$ rpki-client -vvf rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft File: lDrZvGF3q4wvjoExwUpUZexClU8.mft (raw, json) Hash identifier: 75M2q1NycyWBCKukHmFs6hKyiCZdfJoOYkOEt95IqJc= Subject key identifier: 8A:1C:C9:F4:8F:99:8B:90:65:07:BE:A0:DC:E3:01:B9:FC:93:D1:94 Authority key identifier: 94:3A:D9:BC:61:77:AB:8C:2F:8E:81:31:C1:4A:54:65:EC:42:95:4F Certificate issuer: /CN=A9158568/serialNumber=943AD9BC6177AB8C2F8E8131C14A5465EC42954F Certificate serial: 012D Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lDrZvGF3q4wvjoExwUpUZexClU8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft Manifest number: 0129 Signing time: Wed 14 May 2025 18:57:01 +0000 Manifest this update: Wed 14 May 2025 18:57:01 +0000 Manifest next update: Wed 21 May 2025 18:57:01 +0000 Files and hashes: 1: lDrZvGF3q4wvjoExwUpUZexClU8.crl (hash: JoS1Hg0KYUHaB0/3R8kAFEcGgi7GLVmX6A+V706lWJs=) 2: 203DB338782111EEAFDDBD86C4F9AE02.roa (hash: wX9s/s7jxKKJJyFHtP8kJqChB04GKqVy3xgEjOBVe9Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.crl rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lDrZvGF3q4wvjoExwUpUZexClU8.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 18:57:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 301 (0x12d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158568, serialNumber=943AD9BC6177AB8C2F8E8131C14A5465EC42954F Validity Not Before: May 14 18:57:01 2025 GMT Not After : May 21 18:57:01 2025 GMT Subject: CN=6824e77d-9ed8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:5f:1e:db:c2:43:f2:00:f6:a7:25:e6:63:67: d2:b6:8b:94:62:fd:01:c7:7c:2a:c3:9c:9c:fa:46: 29:35:dd:7d:6c:ab:82:65:4f:3d:48:ff:33:02:3d: a1:5c:80:03:10:89:e2:f1:a2:5d:0d:e9:31:b8:f9: c2:15:1e:84:07:ac:08:e2:b1:a7:28:d1:b1:90:11: 95:2b:d3:ee:bb:1f:b9:3c:ed:0e:9d:f6:22:91:07: cb:50:e9:86:c5:54:62:9e:1d:6b:06:a2:4b:7a:06: 0e:36:8f:42:2a:66:76:07:cb:b2:a0:58:94:54:53: 59:50:15:6e:23:6c:88:c0:79:cc:ab:8f:6d:2c:9d: 4e:05:ae:b4:ac:fa:38:08:40:f0:f5:8e:01:46:99: 33:9c:3d:9c:03:3d:5a:a1:9a:a3:37:3c:13:66:85: 3d:92:cf:9e:12:68:8d:31:2c:61:ed:ad:b3:91:a3: 48:c9:31:62:e7:43:a4:0b:00:ea:e9:c0:68:63:eb: d8:dc:bc:71:ea:58:a6:26:2a:3d:8f:56:63:ef:03: f0:85:62:f0:ed:d8:74:0a:b6:1c:c9:fb:e3:da:85: 14:83:cb:34:43:89:1f:cf:e0:9e:dc:d6:ea:f5:91: 79:79:95:c7:fb:96:90:23:20:9d:42:38:f8:e7:1a: 31:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:1C:C9:F4:8F:99:8B:90:65:07:BE:A0:DC:E3:01:B9:FC:93:D1:94 X509v3 Authority Key Identifier: keyid:94:3A:D9:BC:61:77:AB:8C:2F:8E:81:31:C1:4A:54:65:EC:42:95:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lDrZvGF3q4wvjoExwUpUZexClU8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:72:72:08:0b:46:f8:d1:28:ae:b8:a9:5f:55:78:fb:73:4a: 7f:d4:5d:4f:09:c0:42:bd:c1:8c:53:91:07:5c:75:73:99:e9: 86:16:e5:b0:75:3a:60:f5:df:c2:20:32:07:d6:d6:d9:1b:d2: 1c:f4:b8:e0:9d:9c:c6:79:56:37:53:d5:ac:18:36:ef:76:5c: a6:a9:38:ab:c9:fb:6a:cb:f6:30:bd:4a:15:34:89:36:fe:3d: 2b:60:43:c6:7b:2b:69:a1:77:d9:44:b5:e2:55:c3:cc:de:09: 90:29:66:98:e7:19:ac:e4:2b:ae:41:d4:5e:2f:d4:81:f5:b5: 1e:d6:8c:c2:60:93:d6:76:58:5b:40:83:5f:65:73:1b:4d:1e: 9d:10:ba:56:1f:8a:0d:5c:b2:6d:f1:9e:cf:f4:47:35:aa:c4: f6:69:ca:de:8b:68:98:a7:3c:6a:06:01:a0:f2:7f:26:a7:37: 61:ae:a8:6b:2f:6c:19:f7:82:e4:db:32:13:7e:f3:d9:b7:36: b4:25:e7:90:9d:42:3d:96:28:c7:b7:51:71:91:79:a9:35:86: aa:d1:a8:9a:da:4e:3e:e3:4f:53:93:5e:3f:55:fe:d7:2b:c7: b7:41:5c:04:23:d4:b4:f8:3a:86:2d:61:f6:76:f8:60:27:a1: b4:e8:42:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg1NjgxMTAvBgNVBAUTKDk0M0FEOUJDNjE3N0FCOEMyRjhFODEzMUMxNEE1NDY1 RUM0Mjk1NEYwHhcNMjUwNTE0MTg1NzAxWhcNMjUwNTIxMTg1NzAxWjAYMRYwFAYD VQQDEw02ODI0ZTc3ZC05ZWQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnV8e28JD8gD2pyXmY2fStouUYv0Bx3wqw5yc+kYpNd19bKuCZU89SP8zAj2h XIADEIni8aJdDekxuPnCFR6EB6wI4rGnKNGxkBGVK9Puux+5PO0OnfYikQfLUOmG xVRinh1rBqJLegYONo9CKmZ2B8uyoFiUVFNZUBVuI2yIwHnMq49tLJ1OBa60rPo4 CEDw9Y4BRpkznD2cAz1aoZqjNzwTZoU9ks+eEmiNMSxh7a2zkaNIyTFi50OkCwDq 6cBoY+vY3Lxx6limJio9j1Zj7wPwhWLw7dh0CrYcyfvj2oUUg8s0Q4kfz+Ce3Nbq 9ZF5eZXH+5aQIyCdQjj45xoxeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIocyfSP mYuQZQe+oNzjAbn8k9GUMB8GA1UdIwQYMBaAFJQ62bxhd6uML46BMcFKVGXsQpVP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODU2OC8zNjE4QUI2RTcy QTMxMUVFOTQ1NTcyMTFDNEY5QUUwMi9sRHJadkdGM3E0d3Zqb0V4d1VwVVpleENs VTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2xEclp2R0YzcTR3dmpvRXh3VXBVWmV4Q2xVOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODU2OC8zNjE4QUI2RTcyQTMxMUVFOTQ1NTcyMTFDNEY5QUUwMi9sRHJadkdGM3E0 d3Zqb0V4d1VwVVpleENsVTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIcnIIC0b40SiuuKlfVXj7c0p/1F1PCcBCvcGMU5EHXHVzmemGFuWw dTpg9d/CIDIH1tbZG9Ic9LjgnZzGeVY3U9WsGDbvdlymqTiryftqy/YwvUoVNIk2 /j0rYEPGeytpoXfZRLXiVcPM3gmQKWaY5xms5CuuQdReL9SB9bUe1ozCYJPWdlhb QINfZXMbTR6dELpWH4oNXLJt8Z7P9Ec1qsT2acrei2iYpzxqBgGg8n8mpzdhrqhr L2wZ94Lk2zITfvPZtza0JeeQnUI9lijHt1FxkXmpNYaq0aia2k4+409Tk14/Vf7X K8e3QVwEI9S0+DqGLWH2dvhgJ6G06EJi -----END CERTIFICATE-----Generated at Thu May 15 13:24:18 2025 by rpki-client