d:de:ce:09:ed:2c:5f:71:47:cd:03:c8:10:90:ef: ae:ed:8e:ca:a2:ec:9d:7c:f2:91:eb:7a:ab:36:8e: 56:7a:cf:dd:3c:72:2b:88:11:c0:5a:fe:8a:c6:74: 40:25:bc:fc:18:b9:a3:1d:04:ee:34:6e:b2:e1:34: df:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:D1:DB:14:A4:46:24:BA:38:C5:61:B7:7E:CF:A8:56:15:3D:07:33 X509v3 Authority Key Identifier: keyid:90:4A:23:5C:B4:74:7E:08:60:0F:C1:D2:6B:93:F5:1C:46:74:EB:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F247/6D22EAF08F0311ECA5C9FE12C4F9AE02/kEojXLR0fghgD8HSa5P1HEZ066o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kEojXLR0fghgD8HSa5P1HEZ066o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F247/6D22EAF08F0311ECA5C9FE12C4F9AE02/kEojXLR0fghgD8HSa5P1HEZ066o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:6c:69:78:ea:31:2d:b8:57:ca:29:ea:6d:dc:88:a9:84:14: aa:d3:a6:c7:cc:09:3e:42:bd:c8:b9:fb:3b:f2:14:51:7a:6e: 6e:4b:ea:b1:6a:ab:a4:e8:02:e1:bf:d0:53:91:af:85:94:08: 1c:81:26:a4:d4:41:91:67:9d:b8:35:77:c6:da:45:a5:5a:cd: 5d:97:8c:07:a6:93:5b:0d:68:c5:9a:3c:3a:66:85:62:d1:5a: 00:4e:04:fb:04:a2:b2:a1:64:6b:b5:7d:41:d6:ac:6a:23:ac: 3b:b5:84:b8:06:44:e6:c3:e6:f8:d5:00:72:ca:ac:39:e6:1e: 08:33:0c:bc:5e:0e:09:7d:e1:59:84:6c:bd:c8:54:2f:a7:ab: c6:87:74:cc:8b:53:6c:f0:dd:5c:31:c1:00:2a:e4:92:a8:f9: 95:5d:e5:5c:c4:60:41:9f:80:d1:f3:a4:d7:af:e5:b6:30:2f: 82:f0:29:e7:0e:c9:17:b4:df:37:58:3d:3c:af:8c:3b:a8:79: f4:04:8f:63:03:15:ee:cb:33:34:6b:56:80:5d:f6:bb:d2:5e: be:72:97:77:0e:cf:a5:6d:81:2d:d6:d0:83:42:0a:eb:25:ee: a7:e8:61:d7:0b:f0:72:3b:5a:fb:99:af:98:5f:bd:a1:1e:dd: 7b:f1:9b:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA8EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0YyNDcxMTAvBgNVBAUTKDkwNEEyMzVDQjQ3NDdFMDg2MDBGQzFEMjZCOTNGNTFD NDY3NEVCQUEwHhcNMjUwNDA5MDAyNjU4WhcNMjUwNDE2MDAyNjU4WjAYMRYwFAYD VQQDEw02N2Y1YmVkMy1mYmQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArLLLEkGRzjkFU4szpVKl1yOLl8qTz8EiKZj8CiRJXjPVDeFpXRuFgvuyV6nO Gvc/ibl2XaLZYMDZZElAri08DiOD/K898CaM0qI88YQaYy0oi+6cyHokXyKwLQ2A 4LRY9aAfDrNfq3F6l0c0qvHKGbJRQaeBwnp91UzdxkViS0DwUKSbwtzqDKAOleF7 eAu6phLd0KwbMRvgNllTR/ZgWo9pV9YdByb4aY+ezJQ0BuLpACBDkLY+UYk8G97L 29HeJj9d3s4J7SxfcUfNA8gQkO+u7Y7KouydfPKR63qrNo5Wes/dPHIriBHAWv6K xnRAJbz8GLmjHQTuNG6y4TTfmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCvR2xSk RiS6OMVht37PqFYVPQczMB8GA1UdIwQYMBaAFJBKI1y0dH4IYA/B0muT9RxGdOuq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjI0Ny82RDIyRUFGMDhG MDMxMUVDQTVDOUZFMTJDNEY5QUUwMi9rRW9qWExSMGZnaGdEOEhTYTVQMUhFWjA2 Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tFb2pYTFIwZmdoZ0Q4SFNhNVAxSEVaMDY2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjI0Ny82RDIyRUFGMDhGMDMxMUVDQTVDOUZFMTJDNEY5QUUwMi9rRW9qWExSMGZn aGdEOEhTYTVQMUhFWjA2Nm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxbGl46jEtuFfKKept3IiphBSq06bHzAk+Qr3Iufs78hRRem5uS+qx aquk6ALhv9BTka+FlAgcgSak1EGRZ524NXfG2kWlWs1dl4wHppNbDWjFmjw6ZoVi 0VoATgT7BKKyoWRrtX1B1qxqI6w7tYS4BkTmw+b41QByyqw55h4IMwy8Xg4JfeFZ hGy9yFQvp6vGh3TMi1Ns8N1cMcEAKuSSqPmVXeVcxGBBn4DR86TXr+W2MC+C8Cnn DskXtN83WD08r4w7qHn0BI9jAxXuyzM0a1aAXfa70l6+cpd3Ds+lbYEt1tCDQgrr Je6n6GHXC/ByO1r7ma+YX72hHt178ZuM -----END CERTIFICATE-----Generated at Fri Apr 11 19:36:43 2025 by rpki-client