$ rpki-client -vvf rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.mft File: oJDlIL-dUfL9zu1BOvJ6x1j2rh0.mft (raw, json) Hash identifier: i4uaGcAu919q165q5l1DeUHXIMEo7eCeWUnnPg94rIA= Subject key identifier: DB:69:F0:CD:28:BB:3F:7A:26:AB:49:15:41:7F:A7:18:24:29:6D:87 Authority key identifier: A0:90:E5:20:BF:9D:51:F2:FD:CE:ED:41:3A:F2:7A:C7:58:F6:AE:1D Certificate issuer: /CN=A919536C/serialNumber=A090E520BF9D51F2FDCEED413AF27AC758F6AE1D Certificate serial: 016F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.mft Manifest number: 0147 Signing time: Thu 13 Mar 2025 03:06:53 +0000 Manifest this update: Thu 13 Mar 2025 03:06:53 +0000 Manifest next update: Thu 20 Mar 2025 03:06:53 +0000 Files and hashes: 1: oJDlIL-dUfL9zu1BOvJ6x1j2rh0.crl (hash: WMSd6ptlr1VGgdURucergEGPs51aK5R5Sd1LUvXsE/Q=) 2: A1C2C588366311EEB376DC3AC4F9AE02.roa (hash: eMfy7OINYllKPw/hYmLN+RLPDufOse3B1bVnfxelXA4=) 3: A14DCC1A366311EEB376DC3AC4F9AE02.roa (hash: uXWLPj49wt34ZFOdgRvzFts1coN6e2ycjWdiQjNmKsk=) 4: FAC35354610611EFB6324A30C4F9AE02.roa (hash: 3fkGbyflBIYBaEGX9UwZRIaOP3YpNHP6p1lJeAeN+Pc=) 5: 9EBF44EC366311EEB376DC3AC4F9AE02.roa (hash: 2T6E2IzaBIpKo85tSWVvYebgls3pQQ9SNaIoG7eWLz4=) 6: AEC0C8428C5811EFA0E8E859C4F9AE02.roa (hash: RRetVybUwFxGaSKknNCaa7/I6tqAGe/pCAUndWUR9fw=) 7: A08711E2366311EEB376DC3AC4F9AE02.roa (hash: ekGkDDIKWLiqVV7h6ESwSg8vnFxwfp+WHxsTHsOalhs=) 8: A309A0BA366311EEB376DC3AC4F9AE02.roa (hash: AW+Nxj8w4krax5vO+aa2r3fRVGb6J4InT/gDIakIwPQ=) 9: AA36D97EFC7511EE9C9CD67CC4F9AE02.roa (hash: xzZgqMDA4sRVnfCdaLDA6dVoRCpm16rxzJc3wo1vyY4=) 10: A22F20AC366311EEB376DC3AC4F9AE02.roa (hash: DKGzaOaDogHp8zZnJNJ8Xu7A6tqaHSnOfSE1S0tRHtw=) 11: 9DC673EE366311EEB376DC3AC4F9AE02.roa (hash: 2dWDYylTvBf7qUkUKq2WQpJFP4UJD1LaLQZoGDi+eMQ=) 12: 9D563A7A366311EEB376DC3AC4F9AE02.roa (hash: jf5vNKMEs/HYJC+ZfLIR6MHcZqRlwRNx9C1pqFQO2oU=) 13: 5B76DF12820611EE8A06123AC4F9AE02.roa (hash: 2F6msvEoxhf3yMkdkG6hwiZZB9ls61DIlAbmxkj7kXQ=) 14: 544F13A6B78111EF84611770C4F9AE02.roa (hash: b+cobkm/t+8VplbAM/uAvE/ze4s0B8PJ3bqKjF7kQOA=) 15: 9FE1BE90366311EEB376DC3AC4F9AE02.roa (hash: qF8dwyJS0OcLRM+lRZeGO8KZj/gqh2DhUGlNyStGdKM=) 16: A37A198A366311EEB376DC3AC4F9AE02.roa (hash: lahqqWdJv5iCoCPv96NgkWAwgDwpfB7aX0xa2UIAojg=) 17: CF415DDA520111EEBD942A6FC4F9AE02.roa (hash: sGNeudGsjKQYxdr3S2rAF3HoccrfyBnH+QSvEfzchv8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.crl rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 03:06:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 367 (0x16f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919536C Validity Not Before: Mar 13 03:06:53 2025 GMT Not After : Mar 20 03:06:53 2025 GMT Subject: CN=67d24bcd-c921 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:91:b9:97:33:19:94:37:82:09:00:35:4c:f4: 5a:c4:d8:ac:82:4c:93:56:c7:db:5e:5b:be:e8:73: 11:ed:62:bd:28:8b:69:ed:47:24:aa:fc:fb:1e:33: 33:0f:15:c2:00:b2:fa:9d:74:ed:c6:be:4e:ce:f6: 9f:09:b6:af:77:4e:01:c1:eb:40:0e:39:1f:31:c6: 6c:32:e4:56:ef:51:c4:89:e1:ef:94:ea:e9:75:0a: 2d:0d:e3:72:da:f5:b7:90:22:14:33:65:7f:c8:67: 94:f2:ef:f2:d8:f0:43:24:d6:b8:c1:15:f0:e2:9d: 88:0d:cb:4d:eb:8b:eb:04:44:00:82:63:74:77:f2: 61:a1:9b:7c:f0:9e:a3:57:a7:51:b9:bc:de:18:7e: 71:7b:e2:c9:42:8e:4b:b4:ec:10:99:a7:1b:cf:47: 28:84:cd:43:a6:74:9d:72:63:46:e4:39:11:b5:47: 6c:1e:3b:0f:b4:29:68:cf:0b:a1:80:db:3b:8e:e4: bd:bc:ec:ab:d4:fe:c1:3f:38:a1:7d:b5:c5:d5:fa: 6e:d5:3c:45:c3:2c:95:35:1f:de:4b:6b:c5:be:e2: c5:9c:cc:5b:95:05:cd:58:31:94:db:fa:47:9e:a6: 12:04:3f:7a:c7:fe:4a:39:93:97:18:8f:32:04:d7: c0:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:69:F0:CD:28:BB:3F:7A:26:AB:49:15:41:7F:A7:18:24:29:6D:87 X509v3 Authority Key Identifier: keyid:A0:90:E5:20:BF:9D:51:F2:FD:CE:ED:41:3A:F2:7A:C7:58:F6:AE:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:c4:fc:d8:84:26:13:7f:92:6c:9c:3d:89:ee:73:f1:aa:b9: 3d:93:a6:32:53:14:29:04:6a:32:ce:a2:ea:56:78:03:69:0d: 81:72:e4:d1:bd:c7:b3:c2:59:56:b0:41:fe:50:52:a9:e9:93: bd:24:0c:6c:41:64:4c:5e:fc:7d:2b:61:a2:f4:94:aa:ab:f0: e0:35:e2:79:66:b0:cd:76:2b:a9:fb:15:0a:48:93:c5:04:2d: 28:9c:af:70:fd:83:e9:cb:e6:69:92:35:ff:bf:fe:73:2e:93: a6:e4:62:84:66:b0:00:ea:c0:33:47:c1:35:b0:cb:0e:14:56: 98:b4:74:2e:29:3a:2d:6f:84:49:f0:e5:7a:14:75:5f:99:cf: a8:40:2f:a1:10:1c:08:c6:3a:d6:70:65:29:17:8d:d5:81:8d: d0:9a:75:c4:16:0e:34:b1:91:87:25:3f:da:f4:65:22:ce:d1: 53:03:72:d3:ce:77:41:b0:25:85:f8:74:90:db:41:b0:45:69: d5:68:68:ae:00:83:51:df:18:10:28:28:80:f3:80:be:15:ac: 7a:35:e2:e9:c2:6c:8b:1b:ae:89:d8:84:b4:dc:6f:d6:dd:ee: c3:bd:3d:4e:1a:78:6a:f7:fe:48:92:cf:d0:ff:87:35:12:d4: a3:d2:10:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAW8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTUzNkMxMTAvBgNVBAUTKEEwOTBFNTIwQkY5RDUxRjJGRENFRUQ0MTNBRjI3QUM3 NThGNkFFMUQwHhcNMjUwMzEzMDMwNjUzWhcNMjUwMzIwMDMwNjUzWjAYMRYwFAYD VQQDEw02N2QyNGJjZC1jOTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsJG5lzMZlDeCCQA1TPRaxNisgkyTVsfbXlu+6HMR7WK9KItp7Uckqvz7HjMz DxXCALL6nXTtxr5OzvafCbavd04BwetADjkfMcZsMuRW71HEieHvlOrpdQotDeNy 2vW3kCIUM2V/yGeU8u/y2PBDJNa4wRXw4p2IDctN64vrBEQAgmN0d/JhoZt88J6j V6dRubzeGH5xe+LJQo5LtOwQmacbz0cohM1DpnSdcmNG5DkRtUdsHjsPtClozwuh gNs7juS9vOyr1P7BPzihfbXF1fpu1TxFwyyVNR/eS2vFvuLFnMxblQXNWDGU2/pH nqYSBD96x/5KOZOXGI8yBNfAmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNtp8M0o uz96JqtJFUF/pxgkKW2HMB8GA1UdIwQYMBaAFKCQ5SC/nVHy/c7tQTryesdY9q4d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTM2Qy83NUI5OEJGMDM2 NjAxMUVFODhFMEY1MzBDNEY5QUUwMi9vSkRsSUwtZFVmTDl6dTFCT3ZKNngxajJy aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29KRGxJTC1kVWZMOXp1MUJPdko2eDFqMnJoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTM2Qy83NUI5OEJGMDM2NjAxMUVFODhFMEY1MzBDNEY5QUUwMi9vSkRsSUwtZFVm TDl6dTFCT3ZKNngxajJyaDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkxPzYhCYTf5JsnD2J7nPxqrk9k6YyUxQpBGoyzqLqVngDaQ2BcuTR vcezwllWsEH+UFKp6ZO9JAxsQWRMXvx9K2Gi9JSqq/DgNeJ5ZrDNdiup+xUKSJPF BC0onK9w/YPpy+ZpkjX/v/5zLpOm5GKEZrAA6sAzR8E1sMsOFFaYtHQuKTotb4RJ 8OV6FHVfmc+oQC+hEBwIxjrWcGUpF43VgY3QmnXEFg40sZGHJT/a9GUiztFTA3LT zndBsCWF+HSQ20GwRWnVaGiuAINR3xgQKCiA84C+Fax6NeLpwmyLG66J2IS03G/W 3e7DvT1OGnhq9/5Iks/Q/4c1EtSj0hDs -----END CERTIFICATE-----Generated at Thu Mar 13 21:30:59 2025 by rpki-client