$ rpki-client -vvf rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft File: lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft (raw, json) Hash identifier: spWsLwkznpnGU0+r4580jaXg0aQ6QGFjzB9JKLm44hY= Subject key identifier: E7:E3:2B:13:2C:44:78:D8:80:58:E6:0C:D8:2D:3E:F0:D6:47:5B:5D Authority key identifier: 95:24:EA:9B:82:3C:20:FA:78:92:3B:E6:66:7E:14:F6:C4:C3:B4:7E Certificate issuer: /CN=A9185D6E/serialNumber=9524EA9B823C20FA78923BE6667E14F6C4C3B47E Certificate serial: 0556 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft Manifest number: 0547 Signing time: Sat 15 Feb 2025 00:48:41 +0000 Manifest this update: Sat 15 Feb 2025 00:48:41 +0000 Manifest next update: Sat 22 Feb 2025 00:48:41 +0000 Files and hashes: 1: lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl (hash: tQoo77mIbzCOU4DKvhHaykTzT4jVmRUgdqWtbl+3OlY=) 2: 37F43E66A27311EFA8731822C4F9AE02.roa (hash: nZqxDtZBd3TKtOg41uHIOH+ht6vmrzVcqsB/4sKS7Lw=) 3: 229CD24AF9FB11EB8CFF5E7DC4F9AE02.roa (hash: Ad+xO92l20yDnJAF1r+RTCORzADKmBcytCe/7+C9evg=) 4: 53BCB840EA4211EB846B8757C4F9AE02.roa (hash: Qq7xLdmh4FD2aD1wbY5We4EWUzMXM2X7Q61tiyGnpuI=) 5: 368F5308A27311EFA8731822C4F9AE02.roa (hash: nF3bhaPZagyNLULkvS1a5+uROKF0zNPyL/4XlBSqH9Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1366 (0x556) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185D6E Validity Not Before: Feb 15 00:48:41 2025 GMT Not After : Feb 22 00:48:41 2025 GMT Subject: CN=67afe469-6b41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:b5:89:b0:51:8d:82:af:10:ba:f7:76:52:34: 05:88:12:ac:84:a2:cf:8c:a4:ad:c9:f5:ef:c6:7f: 88:34:27:8f:a4:70:c8:ef:a1:dc:fe:36:1d:8f:cf: 52:c3:2c:37:0a:ac:20:d9:e0:46:0d:cc:af:94:6f: b2:c5:fb:ea:12:50:e2:a7:27:02:04:d8:8a:56:26: 86:bb:8d:3a:fe:40:bc:13:10:7e:3b:a7:44:b0:5c: 3f:a5:88:e8:7e:ae:53:f6:af:17:6f:10:84:99:90: 90:f4:2e:26:6e:f7:ef:8b:a0:cd:f7:99:62:2a:70: d1:59:84:52:1b:b9:9c:65:a2:75:99:bf:e8:b0:c0: 06:cc:58:a1:aa:a4:bc:b4:6b:12:6d:80:6f:d6:31: 0e:e4:b3:52:9a:c2:e3:30:07:3f:f3:b2:2a:57:88: 57:30:76:46:bb:29:81:37:3b:d7:31:1a:51:c5:0a: 7d:70:04:4c:fe:bd:85:33:56:36:3f:12:fe:1e:b7: 6f:6b:7a:a1:09:09:ce:9b:91:7a:db:9c:f0:bb:e6: 8f:ba:41:41:a0:3c:fd:ed:60:55:41:1b:69:0b:87: af:43:ab:cf:d3:a1:12:b9:4b:fb:9f:31:aa:4e:e0: bd:05:14:d8:ef:6a:cc:7d:68:8c:21:22:00:ed:7e: 51:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:E3:2B:13:2C:44:78:D8:80:58:E6:0C:D8:2D:3E:F0:D6:47:5B:5D X509v3 Authority Key Identifier: keyid:95:24:EA:9B:82:3C:20:FA:78:92:3B:E6:66:7E:14:F6:C4:C3:B4:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:64:91:cf:a6:fb:2b:bf:4b:04:29:68:87:ff:2c:4c:4e:48: 4d:26:df:90:82:ab:14:c1:0b:c4:8b:a3:bb:ae:d1:16:dd:ea: a2:97:3e:04:7f:05:bf:c7:db:ab:df:cd:01:37:ce:8b:9f:b1: 8d:2d:39:00:51:5e:34:6b:69:d1:cb:ad:ba:89:b1:46:59:0c: de:00:d1:24:bc:06:c6:c0:45:69:60:9d:bb:15:3c:38:95:39: 47:7e:75:31:37:15:00:fd:bc:58:7a:64:81:2b:17:ef:25:01: 65:77:3e:4e:c3:03:58:2f:2d:64:22:ff:5a:c7:e3:ac:dc:dc: 9b:d4:81:1e:4c:d6:ae:81:58:12:d5:6a:c5:79:f0:d7:7d:4b: 2a:b2:26:49:ed:e8:10:05:c2:d5:3c:c7:1d:32:a0:46:9f:d0: 34:7b:f9:94:37:e8:d5:8d:0a:c1:e8:39:87:4c:df:70:62:2c: 01:8d:1f:17:24:10:b9:79:1c:16:0c:65:cf:e0:89:6d:8e:46: 35:f5:a7:14:34:2d:45:b9:b8:a5:19:18:df:fa:86:35:06:d4: 35:f0:f6:02:26:f8:a2:85:98:43:8c:03:e3:de:2c:14:9f:91: 97:95:78:f1:5e:b2:e2:54:29:a4:c5:71:68:68:ea:c6:45:f3: dc:fc:97:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVENkUxMTAvBgNVBAUTKDk1MjRFQTlCODIzQzIwRkE3ODkyM0JFNjY2N0UxNEY2 QzRDM0I0N0UwHhcNMjUwMjE1MDA0ODQxWhcNMjUwMjIyMDA0ODQxWjAYMRYwFAYD VQQDEw02N2FmZTQ2OS02YjQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8LWJsFGNgq8Quvd2UjQFiBKshKLPjKStyfXvxn+INCePpHDI76Hc/jYdj89S wyw3Cqwg2eBGDcyvlG+yxfvqElDipycCBNiKViaGu406/kC8ExB+O6dEsFw/pYjo fq5T9q8XbxCEmZCQ9C4mbvfvi6DN95liKnDRWYRSG7mcZaJ1mb/osMAGzFihqqS8 tGsSbYBv1jEO5LNSmsLjMAc/87IqV4hXMHZGuymBNzvXMRpRxQp9cARM/r2FM1Y2 PxL+Hrdva3qhCQnOm5F625zwu+aPukFBoDz97WBVQRtpC4evQ6vP06ESuUv7nzGq TuC9BRTY72rMfWiMISIA7X5ReQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOfjKxMs RHjYgFjmDNgtPvDWR1tdMB8GA1UdIwQYMBaAFJUk6puCPCD6eJI75mZ+FPbEw7R+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUQ2RS80Q0JGRjRBRURG RjExMUVCODk0RjMwNjdDNEY5QUUwMi9sU1RxbTRJOElQcDRranZtWm40VTlzVER0 SDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xTVHFtNEk4SVBwNGtqdm1abjRVOXNURHRINC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUQ2RS80Q0JGRjRBRURGRjExMUVCODk0RjMwNjdDNEY5QUUwMi9sU1RxbTRJOElQ cDRranZtWm40VTlzVER0SDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBZJHPpvsrv0sEKWiH/yxMTkhNJt+QgqsUwQvEi6O7rtEW3eqilz4E fwW/x9ur380BN86Ln7GNLTkAUV40a2nRy626ibFGWQzeANEkvAbGwEVpYJ27FTw4 lTlHfnUxNxUA/bxYemSBKxfvJQFldz5OwwNYLy1kIv9ax+Os3Nyb1IEeTNaugVgS 1WrFefDXfUsqsiZJ7egQBcLVPMcdMqBGn9A0e/mUN+jVjQrB6DmHTN9wYiwBjR8X JBC5eRwWDGXP4IltjkY19acUNC1FubilGRjf+oY1BtQ18PYCJviihZhDjAPj3iwU n5GXlXjxXrLiVCmkxXFoaOrGRfPc/Jco -----END CERTIFICATE-----Generated at Sun Feb 16 15:39:27 2025 by rpki-client