$ rpki-client -vvf rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.mft File: q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.mft (raw, json) Hash identifier: 05z2C7d/zOjyglFme2UrJy48PtsTF+DFM1wwg8FURks= Subject key identifier: 39:68:C6:C2:90:2C:34:2F:9C:E6:8A:6F:38:34:20:85:B8:E1:7B:B1 Authority key identifier: AB:90:5D:DC:0A:FB:BD:15:49:F6:6E:FE:81:17:AE:15:00:0A:5E:0F Certificate issuer: /CN=A918B5FE/serialNumber=AB905DDC0AFBBD1549F66EFE8117AE15000A5E0F Certificate serial: 068F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.mft Manifest number: 067D Signing time: Wed 12 Mar 2025 21:56:46 +0000 Manifest this update: Wed 12 Mar 2025 21:56:46 +0000 Manifest next update: Wed 19 Mar 2025 21:56:46 +0000 Files and hashes: 1: q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.crl (hash: qkFiVVAL1JjIPqmUmBt+KFYdxENxAvN8MxVjxukb6GI=) 2: DAE15A7248F911EC9F04C439C4F9AE02.roa (hash: CcS2RgyDh/Mt65cyyvz7PDgLBgmPqkXqjVn09wN+d7I=) 3: DBB4BB6A48F911EC9F04C439C4F9AE02.roa (hash: sB2xN+NI3UCkCts4i5bUwtcZvKVfZaogReZtF2ClOtM=) 4: DCC969B048F911EC9F04C439C4F9AE02.roa (hash: Ey7sXMoZK5X/9B/g0P4vb+TT1dBxjAAcErSKVPBVZ8c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.crl rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 21:56:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1679 (0x68f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B5FE Validity Not Before: Mar 12 21:56:46 2025 GMT Not After : Mar 19 21:56:46 2025 GMT Subject: CN=67d2031e-1796 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:e7:b3:7f:8a:80:dc:f2:ef:df:6a:2f:8d:f5: d1:da:b6:ff:eb:97:8a:dd:8c:2e:38:80:fe:bd:a0: 80:99:2f:cf:46:53:43:4d:57:57:cc:6f:2c:7b:7d: 52:6c:ba:07:41:28:71:7c:3f:ed:a4:2b:c5:84:9b: 6e:1e:59:8c:99:f1:dd:cb:2f:1c:71:f1:99:43:cf: b9:cb:e1:98:2b:35:42:7a:c1:35:21:45:a4:c7:c1: cc:b0:39:27:83:fa:1d:eb:ab:4f:b4:ed:48:e2:b9: 0f:60:02:37:9f:21:e1:ba:5b:f4:67:f9:a6:cd:76: 20:22:f2:b1:f9:f0:52:7a:05:db:06:82:5f:d6:4d: d3:a9:b9:0a:a1:11:ab:e0:58:a5:e5:1c:bf:cb:55: 1f:c6:32:bf:d7:d0:dc:3b:2d:d7:41:f9:d6:50:00: 1c:d5:b3:96:11:8d:25:10:65:fc:2d:fe:07:12:86: 22:42:89:52:18:22:29:ec:2e:a6:8a:8e:9b:98:92: 1a:1d:9f:ee:e9:f5:dd:c2:fc:90:2c:5e:62:a4:31: 5d:9b:72:08:0d:ab:d1:7b:c1:6f:f7:7f:a4:03:82: c3:83:42:00:73:d5:72:15:51:92:fb:a9:07:07:58: a3:df:43:6f:3b:97:c5:a4:45:c0:2b:07:80:8f:d9: e3:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:68:C6:C2:90:2C:34:2F:9C:E6:8A:6F:38:34:20:85:B8:E1:7B:B1 X509v3 Authority Key Identifier: keyid:AB:90:5D:DC:0A:FB:BD:15:49:F6:6E:FE:81:17:AE:15:00:0A:5E:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:97:2b:d0:94:b3:65:2c:ad:b8:0c:07:6c:10:04:c2:6b:14: 35:7f:32:81:de:fe:8b:bf:5d:65:fb:ed:b5:ff:4e:54:82:6b: d0:78:58:14:ec:0f:66:bf:78:e8:bd:bb:44:20:56:96:31:b0: 57:81:05:86:68:b5:6a:63:30:63:97:d6:35:11:a4:bf:66:0c: 6b:47:00:b0:ea:e7:ec:df:38:15:f4:ff:6b:8d:61:b7:2c:72: f5:a8:49:0d:76:8e:90:99:24:ba:a7:88:ef:10:b8:8a:84:40: c7:95:47:a8:0a:f1:9a:8d:ec:12:e1:9b:a0:25:b9:c4:11:c0: f8:e8:84:a1:c3:72:21:d3:59:47:d9:be:37:f6:4a:8e:c6:9f: 8d:1d:36:c1:d3:0c:92:65:75:49:ee:c7:1f:98:a6:05:f7:4d: 12:65:23:76:d9:65:ca:b6:74:3a:c1:7c:41:b9:03:30:6a:33: f9:14:7b:9e:4d:1f:94:d3:9c:3d:ee:02:7a:c8:4e:a3:b9:4b: d0:f6:f2:bc:9d:26:3a:42:bc:5d:52:58:54:48:d0:14:5c:34: b4:a3:7a:f4:ee:e4:cb:e2:99:61:2c:68:1d:cb:89:a0:8e:58: 9c:7c:52:e6:57:11:26:2d:a3:b4:30:e9:d4:52:81:af:19:0e: ca:dd:4a:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBo8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEI1RkUxMTAvBgNVBAUTKEFCOTA1RERDMEFGQkJEMTU0OUY2NkVGRTgxMTdBRTE1 MDAwQTVFMEYwHhcNMjUwMzEyMjE1NjQ2WhcNMjUwMzE5MjE1NjQ2WjAYMRYwFAYD VQQDEw02N2QyMDMxZS0xNzk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz+ezf4qA3PLv32ovjfXR2rb/65eK3YwuOID+vaCAmS/PRlNDTVdXzG8se31S bLoHQShxfD/tpCvFhJtuHlmMmfHdyy8ccfGZQ8+5y+GYKzVCesE1IUWkx8HMsDkn g/od66tPtO1I4rkPYAI3nyHhulv0Z/mmzXYgIvKx+fBSegXbBoJf1k3TqbkKoRGr 4Fil5Ry/y1UfxjK/19DcOy3XQfnWUAAc1bOWEY0lEGX8Lf4HEoYiQolSGCIp7C6m io6bmJIaHZ/u6fXdwvyQLF5ipDFdm3IIDavRe8Fv93+kA4LDg0IAc9VyFVGS+6kH B1ij30NvO5fFpEXAKweAj9nj/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDloxsKQ LDQvnOaKbzg0IIW44XuxMB8GA1UdIwQYMBaAFKuQXdwK+70VSfZu/oEXrhUACl4P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjVGRS8zMkMzMDAyODZB OUUxMUVCQjY3NjIzMThDNEY5QUUwMi9xNUJkM0FyN3ZSVko5bTctZ1JldUZRQUtY ZzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3E1QmQzQXI3dlJWSjltNy1nUmV1RlFBS1hnOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjVGRS8zMkMzMDAyODZBOUUxMUVCQjY3NjIzMThDNEY5QUUwMi9xNUJkM0FyN3ZS Vko5bTctZ1JldUZRQUtYZzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCklyvQlLNlLK24DAdsEATCaxQ1fzKB3v6Lv11l++21/05UgmvQeFgU 7A9mv3jovbtEIFaWMbBXgQWGaLVqYzBjl9Y1EaS/ZgxrRwCw6ufs3zgV9P9rjWG3 LHL1qEkNdo6QmSS6p4jvELiKhEDHlUeoCvGajewS4ZugJbnEEcD46IShw3Ih01lH 2b439kqOxp+NHTbB0wySZXVJ7scfmKYF900SZSN22WXKtnQ6wXxBuQMwajP5FHue TR+U05w97gJ6yE6juUvQ9vK8nSY6QrxdUlhUSNAUXDS0o3r07uTL4plhLGgdy4mg jlicfFLmVxEmLaO0MOnUUoGvGQ7K3Uq0 -----END CERTIFICATE-----Generated at Thu Mar 13 21:31:42 2025 by rpki-client