$ rpki-client -vvf rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.mft File: 03F5y7l9aA5qgNwS7kIv6LbjY_U.mft (raw, json) Hash identifier: VkuMcOXi/thbmB8pcjcPAR2RGaimK6HEL0hLrCSYoh8= Subject key identifier: 9F:38:34:6D:07:37:02:8F:08:86:4F:56:27:95:3F:20:E6:C1:3C:A1 Authority key identifier: D3:71:79:CB:B9:7D:68:0E:6A:80:DC:12:EE:42:2F:E8:B6:E3:63:F5 Certificate issuer: /CN=A911DF1F/serialNumber=D37179CBB97D680E6A80DC12EE422FE8B6E363F5 Certificate serial: 0717 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.mft Manifest number: 06B2 Signing time: Fri 14 Feb 2025 23:23:38 +0000 Manifest this update: Fri 14 Feb 2025 23:23:38 +0000 Manifest next update: Fri 21 Feb 2025 23:23:38 +0000 Files and hashes: 1: 03F5y7l9aA5qgNwS7kIv6LbjY_U.crl (hash: +ayUkQ6ROyNceD6hkWj4H9DWHvSPlpPUMDrjxWmzzO4=) 2: B46F239C6A8D11EB82AF1144C4F9AE02.roa (hash: S6sSUQCmJtkaMtMbA1O0Mmg6DyeiEI+XUAJAroLQzw0=) 3: B24078AA6A8D11EB82AF1144C4F9AE02.roa (hash: 3GgLx+CbNEwoDetwa0xclFosAF0ThnHDNkGy9hkBwHY=) 4: B34D07906A8D11EB82AF1144C4F9AE02.roa (hash: gFTQhXxxWg+vWFd9YUvmY8166bjE5yYi7F/AL03zQaU=) 5: B57F14B86A8D11EB82AF1144C4F9AE02.roa (hash: e4/df1ZKDr4aEamOFlzJbyomY0cdDHsDrVrwwMv17eI=) 6: 35BE363E668F11EBA738AF61C4F9AE02.roa (hash: 4feN6gwvjlguQsUZ0+vuacffttVLy9DJIXoMNN8hWOI=) 7: 4CBC0878AA5111ECBEC4A312C4F9AE02.roa (hash: zplnnTYrDs6ATh1oYF/06orqoqHtQxFtplLwmc2mqPA=) 8: E9ECC32008C611EDBC862E48C4F9AE02.roa (hash: 53gHj/OrKFXtL8aMTpoTUjSuuGCGwdKOy6cQhgB55pc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.crl rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1815 (0x717) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DF1F Validity Not Before: Feb 14 23:23:38 2025 GMT Not After : Feb 21 23:23:38 2025 GMT Subject: CN=67afd07a-e7ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:36:b8:8f:fb:47:55:51:04:50:2c:39:ee:4e: 3d:bb:fc:92:8c:93:51:1e:9a:50:ec:74:80:89:ec: 1d:ad:b3:f7:9f:92:9f:ea:03:74:fe:9f:16:6a:36: a8:af:c4:a3:1a:60:67:09:1d:94:d3:e0:e4:58:f2: 3f:7d:73:9c:8a:ab:2c:37:7e:cb:2d:d6:4d:8e:2f: da:43:d2:01:29:b4:3a:5e:ca:28:e7:2b:83:02:66: 6b:5b:c9:6e:0d:20:fe:29:89:e1:9b:30:af:cd:50: 83:9b:ad:80:71:01:58:28:13:86:b3:7e:3b:21:fe: 89:87:81:00:aa:4e:2d:1d:2d:a6:cd:dd:ab:b5:cc: 4d:74:d5:57:3b:94:a4:64:c7:df:73:1c:9a:f6:47: 9f:a2:76:c6:7a:b6:c1:1d:60:5a:66:2b:8e:29:d5: e8:ee:97:cb:fe:79:c7:91:0c:f7:f0:72:9b:32:84: 2a:c8:bd:9f:69:50:b0:30:bd:81:09:d9:8c:b1:d8: a3:25:2b:d8:3b:1e:60:f7:2e:cd:d6:d7:30:00:90: 75:2c:29:43:ec:af:60:49:38:32:ce:d0:7f:cf:26: 85:7b:cb:eb:3d:f7:96:9c:40:59:26:7b:3d:df:a4: 33:29:f3:9e:06:e5:ed:b8:2c:5c:f6:3a:8e:4d:82: 76:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:38:34:6D:07:37:02:8F:08:86:4F:56:27:95:3F:20:E6:C1:3C:A1 X509v3 Authority Key Identifier: keyid:D3:71:79:CB:B9:7D:68:0E:6A:80:DC:12:EE:42:2F:E8:B6:E3:63:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:4f:83:d4:ee:1e:f0:9c:80:33:47:92:ee:eb:66:d1:8c:e4: 7d:12:8c:28:6c:b5:31:4d:b1:07:c8:a1:a4:df:27:c4:4c:8a: 34:37:34:77:26:29:7f:cb:b4:a6:a2:fb:bd:ce:c6:bb:bd:01: f3:6e:8a:cf:b2:80:43:e7:6a:c4:50:5c:f6:16:2a:a8:3e:ea: 35:28:f2:a9:40:5c:d6:37:e9:b8:7b:f0:29:44:99:78:88:49: 1f:d7:74:69:72:94:dc:ef:c2:a1:f2:5d:67:33:34:a5:d9:1d: 3f:ac:7a:e3:50:9b:c4:a2:a9:ae:5f:53:e4:f3:80:13:66:39: 72:ac:95:04:88:20:13:83:ec:b6:b5:1f:3c:b2:ab:29:f0:67: 83:ec:cf:1e:9f:e7:16:48:00:de:89:f3:20:f6:50:e6:7f:35: 0f:c0:56:30:2a:b8:a2:65:8b:32:12:47:73:33:2f:f1:de:f5: db:3e:c0:55:b9:bc:7b:29:ae:0b:de:19:d3:26:df:ae:f7:af: b5:f1:28:05:c7:b1:95:e2:05:96:56:29:97:00:4c:c9:7f:a9: be:99:35:36:3c:45:18:29:7d:32:09:2f:b0:e4:09:ab:09:e1: af:7b:89:58:94:e4:9b:48:ff:95:88:7c:3c:b2:f7:17:40:41: 34:af:3c:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBxcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURGMUYxMTAvBgNVBAUTKEQzNzE3OUNCQjk3RDY4MEU2QTgwREMxMkVFNDIyRkU4 QjZFMzYzRjUwHhcNMjUwMjE0MjMyMzM4WhcNMjUwMjIxMjMyMzM4WjAYMRYwFAYD VQQDEw02N2FmZDA3YS1lN2VkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8Da4j/tHVVEEUCw57k49u/ySjJNRHppQ7HSAiewdrbP3n5Kf6gN0/p8Wajao r8SjGmBnCR2U0+DkWPI/fXOciqssN37LLdZNji/aQ9IBKbQ6Xsoo5yuDAmZrW8lu DSD+KYnhmzCvzVCDm62AcQFYKBOGs347If6Jh4EAqk4tHS2mzd2rtcxNdNVXO5Sk ZMffcxya9kefonbGerbBHWBaZiuOKdXo7pfL/nnHkQz38HKbMoQqyL2faVCwML2B CdmMsdijJSvYOx5g9y7N1tcwAJB1LClD7K9gSTgyztB/zyaFe8vrPfeWnEBZJns9 36QzKfOeBuXtuCxc9jqOTYJ2OQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ84NG0H NwKPCIZPVieVPyDmwTyhMB8GA1UdIwQYMBaAFNNxecu5fWgOaoDcEu5CL+i242P1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREYxRi9GNUNCNkU2QTVD NTMxMUVCQjY2Mjc4NTNDNEY5QUUwMi8wM0Y1eTdsOWFBNXFnTndTN2tJdjZMYmpZ X1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzAzRjV5N2w5YUE1cWdOd1M3a0l2NkxiallfVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx REYxRi9GNUNCNkU2QTVDNTMxMUVCQjY2Mjc4NTNDNEY5QUUwMi8wM0Y1eTdsOWFB NXFnTndTN2tJdjZMYmpZX1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjT4PU7h7wnIAzR5Lu62bRjOR9EowobLUxTbEHyKGk3yfETIo0NzR3 Jil/y7Smovu9zsa7vQHzborPsoBD52rEUFz2FiqoPuo1KPKpQFzWN+m4e/ApRJl4 iEkf13RpcpTc78Kh8l1nMzSl2R0/rHrjUJvEoqmuX1Pk84ATZjlyrJUEiCATg+y2 tR88sqsp8GeD7M8en+cWSADeifMg9lDmfzUPwFYwKriiZYsyEkdzMy/x3vXbPsBV ubx7Ka4L3hnTJt+u96+18SgFx7GV4gWWVimXAEzJf6m+mTU2PEUYKX0yCS+w5Amr CeGve4lYlOSbSP+ViHw8svcXQEE0rzxK -----END CERTIFICATE-----Generated at Sun Feb 16 22:15:25 2025 by rpki-client