$ rpki-client -vvf rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft File: lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft (raw, json) Hash identifier: tXMaUp2IS6qLnbtMSQ+EkZRXhX/iAs13TULfNVF4I+Q= Subject key identifier: 38:0E:D5:A3:30:49:AA:33:D0:3D:A4:5D:B9:EF:12:61:01:D9:B2:F6 Authority key identifier: 95:24:EA:9B:82:3C:20:FA:78:92:3B:E6:66:7E:14:F6:C4:C3:B4:7E Certificate issuer: /CN=A9185D6E/serialNumber=9524EA9B823C20FA78923BE6667E14F6C4C3B47E Certificate serial: 0581 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft Manifest number: 0572 Signing time: Sat 10 May 2025 22:57:21 +0000 Manifest this update: Sat 10 May 2025 22:57:21 +0000 Manifest next update: Sat 17 May 2025 22:57:21 +0000 Files and hashes: 1: lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl (hash: 7KOKDImD80TwURy1znpS6rOYLqWx1nvNP/gGMEy9Rlc=) 2: 37F43E66A27311EFA8731822C4F9AE02.roa (hash: nZqxDtZBd3TKtOg41uHIOH+ht6vmrzVcqsB/4sKS7Lw=) 3: 229CD24AF9FB11EB8CFF5E7DC4F9AE02.roa (hash: Ad+xO92l20yDnJAF1r+RTCORzADKmBcytCe/7+C9evg=) 4: 53BCB840EA4211EB846B8757C4F9AE02.roa (hash: Qq7xLdmh4FD2aD1wbY5We4EWUzMXM2X7Q61tiyGnpuI=) 5: 368F5308A27311EFA8731822C4F9AE02.roa (hash: nF3bhaPZagyNLULkvS1a5+uROKF0zNPyL/4XlBSqH9Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 22:57:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1409 (0x581) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185D6E, serialNumber=9524EA9B823C20FA78923BE6667E14F6C4C3B47E Validity Not Before: May 10 22:57:21 2025 GMT Not After : May 17 22:57:21 2025 GMT Subject: CN=681fd9d1-bd78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:e1:73:f3:0f:e8:8c:7f:8d:9a:d3:89:cd:44: 18:18:83:2e:64:39:4d:fb:23:0c:c5:00:01:ea:b4: 91:3a:b2:51:cc:f7:4f:43:ef:78:28:ea:b3:61:93: 65:ac:1b:d7:d2:d9:b6:19:64:c6:12:a2:4a:63:5e: f3:66:14:10:ab:87:12:9b:24:3a:c9:ff:97:28:5a: 3e:dd:92:a8:e3:10:02:3c:c3:26:fa:2c:24:c6:14: 91:42:7b:01:ba:fb:ab:9d:da:e9:6e:2f:1b:24:28: 4c:a3:3b:eb:d7:25:09:d1:42:89:b3:65:e0:ec:d2: 14:16:b1:f0:a3:7e:72:32:c2:ca:63:61:c3:ad:8f: 45:08:b8:75:5f:f2:e9:f6:8e:a7:d2:12:7d:f3:c8: 33:35:35:0b:a3:31:66:5a:2f:7b:a6:56:ea:1f:a9: a4:b0:e5:1d:db:51:71:f8:84:42:0b:37:db:f0:c1: fe:4f:36:fd:98:96:85:dc:9f:84:67:08:7b:42:64: 66:ab:36:8c:2a:64:b2:ac:7f:73:b1:98:5f:93:f3: 7f:87:d7:f2:86:36:90:27:32:4e:89:30:3f:57:a0: ba:3f:94:b1:e3:19:ae:9a:6b:d1:c3:2f:45:f0:8d: 77:36:28:bd:17:16:21:d8:de:c6:bf:67:ff:de:fe: 29:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:0E:D5:A3:30:49:AA:33:D0:3D:A4:5D:B9:EF:12:61:01:D9:B2:F6 X509v3 Authority Key Identifier: keyid:95:24:EA:9B:82:3C:20:FA:78:92:3B:E6:66:7E:14:F6:C4:C3:B4:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:cc:f9:9f:af:95:e9:14:5e:28:c9:1a:51:66:35:47:de:b6: e5:0d:ab:c9:1b:82:8c:18:12:07:a1:3d:1f:19:0d:45:c3:8a: 2c:a4:dc:c7:41:86:fc:20:5f:67:5c:47:e5:54:8a:79:5c:de: 90:43:8f:72:81:8c:6a:7a:8e:0b:c4:2d:cf:d0:de:62:f3:d0: f1:80:f5:ca:ab:e9:56:58:b3:fb:76:f9:fd:e1:9a:1e:00:1f: 01:88:87:be:80:75:65:c8:d4:46:7a:26:0d:5a:ff:62:da:8a: 7e:54:b8:3d:43:8c:bd:fc:5b:f0:a1:49:d3:8d:95:ea:a9:f0: 35:98:0a:70:01:95:28:a0:9d:26:6e:12:fc:ae:2f:ae:4e:70: 44:b3:80:4b:b9:2a:df:d5:12:69:c8:2a:f4:fa:5c:02:19:2f: fd:23:67:c5:a0:60:35:f0:c2:55:49:47:b8:49:f8:44:32:98: ba:9a:61:01:24:64:84:f0:59:c3:7a:02:16:22:ab:5d:5f:81: db:23:7d:ae:bc:96:4d:33:ea:8e:a4:60:21:98:cb:d6:e8:70: 25:d3:36:4b:57:7d:16:3b:ed:5f:4a:c7:e2:96:6e:5a:5d:4b: b0:39:66:54:94:04:28:89:55:16:a3:e5:6b:24:f5:4f:7d:ca: cf:57:c2:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVENkUxMTAvBgNVBAUTKDk1MjRFQTlCODIzQzIwRkE3ODkyM0JFNjY2N0UxNEY2 QzRDM0I0N0UwHhcNMjUwNTEwMjI1NzIxWhcNMjUwNTE3MjI1NzIxWjAYMRYwFAYD VQQDEw02ODFmZDlkMS1iZDc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1eFz8w/ojH+NmtOJzUQYGIMuZDlN+yMMxQAB6rSROrJRzPdPQ+94KOqzYZNl rBvX0tm2GWTGEqJKY17zZhQQq4cSmyQ6yf+XKFo+3ZKo4xACPMMm+iwkxhSRQnsB uvurndrpbi8bJChMozvr1yUJ0UKJs2Xg7NIUFrHwo35yMsLKY2HDrY9FCLh1X/Lp 9o6n0hJ988gzNTULozFmWi97plbqH6mksOUd21Fx+IRCCzfb8MH+Tzb9mJaF3J+E Zwh7QmRmqzaMKmSyrH9zsZhfk/N/h9fyhjaQJzJOiTA/V6C6P5Sx4xmummvRwy9F 8I13Nii9FxYh2N7Gv2f/3v4pOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDgO1aMw Saoz0D2kXbnvEmEB2bL2MB8GA1UdIwQYMBaAFJUk6puCPCD6eJI75mZ+FPbEw7R+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUQ2RS80Q0JGRjRBRURG RjExMUVCODk0RjMwNjdDNEY5QUUwMi9sU1RxbTRJOElQcDRranZtWm40VTlzVER0 SDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xTVHFtNEk4SVBwNGtqdm1abjRVOXNURHRINC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUQ2RS80Q0JGRjRBRURGRjExMUVCODk0RjMwNjdDNEY5QUUwMi9sU1RxbTRJOElQ cDRranZtWm40VTlzVER0SDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBzPmfr5XpFF4oyRpRZjVH3rblDavJG4KMGBIHoT0fGQ1Fw4ospNzH QYb8IF9nXEflVIp5XN6QQ49ygYxqeo4LxC3P0N5i89DxgPXKq+lWWLP7dvn94Zoe AB8BiIe+gHVlyNRGeiYNWv9i2op+VLg9Q4y9/FvwoUnTjZXqqfA1mApwAZUooJ0m bhL8ri+uTnBEs4BLuSrf1RJpyCr0+lwCGS/9I2fFoGA18MJVSUe4SfhEMpi6mmEB JGSE8FnDegIWIqtdX4HbI32uvJZNM+qOpGAhmMvW6HAl0zZLV30WO+1fSsfilm5a XUuwOWZUlAQoiVUWo+VrJPVPfcrPV8K7 -----END CERTIFICATE-----Generated at Mon May 12 14:53:12 2025 by rpki-client