$ rpki-client -vvf rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.mft File: 03F5y7l9aA5qgNwS7kIv6LbjY_U.mft (raw, json) Hash identifier: 1wvTj/VagK98kiZfgO9RFwTvBj+zOhXKEAEeCCREhl8= Subject key identifier: 41:1F:F2:EA:30:1F:CB:E4:B2:A5:D1:90:39:A9:3F:70:9F:4F:4E:8C Authority key identifier: D3:71:79:CB:B9:7D:68:0E:6A:80:DC:12:EE:42:2F:E8:B6:E3:63:F5 Certificate issuer: /CN=A911DF1F/serialNumber=D37179CBB97D680E6A80DC12EE422FE8B6E363F5 Certificate serial: 0724 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.mft Manifest number: 06BF Signing time: Wed 12 Mar 2025 21:51:40 +0000 Manifest this update: Wed 12 Mar 2025 21:51:39 +0000 Manifest next update: Wed 19 Mar 2025 21:51:39 +0000 Files and hashes: 1: 03F5y7l9aA5qgNwS7kIv6LbjY_U.crl (hash: W0sqwWykGOVjQqh89hOmKHGCWciNvWCMq32m/Mz/7fI=) 2: B46F239C6A8D11EB82AF1144C4F9AE02.roa (hash: S6sSUQCmJtkaMtMbA1O0Mmg6DyeiEI+XUAJAroLQzw0=) 3: B24078AA6A8D11EB82AF1144C4F9AE02.roa (hash: 3GgLx+CbNEwoDetwa0xclFosAF0ThnHDNkGy9hkBwHY=) 4: B34D07906A8D11EB82AF1144C4F9AE02.roa (hash: gFTQhXxxWg+vWFd9YUvmY8166bjE5yYi7F/AL03zQaU=) 5: B57F14B86A8D11EB82AF1144C4F9AE02.roa (hash: e4/df1ZKDr4aEamOFlzJbyomY0cdDHsDrVrwwMv17eI=) 6: 35BE363E668F11EBA738AF61C4F9AE02.roa (hash: 4feN6gwvjlguQsUZ0+vuacffttVLy9DJIXoMNN8hWOI=) 7: 4CBC0878AA5111ECBEC4A312C4F9AE02.roa (hash: zplnnTYrDs6ATh1oYF/06orqoqHtQxFtplLwmc2mqPA=) 8: E9ECC32008C611EDBC862E48C4F9AE02.roa (hash: 53gHj/OrKFXtL8aMTpoTUjSuuGCGwdKOy6cQhgB55pc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.crl rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 21:51:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1828 (0x724) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DF1F Validity Not Before: Mar 12 21:51:39 2025 GMT Not After : Mar 19 21:51:39 2025 GMT Subject: CN=67d201ec-d88b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:e1:65:75:59:12:43:ca:b9:55:10:15:98:88: 7e:97:c2:49:66:cf:76:a4:07:a9:18:0e:6b:80:55: fa:75:4b:43:c0:89:fe:1f:f5:bb:ea:e7:70:14:77: 67:04:b8:31:f9:49:87:92:ec:11:f2:3d:c8:b9:9d: 0a:38:04:b0:43:cc:f6:a7:a2:b9:7c:77:19:8f:ac: f6:18:8a:09:76:c7:58:52:e9:ca:cb:48:b7:fa:0a: 4a:d1:06:70:82:16:16:96:0a:83:01:e2:cd:25:12: c4:3e:4e:28:ec:fe:1d:3e:fb:c7:67:c7:0a:41:3e: 08:41:ec:db:d2:94:ab:97:9e:7a:83:a0:5c:65:77: c5:d8:1a:a3:92:38:50:e3:85:91:1a:77:94:a4:10: 27:cc:db:2e:4c:55:14:3f:97:9a:d2:6e:ee:2f:9d: 8e:a9:56:d7:54:62:5a:8b:aa:22:a8:bf:86:90:6f: 0e:9e:4f:ab:44:e9:3c:58:8c:ea:59:18:9b:64:d7: 02:79:35:17:25:1d:04:34:b0:96:b6:4c:32:26:b0: 63:0f:f3:e8:59:46:37:f3:3a:99:c3:72:6e:5e:34: 9c:09:17:1c:23:25:d8:55:bb:37:01:74:d6:d6:f0: 2d:4d:4b:b7:07:5c:e2:9e:0a:df:e2:59:9d:e1:7e: c3:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:1F:F2:EA:30:1F:CB:E4:B2:A5:D1:90:39:A9:3F:70:9F:4F:4E:8C X509v3 Authority Key Identifier: keyid:D3:71:79:CB:B9:7D:68:0E:6A:80:DC:12:EE:42:2F:E8:B6:E3:63:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:51:c0:53:45:cf:78:69:ae:0c:2a:11:77:d2:5e:71:5b:db: 62:38:bc:fb:f7:fc:a8:f7:e3:ce:ea:e7:78:15:d5:45:25:fd: fa:d0:bb:ba:3e:8e:0b:95:5b:2d:ab:24:22:c5:66:f1:22:95: 48:ab:31:71:53:e2:0d:33:86:58:de:04:45:b6:f0:3c:3e:e5: 5d:0d:cd:e1:76:5e:f2:d5:e0:2a:36:7a:54:14:94:1b:c3:19: 9a:ba:3c:d2:c5:55:40:2e:47:e1:2f:d5:6f:16:7b:aa:32:f8: 1a:95:8a:cc:48:2f:94:3b:29:78:93:53:53:8f:e8:3a:27:11: 66:cd:0a:83:08:a7:df:b1:01:5b:da:be:bc:2d:07:8e:60:9c: 33:2b:27:76:81:9e:1f:8c:8a:46:48:b9:6e:7c:1d:f8:42:ba: 48:2e:bd:d8:4a:11:ff:8f:5a:dc:af:1a:9d:53:57:eb:b8:b6: b0:05:21:e6:0b:0d:2c:63:d8:d7:ca:7e:c8:da:84:4b:e5:b5: 53:45:a9:c4:80:12:14:74:cd:9a:e9:7d:57:9b:75:0d:f5:17: d2:81:b7:c5:c9:43:49:0b:f8:e5:f4:66:88:e8:81:24:f8:b4: 7f:84:ae:f6:2a:73:b4:96:bd:22:49:42:7c:1b:23:86:87:69: 9f:31:6d:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICByQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURGMUYxMTAvBgNVBAUTKEQzNzE3OUNCQjk3RDY4MEU2QTgwREMxMkVFNDIyRkU4 QjZFMzYzRjUwHhcNMjUwMzEyMjE1MTM5WhcNMjUwMzE5MjE1MTM5WjAYMRYwFAYD VQQDEw02N2QyMDFlYy1kODhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2+FldVkSQ8q5VRAVmIh+l8JJZs92pAepGA5rgFX6dUtDwIn+H/W76udwFHdn BLgx+UmHkuwR8j3IuZ0KOASwQ8z2p6K5fHcZj6z2GIoJdsdYUunKy0i3+gpK0QZw ghYWlgqDAeLNJRLEPk4o7P4dPvvHZ8cKQT4IQezb0pSrl556g6BcZXfF2BqjkjhQ 44WRGneUpBAnzNsuTFUUP5ea0m7uL52OqVbXVGJai6oiqL+GkG8Onk+rROk8WIzq WRibZNcCeTUXJR0ENLCWtkwyJrBjD/PoWUY38zqZw3JuXjScCRccIyXYVbs3AXTW 1vAtTUu3B1zingrf4lmd4X7DkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEEf8uow H8vksqXRkDmpP3CfT06MMB8GA1UdIwQYMBaAFNNxecu5fWgOaoDcEu5CL+i242P1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREYxRi9GNUNCNkU2QTVD NTMxMUVCQjY2Mjc4NTNDNEY5QUUwMi8wM0Y1eTdsOWFBNXFnTndTN2tJdjZMYmpZ X1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzAzRjV5N2w5YUE1cWdOd1M3a0l2NkxiallfVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx REYxRi9GNUNCNkU2QTVDNTMxMUVCQjY2Mjc4NTNDNEY5QUUwMi8wM0Y1eTdsOWFB NXFnTndTN2tJdjZMYmpZX1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAUcBTRc94aa4MKhF30l5xW9tiOLz79/yo9+PO6ud4FdVFJf360Lu6 Po4LlVstqyQixWbxIpVIqzFxU+INM4ZY3gRFtvA8PuVdDc3hdl7y1eAqNnpUFJQb wxmaujzSxVVALkfhL9VvFnuqMvgalYrMSC+UOyl4k1NTj+g6JxFmzQqDCKffsQFb 2r68LQeOYJwzKyd2gZ4fjIpGSLlufB34QrpILr3YShH/j1rcrxqdU1fruLawBSHm Cw0sY9jXyn7I2oRL5bVTRanEgBIUdM2a6X1Xm3UN9RfSgbfFyUNJC/jl9GaI6IEk +LR/hK72KnO0lr0iSUJ8GyOGh2mfMW0b -----END CERTIFICATE-----Generated at Thu Mar 13 21:28:07 2025 by rpki-client