$ rpki-client -vvf rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft File: pN7tlZPlkTA6mwOYBh_o71GGZco.mft (raw, json) Hash identifier: XifHniO1AWxxuDCh8VANBx0jqomSvxPR6Ker/0J/cuM= Subject key identifier: 81:C9:55:FA:46:79:10:63:99:0D:E0:A3:7D:2E:39:4E:0D:25:2C:4E Authority key identifier: A4:DE:ED:95:93:E5:91:30:3A:9B:03:98:06:1F:E8:EF:51:86:65:CA Certificate issuer: /CN=A918CABF/serialNumber=A4DEED9593E591303A9B0398061FE8EF518665CA Certificate serial: 0112 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft Manifest number: 010F Signing time: Wed 12 Mar 2025 19:11:01 +0000 Manifest this update: Wed 12 Mar 2025 19:11:01 +0000 Manifest next update: Wed 19 Mar 2025 19:11:01 +0000 Files and hashes: 1: pN7tlZPlkTA6mwOYBh_o71GGZco.crl (hash: 6PtYUoQEyHbffOJ4hiBUFhHrziMXlYPaSFTLjYQwYDI=) 2: E12607CE6F0411EEA5298939C4F9AE02.roa (hash: 8l049HuRfYTZKVjmyHEuH/syy1lOm3iSGmRbwY8PSnM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.crl rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 19:11:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 274 (0x112) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918CABF Validity Not Before: Mar 12 19:11:01 2025 GMT Not After : Mar 19 19:11:01 2025 GMT Subject: CN=67d1dc45-9aa6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:f2:ce:fb:8d:84:5e:3a:ba:4a:80:55:96:9e: ce:4c:67:c9:d5:39:3c:d9:b1:f9:6a:ee:20:31:72: 73:61:99:f6:9c:a2:b8:0c:53:b0:86:e5:80:f3:84: b4:4d:0e:0c:3d:e6:cd:b0:dd:de:24:dc:67:44:19: aa:35:04:8e:1b:4b:73:21:8d:3f:ec:66:61:73:67: fd:91:35:08:b8:0b:cf:91:a3:93:42:74:bf:dd:18: 18:9e:24:e0:f4:89:60:c1:34:4a:40:6f:d3:e9:52: a9:18:08:90:28:76:8d:83:90:73:6e:31:6f:d7:65: c7:76:65:2e:ee:90:de:59:30:c2:32:d8:85:fd:42: 99:0e:84:55:62:18:f4:ee:a5:99:38:01:c5:39:bd: e7:bd:c0:15:ca:66:20:67:48:49:92:e5:b5:d5:b4: b0:3c:5d:d1:64:86:d1:fa:65:40:36:d4:e9:4d:54: 5c:04:6e:a7:99:44:55:c4:02:92:e0:4d:4d:2f:c5: ae:9e:7b:fe:47:1d:56:83:42:17:08:49:90:1d:9b: 2f:35:fa:34:27:06:4f:5c:dd:84:31:3b:36:7a:cc: 62:b0:e3:48:e8:c3:13:1f:b3:1e:fc:62:ee:96:38: 30:0b:e8:62:a3:72:39:f1:89:d6:0e:df:9a:f5:22: f1:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:C9:55:FA:46:79:10:63:99:0D:E0:A3:7D:2E:39:4E:0D:25:2C:4E X509v3 Authority Key Identifier: keyid:A4:DE:ED:95:93:E5:91:30:3A:9B:03:98:06:1F:E8:EF:51:86:65:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:ee:fc:a5:37:c3:e0:86:6d:22:02:67:6e:9d:b0:e2:bb:88: 2e:3d:96:ef:85:12:59:b8:3b:b7:85:af:de:a1:18:be:61:45: 6e:fe:b1:03:fc:e6:77:80:83:73:ce:3c:ff:0a:f1:f7:e4:60: f9:35:2c:12:f9:1b:52:3b:fd:89:b3:55:12:29:f3:17:59:51: cd:0d:10:00:a1:db:b2:f1:d7:b9:d9:54:86:7f:d4:d7:89:21: 1d:e0:ec:cd:bf:ba:b9:15:77:b1:a6:69:2b:61:1d:96:57:3b: 33:15:79:7e:87:44:8c:1d:d3:04:1d:99:73:26:50:63:36:61: 62:c1:7f:cb:b3:8a:6c:c1:a8:19:4e:4d:88:21:c2:38:12:24: 90:dc:8d:6c:72:8d:f1:44:6f:49:95:6b:5b:d7:d0:20:32:fb: 6a:cf:3d:bb:33:8d:2b:ab:24:e5:e4:4d:dc:c0:b2:92:43:d2: ca:bc:1c:ef:9d:89:34:26:59:1e:8a:75:e2:6d:02:78:45:11: 2e:23:24:40:fc:6d:a8:df:45:8a:15:fc:b4:d3:a6:1e:5b:bf: 95:c2:5c:7f:a3:71:d7:0d:1c:cb:86:86:ff:1c:9b:bd:d7:8b: 28:b5:0a:a1:34:db:0b:1f:65:4a:8d:03:95:c2:5f:19:82:97: 4c:1d:45:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OENBQkYxMTAvBgNVBAUTKEE0REVFRDk1OTNFNTkxMzAzQTlCMDM5ODA2MUZFOEVG NTE4NjY1Q0EwHhcNMjUwMzEyMTkxMTAxWhcNMjUwMzE5MTkxMTAxWjAYMRYwFAYD VQQDEw02N2QxZGM0NS05YWE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn/LO+42EXjq6SoBVlp7OTGfJ1Tk82bH5au4gMXJzYZn2nKK4DFOwhuWA84S0 TQ4MPebNsN3eJNxnRBmqNQSOG0tzIY0/7GZhc2f9kTUIuAvPkaOTQnS/3RgYniTg 9IlgwTRKQG/T6VKpGAiQKHaNg5BzbjFv12XHdmUu7pDeWTDCMtiF/UKZDoRVYhj0 7qWZOAHFOb3nvcAVymYgZ0hJkuW11bSwPF3RZIbR+mVANtTpTVRcBG6nmURVxAKS 4E1NL8Wunnv+Rx1Wg0IXCEmQHZsvNfo0JwZPXN2EMTs2esxisONI6MMTH7Me/GLu ljgwC+hio3I58YnWDt+a9SLxqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIHJVfpG eRBjmQ3go30uOU4NJSxOMB8GA1UdIwQYMBaAFKTe7ZWT5ZEwOpsDmAYf6O9RhmXK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Q0FCRi8xODkxOTVBQzY4 MkExMUVFOEE5RUI4MkZDNEY5QUUwMi9wTjd0bFpQbGtUQTZtd09ZQmhfbzcxR0da Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3BON3RsWlBsa1RBNm13T1lCaF9vNzFHR1pjby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Q0FCRi8xODkxOTVBQzY4MkExMUVFOEE5RUI4MkZDNEY5QUUwMi9wTjd0bFpQbGtU QTZtd09ZQmhfbzcxR0daY28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA47vylN8Pghm0iAmdunbDiu4guPZbvhRJZuDu3ha/eoRi+YUVu/rED /OZ3gINzzjz/CvH35GD5NSwS+RtSO/2Js1USKfMXWVHNDRAAoduy8de52VSGf9TX iSEd4OzNv7q5FXexpmkrYR2WVzszFXl+h0SMHdMEHZlzJlBjNmFiwX/Ls4pswagZ Tk2IIcI4EiSQ3I1sco3xRG9JlWtb19AgMvtqzz27M40rqyTl5E3cwLKSQ9LKvBzv nYk0JlkeinXibQJ4RREuIyRA/G2o30WKFfy006YeW7+Vwlx/o3HXDRzLhob/HJu9 14sotQqhNNsLH2VKjQOVwl8ZgpdMHUX2 -----END CERTIFICATE-----Generated at Thu Mar 13 21:31:48 2025 by rpki-client