$ rpki-client -vvf rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/lI_4don6lJEW9ffIAOsdcB5l43s.mft File: lI_4don6lJEW9ffIAOsdcB5l43s.mft (raw, json) Hash identifier: kgnjNDpN0urWbMribEikM5sc9gwV4ea+CJolBVULMZ8= Subject key identifier: BB:24:95:5E:4D:78:67:C4:AA:52:4C:58:F5:B2:B5:04:3B:9E:AA:DB Authority key identifier: 94:8F:F8:76:89:FA:94:91:16:F5:F7:C8:00:EB:1D:70:1E:65:E3:7B Certificate issuer: /CN=A9148EFA/serialNumber=948FF87689FA949116F5F7C800EB1D701E65E37B Certificate serial: 0B47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lI_4don6lJEW9ffIAOsdcB5l43s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/lI_4don6lJEW9ffIAOsdcB5l43s.mft Manifest number: 0B40 Signing time: Wed 12 Mar 2025 18:56:45 +0000 Manifest this update: Wed 12 Mar 2025 18:56:45 +0000 Manifest next update: Wed 19 Mar 2025 18:56:45 +0000 Files and hashes: 1: lI_4don6lJEW9ffIAOsdcB5l43s.crl (hash: S/x5j8jkGrTrMzueVlBn26+sx03OSAK2bcKXDUSb8Pk=) 2: 160F265C827311EDA56A8F30C4F9AE02.roa (hash: +AtlwJpDixwyUCDykXdm+mzXPL2l2b4XkTAoBl1SNz4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/lI_4don6lJEW9ffIAOsdcB5l43s.crl rsync://rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/lI_4don6lJEW9ffIAOsdcB5l43s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lI_4don6lJEW9ffIAOsdcB5l43s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 18:56:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2887 (0xb47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148EFA Validity Not Before: Mar 12 18:56:45 2025 GMT Not After : Mar 19 18:56:45 2025 GMT Subject: CN=67d1d8ed-06bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:4b:b0:83:79:c3:9c:8a:e8:9b:87:80:dd:c8: ca:21:55:06:cc:54:40:7a:a2:2e:ec:56:06:23:ca: f1:b7:7a:fd:07:34:23:08:7a:90:fc:d4:d6:4a:0a: 0d:c7:25:d4:39:07:37:70:df:3b:c4:f2:1f:52:f0: d4:e1:97:ea:0d:75:c9:3d:19:d3:66:fe:fe:86:0d: a4:0e:86:1a:a0:3a:8a:8b:ce:96:56:b4:9c:58:b7: 7f:9e:4d:9c:14:43:0e:66:e6:d7:98:59:93:6c:88: fd:b9:75:42:b0:96:45:df:18:cb:61:e1:46:93:f1: 02:ad:7a:b5:64:6a:49:1e:03:ac:ee:87:17:e6:5d: d8:9e:35:45:88:0c:fb:bf:56:e1:87:35:1f:c1:36: 8e:98:4b:4b:6d:bb:b4:f7:b5:7a:ff:2c:1b:b2:5e: 4a:23:8f:9a:f1:aa:48:1e:5c:8e:a7:0d:f6:d8:c1: b4:0b:ec:cc:c5:f8:a9:8c:09:52:2c:65:b4:03:7b: 41:c7:50:30:96:bc:a7:4c:91:36:10:8c:fa:fd:f7: 6e:19:af:22:2e:e1:3a:16:f8:9e:53:6c:a4:0f:1b: 9e:52:e4:ac:a6:e9:ed:8d:05:df:31:78:4f:3d:b2: da:99:8c:5d:3e:08:94:df:a3:ab:84:af:42:34:ab: 49:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:24:95:5E:4D:78:67:C4:AA:52:4C:58:F5:B2:B5:04:3B:9E:AA:DB X509v3 Authority Key Identifier: keyid:94:8F:F8:76:89:FA:94:91:16:F5:F7:C8:00:EB:1D:70:1E:65:E3:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/lI_4don6lJEW9ffIAOsdcB5l43s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lI_4don6lJEW9ffIAOsdcB5l43s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/lI_4don6lJEW9ffIAOsdcB5l43s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:f6:04:78:9b:b7:ae:c8:ec:a8:17:96:d0:3a:05:83:50:d0: d4:35:f3:6c:69:96:09:b0:8c:89:f4:dd:07:ba:40:5d:7d:34: ea:ae:10:8b:35:2b:de:4e:a8:bb:c4:59:53:31:65:c5:4b:05: 3f:60:55:a2:76:45:7e:6a:4b:76:8d:6c:76:7d:8a:d6:02:36: 70:f1:ba:77:d7:99:ce:7b:fa:e2:f2:1d:de:0f:95:27:6a:f6: 0d:88:65:0a:c9:04:9e:24:fa:7e:4b:4d:7b:43:11:1b:16:c9: cc:59:25:a4:bb:c3:11:8c:3a:aa:5e:65:ae:df:44:05:c9:49: 67:c0:ea:9f:49:e1:36:c4:3d:6e:e2:d3:91:4a:bc:48:ed:cf: 05:9e:e7:01:ed:77:9b:73:9d:7a:19:49:8b:c3:98:53:6c:fb: 6d:7f:31:f5:09:9f:a8:23:41:5f:28:14:5a:99:ce:0d:96:25: 43:1e:a5:ac:84:03:dc:54:e5:90:4d:b5:23:b6:f9:c3:3d:46: 96:f9:cf:c8:c8:11:17:48:fc:b6:40:19:ae:16:e5:b4:ef:a6: 29:bc:0e:1f:49:70:74:fd:35:2b:c8:91:64:b2:a7:60:b0:26: b6:e4:1d:04:fe:1a:e0:41:97:6d:78:8d:18:f2:43:9c:dd:74: 37:dc:ac:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC0cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhFRkExMTAvBgNVBAUTKDk0OEZGODc2ODlGQTk0OTExNkY1RjdDODAwRUIxRDcw MUU2NUUzN0IwHhcNMjUwMzEyMTg1NjQ1WhcNMjUwMzE5MTg1NjQ1WjAYMRYwFAYD VQQDEw02N2QxZDhlZC0wNmJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA30uwg3nDnIrom4eA3cjKIVUGzFRAeqIu7FYGI8rxt3r9BzQjCHqQ/NTWSgoN xyXUOQc3cN87xPIfUvDU4ZfqDXXJPRnTZv7+hg2kDoYaoDqKi86WVrScWLd/nk2c FEMOZubXmFmTbIj9uXVCsJZF3xjLYeFGk/ECrXq1ZGpJHgOs7ocX5l3YnjVFiAz7 v1bhhzUfwTaOmEtLbbu097V6/ywbsl5KI4+a8apIHlyOpw322MG0C+zMxfipjAlS LGW0A3tBx1AwlrynTJE2EIz6/fduGa8iLuE6FvieU2ykDxueUuSspuntjQXfMXhP PbLamYxdPgiU36OrhK9CNKtJmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLsklV5N eGfEqlJMWPWytQQ7nqrbMB8GA1UdIwQYMBaAFJSP+HaJ+pSRFvX3yADrHXAeZeN7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEVGQS9FMEM5NTFDRTMw NjkxMUVBQkYwRDk0MkVDNEY5QUUwMi9sSV80ZG9uNmxKRVc5ZmZJQU9zZGNCNWw0 M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xJXzRkb242bEpFVzlmZklBT3NkY0I1bDQzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEVGQS9FMEM5NTFDRTMwNjkxMUVBQkYwRDk0MkVDNEY5QUUwMi9sSV80ZG9uNmxK RVc5ZmZJQU9zZGNCNWw0M3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAA9gR4m7euyOyoF5bQOgWDUNDUNfNsaZYJsIyJ9N0HukBdfTTqrhCL NSveTqi7xFlTMWXFSwU/YFWidkV+akt2jWx2fYrWAjZw8bp315nOe/ri8h3eD5Un avYNiGUKyQSeJPp+S017QxEbFsnMWSWku8MRjDqqXmWu30QFyUlnwOqfSeE2xD1u 4tORSrxI7c8FnucB7Xebc516GUmLw5hTbPttfzH1CZ+oI0FfKBRamc4NliVDHqWs hAPcVOWQTbUjtvnDPUaW+c/IyBEXSPy2QBmuFuW076YpvA4fSXB0/TUryJFksqdg sCa25B0E/hrgQZdteI0Y8kOc3XQ33KyI -----END CERTIFICATE-----Generated at Thu Mar 13 21:29:09 2025 by rpki-client