$ rpki-client -vvf rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft File: lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft (raw, json) Hash identifier: w6GK/iI46zi7AKz1LDpkTMfE7NU7i39yv5iIWvTQLnI= Subject key identifier: AA:54:40:C6:55:91:15:72:9A:20:FB:F2:2B:0A:78:E6:14:39:EE:C4 Authority key identifier: 95:24:EA:9B:82:3C:20:FA:78:92:3B:E6:66:7E:14:F6:C4:C3:B4:7E Certificate issuer: /CN=A9185D6E/serialNumber=9524EA9B823C20FA78923BE6667E14F6C4C3B47E Certificate serial: 0563 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft Manifest number: 0554 Signing time: Wed 12 Mar 2025 23:04:23 +0000 Manifest this update: Wed 12 Mar 2025 23:04:22 +0000 Manifest next update: Wed 19 Mar 2025 23:04:22 +0000 Files and hashes: 1: lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl (hash: URDlTN0rjb2wp7l/hUQ0i/sN1BY9LLyaxhRFBtC+KN8=) 2: 37F43E66A27311EFA8731822C4F9AE02.roa (hash: nZqxDtZBd3TKtOg41uHIOH+ht6vmrzVcqsB/4sKS7Lw=) 3: 229CD24AF9FB11EB8CFF5E7DC4F9AE02.roa (hash: Ad+xO92l20yDnJAF1r+RTCORzADKmBcytCe/7+C9evg=) 4: 53BCB840EA4211EB846B8757C4F9AE02.roa (hash: Qq7xLdmh4FD2aD1wbY5We4EWUzMXM2X7Q61tiyGnpuI=) 5: 368F5308A27311EFA8731822C4F9AE02.roa (hash: nF3bhaPZagyNLULkvS1a5+uROKF0zNPyL/4XlBSqH9Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 23:04:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1379 (0x563) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185D6E Validity Not Before: Mar 12 23:04:22 2025 GMT Not After : Mar 19 23:04:22 2025 GMT Subject: CN=67d212f6-dad9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:52:fa:4d:47:a4:d8:fa:bb:14:e7:9f:4d:2b: b8:66:fe:8c:da:3d:e9:a8:c3:19:2a:e0:6f:68:80: 7c:52:b3:5c:13:3a:20:65:b3:a5:99:a3:f6:ac:76: c1:82:b8:0a:83:9a:4a:57:da:bf:f1:39:db:09:1f: 4d:9a:26:4d:bc:0c:24:13:2d:a8:06:bc:20:3a:b8: 74:aa:99:73:8a:8e:0a:53:00:ee:85:9b:5c:bf:be: a6:e2:0a:a8:ca:f0:3e:9e:11:54:6d:c1:a7:36:6b: 76:45:e6:dc:60:78:55:00:66:8f:ba:3d:17:52:58: 98:49:8a:8e:ba:12:da:68:c9:44:b7:d8:31:cf:de: 38:2e:d1:27:7e:36:de:60:f2:df:e2:11:ec:c0:0a: ae:ca:4f:54:af:39:ab:e4:dc:9b:72:f6:71:b6:b1: b2:43:6b:24:58:ed:83:9c:e7:7f:4f:3b:82:f8:e1: fe:4f:3e:ee:4b:89:36:d5:98:30:10:82:d9:da:de: 5e:ff:8f:59:a9:01:b6:df:a0:7e:7e:91:2a:8d:82: f3:3d:a6:5f:a3:f2:db:d4:a6:17:5d:07:11:97:6a: 1f:45:12:13:2b:33:fb:e3:1a:f0:b2:a6:e7:8f:09: cf:57:4c:4c:d1:23:31:89:ea:8a:fe:8d:3d:d8:c0: 3b:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:54:40:C6:55:91:15:72:9A:20:FB:F2:2B:0A:78:E6:14:39:EE:C4 X509v3 Authority Key Identifier: keyid:95:24:EA:9B:82:3C:20:FA:78:92:3B:E6:66:7E:14:F6:C4:C3:B4:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:00:5f:e6:67:60:d4:65:82:ca:68:ce:44:11:45:4c:30:ca: e2:7d:8b:c5:df:b0:bd:df:f4:8d:fe:6c:88:06:7d:00:16:f1: bf:9a:49:e8:29:3c:d3:42:2e:17:20:f5:78:56:70:18:b3:b3: 57:ec:f5:53:21:bd:a2:4b:85:e9:bb:f9:01:bd:3b:06:61:ea: a8:3e:97:78:b0:1a:c8:37:91:15:90:67:7f:06:43:77:28:ca: 69:d8:5e:4f:7a:93:2d:ec:6a:3f:7c:75:79:1d:19:ed:8d:ce: 2d:48:e8:4e:26:3a:2f:20:2b:99:c6:14:c7:63:aa:e0:1c:61: 44:d7:c8:c3:89:62:9b:64:47:fd:30:0c:72:f2:2a:e8:bb:66: a9:38:ef:4f:7a:ac:f1:4b:d8:71:61:73:73:00:ce:84:d9:5e: f4:86:04:a9:bc:fa:1f:f6:72:b5:36:98:7d:21:6e:c8:6d:35: 60:92:0a:19:3a:31:e5:4f:19:89:e9:8c:8b:b5:7c:1b:fa:9f: 2e:2a:2e:54:40:73:79:d2:a3:e1:4a:c3:7b:f1:fc:d1:ba:79: 1a:81:3b:19:51:3c:ea:b0:9d:32:6e:44:19:f5:7a:32:fd:a9: 87:98:7d:a8:b1:5b:08:c1:8a:cf:74:c0:ce:9b:5f:ba:6e:6e: b7:a8:7f:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBWMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVENkUxMTAvBgNVBAUTKDk1MjRFQTlCODIzQzIwRkE3ODkyM0JFNjY2N0UxNEY2 QzRDM0I0N0UwHhcNMjUwMzEyMjMwNDIyWhcNMjUwMzE5MjMwNDIyWjAYMRYwFAYD VQQDEw02N2QyMTJmNi1kYWQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx1L6TUek2Pq7FOefTSu4Zv6M2j3pqMMZKuBvaIB8UrNcEzogZbOlmaP2rHbB grgKg5pKV9q/8TnbCR9NmiZNvAwkEy2oBrwgOrh0qplzio4KUwDuhZtcv76m4gqo yvA+nhFUbcGnNmt2RebcYHhVAGaPuj0XUliYSYqOuhLaaMlEt9gxz944LtEnfjbe YPLf4hHswAquyk9Urzmr5NybcvZxtrGyQ2skWO2DnOd/TzuC+OH+Tz7uS4k21Zgw EILZ2t5e/49ZqQG236B+fpEqjYLzPaZfo/Lb1KYXXQcRl2ofRRITKzP74xrwsqbn jwnPV0xM0SMxieqK/o092MA7UwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKpUQMZV kRVymiD78isKeOYUOe7EMB8GA1UdIwQYMBaAFJUk6puCPCD6eJI75mZ+FPbEw7R+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUQ2RS80Q0JGRjRBRURG RjExMUVCODk0RjMwNjdDNEY5QUUwMi9sU1RxbTRJOElQcDRranZtWm40VTlzVER0 SDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xTVHFtNEk4SVBwNGtqdm1abjRVOXNURHRINC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUQ2RS80Q0JGRjRBRURGRjExMUVCODk0RjMwNjdDNEY5QUUwMi9sU1RxbTRJOElQ cDRranZtWm40VTlzVER0SDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaAF/mZ2DUZYLKaM5EEUVMMMrifYvF37C93/SN/myIBn0AFvG/mkno KTzTQi4XIPV4VnAYs7NX7PVTIb2iS4Xpu/kBvTsGYeqoPpd4sBrIN5EVkGd/BkN3 KMpp2F5PepMt7Go/fHV5HRntjc4tSOhOJjovICuZxhTHY6rgHGFE18jDiWKbZEf9 MAxy8irou2apOO9PeqzxS9hxYXNzAM6E2V70hgSpvPof9nK1Nph9IW7IbTVgkgoZ OjHlTxmJ6YyLtXwb+p8uKi5UQHN50qPhSsN78fzRunkagTsZUTzqsJ0ybkQZ9Xoy /amHmH2osVsIwYrPdMDOm1+6bm63qH+i -----END CERTIFICATE-----Generated at Thu Mar 13 21:31:43 2025 by rpki-client