$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft File: LWNAd8yEe1nUBI1D4EszCWmP5jg.mft (raw, json) Hash identifier: A4rEwtY/95AB1kuqA8odVksbN1oUV8bezcN3Bgsism0= Subject key identifier: FE:59:57:07:06:E9:FB:A5:9E:C0:AA:72:D8:24:35:C6:9C:DC:52:14 Authority key identifier: 2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 Certificate issuer: /CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Certificate serial: 02AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft Manifest number: 0240 Signing time: Sat 15 Feb 2025 04:33:17 +0000 Manifest this update: Sat 15 Feb 2025 04:33:17 +0000 Manifest next update: Sat 22 Feb 2025 04:33:17 +0000 Files and hashes: 1: LWNAd8yEe1nUBI1D4EszCWmP5jg.crl (hash: FCQ7Y365AMaOxxzWlI/UP+5LDPcPYe6wQdH0pVW9Vt8=) 2: CA1A46101A5B11EE89B07267C4F9AE02.roa (hash: 8ElsEHtT0SW1j1aAkI7fCGcQz8Vw9D+aynR3ExaKcpk=) 3: E9472C0C144111EFB247B936C4F9AE02.roa (hash: CCz3nePdumoOyw6FAPsiRIygxyytfAErGSIWcVLUxQ0=) 4: 94C13908C4AF11EDBCC55111C4F9AE02.roa (hash: bL7WlFADw3cMus0TM2SD+wI5B/pCkUnpQijrEhDa4U0=) 5: E9258B3C037211EE9E15EE32C4F9AE02.roa (hash: KWqY8FSRWxgMExPo7oJjW6FyKZgvDdNOUOLjG23lp4c=) 6: FDC6A888AEB111EE9A78E132C4F9AE02.roa (hash: ad9Tfv/iWodqT/H7WQAlzhe7NiHE1ZfwLf6/Rguc5gE=) 7: FECE3C3C855711EF8E79C52BC4F9AE02.roa (hash: qIG1nrRqmqeXhlJ4QfxZpQrhglB0XBpLi9GUgb6DFzg=) 8: E879EE7C144111EFB247B936C4F9AE02.roa (hash: qwsK6I5KvMQVVTxqatHLY4Gc06wI8z6a8GKH4pqG5s4=) 9: 755E6B82D21C11EEA166891AC4F9AE02.roa (hash: IjfhL1iMdoF6vbj8qmgjKEyAn1TdguzASGP9+nLwaQc=) 10: 90647F2EA14A11ED8FFBA684C4F9AE02.roa (hash: zMUCXonIy5tOWaMiCq30fCZFtIY4G0iHQ+o2rUhkbic=) 11: E22CE7EE2F9511EF8B14626CC4F9AE02.roa (hash: IZWdty8UW5xSEAar+QuBFmv4J1Y/hYIXpLhgyiEViIk=) 12: F9A864386AAB11EF8FEBE576C4F9AE02.roa (hash: Q+LuT/2pIJ9IStVr144XnzBFQZyXtxyXwoGNHoKHCCk=) 13: FD124A14CC5811EDBE5D203FC4F9AE02.roa (hash: sAfUcNCOt118LSTGd2ByOqCl6kCgTi6ZVqAMUJEtk3c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 685 (0x2ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6587 Validity Not Before: Feb 15 04:33:17 2025 GMT Not After : Feb 22 04:33:17 2025 GMT Subject: CN=67b0190d-9301 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:1f:45:5a:1e:67:9d:64:a9:92:04:c8:47:62: 74:1e:78:52:6a:32:e9:e8:c1:49:9f:aa:fc:ca:1b: 49:85:23:08:b6:fe:ba:84:aa:cb:ba:e6:d1:c0:63: d9:03:1a:fa:37:b3:0b:f8:1e:e2:40:6d:a8:56:b2: c1:af:01:83:7b:07:3c:a0:77:73:98:d7:a7:cd:9c: d0:b1:1a:18:dc:f0:7e:60:6a:48:61:83:3a:f4:48: 2c:31:6e:54:0d:e8:0c:5c:de:6d:55:d0:a1:aa:8b: e5:68:69:4f:74:d3:d7:2b:e6:41:7e:15:ff:83:56: 2e:c2:f0:1b:fe:00:89:1b:9c:ed:64:99:46:80:0d: cf:69:6d:86:61:bf:a8:de:26:8c:c1:77:d5:c1:68: 7e:b7:eb:15:77:c3:e2:7f:19:87:be:c0:b6:2a:2f: a5:15:23:a8:81:b5:15:e2:81:54:b0:29:eb:be:c9: 7b:27:8f:d5:6e:30:eb:43:f8:8c:2e:eb:aa:34:9b: 72:ce:9d:c9:57:5a:65:0c:55:c2:d5:4c:2d:94:43: 40:b3:ce:a9:ef:eb:db:98:6c:07:1c:bd:58:ae:3e: 7c:c9:46:76:07:30:94:d0:2e:86:06:70:b9:69:5e: 30:5a:45:8c:36:db:c5:93:2a:31:c9:d8:5b:f4:52: 0c:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:59:57:07:06:E9:FB:A5:9E:C0:AA:72:D8:24:35:C6:9C:DC:52:14 X509v3 Authority Key Identifier: keyid:2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:eb:cf:f1:69:4d:6e:51:ee:f0:c9:31:9a:14:6e:8d:63:94: e0:49:6f:3b:17:77:b9:c0:23:5b:6a:2f:0f:15:18:de:33:d2: bf:35:67:f5:d3:c7:c8:df:63:74:e4:84:19:ae:02:e3:a7:68: 30:71:e2:69:f2:c2:cc:4c:15:e8:b8:e4:b6:8f:3f:62:57:42: 5c:7b:81:ec:27:05:0f:8d:17:2d:62:c4:61:21:c1:3c:d8:ae: 5c:23:e7:c2:25:b5:4f:e1:9e:d2:e3:cc:46:e4:ef:8f:01:9a: 49:d2:b0:a1:51:af:7a:23:46:4d:78:67:0f:58:d4:89:f5:32: c3:80:f7:8a:a8:3f:8a:05:26:93:ac:1a:39:5d:75:fd:80:95: 83:c8:7a:29:f9:7d:46:88:74:b7:c4:24:0d:9b:fd:cf:3a:04: e0:5f:82:e9:15:68:cc:db:16:9d:2d:d1:7f:74:c4:08:62:5e: ba:0b:08:40:86:55:88:c9:33:ac:03:99:98:50:01:ac:a7:3e: be:12:5a:d3:51:81:2b:77:80:45:72:aa:23:93:a2:e9:fb:7a: 5b:44:d3:45:7a:df:6c:0b:9d:c7:5b:64:51:c5:dd:b8:1f:78: 64:b0:59:10:d3:c2:83:40:c2:5c:0d:3e:b4:18:e3:1f:f2:cc: 1f:53:f8:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAq0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1ODcxMTAvBgNVBAUTKDJENjM0MDc3Q0M4NDdCNTlENDA0OEQ0M0UwNEIzMzA5 Njk4RkU2MzgwHhcNMjUwMjE1MDQzMzE3WhcNMjUwMjIyMDQzMzE3WjAYMRYwFAYD VQQDEw02N2IwMTkwZC05MzAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArh9FWh5nnWSpkgTIR2J0HnhSajLp6MFJn6r8yhtJhSMItv66hKrLuubRwGPZ Axr6N7ML+B7iQG2oVrLBrwGDewc8oHdzmNenzZzQsRoY3PB+YGpIYYM69EgsMW5U DegMXN5tVdChqovlaGlPdNPXK+ZBfhX/g1YuwvAb/gCJG5ztZJlGgA3PaW2GYb+o 3iaMwXfVwWh+t+sVd8PifxmHvsC2Ki+lFSOogbUV4oFUsCnrvsl7J4/VbjDrQ/iM LuuqNJtyzp3JV1plDFXC1UwtlENAs86p7+vbmGwHHL1Yrj58yUZ2BzCU0C6GBnC5 aV4wWkWMNtvFkyoxydhb9FIMNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP5ZVwcG 6fulnsCqctgkNcac3FIUMB8GA1UdIwQYMBaAFC1jQHfMhHtZ1ASNQ+BLMwlpj+Y4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjU4Ny80MTdENzFCNDkx ODYxMUVEQTg0QTEyNERDNEY5QUUwMi9MV05BZDh5RWUxblVCSTFENEVzekNXbVA1 amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xXTkFkOHlFZTFuVUJJMUQ0RXN6Q1dtUDVqZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjU4Ny80MTdENzFCNDkxODYxMUVEQTg0QTEyNERDNEY5QUUwMi9MV05BZDh5RWUx blVCSTFENEVzekNXbVA1amcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA268/xaU1uUe7wyTGaFG6NY5TgSW87F3e5wCNbai8PFRjeM9K/NWf1 08fI32N05IQZrgLjp2gwceJp8sLMTBXouOS2jz9iV0Jce4HsJwUPjRctYsRhIcE8 2K5cI+fCJbVP4Z7S48xG5O+PAZpJ0rChUa96I0ZNeGcPWNSJ9TLDgPeKqD+KBSaT rBo5XXX9gJWDyHop+X1GiHS3xCQNm/3POgTgX4LpFWjM2xadLdF/dMQIYl66CwhA hlWIyTOsA5mYUAGspz6+ElrTUYErd4BFcqojk6Lp+3pbRNNFet9sC53HW2RRxd24 H3hksFkQ08KDQMJcDT60GOMf8swfU/jD -----END CERTIFICATE-----Generated at Sun Feb 16 21:10:56 2025 by rpki-client