$ rpki-client -vvf rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft File: 70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft (raw, json) Hash identifier: wL6TjosmppV/GRE4oLjH6WR7cf9/0nOk4wtdXfck2b8= Subject key identifier: 5C:D6:E4:ED:BD:11:C5:12:59:05:3F:68:A5:5C:22:B1:3F:F1:E4:40 Authority key identifier: EF:40:36:43:EA:98:20:AE:6D:9D:62:2F:9A:EF:D7:A4:C9:15:4F:24 Certificate issuer: /CN=A918BB4D/serialNumber=EF403643EA9820AE6D9D622F9AEFD7A4C9154F24 Certificate serial: 06B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft Manifest number: 06A3 Signing time: Thu 24 Apr 2025 22:01:17 +0000 Manifest this update: Thu 24 Apr 2025 22:01:17 +0000 Manifest next update: Thu 01 May 2025 22:01:17 +0000 Files and hashes: 1: 70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl (hash: abF9U4WvbCcbkq8045XHXiuYCueTiD9FZOQSDaeu2xQ=) 2: 05F05106586011EE9399A92EC4F9AE02.roa (hash: ZoyzDGshP3Xcoohd0LXUFxcHdBCls9Mtr+7VfTCfHng=) 3: 3524F8BCD75511EF80E68A39C4F9AE02.roa (hash: atNvogMajVgrPoutiUYnbQeZE/aQ+6Wia9GfoJ31M8o=) 4: 34956990D75511EF80E68A39C4F9AE02.roa (hash: h81pLQ3f9taD4ZqBYBRt4RndKbd9f7ld0NnWuyDorBE=) 5: 35A4EFE0D75511EF80E68A39C4F9AE02.roa (hash: Ugt+4UcuNweFOll74GevcYAxRnvyyr25SWxXtIDRBOs=) 6: 5997C4D0719A11EEBBA64415C4F9AE02.roa (hash: OJZvptd+tocMmJD9s/jElE2hQgWZLbxuwcVBqNbj/eE=) 7: C0681BF2CF4911EF8531B085C4F9AE02.roa (hash: 1+LvjWYI9J8a4Eg8H2uslKbRbyLwQqWNXS1h5+rfIco=) 8: 58EBEC82719A11EEBBA64415C4F9AE02.roa (hash: KBvqkQdj5OAEkzL6ogJ3+9HoBsBkMOAMwsqEyeP/iq8=) 9: 364089B4D75511EF80E68A39C4F9AE02.roa (hash: +GfFG8a92/6/e1SPONilMIvPHcJ1t193OnonNOBg/KI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1717 (0x6b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BB4D, serialNumber=EF403643EA9820AE6D9D622F9AEFD7A4C9154F24 Validity Not Before: Apr 24 22:01:17 2025 GMT Not After : May 1 22:01:17 2025 GMT Subject: CN=680ab4ad-cebf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:4d:3c:3c:ed:a8:f6:46:99:4d:02:7d:67:62: 4b:22:e5:46:67:b2:1b:9a:e9:0d:47:02:98:cd:45: 8d:01:ce:17:a9:dc:6b:df:f5:15:04:a9:84:96:d7: 6c:21:8f:d6:69:17:9a:81:07:24:1d:79:da:aa:01: 59:2c:67:d9:06:08:42:47:bc:21:ff:1f:7a:b8:b9: 1b:9e:02:4c:c7:e5:83:96:d5:d8:3c:fb:5e:12:bb: 96:56:8d:94:c9:7a:f2:b5:4b:a1:86:e2:07:d2:6b: 4e:16:c4:99:13:4d:85:c1:d7:25:1f:d9:ed:81:d5: 42:da:4a:e1:91:e7:c9:38:7e:46:c8:a1:7b:1c:33: 66:62:72:52:c5:35:53:e4:73:98:21:6a:ba:3b:97: a8:60:4a:74:d0:78:ff:68:fe:3a:88:ca:de:81:ca: 53:c6:92:0a:5f:70:04:65:ad:66:4f:ba:ff:76:a1: 93:1d:e5:53:63:e8:72:99:15:40:47:72:08:81:4d: ad:9e:bd:66:e3:7b:92:ee:0f:bc:c7:83:dc:ef:47: b0:ac:d7:09:f5:b2:a9:21:09:c2:b7:09:cc:41:8e: 45:16:50:58:3f:c3:6a:77:38:44:32:41:88:ee:8f: c9:37:07:ef:54:bd:0e:7f:cb:70:61:a3:01:2b:3c: df:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:D6:E4:ED:BD:11:C5:12:59:05:3F:68:A5:5C:22:B1:3F:F1:E4:40 X509v3 Authority Key Identifier: keyid:EF:40:36:43:EA:98:20:AE:6D:9D:62:2F:9A:EF:D7:A4:C9:15:4F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:aa:09:18:27:e5:4f:28:59:af:45:ee:03:25:0c:ff:b2:18: df:d4:51:41:75:ac:dd:19:a2:b1:18:d6:25:38:ab:ed:75:3a: dd:4d:f6:3f:ee:40:55:a1:b3:3b:4c:18:82:a3:5b:b4:c4:16: bd:94:c7:c0:7d:a5:cb:16:da:90:4e:de:4a:2a:7d:09:64:46: c6:5d:1f:78:f9:76:e8:21:4b:51:14:df:14:c8:ce:bb:2a:c7: a8:6d:36:aa:a2:a9:cd:97:03:d6:b0:2f:ca:96:33:9b:cf:cf: 4c:be:87:7a:7d:44:34:95:02:d4:56:87:a7:69:bd:5b:c5:7f: 78:e2:ad:fe:94:15:68:f3:21:d1:5a:74:c0:76:b6:2c:63:b8: 39:24:3e:a0:88:c6:5e:97:45:90:9f:d1:11:a8:8d:1e:99:0f: 92:18:b1:04:00:dc:2d:fc:9c:c2:12:30:ae:89:5f:27:c4:51: 31:e6:c4:dd:e6:42:08:7e:f2:c6:9d:25:d8:46:91:69:51:ee: 00:26:c5:50:13:1e:63:ff:aa:9b:c9:73:c1:0e:dc:ac:7f:b9: 34:01:e5:ac:67:a9:e8:2d:ea:6f:b5:57:e9:e3:9a:36:8b:04: bd:40:55:c0:12:12:01:c0:d3:0f:f7:67:43:f8:98:d8:64:e0: 58:df:14:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJCNEQxMTAvBgNVBAUTKEVGNDAzNjQzRUE5ODIwQUU2RDlENjIyRjlBRUZEN0E0 QzkxNTRGMjQwHhcNMjUwNDI0MjIwMTE3WhcNMjUwNTAxMjIwMTE3WjAYMRYwFAYD VQQDEw02ODBhYjRhZC1jZWJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtU08PO2o9kaZTQJ9Z2JLIuVGZ7IbmukNRwKYzUWNAc4Xqdxr3/UVBKmEltds IY/WaReagQckHXnaqgFZLGfZBghCR7wh/x96uLkbngJMx+WDltXYPPteEruWVo2U yXrytUuhhuIH0mtOFsSZE02FwdclH9ntgdVC2krhkefJOH5GyKF7HDNmYnJSxTVT 5HOYIWq6O5eoYEp00Hj/aP46iMregcpTxpIKX3AEZa1mT7r/dqGTHeVTY+hymRVA R3IIgU2tnr1m43uS7g+8x4Pc70ewrNcJ9bKpIQnCtwnMQY5FFlBYP8NqdzhEMkGI 7o/JNwfvVL0Of8twYaMBKzzfeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFzW5O29 EcUSWQU/aKVcIrE/8eRAMB8GA1UdIwQYMBaAFO9ANkPqmCCubZ1iL5rv16TJFU8k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkI0RC9DQTU2M0JFODY1 MjIxMUVCODBGNkU5NEJDNEY5QUUwMi83MEEyUS1xWUlLNXRuV0l2bXVfWHBNa1ZU eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcwQTJRLXFZSUs1dG5XSXZtdV9YcE1rVlR5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QkI0RC9DQTU2M0JFODY1MjIxMUVCODBGNkU5NEJDNEY5QUUwMi83MEEyUS1xWUlL NXRuV0l2bXVfWHBNa1ZUeVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXqgkYJ+VPKFmvRe4DJQz/shjf1FFBdazdGaKxGNYlOKvtdTrdTfY/ 7kBVobM7TBiCo1u0xBa9lMfAfaXLFtqQTt5KKn0JZEbGXR94+XboIUtRFN8UyM67 KseobTaqoqnNlwPWsC/KljObz89Mvod6fUQ0lQLUVoenab1bxX944q3+lBVo8yHR WnTAdrYsY7g5JD6giMZel0WQn9ERqI0emQ+SGLEEANwt/JzCEjCuiV8nxFEx5sTd 5kIIfvLGnSXYRpFpUe4AJsVQEx5j/6qbyXPBDtysf7k0AeWsZ6noLepvtVfp45o2 iwS9QFXAEhIBwNMP92dD+JjYZOBY3xR2 -----END CERTIFICATE-----Generated at Sat Apr 26 03:55:41 2025 by rpki-client