$ rpki-client -vvf rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft File: loNUUNMhwefEjKDF3NK6bB0tSPE.mft (raw, json) Hash identifier: eTkFuFRnMGuoH/ip97jiVUr32lyBjRWslGxCQoF5yxk= Subject key identifier: E8:07:CE:DA:35:B9:D8:11:49:89:15:F0:76:11:DB:ED:AC:D7:D8:D1 Authority key identifier: 96:83:54:50:D3:21:C1:E7:C4:8C:A0:C5:DC:D2:BA:6C:1D:2D:48:F1 Certificate issuer: /CN=A912DF25/serialNumber=96835450D321C1E7C48CA0C5DCD2BA6C1D2D48F1 Certificate serial: 89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loNUUNMhwefEjKDF3NK6bB0tSPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft Manifest number: 84 Signing time: Fri 25 Apr 2025 05:32:34 +0000 Manifest this update: Fri 25 Apr 2025 05:32:34 +0000 Manifest next update: Fri 02 May 2025 05:32:34 +0000 Files and hashes: 1: loNUUNMhwefEjKDF3NK6bB0tSPE.crl (hash: KVURADOqS8kf0HQLv6HZXavkGa1zyLj2/KolOCqa8vY=) 2: 050079585AC911EF9DF4275AC4F9AE02.roa (hash: FQoFMhaO39gGEcc2pn8CyPB8yz5sPKJ5LS8scOVr+nU=) 3: 06B76AE05AC911EF9DF4275AC4F9AE02.roa (hash: p2h51oKfWEnIrxeQceDN5JWcokM71oAHp5D24ePE5rk=) 4: 06237AC45AC911EF9DF4275AC4F9AE02.roa (hash: X3F/CNUdhflmAgi4adN4rn0epV3fDuvZOIzQJHOvlz4=) 5: 047C04705AC911EF9DF4275AC4F9AE02.roa (hash: UGCPOMHQWDHdKMVZEIClF1yCBQsAp0GOZkBRwsHoCKc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.crl rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loNUUNMhwefEjKDF3NK6bB0tSPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:32:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 137 (0x89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DF25, serialNumber=96835450D321C1E7C48CA0C5DCD2BA6C1D2D48F1 Validity Not Before: Apr 25 05:32:34 2025 GMT Not After : May 2 05:32:34 2025 GMT Subject: CN=680b1e72-712c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ee:8c:75:8a:7d:e7:fe:3a:77:4c:a1:7d:8b: 95:31:ad:28:f7:02:56:68:ee:15:3f:c1:f0:71:8b: cd:94:7e:06:68:46:7c:5a:ce:6e:24:29:f9:c4:c3: a2:f9:20:f8:73:35:49:88:93:78:7f:79:4c:fe:5e: 79:f1:43:81:e6:8f:f5:48:b0:29:89:64:7c:04:89: 7b:79:25:e3:8f:a6:41:82:7e:97:01:52:a3:e5:df: 78:d9:01:18:44:8a:33:19:94:1c:b2:a7:a5:6c:09: 7d:16:d6:87:ad:b6:2e:4a:c8:46:7d:6e:7c:03:b3: 53:d0:f4:c3:7d:0b:62:11:65:0f:22:b0:29:54:8c: 94:2a:47:2d:c5:f6:d3:d7:d2:e9:6b:4e:49:86:fb: f6:95:96:5a:6a:3a:c8:f4:30:03:58:6a:9c:a3:e3: 14:f0:d6:99:83:c0:60:d1:82:db:ec:47:8f:21:19: 4d:bc:ec:e8:aa:19:ff:e6:9e:e6:62:00:fb:52:95: 46:22:3f:6f:d6:6d:9d:07:23:5b:e2:79:ae:24:44: 55:1e:e9:95:d1:75:7d:95:e4:a2:29:70:70:6f:62: 65:8c:1e:e4:6a:24:96:0b:94:8d:96:b1:07:9a:dd: eb:72:2e:ea:99:9a:bd:ec:e8:e2:33:d9:86:a0:c8: 28:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:07:CE:DA:35:B9:D8:11:49:89:15:F0:76:11:DB:ED:AC:D7:D8:D1 X509v3 Authority Key Identifier: keyid:96:83:54:50:D3:21:C1:E7:C4:8C:A0:C5:DC:D2:BA:6C:1D:2D:48:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loNUUNMhwefEjKDF3NK6bB0tSPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:ce:18:9a:eb:9b:7e:cc:93:3c:b5:6c:44:c4:20:40:8c:bb: 76:ad:96:b0:ec:a9:56:26:f8:58:47:84:d6:58:bf:8b:93:99: b3:d9:c2:06:cb:cc:98:fc:a9:a4:f5:d4:10:0f:76:ca:b2:e2: ed:ea:9e:b5:69:39:bc:86:bd:55:48:01:3a:af:0b:99:c8:c8: 7d:ec:fc:5f:ac:bc:83:9f:3a:4e:f8:ee:c0:2b:27:a4:c3:11: 44:db:c7:a8:1f:9a:9e:79:6d:dd:3a:59:80:33:c2:98:b0:35: db:62:0e:20:b8:d5:eb:36:37:2b:0c:f9:dd:ff:92:ac:46:cd: 44:aa:aa:2a:bd:72:d0:92:68:ee:c0:15:cf:ec:54:81:5b:dd: 48:98:f4:55:5e:78:67:17:89:cd:86:e7:92:4f:fc:ed:04:7e: 84:08:31:be:a2:30:a0:aa:f0:ef:06:8d:ae:95:81:50:7a:b0: 7e:ab:cf:c0:48:01:97:44:20:0c:06:65:ba:38:d1:a6:77:cd: cb:85:99:dc:16:0e:8b:ca:d8:5e:05:9f:e6:ff:06:a3:a5:d3: cf:e4:c2:0a:41:0f:7a:be:f9:10:36:5b:9b:42:24:48:c9:e9: 80:a1:27:c2:df:5b:b5:b2:87:62:ff:86:a7:4f:b7:c2:c9:42: a8:8d:4c:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkRGMjUxMTAvBgNVBAUTKDk2ODM1NDUwRDMyMUMxRTdDNDhDQTBDNURDRDJCQTZD MUQyRDQ4RjEwHhcNMjUwNDI1MDUzMjM0WhcNMjUwNTAyMDUzMjM0WjAYMRYwFAYD VQQDEw02ODBiMWU3Mi03MTJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt+6MdYp95/46d0yhfYuVMa0o9wJWaO4VP8HwcYvNlH4GaEZ8Ws5uJCn5xMOi +SD4czVJiJN4f3lM/l558UOB5o/1SLApiWR8BIl7eSXjj6ZBgn6XAVKj5d942QEY RIozGZQcsqelbAl9FtaHrbYuSshGfW58A7NT0PTDfQtiEWUPIrApVIyUKkctxfbT 19Lpa05Jhvv2lZZaajrI9DADWGqco+MU8NaZg8Bg0YLb7EePIRlNvOzoqhn/5p7m YgD7UpVGIj9v1m2dByNb4nmuJERVHumV0XV9leSiKXBwb2JljB7kaiSWC5SNlrEH mt3rci7qmZq97OjiM9mGoMgoTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOgHzto1 udgRSYkV8HYR2+2s19jRMB8GA1UdIwQYMBaAFJaDVFDTIcHnxIygxdzSumwdLUjx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREYyNS83RjdCMURBQzVB QzcxMUVGOTlFQUZDNDNDNEY5QUUwMi9sb05VVU5NaHdlZkVqS0RGM05LNmJCMHRT UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xvTlVVTk1od2VmRWpLREYzTks2YkIwdFNQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REYyNS83RjdCMURBQzVBQzcxMUVGOTlFQUZDNDNDNEY5QUUwMi9sb05VVU5NaHdl ZkVqS0RGM05LNmJCMHRTUEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKzhia65t+zJM8tWxExCBAjLt2rZaw7KlWJvhYR4TWWL+Lk5mz2cIG y8yY/Kmk9dQQD3bKsuLt6p61aTm8hr1VSAE6rwuZyMh97PxfrLyDnzpO+O7AKyek wxFE28eoH5qeeW3dOlmAM8KYsDXbYg4guNXrNjcrDPnd/5KsRs1EqqoqvXLQkmju wBXP7FSBW91ImPRVXnhnF4nNhueST/ztBH6ECDG+ojCgqvDvBo2ulYFQerB+q8/A SAGXRCAMBmW6ONGmd83LhZncFg6LytheBZ/m/wajpdPP5MIKQQ96vvkQNlubQiRI yemAoSfC31u1sodi/4anT7fCyUKojUzF -----END CERTIFICATE-----Generated at Sat Apr 26 03:37:17 2025 by rpki-client