$ rpki-client -vvf rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.mft File: lUpwG6oMkx0BduSFt6KHwTFlJg4.mft (raw, json) Hash identifier: y4m9hbv0RTaiRYc9Mh0TtlA6CzCHBd6WYG3xfw9aRgk= Subject key identifier: 4C:D3:7C:16:41:48:C9:75:1F:31:10:C8:E6:E9:8F:D8:06:5B:B0:FE Authority key identifier: 95:4A:70:1B:AA:0C:93:1D:01:76:E4:85:B7:A2:87:C1:31:65:26:0E Certificate issuer: /CN=A9185CED/serialNumber=954A701BAA0C931D0176E485B7A287C13165260E Certificate serial: 0619 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUpwG6oMkx0BduSFt6KHwTFlJg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.mft Manifest number: 0617 Signing time: Fri 28 Mar 2025 23:02:12 +0000 Manifest this update: Fri 28 Mar 2025 23:02:12 +0000 Manifest next update: Fri 04 Apr 2025 23:02:12 +0000 Files and hashes: 1: lUpwG6oMkx0BduSFt6KHwTFlJg4.crl (hash: Nxqj1vhsJ6a3w4Lo4Ux41c01LdFozlsLw2OmiXjnSoA=) 2: 3A84DC2C44E411EFB0C1A135C4F9AE02.roa (hash: JGxMB26ttBekYTYeINbF/ZGgUOz7c1MGNzdVG0LlGY0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.crl rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUpwG6oMkx0BduSFt6KHwTFlJg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 23:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1561 (0x619) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185CED Validity Not Before: Mar 28 23:02:12 2025 GMT Not After : Apr 4 23:02:12 2025 GMT Subject: CN=67e72a74-3d79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:46:b2:6a:45:8d:e7:e6:d7:3d:be:c3:af:6f: be:ec:21:2d:e5:a3:d0:78:69:64:ae:6a:8a:95:06: 79:9b:2a:6d:03:d6:34:65:f1:70:53:d4:e2:6d:e1: d8:89:38:6a:23:4b:70:a0:e1:f1:0a:b0:6a:7f:36: 15:66:aa:34:8d:c7:94:2f:a9:e7:44:84:32:85:a9: 68:35:98:01:7a:82:92:77:68:80:1a:92:1c:35:f4: d9:8a:cd:ef:66:2e:13:49:33:ed:6e:70:48:82:1c: f5:41:a0:3a:02:21:f4:9c:62:bd:65:0c:11:24:c9: 35:a3:4c:67:43:32:7c:96:e2:e5:76:81:89:90:0e: 27:37:4a:58:44:e1:19:6e:ab:21:f9:19:18:bc:45: f6:e2:a0:ec:97:0c:c4:5c:4c:f6:4f:e0:b1:f8:b0: ee:66:04:35:6b:0f:8e:62:cb:f3:b6:15:89:e7:5b: a3:27:d2:48:75:13:4e:cd:ff:87:39:64:e1:f4:0a: e6:70:39:fd:79:6e:b3:49:2f:b3:1c:f7:46:27:d0: 77:ba:6f:44:d9:b3:aa:b3:9c:1f:69:47:52:ac:0f: ad:3b:ab:1a:83:f5:4b:3e:a5:61:90:a8:da:b5:76: c3:78:62:33:cd:76:70:6e:79:9f:30:55:92:fa:28: 8b:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:D3:7C:16:41:48:C9:75:1F:31:10:C8:E6:E9:8F:D8:06:5B:B0:FE X509v3 Authority Key Identifier: keyid:95:4A:70:1B:AA:0C:93:1D:01:76:E4:85:B7:A2:87:C1:31:65:26:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUpwG6oMkx0BduSFt6KHwTFlJg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:8c:c2:ff:25:b9:a5:68:15:43:4a:89:0d:35:ac:fc:b6:4b: 86:bf:28:df:9a:79:c7:87:d4:f9:82:6d:0d:af:4c:64:d1:d9: f5:ab:52:8f:e7:9e:f8:c3:1f:fa:be:78:fa:16:62:72:b5:8e: 6d:13:45:c5:34:5e:0e:f8:f1:81:e4:fc:f1:c8:79:36:c1:9f: 97:dd:13:78:dd:2c:a1:22:99:e8:61:89:82:b7:d2:cb:d9:bf: 2a:1c:ea:27:8d:08:f5:a4:19:b0:3a:6d:78:b2:9e:61:10:34: 15:87:03:19:0c:c1:47:ca:9d:c7:df:28:28:4d:01:21:77:89: 5e:0b:90:97:eb:ba:a9:81:50:56:91:d5:56:1b:d4:ca:67:c0: 5e:b9:ab:93:56:68:c6:a7:d6:64:a6:83:eb:31:e6:5e:e2:d5: 4d:8d:84:2e:70:4f:8b:0f:ba:7d:16:1f:86:32:cc:1a:a4:e3: 83:29:32:c7:e8:5d:5f:b9:d1:be:a1:1a:ff:7c:ba:2d:bb:4b: 35:e4:c5:ef:2b:24:57:1d:69:fd:05:fc:46:a5:df:02:fb:9d: 93:d9:cb:35:01:6a:24:37:4b:f9:1c:ac:f2:6a:a5:52:3a:9e: 9b:93:53:cc:f7:5c:5d:4a:74:45:45:5a:03:e7:06:7b:82:3e: e9:69:e7:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVDRUQxMTAvBgNVBAUTKDk1NEE3MDFCQUEwQzkzMUQwMTc2RTQ4NUI3QTI4N0Mx MzE2NTI2MEUwHhcNMjUwMzI4MjMwMjEyWhcNMjUwNDA0MjMwMjEyWjAYMRYwFAYD VQQDEw02N2U3MmE3NC0zZDc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx0ayakWN5+bXPb7Dr2++7CEt5aPQeGlkrmqKlQZ5myptA9Y0ZfFwU9TibeHY iThqI0twoOHxCrBqfzYVZqo0jceUL6nnRIQyhaloNZgBeoKSd2iAGpIcNfTZis3v Zi4TSTPtbnBIghz1QaA6AiH0nGK9ZQwRJMk1o0xnQzJ8luLldoGJkA4nN0pYROEZ bqsh+RkYvEX24qDslwzEXEz2T+Cx+LDuZgQ1aw+OYsvzthWJ51ujJ9JIdRNOzf+H OWTh9ArmcDn9eW6zSS+zHPdGJ9B3um9E2bOqs5wfaUdSrA+tO6sag/VLPqVhkKja tXbDeGIzzXZwbnmfMFWS+iiLSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEzTfBZB SMl1HzEQyObpj9gGW7D+MB8GA1UdIwQYMBaAFJVKcBuqDJMdAXbkhbeih8ExZSYO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUNFRC8xQUFGN0Q5NDky MjcxMUVCQkU3MzRGNDBDNEY5QUUwMi9sVXB3RzZvTWt4MEJkdVNGdDZLSHdURmxK ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xVcHdHNm9Na3gwQmR1U0Z0NktId1RGbEpnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUNFRC8xQUFGN0Q5NDkyMjcxMUVCQkU3MzRGNDBDNEY5QUUwMi9sVXB3RzZvTWt4 MEJkdVNGdDZLSHdURmxKZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBjML/JbmlaBVDSokNNaz8tkuGvyjfmnnHh9T5gm0Nr0xk0dn1q1KP 5574wx/6vnj6FmJytY5tE0XFNF4O+PGB5PzxyHk2wZ+X3RN43SyhIpnoYYmCt9LL 2b8qHOonjQj1pBmwOm14sp5hEDQVhwMZDMFHyp3H3ygoTQEhd4leC5CX67qpgVBW kdVWG9TKZ8BeuauTVmjGp9ZkpoPrMeZe4tVNjYQucE+LD7p9Fh+GMswapOODKTLH 6F1fudG+oRr/fLotu0s15MXvKyRXHWn9BfxGpd8C+52T2cs1AWokN0v5HKzyaqVS Op6bk1PM91xdSnRFRVoD5wZ7gj7paedO -----END CERTIFICATE-----Generated at Fri Apr 4 22:04:19 2025 by rpki-client