$ rpki-client -vvf rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.mft File: LOCE4B2sa01jSTjXbOraWWNVvVM.mft (raw, json) Hash identifier: bSe/VR+Wj4xkmAyHo/ogVdDCKOaZyfx3X9TwrAX7blk= Subject key identifier: F8:12:EE:B0:18:4D:4E:24:2B:31:27:54:31:45:6E:15:E8:18:2A:52 Authority key identifier: 2C:E0:84:E0:1D:AC:6B:4D:63:49:38:D7:6C:EA:DA:59:63:55:BD:53 Certificate issuer: /CN=A915EA8F/serialNumber=2CE084E01DAC6B4D634938D76CEADA596355BD53 Certificate serial: 0235 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LOCE4B2sa01jSTjXbOraWWNVvVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.mft Manifest number: 0232 Signing time: Fri 09 May 2025 01:39:54 +0000 Manifest this update: Fri 09 May 2025 01:39:53 +0000 Manifest next update: Fri 16 May 2025 01:39:53 +0000 Files and hashes: 1: LOCE4B2sa01jSTjXbOraWWNVvVM.crl (hash: aXPuHmAoceOr2y2EhpQ9IYXtoHmWnb2FIykmo5APrOY=) 2: 028640A8242B11ED9547B486C4F9AE02.roa (hash: DITeel3omkt/jAmQ2Y46ZSrzxcvWz4LWzu2U9pUQbEA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.crl rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LOCE4B2sa01jSTjXbOraWWNVvVM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 01:39:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 565 (0x235) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915EA8F, serialNumber=2CE084E01DAC6B4D634938D76CEADA596355BD53 Validity Not Before: May 9 01:39:53 2025 GMT Not After : May 16 01:39:53 2025 GMT Subject: CN=681d5cea-8204 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:d9:67:34:09:86:c1:35:ff:f4:6d:00:b0:67: 77:17:5b:41:c1:b5:c1:e9:e1:68:a5:51:45:c0:34: 30:72:87:8c:3f:57:cd:02:3a:8d:e6:57:a6:ba:b2: 4e:bc:f5:65:80:74:f4:d3:c7:8e:a5:59:92:f6:4c: 6b:99:ab:43:67:eb:5e:d5:6a:cb:fc:65:e0:8a:30: 4e:62:71:ef:b6:d4:36:9f:24:cc:c3:4b:47:30:24: 62:cb:e4:13:c3:88:3d:98:dd:d7:b0:ca:3c:7d:c1: f9:34:6c:de:0d:db:59:7d:4c:64:5f:15:17:27:e2: 5f:37:d6:59:da:20:e3:4b:57:e4:4b:85:a7:48:56: a1:84:a0:a5:b5:05:08:87:c6:1b:26:70:c7:b9:55: d0:8b:bb:cc:c8:a5:79:e7:73:7d:ff:3b:27:93:6b: 33:9f:e3:ba:a2:eb:21:1d:6a:6e:b2:7d:44:b1:b6: 6c:df:86:81:57:fe:41:8b:01:2b:a2:6f:bf:fb:34: 58:a0:83:4c:38:99:82:cc:b7:82:3c:44:a6:57:01: 86:16:fe:4e:06:41:b2:96:bb:b9:4e:ea:db:48:3e: 25:1c:39:a2:43:a8:4c:08:9e:e9:75:e1:a4:0c:44: 1b:02:de:5f:a6:38:44:8c:21:b0:c9:98:13:c8:3f: e7:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:12:EE:B0:18:4D:4E:24:2B:31:27:54:31:45:6E:15:E8:18:2A:52 X509v3 Authority Key Identifier: keyid:2C:E0:84:E0:1D:AC:6B:4D:63:49:38:D7:6C:EA:DA:59:63:55:BD:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LOCE4B2sa01jSTjXbOraWWNVvVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:fa:06:d8:82:a6:a7:9c:a8:1a:c2:94:33:42:05:ab:c9:2c: 65:05:37:c5:21:a1:17:71:7a:39:36:19:d0:c0:d9:97:50:57: f7:e6:9c:fa:62:f9:37:84:95:5f:7a:7d:80:f1:f0:05:b4:a6: 30:b0:f3:9d:a9:00:78:14:67:6c:e5:e6:e4:74:f0:e0:75:e8: 0a:b3:61:81:92:6f:41:f9:99:ce:f0:2e:b3:6e:a3:e5:76:7b: 0d:a7:04:e5:22:83:09:ed:45:b8:42:a3:b3:a5:f9:f1:08:1b: 06:18:03:8f:dd:c5:eb:a4:fe:ca:5f:04:d3:1b:05:c9:11:f8: 52:12:49:9e:6d:e3:b7:ac:88:9c:ff:4e:1e:b7:6c:20:64:e0: f8:1a:0a:96:bc:6c:90:01:e4:8a:2c:c9:ab:ca:e7:5b:f6:e2: ab:19:98:3e:13:18:fb:ee:e5:51:7f:63:00:dc:19:3b:c4:f5: 72:ec:22:ae:d7:55:a3:d2:c8:04:43:d6:c3:fc:17:b3:ef:36: 8e:12:f6:dd:b3:54:01:8f:2c:72:d2:73:5b:a3:e8:18:ab:f9: bd:81:07:ee:f4:23:db:89:2f:05:f0:4c:02:24:08:b2:76:43: 5e:f1:d0:fa:e2:6f:fb:73:7f:7f:53:0b:81:15:47:7b:5b:88: 3c:05:d8:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUVBOEYxMTAvBgNVBAUTKDJDRTA4NEUwMURBQzZCNEQ2MzQ5MzhENzZDRUFEQTU5 NjM1NUJENTMwHhcNMjUwNTA5MDEzOTUzWhcNMjUwNTE2MDEzOTUzWjAYMRYwFAYD VQQDEw02ODFkNWNlYS04MjA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvdlnNAmGwTX/9G0AsGd3F1tBwbXB6eFopVFFwDQwcoeMP1fNAjqN5lemurJO vPVlgHT008eOpVmS9kxrmatDZ+te1WrL/GXgijBOYnHvttQ2nyTMw0tHMCRiy+QT w4g9mN3XsMo8fcH5NGzeDdtZfUxkXxUXJ+JfN9ZZ2iDjS1fkS4WnSFahhKCltQUI h8YbJnDHuVXQi7vMyKV553N9/zsnk2szn+O6oushHWpusn1EsbZs34aBV/5BiwEr om+/+zRYoINMOJmCzLeCPESmVwGGFv5OBkGylru5TurbSD4lHDmiQ6hMCJ7pdeGk DEQbAt5fpjhEjCGwyZgTyD/n1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPgS7rAY TU4kKzEnVDFFbhXoGCpSMB8GA1UdIwQYMBaAFCzghOAdrGtNY0k412zq2lljVb1T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RUE4Ri9FM0EzNUJCNDI0 MjgxMUVEOEZEMjRDODZDNEY5QUUwMi9MT0NFNEIyc2EwMWpTVGpYYk9yYVdXTlZ2 Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xPQ0U0QjJzYTAxalNUalhiT3JhV1dOVnZWTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RUE4Ri9FM0EzNUJCNDI0MjgxMUVEOEZEMjRDODZDNEY5QUUwMi9MT0NFNEIyc2Ew MWpTVGpYYk9yYVdXTlZ2Vk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAq+gbYgqannKgawpQzQgWrySxlBTfFIaEXcXo5NhnQwNmXUFf35pz6 Yvk3hJVfen2A8fAFtKYwsPOdqQB4FGds5ebkdPDgdegKs2GBkm9B+ZnO8C6zbqPl dnsNpwTlIoMJ7UW4QqOzpfnxCBsGGAOP3cXrpP7KXwTTGwXJEfhSEkmebeO3rIic /04et2wgZOD4GgqWvGyQAeSKLMmryudb9uKrGZg+Exj77uVRf2MA3Bk7xPVy7CKu 11Wj0sgEQ9bD/Bez7zaOEvbds1QBjyxy0nNbo+gYq/m9gQfu9CPbiS8F8EwCJAiy dkNe8dD64m/7c39/UwuBFUd7W4g8Bdh2 -----END CERTIFICATE-----Generated at Fri May 9 10:45:08 2025 by rpki-client