$ rpki-client -vvf rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft File: ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft (raw, json) Hash identifier: BPtQyZPEjjA4N4JfwwY+6eqUr5/KEnBFBp3Z61LLWLo= Subject key identifier: 91:77:03:D9:ED:20:2F:2A:82:10:C4:1A:2A:3C:41:DD:E6:94:83:4C Authority key identifier: 8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A Certificate issuer: /CN=A917A84A/serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Certificate serial: 1D16 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft Manifest number: 1CA5 Signing time: Fri 04 Apr 2025 16:14:50 +0000 Manifest this update: Fri 04 Apr 2025 16:14:49 +0000 Manifest next update: Fri 11 Apr 2025 16:14:49 +0000 Files and hashes: 1: ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl (hash: FNPWYtgy96Cquf2U3IPaaB2mjVr3L33Z2hlE3OOT4aA=) 2: 5AF6DD08FAE611EF88903035C4F9AE02.roa (hash: KNe37v08jiMTHI1bvjZ6KE/Vcj+r6uVPwkyGH49Kddo=) 3: 75D2A3666E8011EF92BDE465C4F9AE02.roa (hash: Geibmj5f7sWd8ePmSyK9CqZnwcGstWhLmjedleooMUY=) 4: 3BDD23E27CA611EE82D65D19C4F9AE02.roa (hash: DWVN0wHi6QUPs6snWtASAJaDoQXZR8E1QW/cZGA9SNI=) 5: 2F9A7A1648FC11EBBAE0991CC4F9AE02.roa (hash: EyyP05+w3I6zJfg1bK7YEVwaO6aHmtM/Fo2uP4RPYlc=) 6: 84064494E48F11EF8386EA50C4F9AE02.roa (hash: d3vLmOzYTOa3NHb3yIWalGAnlNbBjiF+dtQHwr43NhM=) 7: 87F433B2234C11EBA94AE637C4F9AE02.roa (hash: aPQE1e4nKCiHqR/TnLkZpZpyO3+vgwvIqog88dCR8mk=) 8: 3EF78CAA9DF911EF971AD149C4F9AE02.roa (hash: JvMqjKLoQToshoNSeubhlEpU1GQez85G+xjPh2YQQpU=) 9: CCD092AE4E6411EF92C0EC3AC4F9AE02.roa (hash: rM2HcTN6YD/Z+cCFcZeuxrJ7Jgv3YiMIlsdFtNQfr2Q=) 10: D3C8593E905E11EFAF2C185CC4F9AE02.roa (hash: mX5h1pe0z8G3BqKuVtzq+wiHKMx8BkOvpXEXAJFLe90=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:14:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7446 (0x1d16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A84A Validity Not Before: Apr 4 16:14:49 2025 GMT Not After : Apr 11 16:14:49 2025 GMT Subject: CN=67f00579-3b3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:93:74:ca:17:38:4a:16:f1:e6:9d:2f:49:f1: cf:a2:f0:8d:cf:8e:ef:da:24:58:f4:79:1b:3a:34: c2:1b:89:3c:06:ed:ac:5d:94:f1:e3:73:1f:c3:78: 64:8a:58:d7:df:fd:b4:37:3b:47:da:0a:97:1f:7b: cc:88:3e:9b:c5:91:72:65:05:48:4b:9c:f9:ec:30: 65:ef:d7:b5:d6:92:dc:48:a6:47:af:8b:1f:b2:f1: b3:2e:c8:b7:c8:c1:c8:8c:24:d3:63:2f:15:f7:16: d0:d0:fb:b6:60:e2:71:11:d4:b8:c0:c2:6b:6e:19: f8:64:42:8b:88:aa:c0:e5:99:a4:2b:46:44:92:61: dc:9b:a9:26:ca:03:c6:24:02:b0:c0:ef:cd:f6:62: 77:e1:a4:f1:4f:d2:e4:3c:d2:3d:b2:26:dd:17:aa: 58:08:55:b7:12:1e:14:41:9c:40:c2:36:16:3d:7a: 15:e0:1a:18:03:91:96:63:7b:88:b7:aa:f2:f7:ff: c7:78:5a:80:d5:66:45:d4:d6:b2:3e:d5:51:43:89: 13:d1:b8:3e:86:d3:48:00:ad:ed:e1:b7:e1:5a:0f: 08:03:cc:49:59:59:8d:41:79:69:52:c4:77:f2:05: 80:b3:59:cc:6b:e2:f3:d9:a9:f0:bf:4b:fe:b2:1b: ff:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:77:03:D9:ED:20:2F:2A:82:10:C4:1A:2A:3C:41:DD:E6:94:83:4C X509v3 Authority Key Identifier: keyid:8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:a9:e4:69:ff:e7:19:a3:2a:d9:f8:e4:d3:6a:bb:4a:98:e1: 70:22:af:32:44:73:0c:b7:c7:2c:12:7a:c2:fb:03:d1:21:be: 48:ad:8a:af:92:90:0a:4f:a0:42:d3:2c:a6:7a:c5:97:33:87: 80:42:df:a9:45:76:e1:d8:a0:52:a1:3f:5d:a1:a8:b3:50:3b: 38:8c:5f:dc:b7:19:85:6f:57:bd:c0:5e:ee:65:0d:5d:96:52: 61:a6:7c:02:af:de:aa:11:65:b3:8b:b2:ed:11:b7:e7:2c:e7: fe:09:d5:80:f5:12:b9:cb:a5:e0:3d:0a:f5:5c:27:60:d4:a5: 95:7c:75:2b:e3:98:d3:a3:fc:52:37:8f:14:67:35:c6:30:80: 25:b2:08:2b:33:15:a5:94:81:e2:9f:e4:5c:c0:4e:dc:93:ba: a7:7d:7f:50:cd:4c:f2:6a:48:0b:c5:63:ae:e6:68:4c:fb:e3: 4c:6f:0f:d1:27:f9:4a:15:7d:0e:4a:88:44:1b:df:0b:06:53: b2:8e:33:cd:93:1f:4a:13:2c:54:5c:4b:52:5a:74:77:9b:26: f0:de:0e:89:89:5f:91:bf:48:d2:c6:2b:57:87:72:6c:ac:8c: a9:b1:ae:8d:7b:f6:92:ad:34:17:76:00:71:d8:92:e5:2c:16: 8f:09:10:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHRYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E4NEExMTAvBgNVBAUTKDhBMUExMEVCOEZCQTQ1QzIxNTJDQTg5NTZGNDMyRjlB ODEzOTYwM0EwHhcNMjUwNDA0MTYxNDQ5WhcNMjUwNDExMTYxNDQ5WjAYMRYwFAYD VQQDEw02N2YwMDU3OS0zYjNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ZN0yhc4Shbx5p0vSfHPovCNz47v2iRY9HkbOjTCG4k8Bu2sXZTx43Mfw3hk iljX3/20NztH2gqXH3vMiD6bxZFyZQVIS5z57DBl79e11pLcSKZHr4sfsvGzLsi3 yMHIjCTTYy8V9xbQ0Pu2YOJxEdS4wMJrbhn4ZEKLiKrA5ZmkK0ZEkmHcm6kmygPG JAKwwO/N9mJ34aTxT9LkPNI9sibdF6pYCFW3Eh4UQZxAwjYWPXoV4BoYA5GWY3uI t6ry9//HeFqA1WZF1NayPtVRQ4kT0bg+htNIAK3t4bfhWg8IA8xJWVmNQXlpUsR3 8gWAs1nMa+Lz2anwv0v+shv/4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJF3A9nt IC8qghDEGio8Qd3mlINMMB8GA1UdIwQYMBaAFIoaEOuPukXCFSyolW9DL5qBOWA6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTg0QS8xODA1MTkxQUUx RUYxMUU2OUQzNjUwMUJDNEY5QUUwMi9paG9RNjQtNlJjSVZMS2lWYjBNdm1vRTVZ RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lob1E2NC02UmNJVkxLaVZiME12bW9FNVlEby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTg0QS8xODA1MTkxQUUxRUYxMUU2OUQzNjUwMUJDNEY5QUUwMi9paG9RNjQtNlJj SVZMS2lWYjBNdm1vRTVZRG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZqeRp/+cZoyrZ+OTTartKmOFwIq8yRHMMt8csEnrC+wPRIb5IrYqv kpAKT6BC0yymesWXM4eAQt+pRXbh2KBSoT9doaizUDs4jF/ctxmFb1e9wF7uZQ1d llJhpnwCr96qEWWzi7LtEbfnLOf+CdWA9RK5y6XgPQr1XCdg1KWVfHUr45jTo/xS N48UZzXGMIAlsggrMxWllIHin+RcwE7ck7qnfX9QzUzyakgLxWOu5mhM++NMbw/R J/lKFX0OSohEG98LBlOyjjPNkx9KEyxUXEtSWnR3mybw3g6JiV+Rv0jSxitXh3Js rIypsa6Ne/aSrTQXdgBx2JLlLBaPCRC3 -----END CERTIFICATE-----Generated at Sun Apr 6 11:54:58 2025 by rpki-client