$ rpki-client -vvf rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft File: CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft (raw, json) Hash identifier: JrX9gvdCn85RudUrfgIUPeT3bZvo5wGuaYCSuFfyiYE= Subject key identifier: 6D:1A:20:35:26:E2:73:94:ED:96:C5:37:FD:04:72:54:6B:C8:2F:10 Authority key identifier: 08:03:66:2C:57:13:25:72:8F:24:FA:AD:8C:B1:A5:F1:90:07:15:ED Certificate issuer: /CN=A916CCFF/serialNumber=0803662C571325728F24FAAD8CB1A5F1900715ED Certificate serial: 0479 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft Manifest number: 0463 Signing time: Sat 05 Apr 2025 00:17:27 +0000 Manifest this update: Sat 05 Apr 2025 00:17:26 +0000 Manifest next update: Sat 12 Apr 2025 00:17:26 +0000 Files and hashes: 1: CANmLFcTJXKPJPqtjLGl8ZAHFe0.crl (hash: WJAq4GMxFjIUuaWT4VcQW5PXghxfOfDfYFs+HqFYKcY=) 2: 02F57BD252E711EC931DB95CC4F9AE02.roa (hash: 01FpccdP/MsW2CvA7hmJMpiDNjJ1dNkKkLEpim6H7/0=) 3: 413AD9F852E411EC9E19AA2FC4F9AE02.roa (hash: qr8b4jL6pkulS0zDMbButEnYyv8gZUas09Wk3ymII28=) 4: 41E32C9852E411EC9E19AA2FC4F9AE02.roa (hash: TI6U5DDyMx2oNjPAY1onItBRjW+RoIBeg5nOMGrAMag=) 5: 0517C4F0470311EC9E6FA71DC4F9AE02.roa (hash: hL3IFyg9Xwqq4SM4WYiBZDcso6a27q9sQZQ/dFLeUNY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.crl rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 00:17:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1145 (0x479) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916CCFF Validity Not Before: Apr 5 00:17:26 2025 GMT Not After : Apr 12 00:17:26 2025 GMT Subject: CN=67f07696-fdb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:c9:72:7d:e0:5e:fa:f4:96:c1:46:77:b2:19: f7:c7:42:90:d2:fe:4e:0f:c9:65:bf:c0:bd:3e:e7: 1a:02:e1:4b:d1:9a:9d:12:c5:f3:31:53:0d:4b:09: 48:b0:4a:2f:84:5a:28:d1:66:d4:75:e5:f2:da:5d: 8c:b6:0d:b1:91:5d:6d:fa:54:e9:ba:55:33:9b:e4: c1:2b:16:3a:69:9a:2a:21:91:2e:b6:e5:db:60:b0: c5:23:6c:90:9f:d7:71:05:ef:c3:1a:01:6b:c9:e0: 2d:12:ca:7f:6e:56:2d:d7:f4:f9:bb:c1:b5:54:e0: 35:0e:bb:0c:65:5c:21:57:70:c2:b2:9d:f8:f4:55: dd:11:5a:6d:b3:c0:76:ed:a1:2d:51:86:fc:f5:bb: 13:60:bd:74:22:6e:e9:71:98:af:a9:ba:bc:99:b5: 72:3f:c0:e8:e4:94:e8:f9:4c:60:61:82:a7:f1:74: dd:b7:0e:d4:43:8c:62:97:77:17:6b:50:dd:32:4d: 4a:3c:bb:95:ec:4b:38:8c:6f:e0:59:85:1f:8d:ce: a8:0e:d5:69:2d:61:8b:f8:69:9b:69:0a:1c:62:d7: 5b:d4:6e:f2:1b:c0:0a:c7:98:72:72:bf:5a:eb:0d: 58:2f:b5:f0:66:32:f2:5c:ce:dc:80:4e:6a:f8:8b: b0:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:1A:20:35:26:E2:73:94:ED:96:C5:37:FD:04:72:54:6B:C8:2F:10 X509v3 Authority Key Identifier: keyid:08:03:66:2C:57:13:25:72:8F:24:FA:AD:8C:B1:A5:F1:90:07:15:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:d9:a5:5c:9e:30:7b:ce:ed:09:51:1b:6d:c6:4e:f1:7d:5d: e4:5b:5c:e0:a0:b8:97:c2:ff:10:5f:ba:2f:e7:57:37:97:e8: 1d:5c:e4:a5:f5:1e:d1:45:b6:aa:47:58:c5:c2:a0:d2:4a:ae: 1d:76:04:4c:de:f2:e7:62:f7:ea:b7:0d:01:ac:87:d1:44:53: 13:4c:98:85:83:9a:52:ec:a7:0c:f8:eb:97:4c:d4:9c:08:07: 6d:58:d2:db:43:6b:f2:3d:63:8c:f7:65:90:69:ba:3b:c7:40: cf:ff:7c:80:9b:9d:e5:40:42:6b:0f:d3:a8:71:3c:47:bc:27: ca:dc:1e:3c:17:42:3e:d8:0d:25:3b:09:6d:4e:4f:dc:df:03: f7:d9:8c:cd:cc:9b:d9:90:62:a6:84:99:bc:2c:e9:f1:62:41: 26:1a:52:00:71:ce:87:74:fe:a7:8f:c6:f7:43:67:b4:3b:9c: 6a:ce:99:f9:ef:bd:e1:ed:88:df:c8:12:ef:40:af:94:a7:7a: e0:3a:01:58:e1:e8:98:ba:21:e2:5f:fe:16:50:52:05:6e:65: c0:b7:63:96:60:74:8c:ae:20:48:5e:21:45:5e:c7:de:d7:96: ef:52:ef:bb:a9:94:84:b1:81:18:4b:c0:0b:cd:4e:84:07:b5: ac:f1:22:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkNDRkYxMTAvBgNVBAUTKDA4MDM2NjJDNTcxMzI1NzI4RjI0RkFBRDhDQjFBNUYx OTAwNzE1RUQwHhcNMjUwNDA1MDAxNzI2WhcNMjUwNDEyMDAxNzI2WjAYMRYwFAYD VQQDEw02N2YwNzY5Ni1mZGI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwslyfeBe+vSWwUZ3shn3x0KQ0v5OD8llv8C9PucaAuFL0ZqdEsXzMVMNSwlI sEovhFoo0WbUdeXy2l2Mtg2xkV1t+lTpulUzm+TBKxY6aZoqIZEutuXbYLDFI2yQ n9dxBe/DGgFryeAtEsp/blYt1/T5u8G1VOA1DrsMZVwhV3DCsp349FXdEVpts8B2 7aEtUYb89bsTYL10Im7pcZivqbq8mbVyP8Do5JTo+UxgYYKn8XTdtw7UQ4xil3cX a1DdMk1KPLuV7Es4jG/gWYUfjc6oDtVpLWGL+GmbaQocYtdb1G7yG8AKx5hycr9a 6w1YL7XwZjLyXM7cgE5q+Iuw+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG0aIDUm 4nOU7ZbFN/0EclRryC8QMB8GA1UdIwQYMBaAFAgDZixXEyVyjyT6rYyxpfGQBxXt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Q0NGRi85QTVFQzE2QzQ2 RkUxMUVDOTRFM0QyNEFDNEY5QUUwMi9DQU5tTEZjVEpYS1BKUHF0akxHbDhaQUhG ZTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NBTm1MRmNUSlhLUEpQcXRqTEdsOFpBSEZlMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Q0NGRi85QTVFQzE2QzQ2RkUxMUVDOTRFM0QyNEFDNEY5QUUwMi9DQU5tTEZjVEpY S1BKUHF0akxHbDhaQUhGZTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBz2aVcnjB7zu0JURttxk7xfV3kW1zgoLiXwv8QX7ov51c3l+gdXOSl 9R7RRbaqR1jFwqDSSq4ddgRM3vLnYvfqtw0BrIfRRFMTTJiFg5pS7KcM+OuXTNSc CAdtWNLbQ2vyPWOM92WQabo7x0DP/3yAm53lQEJrD9OocTxHvCfK3B48F0I+2A0l OwltTk/c3wP32YzNzJvZkGKmhJm8LOnxYkEmGlIAcc6HdP6nj8b3Q2e0O5xqzpn5 773h7YjfyBLvQK+Up3rgOgFY4eiYuiHiX/4WUFIFbmXAt2OWYHSMriBIXiFFXsfe 15bvUu+7qZSEsYEYS8ALzU6EB7Ws8SIK -----END CERTIFICATE-----Generated at Sat Apr 5 08:09:22 2025 by rpki-client