$ rpki-client -vvf rpki.apnic.net/member_repository/A919B180/102BA19E9E4311EC87D0B26FC4F9AE02/lYVHVzXi7hA6iDV3aeF2MG0ZdHM.mft File: lYVHVzXi7hA6iDV3aeF2MG0ZdHM.mft (raw, json) Hash identifier: UMdP0yXvEbZse37LZDnNOMlVdE6XeCybMkBh0m4LZB4= Subject key identifier: EC:23:E1:3E:E2:16:11:C0:62:A4:C7:B0:C3:97:74:67:85:03:B7:86 Authority key identifier: 95:85:47:57:35:E2:EE:10:3A:88:35:77:69:E1:76:30:6D:19:74:73 Certificate issuer: /CN=A919B180/serialNumber=9585475735E2EE103A88357769E176306D197473 Certificate serial: 0380 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lYVHVzXi7hA6iDV3aeF2MG0ZdHM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B180/102BA19E9E4311EC87D0B26FC4F9AE02/lYVHVzXi7hA6iDV3aeF2MG0ZdHM.mft Manifest number: 0379 Signing time: Sat 05 Apr 2025 01:01:16 +0000 Manifest this update: Sat 05 Apr 2025 01:01:15 +0000 Manifest next update: Sat 12 Apr 2025 01:01:15 +0000 Files and hashes: 1: lYVHVzXi7hA6iDV3aeF2MG0ZdHM.crl (hash: mdV3uiTp2m15K4OlBwk2FPpZTb/xGWLcbZqbA73iotw=) 2: 886907F8EE9911EDB02DA367C4F9AE02.roa (hash: Wvz4cNe0OC8IhG60u+77ZZqG7jnCfkJuPUgGit+D/Bg=) 3: EAAACB14A46111ECA6D7AC4AC4F9AE02.roa (hash: G0VAwKVz22dJplsZ8JCisNdr5V+Bm42xeQ9XdjBCqhU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B180/102BA19E9E4311EC87D0B26FC4F9AE02/lYVHVzXi7hA6iDV3aeF2MG0ZdHM.crl rsync://rpki.apnic.net/member_repository/A919B180/102BA19E9E4311EC87D0B26FC4F9AE02/lYVHVzXi7hA6iDV3aeF2MG0ZdHM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lYVHVzXi7hA6iDV3aeF2MG0ZdHM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 01:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 896 (0x380) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B180 Validity Not Before: Apr 5 01:01:15 2025 GMT Not After : Apr 12 01:01:15 2025 GMT Subject: CN=67f080db-f7cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e2:05:49:69:de:19:70:91:2b:c9:9a:df:92: c6:33:56:d0:27:42:5c:58:5e:06:c3:e4:fe:66:60: 9c:58:ea:18:4c:09:da:b8:e1:14:c7:10:6c:c7:22: 00:35:34:a9:b7:fe:a0:68:a4:c6:81:2d:99:7a:b1: bf:b5:f2:57:68:da:10:2e:b2:d7:ea:8c:58:55:d2: f9:6f:2f:b1:67:ce:8f:8f:41:dc:c6:de:6e:c5:aa: 63:44:e6:3d:56:7d:15:16:5e:24:b1:10:58:f5:dc: c8:3e:a9:00:28:ae:cc:74:2f:31:8b:e9:b0:13:f3: 16:4f:19:0a:15:23:89:c3:55:ab:c7:ba:20:48:16: 7b:07:51:3c:8e:0e:28:5f:aa:37:0b:9a:df:46:29: 68:39:10:c6:10:ea:f8:92:07:75:88:e5:7d:06:94: 68:39:43:65:24:47:90:61:cd:4e:70:67:1a:f2:98: 9b:aa:45:37:60:91:76:cc:a4:0f:e1:89:4e:1d:f7: 67:6e:93:12:06:3e:6f:a3:e8:b9:4d:0e:fc:c8:4e: 86:b2:09:26:a6:24:26:69:81:cc:11:73:25:28:02: 92:dc:6c:64:1b:f7:21:76:36:47:39:d3:3e:91:35: c2:7a:f4:c0:de:71:43:e9:ac:d1:8a:c7:6c:85:07: eb:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:23:E1:3E:E2:16:11:C0:62:A4:C7:B0:C3:97:74:67:85:03:B7:86 X509v3 Authority Key Identifier: keyid:95:85:47:57:35:E2:EE:10:3A:88:35:77:69:E1:76:30:6D:19:74:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B180/102BA19E9E4311EC87D0B26FC4F9AE02/lYVHVzXi7hA6iDV3aeF2MG0ZdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lYVHVzXi7hA6iDV3aeF2MG0ZdHM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B180/102BA19E9E4311EC87D0B26FC4F9AE02/lYVHVzXi7hA6iDV3aeF2MG0ZdHM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:82:55:f2:0a:fd:9a:90:92:5a:04:b2:09:8f:68:dd:68:f1: cd:1d:45:7a:dc:ed:85:bb:ff:c7:6f:04:09:d6:f4:25:9a:ad: d2:ae:31:58:ad:5f:0d:23:7a:cd:4d:6a:98:ac:c9:27:9d:9f: d5:7f:71:2c:28:a5:35:0d:ba:71:7e:e1:46:f6:33:77:1d:15: 3b:ba:db:e9:55:95:cf:6a:45:37:ef:d4:42:80:1c:5f:bb:db: 6c:ff:83:fd:20:7c:93:5d:69:f0:12:ef:65:ff:89:3d:88:b8: e8:9b:e8:5c:18:6c:54:31:5b:91:fe:e6:6e:0a:6e:74:19:3e: 55:88:8f:f6:d3:f5:62:01:5b:1a:0f:2f:12:e6:77:2d:08:ec: af:d3:18:ad:66:a9:4d:72:d6:3b:84:c8:46:24:9d:15:9b:2b: 64:6e:ec:49:c3:d4:3a:be:fc:34:cf:3c:17:a6:1e:17:68:b1: 2f:76:e7:8d:77:53:e0:f9:f8:45:f9:24:ea:4f:97:5f:cb:7c: 55:ec:af:3f:55:d3:df:6e:2e:7f:47:d7:fe:ca:02:70:10:f7: 8e:e2:f5:e1:41:f8:02:42:6a:59:9f:ad:69:d8:8c:fc:01:d5: e9:28:7a:2d:b3:1c:2f:75:b9:1a:76:ed:46:27:71:df:e7:4f: 6b:96:4e:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUIxODAxMTAvBgNVBAUTKDk1ODU0NzU3MzVFMkVFMTAzQTg4MzU3NzY5RTE3NjMw NkQxOTc0NzMwHhcNMjUwNDA1MDEwMTE1WhcNMjUwNDEyMDEwMTE1WjAYMRYwFAYD VQQDEw02N2YwODBkYi1mN2NmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuuIFSWneGXCRK8ma35LGM1bQJ0JcWF4Gw+T+ZmCcWOoYTAnauOEUxxBsxyIA NTSpt/6gaKTGgS2ZerG/tfJXaNoQLrLX6oxYVdL5by+xZ86Pj0Hcxt5uxapjROY9 Vn0VFl4ksRBY9dzIPqkAKK7MdC8xi+mwE/MWTxkKFSOJw1Wrx7ogSBZ7B1E8jg4o X6o3C5rfRiloORDGEOr4kgd1iOV9BpRoOUNlJEeQYc1OcGca8pibqkU3YJF2zKQP 4YlOHfdnbpMSBj5vo+i5TQ78yE6GsgkmpiQmaYHMEXMlKAKS3GxkG/chdjZHOdM+ kTXCevTA3nFD6azRisdshQfrAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOwj4T7i FhHAYqTHsMOXdGeFA7eGMB8GA1UdIwQYMBaAFJWFR1c14u4QOog1d2nhdjBtGXRz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjE4MC8xMDJCQTE5RTlF NDMxMUVDODdEMEIyNkZDNEY5QUUwMi9sWVZIVnpYaTdoQTZpRFYzYWVGMk1HMFpk SE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xZVkhWelhpN2hBNmlEVjNhZUYyTUcwWmRITS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QjE4MC8xMDJCQTE5RTlFNDMxMUVDODdEMEIyNkZDNEY5QUUwMi9sWVZIVnpYaTdo QTZpRFYzYWVGMk1HMFpkSE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChglXyCv2akJJaBLIJj2jdaPHNHUV63O2Fu//HbwQJ1vQlmq3SrjFY rV8NI3rNTWqYrMknnZ/Vf3EsKKU1DbpxfuFG9jN3HRU7utvpVZXPakU379RCgBxf u9ts/4P9IHyTXWnwEu9l/4k9iLjom+hcGGxUMVuR/uZuCm50GT5ViI/20/ViAVsa Dy8S5nctCOyv0xitZqlNctY7hMhGJJ0VmytkbuxJw9Q6vvw0zzwXph4XaLEvdueN d1Pg+fhF+STqT5dfy3xV7K8/VdPfbi5/R9f+ygJwEPeO4vXhQfgCQmpZn61p2Iz8 AdXpKHotsxwvdbkadu1GJ3Hf509rlk4l -----END CERTIFICATE-----Generated at Sun Apr 6 19:35:41 2025 by rpki-client