$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft File: Lfmh43Whe46lYCe0WovWb5Z0fYY.mft (raw, json) Hash identifier: cIc53I1VnLwqucjBywaEPBz73m4Nydzlk2j84BSKYNo= Subject key identifier: F7:56:C6:D8:F0:A7:75:43:C2:94:61:A3:80:93:B1:09:A6:66:DF:27 Authority key identifier: 2D:F9:A1:E3:75:A1:7B:8E:A5:60:27:B4:5A:8B:D6:6F:96:74:7D:86 Certificate issuer: /CN=A9185B6D/serialNumber=2DF9A1E375A17B8EA56027B45A8BD66F96747D86 Certificate serial: A9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Lfmh43Whe46lYCe0WovWb5Z0fYY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft Manifest number: A8 Signing time: Sat 15 Feb 2025 07:18:08 +0000 Manifest this update: Sat 15 Feb 2025 07:18:07 +0000 Manifest next update: Sat 22 Feb 2025 07:18:07 +0000 Files and hashes: 1: Lfmh43Whe46lYCe0WovWb5Z0fYY.crl (hash: lzwweugdDBoZsP34vRx8wyw0eARkndAD/xVactHKWYw=) 2: AB3CCD50E79011EEA3DFB922C4F9AE02.roa (hash: yZ6MBJhoD6w3VG8OJH7ZW6bW41xKAcxHLnAOqa1PvDs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.crl rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Lfmh43Whe46lYCe0WovWb5Z0fYY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 169 (0xa9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B6D Validity Not Before: Feb 15 07:18:07 2025 GMT Not After : Feb 22 07:18:07 2025 GMT Subject: CN=67b03faf-22b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:71:bd:fe:e0:40:b3:c7:d8:05:c5:5a:01:07: a0:5e:14:b3:83:24:9d:87:10:5a:98:95:08:b3:f0: 89:42:c4:18:fb:c9:2f:e6:00:1b:82:93:76:b0:78: e6:90:98:0d:9f:1c:94:63:28:4b:3e:66:b4:c8:62: 9c:8b:ca:3f:00:9d:8c:21:cf:99:a3:a5:1d:31:e0: 6c:71:85:f4:57:62:dd:98:21:41:a5:38:f4:c2:58: 7f:d0:a0:ec:1e:84:18:ac:84:86:f4:b2:d0:4d:d3: ad:0d:3e:99:5b:c4:28:6d:87:1d:48:6e:de:06:d8: d0:33:0a:6b:f9:25:46:3a:c6:ad:14:d7:ac:a9:f1: ea:f0:23:8c:25:15:f5:65:44:d8:b5:bc:df:de:54: ee:10:ee:3f:9d:f0:a8:88:ae:0c:e0:41:bd:88:2e: c2:b6:29:09:7e:70:88:72:1e:78:47:d3:1b:7b:45: 95:2b:42:b5:d8:c1:5a:f2:34:b7:b2:76:37:68:fd: 20:f3:ee:d0:57:0c:bf:a1:0a:13:79:9b:11:6d:a3: f5:46:fa:a2:c8:f8:7d:10:51:99:9f:99:cd:aa:12: 0a:1a:15:a5:fe:7f:e4:0c:c0:11:ef:59:f1:ef:63: 79:b2:45:45:31:76:10:88:97:1e:58:d0:5b:a6:be: d8:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:56:C6:D8:F0:A7:75:43:C2:94:61:A3:80:93:B1:09:A6:66:DF:27 X509v3 Authority Key Identifier: keyid:2D:F9:A1:E3:75:A1:7B:8E:A5:60:27:B4:5A:8B:D6:6F:96:74:7D:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Lfmh43Whe46lYCe0WovWb5Z0fYY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:9c:9a:36:b5:a8:1b:27:39:fa:f0:fc:f8:c6:d7:c3:5e:29: 79:d4:40:d4:ed:3a:14:61:e4:90:cd:61:c8:e5:16:ef:48:07: 33:a4:6a:f4:91:31:2d:d1:4f:d1:43:6f:97:02:95:e3:bb:57: 71:19:5f:55:cd:1b:24:00:6a:35:d8:f5:2e:70:f0:04:d1:6c: 81:47:fe:a2:a6:c9:ac:e7:84:7c:a2:82:24:79:14:41:7b:3b: f1:09:40:73:b3:c8:d2:33:e6:06:64:bf:1b:03:a0:03:01:ff: 2e:06:76:8d:d4:41:f6:e4:7c:ad:fe:1e:2c:f3:9d:f0:ec:0d: 06:2b:04:18:df:41:4a:86:f3:13:85:fa:59:db:c9:85:5a:9c: 2c:87:f6:07:3d:06:c6:ad:d5:d5:23:a8:fa:0c:fb:12:2b:13: cc:9a:6a:26:6f:12:9f:dc:2c:1d:91:11:66:6b:af:a1:8c:f4: 04:c9:53:44:af:d4:2a:c8:a9:b2:d1:fa:f7:11:b5:42:c3:cb: 85:9a:8e:06:72:30:eb:34:da:ea:75:01:cf:94:be:ba:26:bc: 93:16:2f:6e:3c:1a:9d:85:5c:fd:53:70:75:1e:1e:49:ff:86: 14:a1:0e:4e:f8:59:56:23:02:11:b7:8f:f9:5b:28:88:6f:08: 91:ab:2f:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCNkQxMTAvBgNVBAUTKDJERjlBMUUzNzVBMTdCOEVBNTYwMjdCNDVBOEJENjZG OTY3NDdEODYwHhcNMjUwMjE1MDcxODA3WhcNMjUwMjIyMDcxODA3WjAYMRYwFAYD VQQDEw02N2IwM2ZhZi0yMmI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsnG9/uBAs8fYBcVaAQegXhSzgySdhxBamJUIs/CJQsQY+8kv5gAbgpN2sHjm kJgNnxyUYyhLPma0yGKci8o/AJ2MIc+Zo6UdMeBscYX0V2LdmCFBpTj0wlh/0KDs HoQYrISG9LLQTdOtDT6ZW8QobYcdSG7eBtjQMwpr+SVGOsatFNesqfHq8COMJRX1 ZUTYtbzf3lTuEO4/nfCoiK4M4EG9iC7CtikJfnCIch54R9Mbe0WVK0K12MFa8jS3 snY3aP0g8+7QVwy/oQoTeZsRbaP1RvqiyPh9EFGZn5nNqhIKGhWl/n/kDMAR71nx 72N5skVFMXYQiJceWNBbpr7YeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPdWxtjw p3VDwpRho4CTsQmmZt8nMB8GA1UdIwQYMBaAFC35oeN1oXuOpWAntFqL1m+WdH2G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUI2RC8xODFCODIyMEU3 OEUxMUVFOTgzMUVCN0VDNEY5QUUwMi9MZm1oNDNXaGU0NmxZQ2UwV292V2I1WjBm WVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0xmbWg0M1doZTQ2bFlDZTBXb3ZXYjVaMGZZWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUI2RC8xODFCODIyMEU3OEUxMUVFOTgzMUVCN0VDNEY5QUUwMi9MZm1oNDNXaGU0 NmxZQ2UwV292V2I1WjBmWVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPnJo2tagbJzn68Pz4xtfDXil51EDU7ToUYeSQzWHI5RbvSAczpGr0 kTEt0U/RQ2+XApXju1dxGV9VzRskAGo12PUucPAE0WyBR/6ipsms54R8ooIkeRRB ezvxCUBzs8jSM+YGZL8bA6ADAf8uBnaN1EH25Hyt/h4s853w7A0GKwQY30FKhvMT hfpZ28mFWpwsh/YHPQbGrdXVI6j6DPsSKxPMmmombxKf3CwdkRFma6+hjPQEyVNE r9QqyKmy0fr3EbVCw8uFmo4GcjDrNNrqdQHPlL66JryTFi9uPBqdhVz9U3B1Hh5J /4YUoQ5O+FlWIwIRt4/5WyiIbwiRqy/W -----END CERTIFICATE-----Generated at Sun Feb 16 15:13:02 2025 by rpki-client