$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft File: Lfmh43Whe46lYCe0WovWb5Z0fYY.mft (raw, json) Hash identifier: vlPzHAuEGRmWNnkZXWrrbUwCXVixoF38r6AscGvG3/I= Subject key identifier: F8:D6:A6:DE:F9:40:C4:13:58:7F:C8:E2:7D:AE:65:CA:6B:6C:B8:FE Authority key identifier: 2D:F9:A1:E3:75:A1:7B:8E:A5:60:27:B4:5A:8B:D6:6F:96:74:7D:86 Certificate issuer: /CN=A9185B6D/serialNumber=2DF9A1E375A17B8EA56027B45A8BD66F96747D86 Certificate serial: B6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Lfmh43Whe46lYCe0WovWb5Z0fYY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft Manifest number: B5 Signing time: Thu 13 Mar 2025 04:05:28 +0000 Manifest this update: Thu 13 Mar 2025 04:05:27 +0000 Manifest next update: Thu 20 Mar 2025 04:05:27 +0000 Files and hashes: 1: Lfmh43Whe46lYCe0WovWb5Z0fYY.crl (hash: 1t1VnCfeP48ReWjZpN4qe+UIrmI4McoN7mUzKsq+Kzg=) 2: AB3CCD50E79011EEA3DFB922C4F9AE02.roa (hash: yZ6MBJhoD6w3VG8OJH7ZW6bW41xKAcxHLnAOqa1PvDs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.crl rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Lfmh43Whe46lYCe0WovWb5Z0fYY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 04:05:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 182 (0xb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B6D Validity Not Before: Mar 13 04:05:27 2025 GMT Not After : Mar 20 04:05:27 2025 GMT Subject: CN=67d25987-5e17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:d1:de:ac:5d:0e:09:e6:51:d8:e7:82:05:22: c2:da:0e:5d:ef:65:77:4b:8e:bb:c7:1a:51:29:4d: cf:c5:51:d7:3a:bf:7a:33:90:07:6b:a9:c2:f8:bf: 6d:8f:0c:76:ed:a5:5a:6e:9c:74:e3:15:b1:95:5f: 3d:7e:d8:bb:3e:ee:ce:dd:f3:f2:9d:df:6d:c8:9f: 41:28:ce:2d:0a:4d:54:52:7b:27:f0:27:5a:1e:d2: 22:52:ac:ee:48:84:23:b0:12:f3:3c:15:94:be:7f: 8e:8b:fc:82:2d:0d:34:51:f9:be:6b:b2:c2:51:0d: 2b:aa:b2:2f:54:72:6e:54:75:46:a5:ef:43:1c:b9: a7:ba:8c:c2:79:fb:64:d8:70:18:61:c0:37:a9:00: 6e:f2:6b:04:8f:a6:51:7a:04:82:bc:73:1a:25:b9: d9:6a:ff:ab:dd:4b:d9:3b:17:e3:c1:81:5a:ac:82: b3:7e:a0:3f:91:a3:6d:16:dc:c0:29:d7:36:05:0c: c1:3d:38:98:79:19:9d:27:ec:f4:8b:38:ed:34:6e: 85:47:22:2a:4d:10:f7:05:8c:1e:30:c8:30:9b:81: 72:ed:36:6b:4f:3a:bc:de:a5:40:d2:cf:1a:95:8a: e0:44:ee:a4:0d:51:ec:fd:c3:7b:29:b3:84:43:cc: 7c:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:D6:A6:DE:F9:40:C4:13:58:7F:C8:E2:7D:AE:65:CA:6B:6C:B8:FE X509v3 Authority Key Identifier: keyid:2D:F9:A1:E3:75:A1:7B:8E:A5:60:27:B4:5A:8B:D6:6F:96:74:7D:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Lfmh43Whe46lYCe0WovWb5Z0fYY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:b1:b9:8c:d9:eb:fb:69:99:4c:b4:7e:e8:6a:22:63:2e:37: 22:f6:5e:59:47:f6:b1:12:a7:2a:1a:d5:b1:05:0c:8f:74:35: cc:4b:c5:fa:3c:84:7e:91:ec:56:36:fc:0d:8d:c7:7d:a6:db: e7:e9:48:c8:2c:f5:be:ad:13:00:77:2a:4f:8f:6c:83:ce:76: 40:05:7f:7f:75:2c:91:56:6e:fe:cb:8a:5c:e4:db:73:90:9f: 62:2a:19:e9:c7:e3:d3:3d:54:e6:15:68:e9:70:ca:33:b9:1f: 5c:83:79:aa:78:6f:87:e7:c4:2d:97:a2:20:fe:af:10:bd:5b: fd:44:33:52:83:ff:a1:5e:4e:93:3c:c2:c5:db:77:99:74:42: 10:a7:af:cd:0c:51:26:ab:71:86:37:2c:31:84:98:04:d8:38: b4:72:4c:3b:44:00:9b:3d:d1:6e:fa:d6:c0:0a:06:6c:53:f3: 15:97:2e:04:20:f4:c4:72:49:b5:13:66:65:13:d5:11:06:d7: 4b:d5:f9:d0:43:b4:e6:2d:fc:10:60:9c:b2:d2:e8:fb:6e:bc: 7b:2a:ae:0e:c5:14:e0:d9:47:0e:c8:e7:a0:78:0a:b2:0d:d8: db:2b:b3:9c:09:f1:59:dc:7a:cc:0b:1e:f9:8a:5b:1c:ab:b3: 31:fd:5e:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCNkQxMTAvBgNVBAUTKDJERjlBMUUzNzVBMTdCOEVBNTYwMjdCNDVBOEJENjZG OTY3NDdEODYwHhcNMjUwMzEzMDQwNTI3WhcNMjUwMzIwMDQwNTI3WjAYMRYwFAYD VQQDEw02N2QyNTk4Ny01ZTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2dHerF0OCeZR2OeCBSLC2g5d72V3S467xxpRKU3PxVHXOr96M5AHa6nC+L9t jwx27aVabpx04xWxlV89fti7Pu7O3fPynd9tyJ9BKM4tCk1UUnsn8CdaHtIiUqzu SIQjsBLzPBWUvn+Oi/yCLQ00Ufm+a7LCUQ0rqrIvVHJuVHVGpe9DHLmnuozCeftk 2HAYYcA3qQBu8msEj6ZRegSCvHMaJbnZav+r3UvZOxfjwYFarIKzfqA/kaNtFtzA Kdc2BQzBPTiYeRmdJ+z0izjtNG6FRyIqTRD3BYweMMgwm4Fy7TZrTzq83qVA0s8a lYrgRO6kDVHs/cN7KbOEQ8x8wQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPjWpt75 QMQTWH/I4n2uZcprbLj+MB8GA1UdIwQYMBaAFC35oeN1oXuOpWAntFqL1m+WdH2G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUI2RC8xODFCODIyMEU3 OEUxMUVFOTgzMUVCN0VDNEY5QUUwMi9MZm1oNDNXaGU0NmxZQ2UwV292V2I1WjBm WVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0xmbWg0M1doZTQ2bFlDZTBXb3ZXYjVaMGZZWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUI2RC8xODFCODIyMEU3OEUxMUVFOTgzMUVCN0VDNEY5QUUwMi9MZm1oNDNXaGU0 NmxZQ2UwV292V2I1WjBmWVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8sbmM2ev7aZlMtH7oaiJjLjci9l5ZR/axEqcqGtWxBQyPdDXMS8X6 PIR+kexWNvwNjcd9ptvn6UjILPW+rRMAdypPj2yDznZABX9/dSyRVm7+y4pc5Ntz kJ9iKhnpx+PTPVTmFWjpcMozuR9cg3mqeG+H58Qtl6Ig/q8QvVv9RDNSg/+hXk6T PMLF23eZdEIQp6/NDFEmq3GGNywxhJgE2Di0ckw7RACbPdFu+tbACgZsU/MVly4E IPTEckm1E2ZlE9URBtdL1fnQQ7TmLfwQYJyy0uj7brx7Kq4OxRTg2UcOyOegeAqy DdjbK7OcCfFZ3HrMCx75ilscq7Mx/V51 -----END CERTIFICATE-----Generated at Thu Mar 13 21:31:00 2025 by rpki-client