$ rpki-client -vvf rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.mft File: 0pm8o5yZPbgNETe5mbIhhGrPVWs.mft (raw, json) Hash identifier: 8/8b9dQbHVfL4b4/d9iN2ObGNwJXazYjVkfVx1qcyVQ= Subject key identifier: 2E:09:44:D5:DD:5B:85:06:AE:7E:C3:A3:FE:B1:1E:85:0D:2B:E4:EB Authority key identifier: D2:99:BC:A3:9C:99:3D:B8:0D:11:37:B9:99:B2:21:84:6A:CF:55:6B Certificate issuer: /CN=A9115C2E/serialNumber=D299BCA39C993DB80D1137B999B221846ACF556B Certificate serial: 04AB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0pm8o5yZPbgNETe5mbIhhGrPVWs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.mft Manifest number: 04A5 Signing time: Wed 12 Mar 2025 19:49:19 +0000 Manifest this update: Wed 12 Mar 2025 19:49:19 +0000 Manifest next update: Wed 19 Mar 2025 19:49:19 +0000 Files and hashes: 1: 0pm8o5yZPbgNETe5mbIhhGrPVWs.crl (hash: 08z28O2cTplrE7gtLiiZ/fkaEtpPKmVjDhzTZqx6pcA=) 2: F490AE2431D811ECA3C4CE3EC4F9AE02.roa (hash: /oifx1YqYxKOVaxnhM6Z6BMW1b5AcpZK0vDtcYNO6Zg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.crl rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0pm8o5yZPbgNETe5mbIhhGrPVWs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 19:49:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1195 (0x4ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9115C2E Validity Not Before: Mar 12 19:49:19 2025 GMT Not After : Mar 19 19:49:19 2025 GMT Subject: CN=67d1e53f-ddd3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:a5:64:3d:92:8f:5d:2b:64:25:78:ed:4b:27: 6e:0b:6f:c8:9d:f8:a5:f1:fb:14:23:68:6b:ee:e1: 1e:17:fa:9b:f0:26:43:c9:0e:ee:af:09:55:a8:13: 41:d3:6b:5f:98:4d:fe:e1:a9:a1:6d:04:56:52:cf: c0:92:ee:43:ec:cd:7d:09:00:d4:5b:a5:91:25:fb: 63:f0:ec:ac:f5:f1:18:d7:b4:bb:59:62:cc:19:16: af:47:d8:fd:7b:73:ad:bd:ad:05:4a:a9:8e:07:d3: a6:6d:73:a9:46:ae:d1:a4:41:b3:7d:13:44:48:6b: d8:4b:cb:2f:cf:e3:0a:62:f7:20:dd:79:56:33:d1: ba:6b:5d:d6:48:0e:45:6a:1e:35:d9:96:f2:d8:b3: bf:f1:6a:8a:89:eb:4e:fa:f6:ce:ac:13:d5:39:4c: 9f:35:0b:c7:1c:42:2b:c2:2b:52:64:e8:ba:dc:a4: c8:0e:8f:c2:a7:a9:e8:bd:5c:93:46:8c:9a:59:d2: 59:72:a5:e1:65:c4:11:b9:26:90:86:55:3b:1f:27: b0:88:32:1b:e2:af:5d:18:2c:24:f5:61:58:17:d1: cf:cd:46:7e:97:4d:fc:68:4a:6b:46:4e:7a:dc:ab: f8:e3:16:a8:6d:ec:5d:72:8e:73:98:93:fa:f1:e1: bc:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:09:44:D5:DD:5B:85:06:AE:7E:C3:A3:FE:B1:1E:85:0D:2B:E4:EB X509v3 Authority Key Identifier: keyid:D2:99:BC:A3:9C:99:3D:B8:0D:11:37:B9:99:B2:21:84:6A:CF:55:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0pm8o5yZPbgNETe5mbIhhGrPVWs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:5f:d9:13:40:65:ba:bf:a2:12:19:9f:59:99:2c:61:14:1f: 01:ce:53:55:dd:bb:8d:6a:fe:bc:8b:ee:49:a1:26:3a:3d:98: 22:04:1d:d7:fe:78:c5:93:50:f3:e2:cd:a3:f8:b1:bd:ab:60: c3:6e:b7:a0:29:44:b9:e1:59:bc:ac:00:61:1b:9b:1f:b6:be: 17:f8:f5:f8:65:ee:8e:a2:c1:d8:9b:32:f8:f4:81:b9:99:b2: 85:b0:a2:a1:a3:fb:00:1a:24:00:3f:2f:77:0e:d9:88:0b:b9: de:31:a7:55:e2:33:f4:d7:63:94:6d:89:eb:7f:5e:73:ca:9d: 4a:c1:34:fc:d4:a3:3a:4c:35:c1:44:87:6f:f3:26:95:ce:6a: 4d:9c:f0:62:4a:3e:35:94:94:bd:dd:6f:39:09:4f:b8:b2:8a: 96:32:2a:9b:96:0b:c7:33:bd:ef:27:33:4b:19:74:20:d6:4f: 54:66:77:98:24:6c:01:1b:e5:90:20:06:2e:30:3d:ca:81:29: 99:12:03:17:df:27:45:53:c9:62:ed:a7:2f:68:3c:67:cd:6a: 95:ce:3f:5b:fe:c7:ee:06:d0:c4:50:d3:a9:65:4a:5d:6e:cf: bc:e8:94:72:0c:8d:eb:a8:c0:6e:ff:b5:08:cb:cb:d6:77:53: cd:3d:bc:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTVDMkUxMTAvBgNVBAUTKEQyOTlCQ0EzOUM5OTNEQjgwRDExMzdCOTk5QjIyMTg0 NkFDRjU1NkIwHhcNMjUwMzEyMTk0OTE5WhcNMjUwMzE5MTk0OTE5WjAYMRYwFAYD VQQDEw02N2QxZTUzZi1kZGQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArKVkPZKPXStkJXjtSyduC2/Infil8fsUI2hr7uEeF/qb8CZDyQ7urwlVqBNB 02tfmE3+4amhbQRWUs/Aku5D7M19CQDUW6WRJftj8Oys9fEY17S7WWLMGRavR9j9 e3Otva0FSqmOB9OmbXOpRq7RpEGzfRNESGvYS8svz+MKYvcg3XlWM9G6a13WSA5F ah412Zby2LO/8WqKietO+vbOrBPVOUyfNQvHHEIrwitSZOi63KTIDo/Cp6novVyT RoyaWdJZcqXhZcQRuSaQhlU7HyewiDIb4q9dGCwk9WFYF9HPzUZ+l038aEprRk56 3Kv44xaobexdco5zmJP68eG8yQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC4JRNXd W4UGrn7Do/6xHoUNK+TrMB8GA1UdIwQYMBaAFNKZvKOcmT24DRE3uZmyIYRqz1Vr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNUMyRS85NTI3RTZCNDI2 OEUxMUVDOEVEMEJBNkVDNEY5QUUwMi8wcG04bzV5WlBiZ05FVGU1bWJJaGhHclBW V3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBwbThvNXlaUGJnTkVUZTVtYkloaEdyUFZXcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NUMyRS85NTI3RTZCNDI2OEUxMUVDOEVEMEJBNkVDNEY5QUUwMi8wcG04bzV5WlBi Z05FVGU1bWJJaGhHclBWV3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoX9kTQGW6v6ISGZ9ZmSxhFB8BzlNV3buNav68i+5JoSY6PZgiBB3X /njFk1Dz4s2j+LG9q2DDbregKUS54Vm8rABhG5sftr4X+PX4Ze6OosHYmzL49IG5 mbKFsKKho/sAGiQAPy93DtmIC7neMadV4jP012OUbYnrf15zyp1KwTT81KM6TDXB RIdv8yaVzmpNnPBiSj41lJS93W85CU+4soqWMiqblgvHM73vJzNLGXQg1k9UZneY JGwBG+WQIAYuMD3KgSmZEgMX3ydFU8li7acvaDxnzWqVzj9b/sfuBtDEUNOpZUpd bs+86JRyDI3rqMBu/7UIy8vWd1PNPbyX -----END CERTIFICATE-----Generated at Thu Mar 13 21:31:01 2025 by rpki-client