$ rpki-client -vvf rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.mft File: RoxqeSq7PkX-7iIo0o54AxNytFU.mft (raw, json) Hash identifier: p41LKiPVLmqFr2Vu9LKqq4up4MxEWNYgAGanDXFANP4= Subject key identifier: D8:DB:94:85:05:10:4D:B4:2B:7E:27:B8:EA:9E:4E:FF:19:C7:99:63 Authority key identifier: 46:8C:6A:79:2A:BB:3E:45:FE:EE:22:28:D2:8E:78:03:13:72:B4:55 Certificate issuer: /CN=A912DD15/serialNumber=468C6A792ABB3E45FEEE2228D28E78031372B455 Certificate serial: 017E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RoxqeSq7PkX-7iIo0o54AxNytFU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.mft Manifest number: 0178 Signing time: Thu 13 Mar 2025 02:38:38 +0000 Manifest this update: Thu 13 Mar 2025 02:38:38 +0000 Manifest next update: Thu 20 Mar 2025 02:38:38 +0000 Files and hashes: 1: RoxqeSq7PkX-7iIo0o54AxNytFU.crl (hash: b9t901TwLVq8Uqm17Hvy6U/elTaeWPFpFQWaVuKthV0=) 2: 43CE5D5A236911EEAC33285DC4F9AE02.roa (hash: frHxqt/yG7rr6fCbelfcQdfPa8QFjBnwgHPUnZu57so=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.crl rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RoxqeSq7PkX-7iIo0o54AxNytFU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 02:38:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 382 (0x17e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DD15 Validity Not Before: Mar 13 02:38:38 2025 GMT Not After : Mar 20 02:38:38 2025 GMT Subject: CN=67d2452e-2e0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d1:f5:2d:6c:28:7d:dc:37:1f:8f:21:5b:d1: c4:99:57:42:60:e6:cf:78:df:9b:6d:9e:af:e9:80: 4a:c8:1d:73:8b:8c:00:64:d1:1f:ec:8e:d1:0d:68: 25:fa:64:8c:34:ab:8c:a7:1d:5a:64:9b:a4:78:f0: 41:31:fd:ca:85:37:55:ff:10:0f:d8:77:7c:1c:e2: dc:83:42:17:35:38:ff:ad:28:b4:62:d0:24:69:31: 81:88:ef:62:81:bc:ba:59:72:24:ec:34:85:4d:4b: 21:1a:5c:c1:1f:0a:ac:6a:5c:f1:55:5a:58:5f:82: 0f:ef:29:d0:0b:d7:b8:05:1e:e0:44:0b:7f:b2:08: 42:86:74:87:8d:ea:56:92:48:e2:ae:30:e0:db:3a: 70:34:03:7a:72:d1:ab:79:0d:46:f4:b5:d8:60:f7: cf:3f:33:10:02:25:e4:19:b5:a9:6d:22:f2:27:fe: b8:82:f7:5e:78:0c:78:c1:ba:e5:c1:1b:a6:aa:cc: e1:6e:25:44:86:e8:06:be:5f:d8:66:95:6e:05:ce: 9b:74:42:f9:0d:32:2d:6b:62:5f:5a:f8:a7:f6:d4: 6d:c6:88:ca:8f:99:aa:b4:6b:4d:3a:ce:90:49:6b: 1d:a9:3b:5a:f0:13:10:65:1a:41:b6:85:d8:0c:7d: e4:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:DB:94:85:05:10:4D:B4:2B:7E:27:B8:EA:9E:4E:FF:19:C7:99:63 X509v3 Authority Key Identifier: keyid:46:8C:6A:79:2A:BB:3E:45:FE:EE:22:28:D2:8E:78:03:13:72:B4:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RoxqeSq7PkX-7iIo0o54AxNytFU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:dc:f8:17:74:02:f0:26:83:7a:44:b6:82:4c:6e:c6:7c:7a: f1:45:6d:a0:68:1c:d0:d6:92:40:57:e5:47:17:c7:2c:6e:18: 7d:14:63:a0:74:7a:2b:cb:85:cb:e8:d0:b9:39:fe:4a:de:3c: 6c:49:1d:0d:c0:fd:bf:2e:4e:a0:aa:4b:fb:54:6b:c6:64:d0: b9:6d:7a:19:97:87:6d:59:54:9a:67:49:f0:76:21:99:2b:1e: 2b:f5:6a:ca:d2:aa:8a:55:4f:9e:45:69:b9:d4:b0:78:46:07: 3d:7a:31:5f:e2:52:4d:24:ca:02:f4:f4:af:ab:cf:c2:4d:91: c2:a4:b9:f9:bc:f9:a0:6a:2f:05:83:2f:de:f3:a7:18:9b:9f: 7c:9b:fa:db:46:1c:b7:49:c2:a0:5a:e3:af:73:18:c6:57:cd: 35:b8:56:7e:cb:6f:73:1b:08:a1:26:0f:ac:0f:b4:ac:b2:98: 0e:3c:d5:26:00:a3:ba:3e:3b:26:a2:41:3d:db:ad:09:36:47: a0:b5:57:6f:c7:3f:2d:87:51:d3:12:3d:37:67:90:34:23:2e: b2:9a:b6:fd:15:3f:e5:fd:de:3c:a6:e4:49:8f:1b:9b:0a:ee: 4e:d3:d9:9f:ba:30:15:ca:90:ec:40:e9:cf:1e:eb:b5:f8:77: 3f:61:cc:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAX4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkREMTUxMTAvBgNVBAUTKDQ2OEM2QTc5MkFCQjNFNDVGRUVFMjIyOEQyOEU3ODAz MTM3MkI0NTUwHhcNMjUwMzEzMDIzODM4WhcNMjUwMzIwMDIzODM4WjAYMRYwFAYD VQQDEw02N2QyNDUyZS0yZTBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAttH1LWwofdw3H48hW9HEmVdCYObPeN+bbZ6v6YBKyB1zi4wAZNEf7I7RDWgl +mSMNKuMpx1aZJukePBBMf3KhTdV/xAP2Hd8HOLcg0IXNTj/rSi0YtAkaTGBiO9i gby6WXIk7DSFTUshGlzBHwqsalzxVVpYX4IP7ynQC9e4BR7gRAt/sghChnSHjepW kkjirjDg2zpwNAN6ctGreQ1G9LXYYPfPPzMQAiXkGbWpbSLyJ/64gvdeeAx4wbrl wRumqszhbiVEhugGvl/YZpVuBc6bdEL5DTIta2JfWvin9tRtxojKj5mqtGtNOs6Q SWsdqTta8BMQZRpBtoXYDH3kVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNjblIUF EE20K34nuOqeTv8Zx5ljMB8GA1UdIwQYMBaAFEaMankquz5F/u4iKNKOeAMTcrRV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREQxNS9CREFEQTg2MEND NTIxMUVEQTgyOTFEMTBDNEY5QUUwMi9Sb3hxZVNxN1BrWC03aUlvMG81NEF4Tnl0 RlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JveHFlU3E3UGtYLTdpSW8wbzU0QXhOeXRGVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REQxNS9CREFEQTg2MENDNTIxMUVEQTgyOTFEMTBDNEY5QUUwMi9Sb3hxZVNxN1Br WC03aUlvMG81NEF4Tnl0RlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC23PgXdALwJoN6RLaCTG7GfHrxRW2gaBzQ1pJAV+VHF8csbhh9FGOg dHory4XL6NC5Of5K3jxsSR0NwP2/Lk6gqkv7VGvGZNC5bXoZl4dtWVSaZ0nwdiGZ Kx4r9WrK0qqKVU+eRWm51LB4Rgc9ejFf4lJNJMoC9PSvq8/CTZHCpLn5vPmgai8F gy/e86cYm598m/rbRhy3ScKgWuOvcxjGV801uFZ+y29zGwihJg+sD7SsspgOPNUm AKO6PjsmokE9260JNkegtVdvxz8th1HTEj03Z5A0Iy6ymrb9FT/l/d48puRJjxub Cu5O09mfujAVypDsQOnPHuu1+Hc/Ycw2 -----END CERTIFICATE-----Generated at Thu Mar 13 21:31:45 2025 by rpki-client