$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft File: LWNAd8yEe1nUBI1D4EszCWmP5jg.mft (raw, json) Hash identifier: F/ScYSPnG1key6MMTo+kvJDFgG2J4R6SjcaK+XJINaE= Subject key identifier: 54:41:64:6D:4E:69:2B:9D:0C:8B:67:1D:FB:95:8D:7F:26:98:61:F4 Authority key identifier: 2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 Certificate issuer: /CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Certificate serial: 02C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft Manifest number: 0257 Signing time: Thu 13 Mar 2025 06:28:44 +0000 Manifest this update: Thu 13 Mar 2025 06:28:44 +0000 Manifest next update: Thu 20 Mar 2025 06:28:44 +0000 Files and hashes: 1: LWNAd8yEe1nUBI1D4EszCWmP5jg.crl (hash: x7y0Uj3wh4du+butQKvWroPnTE8Mc5Sp5mrh4hEDEcQ=) 2: CA1A46101A5B11EE89B07267C4F9AE02.roa (hash: 8ElsEHtT0SW1j1aAkI7fCGcQz8Vw9D+aynR3ExaKcpk=) 3: E9472C0C144111EFB247B936C4F9AE02.roa (hash: PTHz+TbCVt1o9nN9c1heYD8I7FkEF/CBXzTegIAeI4Y=) 4: 94C13908C4AF11EDBCC55111C4F9AE02.roa (hash: bL7WlFADw3cMus0TM2SD+wI5B/pCkUnpQijrEhDa4U0=) 5: E9258B3C037211EE9E15EE32C4F9AE02.roa (hash: KWqY8FSRWxgMExPo7oJjW6FyKZgvDdNOUOLjG23lp4c=) 6: FDC6A888AEB111EE9A78E132C4F9AE02.roa (hash: ptIGt2wYMEPKhzv8i8tfWNEfDe4elqSnf1QbHzmubdk=) 7: FECE3C3C855711EF8E79C52BC4F9AE02.roa (hash: qIG1nrRqmqeXhlJ4QfxZpQrhglB0XBpLi9GUgb6DFzg=) 8: E879EE7C144111EFB247B936C4F9AE02.roa (hash: qwsK6I5KvMQVVTxqatHLY4Gc06wI8z6a8GKH4pqG5s4=) 9: 755E6B82D21C11EEA166891AC4F9AE02.roa (hash: IjfhL1iMdoF6vbj8qmgjKEyAn1TdguzASGP9+nLwaQc=) 10: 90647F2EA14A11ED8FFBA684C4F9AE02.roa (hash: zMUCXonIy5tOWaMiCq30fCZFtIY4G0iHQ+o2rUhkbic=) 11: E22CE7EE2F9511EF8B14626CC4F9AE02.roa (hash: IZWdty8UW5xSEAar+QuBFmv4J1Y/hYIXpLhgyiEViIk=) 12: F9A864386AAB11EF8FEBE576C4F9AE02.roa (hash: Q+LuT/2pIJ9IStVr144XnzBFQZyXtxyXwoGNHoKHCCk=) 13: FD124A14CC5811EDBE5D203FC4F9AE02.roa (hash: sAfUcNCOt118LSTGd2ByOqCl6kCgTi6ZVqAMUJEtk3c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 06:28:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 711 (0x2c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6587 Validity Not Before: Mar 13 06:28:44 2025 GMT Not After : Mar 20 06:28:44 2025 GMT Subject: CN=67d27b1c-6955 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:0f:26:96:4a:2a:88:ea:f8:86:4f:de:af:c1: df:c1:81:69:cf:91:6e:d1:81:15:0f:21:73:8c:33: b4:a1:be:77:9c:f4:65:df:17:e3:ac:7f:aa:8e:ce: 34:e2:97:3d:bf:62:55:fb:13:15:0f:c7:74:c4:ea: 07:7e:fc:7c:c3:32:3a:ed:57:b4:67:8f:cd:7b:42: ad:82:97:31:9a:4c:10:b5:ab:4f:21:37:39:35:60: 8b:21:fe:38:a5:67:70:59:31:bb:6f:28:fd:58:e2: 59:ee:56:c3:21:26:c4:67:3d:07:9c:8f:06:94:7d: f1:9c:d9:23:30:c4:f2:71:ba:da:94:dd:c0:82:cf: dc:c4:27:5b:54:e7:21:e1:6c:c5:87:a5:ff:84:13: 7e:a4:13:d7:10:cd:0b:ca:7d:15:8d:fa:2f:81:6c: c9:ee:26:5f:0b:ec:f8:2d:fc:e8:a8:04:79:1c:d0: 9b:9a:77:41:3d:82:46:61:4a:5a:77:93:d5:7a:10: e5:51:ec:a8:03:89:cb:94:f4:5d:c9:d7:b2:96:ac: 17:b5:82:89:3c:44:4f:36:ca:e8:8d:37:ca:b3:6b: c2:10:16:c1:d1:b1:5e:36:7e:cf:22:15:91:1d:f5: 8a:f8:e3:71:1c:c9:32:8f:be:c9:35:50:ef:86:a1: 37:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:41:64:6D:4E:69:2B:9D:0C:8B:67:1D:FB:95:8D:7F:26:98:61:F4 X509v3 Authority Key Identifier: keyid:2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:69:89:78:75:27:a5:72:bb:8a:db:2a:41:b6:bb:55:5b:8b: 2c:d9:57:82:03:d7:54:c5:32:ec:1c:9c:21:fa:7a:34:f5:1a: 7f:79:be:23:70:21:83:df:f0:b3:2c:a4:73:c8:74:6e:e8:c0: e9:36:08:71:38:11:cc:35:bb:28:85:29:e7:42:1a:1c:d1:2d: ab:d1:6b:62:60:39:62:4e:54:38:1c:74:36:7c:f2:75:e4:62: 6f:00:28:f2:38:52:cc:d2:5c:70:23:1c:f9:05:23:2f:37:49: b7:b0:9d:29:72:fa:af:95:8d:04:dd:c3:d1:0f:1d:da:61:a5: 5a:c9:a2:44:7a:e1:64:da:1c:f0:93:5f:fe:a2:cd:fe:c3:eb: 4c:81:d8:13:78:9e:0e:31:9d:48:f1:07:65:f3:1d:9f:3c:ed: 2c:72:45:c9:af:59:25:cc:79:5d:30:1a:aa:be:98:8a:26:9f: 79:c4:31:a4:c4:24:d6:61:3e:27:66:97:ae:75:2e:48:06:94: fa:6f:c1:8a:13:5a:91:9b:55:7c:ba:e1:f9:61:c8:1a:5d:ca: c8:d5:e1:a1:61:a1:92:4b:30:5d:30:fe:95:23:a6:12:a6:42: 64:de:e0:59:2a:c9:1e:e9:f9:05:41:56:82:4f:a4:29:2c:db: 92:2b:5d:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAscwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1ODcxMTAvBgNVBAUTKDJENjM0MDc3Q0M4NDdCNTlENDA0OEQ0M0UwNEIzMzA5 Njk4RkU2MzgwHhcNMjUwMzEzMDYyODQ0WhcNMjUwMzIwMDYyODQ0WjAYMRYwFAYD VQQDEw02N2QyN2IxYy02OTU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4g8mlkoqiOr4hk/er8HfwYFpz5Fu0YEVDyFzjDO0ob53nPRl3xfjrH+qjs40 4pc9v2JV+xMVD8d0xOoHfvx8wzI67Ve0Z4/Ne0KtgpcxmkwQtatPITc5NWCLIf44 pWdwWTG7byj9WOJZ7lbDISbEZz0HnI8GlH3xnNkjMMTycbralN3Ags/cxCdbVOch 4WzFh6X/hBN+pBPXEM0Lyn0VjfovgWzJ7iZfC+z4LfzoqAR5HNCbmndBPYJGYUpa d5PVehDlUeyoA4nLlPRdydeylqwXtYKJPERPNsrojTfKs2vCEBbB0bFeNn7PIhWR HfWK+ONxHMkyj77JNVDvhqE3QwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFRBZG1O aSudDItnHfuVjX8mmGH0MB8GA1UdIwQYMBaAFC1jQHfMhHtZ1ASNQ+BLMwlpj+Y4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjU4Ny80MTdENzFCNDkx ODYxMUVEQTg0QTEyNERDNEY5QUUwMi9MV05BZDh5RWUxblVCSTFENEVzekNXbVA1 amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xXTkFkOHlFZTFuVUJJMUQ0RXN6Q1dtUDVqZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjU4Ny80MTdENzFCNDkxODYxMUVEQTg0QTEyNERDNEY5QUUwMi9MV05BZDh5RWUx blVCSTFENEVzekNXbVA1amcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQaYl4dSelcruK2ypBtrtVW4ss2VeCA9dUxTLsHJwh+no09Rp/eb4j cCGD3/CzLKRzyHRu6MDpNghxOBHMNbsohSnnQhoc0S2r0WtiYDliTlQ4HHQ2fPJ1 5GJvACjyOFLM0lxwIxz5BSMvN0m3sJ0pcvqvlY0E3cPRDx3aYaVayaJEeuFk2hzw k1/+os3+w+tMgdgTeJ4OMZ1I8Qdl8x2fPO0sckXJr1klzHldMBqqvpiKJp95xDGk xCTWYT4nZpeudS5IBpT6b8GKE1qRm1V8uuH5YcgaXcrI1eGhYaGSSzBdMP6VI6YS pkJk3uBZKske6fkFQVaCT6QpLNuSK12W -----END CERTIFICATE-----Generated at Thu Mar 13 21:31:57 2025 by rpki-client