$ rpki-client -vvf rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft File: lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft (raw, json) Hash identifier: pBKCHKgBzKp3z/+WVQsQFys2FDBxyrgadBvO0hDXqqg= Subject key identifier: B8:0F:6A:B0:30:C3:28:50:F0:42:AD:0C:95:6D:74:CF:DC:FF:6B:6D Authority key identifier: 95:24:EA:9B:82:3C:20:FA:78:92:3B:E6:66:7E:14:F6:C4:C3:B4:7E Certificate issuer: /CN=A9185D6E/serialNumber=9524EA9B823C20FA78923BE6667E14F6C4C3B47E Certificate serial: 0579 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft Manifest number: 056A Signing time: Thu 24 Apr 2025 23:10:16 +0000 Manifest this update: Thu 24 Apr 2025 23:10:15 +0000 Manifest next update: Thu 01 May 2025 23:10:15 +0000 Files and hashes: 1: lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl (hash: 56BJlgRvF/hhVN09vm0uLhm4g1oPCjIOg54uQjQA7pQ=) 2: 37F43E66A27311EFA8731822C4F9AE02.roa (hash: nZqxDtZBd3TKtOg41uHIOH+ht6vmrzVcqsB/4sKS7Lw=) 3: 229CD24AF9FB11EB8CFF5E7DC4F9AE02.roa (hash: Ad+xO92l20yDnJAF1r+RTCORzADKmBcytCe/7+C9evg=) 4: 53BCB840EA4211EB846B8757C4F9AE02.roa (hash: Qq7xLdmh4FD2aD1wbY5We4EWUzMXM2X7Q61tiyGnpuI=) 5: 368F5308A27311EFA8731822C4F9AE02.roa (hash: nF3bhaPZagyNLULkvS1a5+uROKF0zNPyL/4XlBSqH9Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:10:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1401 (0x579) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185D6E, serialNumber=9524EA9B823C20FA78923BE6667E14F6C4C3B47E Validity Not Before: Apr 24 23:10:15 2025 GMT Not After : May 1 23:10:15 2025 GMT Subject: CN=680ac4d8-8d3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:73:8f:85:73:43:83:99:c8:c5:22:32:f7:b7: 55:fc:7f:06:01:9b:4d:e7:6d:d6:76:be:d6:fe:4f: 83:59:c5:37:dd:61:48:b0:2d:58:8f:2a:d4:8a:af: 87:3b:34:85:38:cc:0a:9f:a3:13:a1:4e:9c:05:9a: 8a:6b:16:fb:54:2b:b5:e0:1d:77:3e:59:c9:93:92: 9c:37:34:f5:e3:dc:d0:00:b0:0c:4d:41:af:9c:26: ef:68:ba:34:fe:6f:61:c5:19:41:07:5d:1e:47:bd: 93:9f:20:72:6e:7e:d8:58:cc:01:37:80:1c:20:b0: 13:b0:14:50:e9:26:dc:c8:5d:5b:57:2a:6b:2a:23: 2c:93:e1:06:06:26:63:73:65:da:5d:c8:41:58:67: f5:f0:4d:91:84:56:12:54:e4:3a:12:84:00:8f:57: 6d:fe:26:ec:31:d6:d1:06:22:f2:93:99:7d:f6:03: 8e:37:c6:78:ed:7e:07:04:e2:c1:2e:fc:c8:b4:fb: 74:a1:40:ba:60:e9:ab:cf:b7:bb:24:1f:c5:83:19: 9f:dc:f4:bb:62:17:98:98:99:79:d2:f8:04:71:9e: c0:d0:14:e3:48:e0:31:03:f5:8a:21:d8:6a:c9:fb: 97:52:28:55:46:41:f9:21:64:3a:73:c5:72:ba:4b: 15:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:0F:6A:B0:30:C3:28:50:F0:42:AD:0C:95:6D:74:CF:DC:FF:6B:6D X509v3 Authority Key Identifier: keyid:95:24:EA:9B:82:3C:20:FA:78:92:3B:E6:66:7E:14:F6:C4:C3:B4:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:8d:4a:5e:92:42:20:6b:67:5c:98:55:62:78:13:db:9d:59: 11:ec:99:e4:f8:58:18:e2:61:16:ef:58:90:10:2a:d7:d0:3c: 0f:93:a9:ce:43:f8:6e:43:4b:b1:9f:ac:bf:ac:75:91:96:13: d4:12:e7:95:ba:78:4c:f3:c5:fa:17:54:89:ca:af:3e:9a:77: 44:bc:ea:03:fc:fd:43:bc:71:af:f2:ae:f8:de:b0:fb:40:e1: 00:d6:78:61:83:2a:91:ee:97:2d:ad:8a:e0:ca:e8:7f:fc:22: e2:44:e3:95:fc:9b:eb:20:e4:22:65:64:3e:54:8b:c7:e2:64: 9f:29:06:8c:cc:4f:94:0a:e8:9b:9c:05:5c:32:cc:54:08:68: 75:4c:70:59:4c:19:1d:bf:45:ee:36:74:75:93:fe:c5:a0:0c: f0:7c:12:ec:6d:73:fa:bc:ac:0e:bb:c2:c3:f9:f0:58:b4:43: d9:7f:62:b5:33:af:ea:56:5a:f3:23:07:10:5d:56:12:b8:89: 9e:0a:8c:82:59:88:bf:14:a8:82:58:7b:99:31:71:3f:a0:b7: b1:96:85:8e:11:52:e2:b5:43:97:7a:ce:d0:77:12:4f:25:b8: de:cb:3f:75:06:32:c5:0b:be:4c:b3:b2:5a:fb:8d:e6:de:20: 78:d4:09:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVENkUxMTAvBgNVBAUTKDk1MjRFQTlCODIzQzIwRkE3ODkyM0JFNjY2N0UxNEY2 QzRDM0I0N0UwHhcNMjUwNDI0MjMxMDE1WhcNMjUwNTAxMjMxMDE1WjAYMRYwFAYD VQQDEw02ODBhYzRkOC04ZDNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5nOPhXNDg5nIxSIy97dV/H8GAZtN523Wdr7W/k+DWcU33WFIsC1YjyrUiq+H OzSFOMwKn6MToU6cBZqKaxb7VCu14B13PlnJk5KcNzT149zQALAMTUGvnCbvaLo0 /m9hxRlBB10eR72TnyBybn7YWMwBN4AcILATsBRQ6SbcyF1bVyprKiMsk+EGBiZj c2XaXchBWGf18E2RhFYSVOQ6EoQAj1dt/ibsMdbRBiLyk5l99gOON8Z47X4HBOLB LvzItPt0oUC6YOmrz7e7JB/Fgxmf3PS7YheYmJl50vgEcZ7A0BTjSOAxA/WKIdhq yfuXUihVRkH5IWQ6c8VyuksVywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLgParAw wyhQ8EKtDJVtdM/c/2ttMB8GA1UdIwQYMBaAFJUk6puCPCD6eJI75mZ+FPbEw7R+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUQ2RS80Q0JGRjRBRURG RjExMUVCODk0RjMwNjdDNEY5QUUwMi9sU1RxbTRJOElQcDRranZtWm40VTlzVER0 SDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xTVHFtNEk4SVBwNGtqdm1abjRVOXNURHRINC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUQ2RS80Q0JGRjRBRURGRjExMUVCODk0RjMwNjdDNEY5QUUwMi9sU1RxbTRJOElQ cDRranZtWm40VTlzVER0SDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrjUpekkIga2dcmFVieBPbnVkR7Jnk+FgY4mEW71iQECrX0DwPk6nO Q/huQ0uxn6y/rHWRlhPUEueVunhM88X6F1SJyq8+mndEvOoD/P1DvHGv8q743rD7 QOEA1nhhgyqR7pctrYrgyuh//CLiROOV/JvrIOQiZWQ+VIvH4mSfKQaMzE+UCuib nAVcMsxUCGh1THBZTBkdv0XuNnR1k/7FoAzwfBLsbXP6vKwOu8LD+fBYtEPZf2K1 M6/qVlrzIwcQXVYSuImeCoyCWYi/FKiCWHuZMXE/oLexloWOEVLitUOXes7QdxJP Jbjeyz91BjLFC75Ms7Ja+43m3iB41AkI -----END CERTIFICATE-----Generated at Sat Apr 26 16:41:19 2025 by rpki-client