$ rpki-client -vvf rpki.apnic.net/member_repository/A911BD54/D90112843F4F11E59512E04CC4F9AE02/L1nO2mFIFfRjLznVoxwqUUjGtPo.mft File: L1nO2mFIFfRjLznVoxwqUUjGtPo.mft (raw, json) Hash identifier: wnota5bGf2oITTTwMRhiPehu/Le1fVAlZhYJsCq8pSw= Subject key identifier: 1C:32:9C:E1:F3:DE:49:EA:0A:8D:E5:C9:BB:93:A5:D2:56:3C:C0:38 Authority key identifier: 2F:59:CE:DA:61:48:15:F4:63:2F:39:D5:A3:1C:2A:51:48:C6:B4:FA Certificate issuer: /CN=A911BD54/serialNumber=2F59CEDA614815F4632F39D5A31C2A5148C6B4FA Certificate serial: 252F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L1nO2mFIFfRjLznVoxwqUUjGtPo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BD54/D90112843F4F11E59512E04CC4F9AE02/L1nO2mFIFfRjLznVoxwqUUjGtPo.mft Manifest number: 24C8 Signing time: Wed 12 Mar 2025 15:42:17 +0000 Manifest this update: Wed 12 Mar 2025 15:42:16 +0000 Manifest next update: Wed 19 Mar 2025 15:42:16 +0000 Files and hashes: 1: L1nO2mFIFfRjLznVoxwqUUjGtPo.crl (hash: ZhmqPB5aILDcl3JgNlnpo9SdwUJe4rzNV+884kM3wbw=) 2: 6A4C0AE89B1111EEADD68539C4F9AE02.roa (hash: 2DQNtDG5SlXbYPNKHWvlCf1LoqXbXRDiCCKULGtJnHM=) 3: 7135F534A05E11EDAC005F21C4F9AE02.roa (hash: BPqGgTO/FXgmhll9acyqoVIwbgNH2EbF72C/59rTKAs=) 4: 6CD99EF455C911E78F401587C4F9AE02.roa (hash: W5BOpPvdDaVJRiPCvQRJeUEXAu9OuHFa28A+g1a29VM=) 5: 407F0056629711EEB706DD75C4F9AE02.roa (hash: PPHYcuwo/hi+gWIj/jwhtP8TpkDUisIVIpssgpxO+Uk=) 6: 50A7914A5B9011EE82A2243AC4F9AE02.roa (hash: ssVkoQGU9abtVaOJ8QQiFzJ2u/KxDVyiUSGDeDLOq7k=) 7: 260428EC312211EEAF54935BC4F9AE02.roa (hash: rs1BLbvYE3DjY31zt5pMsjMWm6NZ1lEGyNnSPudZWnw=) 8: B77A93FE852411EFA67F8144C4F9AE02.roa (hash: card7JNSXN/xmFN4DueLt9CEoLfIixAjl6O1VFSsoLU=) 9: B6B65E76852411EFA67F8144C4F9AE02.roa (hash: ZjX79axkNC/VnRSkKPjshmIjcGsGG06UJjQxdQstgRg=) 10: 8659FCFEB12811EE98786F82C4F9AE02.roa (hash: uTcSN/s3jafNB4/D11q5q+/m0pypV3YLg7hL+NBlIuc=) 11: AE5BAB8CA05B11ED9406DE26C4F9AE02.roa (hash: bI6DNZ+SMQoiH31SjdXczk0YB7z1qgZ9bG+qqRhYG1Q=) 12: EAF1B720D85A11E9B476E954C4F9AE02.roa (hash: tGAr+6Zn60awTp8cl05laafAibPgTaCeJzxGTywN05I=) 13: 18D20D12852511EFBE3D6E47C4F9AE02.roa (hash: Xf4WUlVOVXX5jFG9PvkmpeYeh0+vfoKZddXectuS1PA=) 14: E0CD5510BE6111ED88CAF164C4F9AE02.roa (hash: DZxtCrPx9nVC06xsT0giYHAu0uYg4D08gJHGXJpz69w=) 15: 71D21A40A05E11EDAC005F21C4F9AE02.roa (hash: wWAuh5kIJNSIRZFUI/17Ka/eUztNPx+QrG0g1L0q+HM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BD54/D90112843F4F11E59512E04CC4F9AE02/L1nO2mFIFfRjLznVoxwqUUjGtPo.crl rsync://rpki.apnic.net/member_repository/A911BD54/D90112843F4F11E59512E04CC4F9AE02/L1nO2mFIFfRjLznVoxwqUUjGtPo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L1nO2mFIFfRjLznVoxwqUUjGtPo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 15:42:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9519 (0x252f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BD54 Validity Not Before: Mar 12 15:42:16 2025 GMT Not After : Mar 19 15:42:16 2025 GMT Subject: CN=67d1ab58-a32e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:16:95:75:0c:c0:0f:ca:04:cb:b4:58:8e:d2: 5a:78:92:3d:87:dd:7c:b7:46:b2:1a:29:dd:a5:3e: d7:1f:2f:f6:96:9a:58:76:9b:da:50:b4:0b:a5:06: ea:da:fc:20:1b:70:85:c3:c0:85:ec:2d:e3:1b:e2: a3:41:2c:72:78:bc:91:71:4c:e4:44:6d:93:e1:3d: e4:8b:50:6a:d3:37:80:b7:c3:58:a0:1a:bd:7d:ee: ee:3d:d5:3c:9d:21:71:41:92:16:57:99:e8:10:3e: 06:62:eb:26:97:db:71:62:8e:34:be:a4:a4:17:4b: 81:65:f6:30:3f:3c:b0:99:03:73:de:22:66:22:37: c1:9e:de:3a:44:cf:06:82:fe:9c:68:4c:86:30:6b: b3:e2:3b:29:79:52:63:7b:a9:1f:be:80:89:a7:e6: 90:8b:f9:b3:fb:86:69:4c:02:78:b6:3b:0c:9d:1b: c8:18:52:fd:5b:6a:24:0e:a2:7a:73:5a:51:a7:a5: a2:16:34:8f:2b:c1:2c:bb:5f:f7:8e:b6:8f:10:5a: aa:73:7d:b0:e4:f5:d0:86:ea:03:72:66:79:63:7f: b6:b4:f4:9c:69:7e:12:6a:ab:89:22:c7:50:fc:23: e8:44:23:99:60:a5:68:05:3e:db:90:39:0b:0a:54: ac:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:32:9C:E1:F3:DE:49:EA:0A:8D:E5:C9:BB:93:A5:D2:56:3C:C0:38 X509v3 Authority Key Identifier: keyid:2F:59:CE:DA:61:48:15:F4:63:2F:39:D5:A3:1C:2A:51:48:C6:B4:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BD54/D90112843F4F11E59512E04CC4F9AE02/L1nO2mFIFfRjLznVoxwqUUjGtPo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L1nO2mFIFfRjLznVoxwqUUjGtPo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BD54/D90112843F4F11E59512E04CC4F9AE02/L1nO2mFIFfRjLznVoxwqUUjGtPo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:a4:26:58:fd:c3:5d:e3:05:9f:0d:6f:52:7e:e2:b3:73:8d: b0:3a:46:7b:a1:2e:ab:c1:82:bc:a8:33:94:89:6b:68:49:4b: d4:6a:ae:77:a4:7f:49:16:13:ca:6a:c2:6d:f4:c4:69:0b:d0: 0b:bc:9c:63:8d:ba:72:29:6e:57:33:90:dc:43:cd:3b:44:5b: 59:4b:3e:b0:42:97:42:6f:16:1d:dd:2a:80:11:0b:c2:99:17: 15:b0:17:99:91:13:a7:0f:e0:ef:d0:21:ef:11:ce:e9:60:46: 73:46:92:0b:10:b2:c6:19:25:d2:74:2b:5c:a0:69:c6:d9:46: f7:4b:32:34:92:32:23:38:e8:9a:cf:6a:01:bb:e1:54:24:53: 88:31:ff:89:7e:fb:1a:a2:27:c9:1c:d5:5e:cb:db:a1:fe:0e: a8:df:02:d0:0a:8d:72:9d:1c:2e:20:98:de:62:31:79:3a:a4: 5e:16:a6:75:01:47:bf:1b:af:f5:81:c3:fd:e7:c0:8b:e1:6d: 49:89:91:bd:c2:95:6c:69:7d:9d:55:9f:12:77:e6:ae:ca:f2: 7f:66:65:8a:bf:d2:95:94:87:fb:1e:87:7d:9a:52:d3:c3:7b: 7e:50:1d:cb:bb:a2:70:d5:f2:c3:be:a9:1f:8e:a2:9c:4a:4d: 27:7d:99:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJENTQxMTAvBgNVBAUTKDJGNTlDRURBNjE0ODE1RjQ2MzJGMzlENUEzMUMyQTUx NDhDNkI0RkEwHhcNMjUwMzEyMTU0MjE2WhcNMjUwMzE5MTU0MjE2WjAYMRYwFAYD VQQDEw02N2QxYWI1OC1hMzJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0xaVdQzAD8oEy7RYjtJaeJI9h918t0ayGindpT7XHy/2lppYdpvaULQLpQbq 2vwgG3CFw8CF7C3jG+KjQSxyeLyRcUzkRG2T4T3ki1Bq0zeAt8NYoBq9fe7uPdU8 nSFxQZIWV5noED4GYusml9txYo40vqSkF0uBZfYwPzywmQNz3iJmIjfBnt46RM8G gv6caEyGMGuz4jspeVJje6kfvoCJp+aQi/mz+4ZpTAJ4tjsMnRvIGFL9W2okDqJ6 c1pRp6WiFjSPK8Esu1/3jraPEFqqc32w5PXQhuoDcmZ5Y3+2tPScaX4SaquJIsdQ /CPoRCOZYKVoBT7bkDkLClSsuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBwynOHz 3knqCo3lybuTpdJWPMA4MB8GA1UdIwQYMBaAFC9ZztphSBX0Yy851aMcKlFIxrT6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkQ1NC9EOTAxMTI4NDNG NEYxMUU1OTUxMkUwNENDNEY5QUUwMi9MMW5PMm1GSUZmUmpMem5Wb3h3cVVVakd0 UG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0wxbk8ybUZJRmZSakx6blZveHdxVVVqR3RQby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QkQ1NC9EOTAxMTI4NDNGNEYxMUU1OTUxMkUwNENDNEY5QUUwMi9MMW5PMm1GSUZm UmpMem5Wb3h3cVVVakd0UG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHpCZY/cNd4wWfDW9SfuKzc42wOkZ7oS6rwYK8qDOUiWtoSUvUaq53 pH9JFhPKasJt9MRpC9ALvJxjjbpyKW5XM5DcQ807RFtZSz6wQpdCbxYd3SqAEQvC mRcVsBeZkROnD+Dv0CHvEc7pYEZzRpILELLGGSXSdCtcoGnG2Ub3SzI0kjIjOOia z2oBu+FUJFOIMf+JfvsaoifJHNVey9uh/g6o3wLQCo1ynRwuIJjeYjF5OqReFqZ1 AUe/G6/1gcP958CL4W1JiZG9wpVsaX2dVZ8Sd+auyvJ/ZmWKv9KVlIf7Hod9mlLT w3t+UB3Lu6Jw1fLDvqkfjqKcSk0nfZlk -----END CERTIFICATE-----Generated at Thu Mar 13 21:31:48 2025 by rpki-client