$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft File: 4bgHrCt0Vfux4xYGjR0BcSYLscc.mft (raw, json) Hash identifier: TfzyAflSaI6hpLYYHsCQvv9qGKNRRACRwKdPgHoI3Q8= Subject key identifier: 18:FA:2E:8B:F7:F2:E7:04:7C:F8:05:AC:D6:6C:BD:F8:77:DA:88:12 Authority key identifier: E1:B8:07:AC:2B:74:55:FB:B1:E3:16:06:8D:1D:01:71:26:0B:B1:C7 Certificate issuer: /CN=A9157DAE/serialNumber=E1B807AC2B7455FBB1E316068D1D0171260BB1C7 Certificate serial: 12EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft Manifest number: 126E Signing time: Wed 12 Mar 2025 17:04:58 +0000 Manifest this update: Wed 12 Mar 2025 17:04:57 +0000 Manifest next update: Wed 19 Mar 2025 17:04:57 +0000 Files and hashes: 1: 4bgHrCt0Vfux4xYGjR0BcSYLscc.crl (hash: 9Ob1HBZ0udE7neQmoV9MRUAGgKpZhUVMNN7Yno4YW/M=) 2: A6A4A20E89B911EC8FDB572DC4F9AE02.roa (hash: jk5NfHi6Ak10G3qvwwRLBuA+9+MuEQTJVNCIOpp4ijc=) 3: A8949F64D86E11E982BA0712C4F9AE02.roa (hash: o0TBqHxczgW2iXEBGTx5nw86Q8zs7jfB/2ZiH2tcXBM=) 4: 1F8378E6BCBD11EBAC9A4744C4F9AE02.roa (hash: J5LxjosxnnfdXaMAoaZ/PL1BfkizkN1e40crDyxzXgM=) 5: 9EE31802996B11E9B3FEED46C4F9AE02.roa (hash: GdNQEvmzlHfA6Ec8mmP8z6x+jIWG7iAnHlvJMuf8oD8=) 6: F6EBC724B24211EF99C46E64C4F9AE02.roa (hash: q2Nqb/hrcV90WNVexwR/NHfj/Q0Tv7rC0yL9DHC6X3M=) 7: D17E9426B24211EFBBDC2164C4F9AE02.roa (hash: 08uSCXwlwYJnGMem9e+DAMnS4EN8A9/G3dvb9XlzVbk=) 8: 161983C2B9EB11EDB53AC21BC4F9AE02.roa (hash: 21MmIK/xKiS7JETWE4m4JFsmki6dx7l2EGE0grkpOo4=) 9: C2E189AC7F8C11EF94FCB676C4F9AE02.roa (hash: RAc63GKSag+ebIvPIiKjuswG8wAgmCrcqifdzue1EA8=) 10: FDB29514452511E98F23AE4FC4F9AE02.roa (hash: pyXuQQMaaHpRKrd64JzrpDvcZINK8BGOr87BtX8mKCw=) 11: 8E6CF9C8E59911E98D355932C4F9AE02.roa (hash: duhPOulpnnqLJOw021zARLEkW5qMCDlozjaUuWOU1CE=) 12: F99AFAFE1D5411EA921E0351C4F9AE02.roa (hash: RBZSewamTngEQkgjLa0OkH4nQrMAppxSjX91nS2Wpzo=) 13: C21FA1CE080511EAA9457C67C4F9AE02.roa (hash: PiSgVIn+A3YVcVJ8J1LY1Q9+m55+zt9vsCjTvJtZIKc=) 14: 0038D872072E11EB8914E540C4F9AE02.roa (hash: bM9HkA9Kov8pVlsp7/+B8Lhib1zUTj1baRTYw1iNq78=) 15: D8E0EC82927711E985E0423AC4F9AE02.roa (hash: +fJoTern1FEL3hWeQl1ij5UIzJGzXQGhkR014UlHjWU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.crl rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 17:04:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4844 (0x12ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE Validity Not Before: Mar 12 17:04:57 2025 GMT Not After : Mar 19 17:04:57 2025 GMT Subject: CN=67d1beba-4e3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:5c:4a:54:37:9a:90:cf:4c:50:89:76:f5:ad: 82:53:a9:23:f9:6c:b1:90:3b:94:f1:72:a6:e3:e5: d0:d4:5d:95:9c:aa:59:14:09:9c:81:f7:dd:d2:7d: 98:87:8e:3d:8e:64:fb:3d:af:39:df:9e:08:ea:a9: d7:4f:eb:df:f0:25:5a:63:32:48:2b:80:ec:d7:24: 59:4e:6b:c3:20:f6:a4:a6:d2:43:21:31:de:83:e2: 61:4c:d9:39:3d:e4:c5:81:2b:8a:60:6d:44:8c:d7: 8e:57:80:42:c4:0e:1a:8a:1a:f3:d8:76:6b:47:d5: f4:2c:75:1e:d1:fb:59:bd:67:23:65:7b:0e:e9:6a: eb:e7:12:a3:24:68:af:b5:96:87:bf:13:de:7a:70: 83:96:f5:d7:09:1d:23:c8:72:12:4f:0f:e6:85:ac: f1:52:f7:9b:13:3e:6a:87:15:79:50:87:49:45:d0: 97:8d:ed:77:22:3d:99:3f:5e:81:6b:18:e7:f8:b5: 53:d8:2b:a3:04:69:51:fe:6d:64:43:ad:79:82:1b: b0:b6:4b:1b:f4:43:8a:6b:5d:bc:45:22:09:a0:05: 56:fa:9b:d5:1a:b2:6e:65:48:60:26:2a:f6:40:31: 65:5e:ea:93:0b:c4:c0:64:77:00:b5:08:c8:0a:c1: 28:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:FA:2E:8B:F7:F2:E7:04:7C:F8:05:AC:D6:6C:BD:F8:77:DA:88:12 X509v3 Authority Key Identifier: keyid:E1:B8:07:AC:2B:74:55:FB:B1:E3:16:06:8D:1D:01:71:26:0B:B1:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:83:3a:03:aa:04:5c:be:a8:6d:e7:88:69:81:3e:c9:c7:f4: 5b:69:af:4c:69:ba:97:b4:af:d4:85:c4:39:b8:92:06:fc:f7: 80:a7:d3:56:cc:49:fb:f3:fb:68:6f:68:fb:ac:4f:ef:c3:db: 00:ea:76:15:53:99:6e:97:43:d7:63:5b:4a:2d:88:a6:84:35: 36:0e:b0:d3:1e:c6:ca:13:52:14:02:87:a1:70:0e:7a:75:2f: de:f5:ad:e4:dc:60:f5:6d:e2:e0:38:12:ed:8e:3b:f3:f2:97: cd:75:ee:38:46:ff:96:df:8f:39:35:f4:c5:cc:c7:ac:a1:d5: ee:71:cc:7b:40:00:15:1f:53:fb:70:84:5d:58:ac:87:47:8c: fd:83:cd:a9:a1:0a:29:35:49:3b:28:dd:64:79:89:ed:fc:60: 37:74:51:f4:1c:10:8d:d5:98:a4:b0:16:18:85:b5:b7:59:70: be:87:63:57:29:6f:df:5c:5c:a2:ae:8f:bb:0c:64:d7:ef:90: 0a:fd:e1:bc:97:bd:e0:2b:5b:e6:f9:94:70:49:ca:48:49:73: 28:e3:b3:d4:a0:19:16:0b:94:f7:8d:7d:5c:59:1b:6d:39:2b: 02:c3:a0:c9:03:1a:62:2a:90:5b:d2:a3:79:41:19:e0:6b:b7: ad:a3:61:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEuwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQUUxMTAvBgNVBAUTKEUxQjgwN0FDMkI3NDU1RkJCMUUzMTYwNjhEMUQwMTcx MjYwQkIxQzcwHhcNMjUwMzEyMTcwNDU3WhcNMjUwMzE5MTcwNDU3WjAYMRYwFAYD VQQDEw02N2QxYmViYS00ZTNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA01xKVDeakM9MUIl29a2CU6kj+WyxkDuU8XKm4+XQ1F2VnKpZFAmcgffd0n2Y h449jmT7Pa85354I6qnXT+vf8CVaYzJIK4Ds1yRZTmvDIPakptJDITHeg+JhTNk5 PeTFgSuKYG1EjNeOV4BCxA4aihrz2HZrR9X0LHUe0ftZvWcjZXsO6Wrr5xKjJGiv tZaHvxPeenCDlvXXCR0jyHISTw/mhazxUvebEz5qhxV5UIdJRdCXje13Ij2ZP16B axjn+LVT2CujBGlR/m1kQ615ghuwtksb9EOKa128RSIJoAVW+pvVGrJuZUhgJir2 QDFlXuqTC8TAZHcAtQjICsEoYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBj6Lov3 8ucEfPgFrNZsvfh32ogSMB8GA1UdIwQYMBaAFOG4B6wrdFX7seMWBo0dAXEmC7HH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS82MTY2NkMwRUQ2 ODkxMUU4QjY4MTE0MzNDNEY5QUUwMi80YmdIckN0MFZmdXg0eFlHalIwQmNTWUxz Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRiZ0hyQ3QwVmZ1eDR4WUdqUjBCY1NZTHNjYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBRS82MTY2NkMwRUQ2ODkxMUU4QjY4MTE0MzNDNEY5QUUwMi80YmdIckN0MFZm dXg0eFlHalIwQmNTWUxzY2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAngzoDqgRcvqht54hpgT7Jx/Rbaa9MabqXtK/UhcQ5uJIG/PeAp9NW zEn78/tob2j7rE/vw9sA6nYVU5lul0PXY1tKLYimhDU2DrDTHsbKE1IUAoehcA56 dS/e9a3k3GD1beLgOBLtjjvz8pfNde44Rv+W3485NfTFzMesodXuccx7QAAVH1P7 cIRdWKyHR4z9g82poQopNUk7KN1keYnt/GA3dFH0HBCN1ZiksBYYhbW3WXC+h2NX KW/fXFyiro+7DGTX75AK/eG8l73gK1vm+ZRwScpISXMo47PUoBkWC5T3jX1cWRtt OSsCw6DJAxpiKpBb0qN5QRnga7eto2Gp -----END CERTIFICATE-----Generated at Thu Mar 13 21:31:09 2025 by rpki-client