$ rpki-client -vvf rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft File: 70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft (raw, json) Hash identifier: wCLDr9y4SdxVA1okkdzeYd8sDQPnfIH7rSsX5vgna34= Subject key identifier: 72:76:99:56:8E:17:D5:94:1B:EB:12:55:CF:07:87:57:C0:BD:7A:B8 Authority key identifier: EF:40:36:43:EA:98:20:AE:6D:9D:62:2F:9A:EF:D7:A4:C9:15:4F:24 Certificate issuer: /CN=A918BB4D/serialNumber=EF403643EA9820AE6D9D622F9AEFD7A4C9154F24 Certificate serial: 069C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft Manifest number: 068B Signing time: Wed 12 Mar 2025 21:55:24 +0000 Manifest this update: Wed 12 Mar 2025 21:55:23 +0000 Manifest next update: Wed 19 Mar 2025 21:55:23 +0000 Files and hashes: 1: 70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl (hash: G8NkY0TOtQdWvcnhawdT7E/Xp9XEmOeXrboLI9P7uoE=) 2: 05F05106586011EE9399A92EC4F9AE02.roa (hash: ZoyzDGshP3Xcoohd0LXUFxcHdBCls9Mtr+7VfTCfHng=) 3: 3524F8BCD75511EF80E68A39C4F9AE02.roa (hash: atNvogMajVgrPoutiUYnbQeZE/aQ+6Wia9GfoJ31M8o=) 4: 34956990D75511EF80E68A39C4F9AE02.roa (hash: h81pLQ3f9taD4ZqBYBRt4RndKbd9f7ld0NnWuyDorBE=) 5: 35A4EFE0D75511EF80E68A39C4F9AE02.roa (hash: Ugt+4UcuNweFOll74GevcYAxRnvyyr25SWxXtIDRBOs=) 6: 5997C4D0719A11EEBBA64415C4F9AE02.roa (hash: Hp/eOFNkR2xgWHtgC9ufiwjj3RXaiKIv6Ds84jBh4w8=) 7: C0681BF2CF4911EF8531B085C4F9AE02.roa (hash: 1+LvjWYI9J8a4Eg8H2uslKbRbyLwQqWNXS1h5+rfIco=) 8: 58EBEC82719A11EEBBA64415C4F9AE02.roa (hash: KBvqkQdj5OAEkzL6ogJ3+9HoBsBkMOAMwsqEyeP/iq8=) 9: 364089B4D75511EF80E68A39C4F9AE02.roa (hash: +GfFG8a92/6/e1SPONilMIvPHcJ1t193OnonNOBg/KI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 21:55:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1692 (0x69c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BB4D Validity Not Before: Mar 12 21:55:23 2025 GMT Not After : Mar 19 21:55:23 2025 GMT Subject: CN=67d202cb-1e5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:7e:73:d4:ce:e8:32:7c:66:28:a5:ea:04:da: 29:55:f2:82:84:bd:a1:36:2b:40:d8:90:84:ac:19: ac:6d:01:4e:20:1a:ac:41:7b:7d:7c:1a:b0:df:2d: 1a:68:14:db:5f:76:84:69:f2:98:52:53:f3:ca:78: 02:23:93:44:44:1b:76:ab:0f:8a:55:60:7a:41:8d: ce:41:ab:72:06:fd:53:c9:ec:3a:0d:93:aa:12:f8: 79:4b:35:78:89:7e:65:2a:bc:c8:05:93:0c:c3:30: c3:25:46:aa:3f:12:d0:b4:fe:a4:76:fe:da:5e:11: 0f:51:d8:5e:4f:c1:30:ef:f6:fa:f0:a7:9e:d2:be: 3d:26:9a:93:28:c6:9c:d2:9c:e2:c9:b6:a5:6e:1f: 2b:d2:7a:ec:d2:1a:9b:36:17:62:ab:11:8a:4b:d4: d1:f3:3f:d2:ad:fc:fe:f7:2d:f2:6a:e4:21:30:41: fd:03:8c:10:92:c2:fa:0a:89:be:e5:e1:f8:f7:ae: d3:8d:fd:f9:59:6a:e8:cc:49:97:b3:e4:51:5b:2a: 8c:70:f5:e7:af:43:75:9b:7d:ee:0d:75:ee:fd:a3: bb:e7:f5:9a:28:31:ce:7e:a6:21:fe:6f:df:e4:3e: 73:dd:d0:e8:19:17:dd:4c:d6:95:52:68:6e:14:ff: b6:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:76:99:56:8E:17:D5:94:1B:EB:12:55:CF:07:87:57:C0:BD:7A:B8 X509v3 Authority Key Identifier: keyid:EF:40:36:43:EA:98:20:AE:6D:9D:62:2F:9A:EF:D7:A4:C9:15:4F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:1a:ef:b9:c1:ae:9b:3d:ac:cc:71:a9:0f:77:2a:ce:a6:67: a3:6a:04:3f:6a:66:fb:94:a0:33:2b:15:76:58:2c:ac:21:75: af:87:da:32:f1:2a:67:02:54:79:0e:63:7f:04:bf:8f:d1:b4: 4a:ff:3e:cc:81:0b:9d:20:9c:70:33:98:a5:cf:54:ed:5b:11: 32:45:38:ca:3e:34:54:10:10:52:f9:97:84:fa:7c:4d:65:b1: 13:9d:1e:79:61:c1:fb:b7:af:ba:1b:64:b9:78:5c:fe:41:63: 67:13:45:0c:f8:8d:47:4a:59:4a:f1:39:38:3f:15:2d:31:59: a3:57:9a:d9:90:9c:3b:2b:0f:3e:df:fe:10:a9:0a:69:22:0e: 43:84:17:bb:12:6b:0d:2b:cd:cf:58:4c:b6:38:d1:4a:b9:fe: 44:8b:3d:16:b4:fd:fb:dc:d2:4f:36:e8:de:ef:8c:14:4f:61: bf:9f:53:8a:42:fa:11:ec:8a:37:63:31:27:fc:ae:d9:27:f2: c2:f8:43:04:0e:bd:61:c7:36:ff:bc:06:55:f0:14:2f:b4:10: 54:46:e8:10:ad:b6:d9:eb:c2:e7:fb:72:e6:66:e4:14:23:bf: 12:3a:52:01:1d:4c:6d:3a:ee:b0:5f:3d:f5:31:49:08:79:7c: a3:55:83:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJCNEQxMTAvBgNVBAUTKEVGNDAzNjQzRUE5ODIwQUU2RDlENjIyRjlBRUZEN0E0 QzkxNTRGMjQwHhcNMjUwMzEyMjE1NTIzWhcNMjUwMzE5MjE1NTIzWjAYMRYwFAYD VQQDEw02N2QyMDJjYi0xZTVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn35z1M7oMnxmKKXqBNopVfKChL2hNitA2JCErBmsbQFOIBqsQXt9fBqw3y0a aBTbX3aEafKYUlPzyngCI5NERBt2qw+KVWB6QY3OQatyBv1Tyew6DZOqEvh5SzV4 iX5lKrzIBZMMwzDDJUaqPxLQtP6kdv7aXhEPUdheT8Ew7/b68Kee0r49JpqTKMac 0pziybalbh8r0nrs0hqbNhdiqxGKS9TR8z/Srfz+9y3yauQhMEH9A4wQksL6Com+ 5eH4967Tjf35WWrozEmXs+RRWyqMcPXnr0N1m33uDXXu/aO75/WaKDHOfqYh/m/f 5D5z3dDoGRfdTNaVUmhuFP+2pwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHJ2mVaO F9WUG+sSVc8Hh1fAvXq4MB8GA1UdIwQYMBaAFO9ANkPqmCCubZ1iL5rv16TJFU8k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkI0RC9DQTU2M0JFODY1 MjIxMUVCODBGNkU5NEJDNEY5QUUwMi83MEEyUS1xWUlLNXRuV0l2bXVfWHBNa1ZU eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcwQTJRLXFZSUs1dG5XSXZtdV9YcE1rVlR5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QkI0RC9DQTU2M0JFODY1MjIxMUVCODBGNkU5NEJDNEY5QUUwMi83MEEyUS1xWUlL NXRuV0l2bXVfWHBNa1ZUeVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMGu+5wa6bPazMcakPdyrOpmejagQ/amb7lKAzKxV2WCysIXWvh9oy 8SpnAlR5DmN/BL+P0bRK/z7MgQudIJxwM5ilz1TtWxEyRTjKPjRUEBBS+ZeE+nxN ZbETnR55YcH7t6+6G2S5eFz+QWNnE0UM+I1HSllK8Tk4PxUtMVmjV5rZkJw7Kw8+ 3/4QqQppIg5DhBe7EmsNK83PWEy2ONFKuf5Eiz0WtP373NJPNuje74wUT2G/n1OK QvoR7Io3YzEn/K7ZJ/LC+EMEDr1hxzb/vAZV8BQvtBBURugQrbbZ68Ln+3LmZuQU I78SOlIBHUxtOu6wXz31MUkIeXyjVYNP -----END CERTIFICATE-----Generated at Thu Mar 13 21:31:53 2025 by rpki-client