$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/lD0-ELi74Ti0dzRVS2kFMRDUW-M.mft File: lD0-ELi74Ti0dzRVS2kFMRDUW-M.mft (raw, json) Hash identifier: rd5NY8y09bpshhZa81tytcpIaFuZFBFJz6mXz2AOQ4Q= Subject key identifier: 45:AF:0F:6D:75:4D:C4:64:50:77:35:10:0A:4F:41:02:73:A7:83:41 Authority key identifier: 94:3D:3E:10:B8:BB:E1:38:B4:77:34:55:4B:69:05:31:10:D4:5B:E3 Certificate issuer: /CN=A91A3E3F/serialNumber=943D3E10B8BBE138B47734554B69053110D45BE3 Certificate serial: 01BE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lD0-ELi74Ti0dzRVS2kFMRDUW-M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/lD0-ELi74Ti0dzRVS2kFMRDUW-M.mft Manifest number: 01B0 Signing time: Thu 13 Mar 2025 02:06:33 +0000 Manifest this update: Thu 13 Mar 2025 02:06:33 +0000 Manifest next update: Thu 20 Mar 2025 02:06:33 +0000 Files and hashes: 1: lD0-ELi74Ti0dzRVS2kFMRDUW-M.crl (hash: WUWKSPugSNrLRZ/Hlo+Fd6/pq9q3uLQjYoOKSoS4fM4=) 2: 0DCBAC3863C111EE9A8AA77AC4F9AE02.roa (hash: inCWlFg4eyi3SZb4mhg7QgWhnaX3zI3I9iGqmhoauLc=) 3: 9ADB02A27F4E11EDB22F3582C4F9AE02.roa (hash: 9Oyy54xhiWuTllhGlORwlpgALp6JCiYOJTYLu9JoBj0=) 4: 5420A28C7F5211ED8A16EF81C4F9AE02.roa (hash: 5EKiWHDPeMiKNhe7uJ6GnZoz2bb2Ob3eC5qrY4BOvLk=) 5: 912586FA7F4F11ED96FDE369C4F9AE02.roa (hash: vg/uug9ogWENghuoz8JvK8TWhFT7WTN1jNAJcLX1AUM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/lD0-ELi74Ti0dzRVS2kFMRDUW-M.crl rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/lD0-ELi74Ti0dzRVS2kFMRDUW-M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lD0-ELi74Ti0dzRVS2kFMRDUW-M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 02:06:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 446 (0x1be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3E3F Validity Not Before: Mar 13 02:06:33 2025 GMT Not After : Mar 20 02:06:33 2025 GMT Subject: CN=67d23da9-ff71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:47:dd:4d:d6:a4:21:89:05:5d:65:48:3a:b0: 64:29:85:86:7c:0b:46:3d:61:90:d0:6f:29:b3:62: 87:e5:98:1d:89:f9:1a:93:5d:a5:ee:10:95:76:34: 9d:8f:7b:1d:52:fb:21:e1:5f:89:2e:06:5a:1f:3f: 92:ae:a9:50:70:62:45:05:69:35:2f:f2:0d:50:67: b1:47:e9:4c:ea:f8:ef:36:49:b8:d5:f4:49:35:c8: 98:25:10:d0:56:e8:11:65:f4:3b:92:ec:eb:b5:7a: a1:ee:b2:57:ad:82:02:00:c6:29:6b:cf:4c:2b:de: e4:1a:cf:da:33:3b:b1:c8:07:a8:08:40:b5:3b:e7: f0:cf:6b:40:ea:c5:52:42:be:31:7f:7b:7d:77:4a: 28:1e:f2:9c:a6:e1:fa:11:14:83:07:e6:8b:d9:21: f0:74:45:a2:11:62:f9:6b:e7:47:6d:df:14:97:11: 73:e3:58:cd:d3:93:a8:89:08:14:b5:7f:2e:41:bf: ac:72:ec:9c:78:06:39:d0:02:3b:1c:37:97:0b:89: b2:8c:02:99:a7:d3:d5:11:4a:ff:f1:d1:f0:ca:85: e7:bc:20:60:d6:98:2c:d3:6f:7f:59:18:47:a5:22: 71:5e:33:a1:5a:8c:48:cc:1d:95:93:73:e9:58:7d: 59:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:AF:0F:6D:75:4D:C4:64:50:77:35:10:0A:4F:41:02:73:A7:83:41 X509v3 Authority Key Identifier: keyid:94:3D:3E:10:B8:BB:E1:38:B4:77:34:55:4B:69:05:31:10:D4:5B:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/lD0-ELi74Ti0dzRVS2kFMRDUW-M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lD0-ELi74Ti0dzRVS2kFMRDUW-M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/lD0-ELi74Ti0dzRVS2kFMRDUW-M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:d7:ff:2a:65:aa:17:51:58:f6:04:8f:af:cd:cf:0d:51:b8: 99:e8:c0:1c:30:bc:ff:40:97:67:2d:c1:76:9f:06:e0:61:ae: 8b:6b:08:e9:61:73:31:f9:43:b3:1a:dd:91:47:65:7a:5b:a3: de:d7:86:23:1c:fc:59:1c:59:a0:4f:25:33:97:79:a1:55:ba: 6d:cc:34:53:de:24:c1:2a:fe:c3:07:15:5c:32:d5:82:5d:f5: e1:d3:ea:eb:ba:51:a4:7a:44:f9:f9:0f:8f:9b:e9:c3:5e:4b: e1:4d:ad:c8:2a:7c:0a:3c:72:31:c2:69:0c:ef:ab:51:b4:09: 1f:58:a8:f5:75:c7:11:5c:f8:81:17:e2:e2:2f:4f:51:e8:b7: b3:90:50:d8:fc:ee:7e:50:ea:81:e2:7d:33:28:ae:e5:57:7f: 3d:09:61:2b:2a:d6:88:a3:47:31:7a:e8:7b:a8:a5:f7:ad:d6: 20:83:b7:f0:f9:b3:53:96:65:2b:7b:09:35:27:30:34:ab:3d: 7f:a0:a1:b1:9e:71:74:9e:ae:6b:86:42:5e:45:ac:45:26:e9: c6:c2:e4:1d:08:0c:84:59:9f:f0:7e:f3:98:cc:d7:43:75:67: ce:09:bd:d0:2d:23:d0:4b:c7:73:c8:63:a2:74:1c:e6:03:d8: 92:f6:a5:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAb4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNFM0YxMTAvBgNVBAUTKDk0M0QzRTEwQjhCQkUxMzhCNDc3MzQ1NTRCNjkwNTMx MTBENDVCRTMwHhcNMjUwMzEzMDIwNjMzWhcNMjUwMzIwMDIwNjMzWjAYMRYwFAYD VQQDEw02N2QyM2RhOS1mZjcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp0fdTdakIYkFXWVIOrBkKYWGfAtGPWGQ0G8ps2KH5Zgdifkak12l7hCVdjSd j3sdUvsh4V+JLgZaHz+SrqlQcGJFBWk1L/INUGexR+lM6vjvNkm41fRJNciYJRDQ VugRZfQ7kuzrtXqh7rJXrYICAMYpa89MK97kGs/aMzuxyAeoCEC1O+fwz2tA6sVS Qr4xf3t9d0ooHvKcpuH6ERSDB+aL2SHwdEWiEWL5a+dHbd8UlxFz41jN05OoiQgU tX8uQb+scuyceAY50AI7HDeXC4myjAKZp9PVEUr/8dHwyoXnvCBg1pgs029/WRhH pSJxXjOhWoxIzB2Vk3PpWH1ZbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEWvD211 TcRkUHc1EApPQQJzp4NBMB8GA1UdIwQYMBaAFJQ9PhC4u+E4tHc0VUtpBTEQ1Fvj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0UzRi8zMDVFQjg3NjdD REIxMUVEQUI4NDRDMTlDNEY5QUUwMi9sRDAtRUxpNzRUaTBkelJWUzJrRk1SRFVX LU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xEMC1FTGk3NFRpMGR6UlZTMmtGTVJEVVctTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB M0UzRi8zMDVFQjg3NjdDREIxMUVEQUI4NDRDMTlDNEY5QUUwMi9sRDAtRUxpNzRU aTBkelJWUzJrRk1SRFVXLU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAc1/8qZaoXUVj2BI+vzc8NUbiZ6MAcMLz/QJdnLcF2nwbgYa6Lawjp YXMx+UOzGt2RR2V6W6Pe14YjHPxZHFmgTyUzl3mhVbptzDRT3iTBKv7DBxVcMtWC XfXh0+rrulGkekT5+Q+Pm+nDXkvhTa3IKnwKPHIxwmkM76tRtAkfWKj1dccRXPiB F+LiL09R6LezkFDY/O5+UOqB4n0zKK7lV389CWErKtaIo0cxeuh7qKX3rdYgg7fw +bNTlmUrewk1JzA0qz1/oKGxnnF0nq5rhkJeRaxFJunGwuQdCAyEWZ/wfvOYzNdD dWfOCb3QLSPQS8dzyGOidBzmA9iS9qUs -----END CERTIFICATE-----Generated at Thu Mar 13 21:31:52 2025 by rpki-client