$ rpki-client -vvf rpki.apnic.net/member_repository/A9110F1F/6C0FEF5A1EB911ED9FC68760C4F9AE02/lS9xLfEYQSCKO0qHRiDFn-7XcLA.mft File: lS9xLfEYQSCKO0qHRiDFn-7XcLA.mft (raw, json) Hash identifier: DNfaaLPeSajLKtI7FxFQ65/7lFx9LVPUR1Iu419tCA0= Subject key identifier: 08:39:C1:6D:3A:FD:44:E6:A1:90:AE:FA:DE:25:4F:47:6F:E4:4D:21 Authority key identifier: 95:2F:71:2D:F1:18:41:20:8A:3B:4A:87:46:20:C5:9F:EE:D7:70:B0 Certificate issuer: /CN=A9110F1F/serialNumber=952F712DF11841208A3B4A874620C59FEED770B0 Certificate serial: 0247 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lS9xLfEYQSCKO0qHRiDFn-7XcLA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110F1F/6C0FEF5A1EB911ED9FC68760C4F9AE02/lS9xLfEYQSCKO0qHRiDFn-7XcLA.mft Manifest number: 0243 Signing time: Sun 11 May 2025 01:24:25 +0000 Manifest this update: Sun 11 May 2025 01:24:24 +0000 Manifest next update: Sun 18 May 2025 01:24:24 +0000 Files and hashes: 1: lS9xLfEYQSCKO0qHRiDFn-7XcLA.crl (hash: WvV5u+uopC+yUn4WBtSkZtxEWcbd36FlJHHtujzYO7M=) 2: AF6A12881EBB11EDB35A2561C4F9AE02.roa (hash: 27aLcYczZ5MYFXDnhdewNPk3kbRzrioX5es/1Wn4iNI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110F1F/6C0FEF5A1EB911ED9FC68760C4F9AE02/lS9xLfEYQSCKO0qHRiDFn-7XcLA.crl rsync://rpki.apnic.net/member_repository/A9110F1F/6C0FEF5A1EB911ED9FC68760C4F9AE02/lS9xLfEYQSCKO0qHRiDFn-7XcLA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lS9xLfEYQSCKO0qHRiDFn-7XcLA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 01:24:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 583 (0x247) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110F1F, serialNumber=952F712DF11841208A3B4A874620C59FEED770B0 Validity Not Before: May 11 01:24:24 2025 GMT Not After : May 18 01:24:24 2025 GMT Subject: CN=681ffc48-2c05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:f6:5a:85:74:77:11:9f:61:55:92:6b:b1:9c: fb:34:ae:cd:30:27:59:dc:48:59:e1:dd:89:42:5f: 45:e6:16:b6:a1:7f:d5:82:28:e5:08:3f:f1:1d:5b: 09:d8:dc:1d:f9:00:73:a2:e5:0d:98:f6:a3:8d:f3: e1:fb:5b:d8:4b:43:11:2f:60:24:b5:18:c2:7a:f8: 37:b5:f0:6c:57:4f:72:f9:0c:fa:e8:bb:37:1e:2a: 1c:4b:50:d6:0b:5b:86:55:72:94:ff:36:49:63:a3: 92:8d:b0:0e:26:a4:2b:59:6e:64:d0:49:ac:5a:21: 78:00:ae:8c:fd:d2:6c:ee:8b:6c:13:94:8d:64:da: 13:df:67:80:e3:57:a2:6b:c2:85:ae:0e:f6:ca:16: b8:58:a0:9f:16:4a:9e:e2:ba:e9:05:c5:66:f3:87: 3f:42:c4:34:40:08:d1:1e:0e:77:9b:cf:40:25:1f: c4:d5:1e:4f:1f:2a:f1:a0:62:96:73:26:21:62:96: fc:5f:d9:39:7a:d3:ba:f2:c6:3e:9f:74:c4:6c:73: 55:eb:f9:9c:3a:46:d0:db:6e:77:50:2a:6e:04:d9: 1a:e5:f9:26:21:cd:42:0b:bf:13:5d:c4:05:40:04: b0:0d:1c:83:50:5d:cd:1b:81:bf:4d:83:65:a6:6c: 48:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:39:C1:6D:3A:FD:44:E6:A1:90:AE:FA:DE:25:4F:47:6F:E4:4D:21 X509v3 Authority Key Identifier: keyid:95:2F:71:2D:F1:18:41:20:8A:3B:4A:87:46:20:C5:9F:EE:D7:70:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110F1F/6C0FEF5A1EB911ED9FC68760C4F9AE02/lS9xLfEYQSCKO0qHRiDFn-7XcLA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lS9xLfEYQSCKO0qHRiDFn-7XcLA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110F1F/6C0FEF5A1EB911ED9FC68760C4F9AE02/lS9xLfEYQSCKO0qHRiDFn-7XcLA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:0b:2d:ce:56:df:d7:67:eb:e6:1e:29:06:a5:b5:a2:0a:bb: fe:d9:c3:45:bb:d4:47:0c:fa:7b:4a:10:59:97:21:e4:1f:90: 78:48:6e:0c:00:db:ad:97:6d:36:67:ec:27:ce:1b:e9:2c:a0: 4e:94:9a:31:24:62:3d:9c:2f:c0:15:2c:01:00:cb:b4:22:58: 73:ea:58:5f:7a:b5:f2:80:f2:2f:75:45:4c:3e:67:64:9b:a7: 12:da:ef:66:e5:ba:77:e7:7c:ab:ff:a5:8a:f7:a0:b6:1f:8e: 35:d1:46:b0:c9:6f:05:77:b9:94:bc:f0:a5:2f:61:22:8b:f2: 02:e9:4b:22:4a:b4:1c:7e:37:96:63:dd:1b:11:26:dc:38:c9: b9:e0:9f:5f:b6:28:c9:02:b1:fc:c4:90:b1:a6:da:d9:0a:e2: ce:0a:ba:ae:c6:c8:76:42:9d:88:26:03:68:ff:32:79:82:1c: bb:95:82:ac:a8:69:80:39:9b:2f:93:b1:c7:13:96:3f:bc:c7: 74:23:39:df:d9:a2:1e:3a:ff:a4:dc:22:cc:d2:97:a7:f4:29: 26:9c:0d:ab:e0:de:9d:16:e1:fe:21:22:f8:d7:03:de:1b:14: b7:b1:64:82:88:ba:0b:06:f2:22:62:92:42:cc:70:d2:61:a0: ed:af:f7:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTBGMUYxMTAvBgNVBAUTKDk1MkY3MTJERjExODQxMjA4QTNCNEE4NzQ2MjBDNTlG RUVENzcwQjAwHhcNMjUwNTExMDEyNDI0WhcNMjUwNTE4MDEyNDI0WjAYMRYwFAYD VQQDEw02ODFmZmM0OC0yYzA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr/ZahXR3EZ9hVZJrsZz7NK7NMCdZ3EhZ4d2JQl9F5ha2oX/VgijlCD/xHVsJ 2Nwd+QBzouUNmPajjfPh+1vYS0MRL2AktRjCevg3tfBsV09y+Qz66Ls3HiocS1DW C1uGVXKU/zZJY6OSjbAOJqQrWW5k0EmsWiF4AK6M/dJs7otsE5SNZNoT32eA41ei a8KFrg72yha4WKCfFkqe4rrpBcVm84c/QsQ0QAjRHg53m89AJR/E1R5PHyrxoGKW cyYhYpb8X9k5etO68sY+n3TEbHNV6/mcOkbQ2253UCpuBNka5fkmIc1CC78TXcQF QASwDRyDUF3NG4G/TYNlpmxI5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAg5wW06 /UTmoZCu+t4lT0dv5E0hMB8GA1UdIwQYMBaAFJUvcS3xGEEgijtKh0YgxZ/u13Cw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMEYxRi82QzBGRUY1QTFF QjkxMUVEOUZDNjg3NjBDNEY5QUUwMi9sUzl4TGZFWVFTQ0tPMHFIUmlERm4tN1hj TEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xTOXhMZkVZUVNDS08wcUhSaURGbi03WGNMQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MEYxRi82QzBGRUY1QTFFQjkxMUVEOUZDNjg3NjBDNEY5QUUwMi9sUzl4TGZFWVFT Q0tPMHFIUmlERm4tN1hjTEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQCy3OVt/XZ+vmHikGpbWiCrv+2cNFu9RHDPp7ShBZlyHkH5B4SG4M ANutl202Z+wnzhvpLKBOlJoxJGI9nC/AFSwBAMu0Ilhz6lhferXygPIvdUVMPmdk m6cS2u9m5bp353yr/6WK96C2H4410UawyW8Fd7mUvPClL2Eii/IC6UsiSrQcfjeW Y90bESbcOMm54J9ftijJArH8xJCxptrZCuLOCrquxsh2Qp2IJgNo/zJ5ghy7lYKs qGmAOZsvk7HHE5Y/vMd0Iznf2aIeOv+k3CLM0pen9CkmnA2r4N6dFuH+ISL41wPe GxS3sWSCiLoLBvIiYpJCzHDSYaDtr/c5 -----END CERTIFICATE-----Generated at Sun May 11 10:42:12 2025 by rpki-client