$ rpki-client -vvf rpki.apnic.net/member_repository/A912981B/BC5CEAB6CA8A11EEB056E61FC4F9AE02/M3tFD93J_HAiHaXKCXhYhbHRt8w.mft File: M3tFD93J_HAiHaXKCXhYhbHRt8w.mft (raw, json) Hash identifier: OfZ9udcuHZHvce2OpatxyfkIhUrhOnkkccWfqkmlf0E= Subject key identifier: E7:88:85:5A:CD:63:FC:62:C4:9B:52:94:6D:C8:BF:AB:A0:49:06:D4 Authority key identifier: 33:7B:45:0F:DD:C9:FC:70:22:1D:A5:CA:09:78:58:85:B1:D1:B7:CC Certificate issuer: /CN=A912981B/serialNumber=337B450FDDC9FC70221DA5CA09785885B1D1B7CC Certificate serial: DB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M3tFD93J_HAiHaXKCXhYhbHRt8w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912981B/BC5CEAB6CA8A11EEB056E61FC4F9AE02/M3tFD93J_HAiHaXKCXhYhbHRt8w.mft Manifest number: D2 Signing time: Thu 13 Mar 2025 03:52:19 +0000 Manifest this update: Thu 13 Mar 2025 03:52:19 +0000 Manifest next update: Thu 20 Mar 2025 03:52:19 +0000 Files and hashes: 1: M3tFD93J_HAiHaXKCXhYhbHRt8w.crl (hash: Rgh09grTT543o1DdM26mX7ZA6hIYtGFMLTVGldpVUsU=) 2: 35969588CA9211EE833EF985C4F9AE02.roa (hash: hAX7VR993CmhhsaA1nmPwPNSS2+Tuw+X9CTSJbnnlDM=) 3: 177BA4D0D82911EFB38EBD74C4F9AE02.roa (hash: Q8OdlDaFnosmHt5H93AztLasX85K3jbcjvHEtqM6LOY=) 4: A5C5EEAED82811EFA115FC73C4F9AE02.roa (hash: 9WyjUSklqG6DodL5wdjOBR7FdbGo1ISw6Z8AS27HcO0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912981B/BC5CEAB6CA8A11EEB056E61FC4F9AE02/M3tFD93J_HAiHaXKCXhYhbHRt8w.crl rsync://rpki.apnic.net/member_repository/A912981B/BC5CEAB6CA8A11EEB056E61FC4F9AE02/M3tFD93J_HAiHaXKCXhYhbHRt8w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M3tFD93J_HAiHaXKCXhYhbHRt8w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 03:52:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 219 (0xdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912981B Validity Not Before: Mar 13 03:52:19 2025 GMT Not After : Mar 20 03:52:19 2025 GMT Subject: CN=67d25673-fbc9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:5b:bb:74:e8:d0:52:07:a3:b1:e9:e1:d9:74: 35:bb:fb:f2:32:4a:30:4c:48:74:24:52:e1:25:4b: ac:5f:9e:2a:8e:62:36:64:78:23:9d:1a:5d:2f:e4: 39:52:79:6f:75:5c:f9:5d:27:e3:c7:11:cc:99:88: dc:d2:4e:88:78:e6:6d:8e:70:01:6b:cd:ec:94:38: ea:fe:56:d4:ca:6d:41:54:23:77:5f:05:20:e6:1f: 08:f3:9c:98:16:b9:1a:2a:70:c3:c7:6c:65:37:57: fb:cf:03:62:76:f2:a5:42:c7:44:e9:4e:11:93:a8: c8:07:38:ae:39:7b:c8:5b:74:1c:32:cb:20:43:8d: fd:55:e2:c7:f4:d5:ce:b6:dc:c8:ae:14:05:f2:c2: f0:d0:13:14:2a:40:67:8f:72:54:29:5b:49:bb:51: e5:db:53:22:db:25:d0:39:1f:d4:25:37:13:6b:08: f1:d8:67:71:6b:60:6b:af:b1:4a:f0:5f:61:6a:33: 07:db:4f:45:9c:58:14:0a:7b:f6:f4:ed:06:13:5a: f1:1e:a9:75:fe:94:c0:dc:0f:3b:e4:13:78:aa:02: a5:20:71:be:a4:d4:4f:39:68:8e:28:ac:17:71:f3: 9c:94:d3:df:96:bf:8a:67:f6:c0:6c:ee:c3:92:15: e1:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:88:85:5A:CD:63:FC:62:C4:9B:52:94:6D:C8:BF:AB:A0:49:06:D4 X509v3 Authority Key Identifier: keyid:33:7B:45:0F:DD:C9:FC:70:22:1D:A5:CA:09:78:58:85:B1:D1:B7:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912981B/BC5CEAB6CA8A11EEB056E61FC4F9AE02/M3tFD93J_HAiHaXKCXhYhbHRt8w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M3tFD93J_HAiHaXKCXhYhbHRt8w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912981B/BC5CEAB6CA8A11EEB056E61FC4F9AE02/M3tFD93J_HAiHaXKCXhYhbHRt8w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:17:be:32:d9:c0:bf:85:e0:af:18:37:01:59:9e:32:53:67: 02:a3:6a:eb:9f:41:3a:92:c8:a6:e2:87:3c:ed:80:ab:9c:b5: d2:f3:ed:10:d0:f1:0b:02:4c:0e:b8:f7:d2:51:6e:92:d0:b8: e0:9d:da:b3:83:cb:25:6c:83:9a:2a:75:ca:22:ac:5c:c5:8e: 94:49:89:73:26:a6:07:08:10:da:6d:e4:58:58:63:87:d4:27: 09:d5:ca:99:1d:e0:e0:4e:cc:0d:5c:7b:56:f2:09:e8:63:3b: f6:72:d6:9b:8e:a3:8f:fa:82:62:f0:78:62:ee:4f:60:90:58: ec:b6:1c:06:c7:bf:91:09:0c:0e:1c:17:fc:e0:f0:f6:e1:b8: 55:af:fa:3f:11:9b:81:aa:a9:c8:7d:23:4c:20:80:3d:3b:b5: aa:c2:d4:ea:4d:44:82:bf:1d:4e:11:23:5e:82:29:55:15:68: da:5c:17:e3:df:09:8c:fa:90:c4:14:f5:a5:ab:89:0e:b1:b7: c8:98:74:6e:14:79:d4:cd:a9:0b:78:69:fc:f8:e6:79:0c:50: c5:b2:6e:64:90:09:9b:92:5c:ce:5c:ce:34:8b:dc:58:46:6a: 05:4c:9b:64:ba:51:93:19:1a:c4:73:b3:76:45:2c:ba:47:56: b2:37:7d:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk4MUIxMTAvBgNVBAUTKDMzN0I0NTBGRERDOUZDNzAyMjFEQTVDQTA5Nzg1ODg1 QjFEMUI3Q0MwHhcNMjUwMzEzMDM1MjE5WhcNMjUwMzIwMDM1MjE5WjAYMRYwFAYD VQQDEw02N2QyNTY3My1mYmM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvFu7dOjQUgejsenh2XQ1u/vyMkowTEh0JFLhJUusX54qjmI2ZHgjnRpdL+Q5 UnlvdVz5XSfjxxHMmYjc0k6IeOZtjnABa83slDjq/lbUym1BVCN3XwUg5h8I85yY FrkaKnDDx2xlN1f7zwNidvKlQsdE6U4Rk6jIBziuOXvIW3QcMssgQ439VeLH9NXO ttzIrhQF8sLw0BMUKkBnj3JUKVtJu1Hl21Mi2yXQOR/UJTcTawjx2Gdxa2Brr7FK 8F9hajMH209FnFgUCnv29O0GE1rxHql1/pTA3A875BN4qgKlIHG+pNRPOWiOKKwX cfOclNPflr+KZ/bAbO7DkhXhdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOeIhVrN Y/xixJtSlG3Iv6ugSQbUMB8GA1UdIwQYMBaAFDN7RQ/dyfxwIh2lygl4WIWx0bfM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTgxQi9CQzVDRUFCNkNB OEExMUVFQjA1NkU2MUZDNEY5QUUwMi9NM3RGRDkzSl9IQWlIYVhLQ1hoWWhiSFJ0 OHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL00zdEZEOTNKX0hBaUhhWEtDWGhZaGJIUnQ4dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OTgxQi9CQzVDRUFCNkNBOEExMUVFQjA1NkU2MUZDNEY5QUUwMi9NM3RGRDkzSl9I QWlIYVhLQ1hoWWhiSFJ0OHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6F74y2cC/heCvGDcBWZ4yU2cCo2rrn0E6ksim4oc87YCrnLXS8+0Q 0PELAkwOuPfSUW6S0Ljgndqzg8slbIOaKnXKIqxcxY6USYlzJqYHCBDabeRYWGOH 1CcJ1cqZHeDgTswNXHtW8gnoYzv2ctabjqOP+oJi8Hhi7k9gkFjsthwGx7+RCQwO HBf84PD24bhVr/o/EZuBqqnIfSNMIIA9O7WqwtTqTUSCvx1OESNegilVFWjaXBfj 3wmM+pDEFPWlq4kOsbfImHRuFHnUzakLeGn8+OZ5DFDFsm5kkAmbklzOXM40i9xY RmoFTJtkulGTGRrEc7N2RSy6R1ayN32o -----END CERTIFICATE-----Generated at Thu Mar 13 21:31:44 2025 by rpki-client