$ rpki-client -vvf rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.mft File: lUWdXR6wQJX9Fj8NhNHzpGwV5PA.mft (raw, json) Hash identifier: kEYQ9avNtbxyvFznEjUnN5TgAqdpzqWIgAw+h7u7/i0= Subject key identifier: B7:00:D1:00:96:F6:19:AC:72:30:3B:16:89:CE:8F:28:6F:DA:2E:45 Authority key identifier: 95:45:9D:5D:1E:B0:40:95:FD:16:3F:0D:84:D1:F3:A4:6C:15:E4:F0 Certificate issuer: /CN=A9118749/serialNumber=95459D5D1EB04095FD163F0D84D1F3A46C15E4F0 Certificate serial: 39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.mft Manifest number: 37 Signing time: Mon 05 May 2025 06:26:19 +0000 Manifest this update: Mon 05 May 2025 06:26:19 +0000 Manifest next update: Mon 12 May 2025 06:26:19 +0000 Files and hashes: 1: lUWdXR6wQJX9Fj8NhNHzpGwV5PA.crl (hash: xpuaF++tCIteWSgNdWahtyxJ1Q6w66qpN6RUKFqV1FA=) 2: 0D9D8C8CDC2311EFAEB2F679C4F9AE02.roa (hash: vxR6lGSB92W4nyf39qOZTHQvzgJz2i4ET4hSQ71BeOI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.crl rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 05:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57 (0x39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118749, serialNumber=95459D5D1EB04095FD163F0D84D1F3A46C15E4F0 Validity Not Before: May 5 06:26:19 2025 GMT Not After : May 12 06:26:19 2025 GMT Subject: CN=68185a0b-0ea8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:8f:88:71:7a:bb:12:9b:9c:94:a6:a9:2d:da: c5:85:08:7c:55:b7:8c:b0:16:7e:e1:d1:0d:ae:73: f1:43:b4:3f:c8:90:1d:84:f7:03:20:ed:f5:75:32: ee:de:3c:6c:96:c6:7a:f8:81:47:18:45:49:88:f4: 1d:05:b0:1f:86:84:b1:f5:b5:7e:bc:ae:64:d9:b8: 06:3c:3c:4a:1f:4b:21:d9:cb:08:b8:9c:69:0b:bd: 5a:84:39:d7:cf:2d:86:bf:60:0a:26:eb:40:a0:12: 54:c5:33:54:6e:c0:cb:1a:ba:be:89:54:5c:e8:4e: 0f:a3:7d:04:09:a2:63:79:ed:92:6d:93:c5:ab:ab: 00:85:55:85:47:4a:01:06:67:51:c8:60:4f:d2:6d: 19:85:6e:7b:37:bd:33:99:42:ac:3d:62:f9:14:ee: 6a:d6:28:f1:2f:0e:87:35:b7:9b:b2:20:b8:24:1c: 01:8f:a0:55:cb:88:08:87:08:ba:e7:2a:f5:7c:27: f1:6c:eb:26:d0:66:fe:83:1a:68:27:9e:5e:67:28: ea:91:24:f2:9a:da:cb:b4:62:6c:e5:e1:66:88:f1: 5a:46:36:5e:95:bc:54:eb:5c:e0:d3:de:e6:7c:de: bf:d4:78:a5:71:b8:9c:54:81:f3:e0:31:7a:34:58: 58:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:00:D1:00:96:F6:19:AC:72:30:3B:16:89:CE:8F:28:6F:DA:2E:45 X509v3 Authority Key Identifier: keyid:95:45:9D:5D:1E:B0:40:95:FD:16:3F:0D:84:D1:F3:A4:6C:15:E4:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:83:51:e6:00:8e:a5:25:1a:e0:d3:a9:d7:f4:27:33:8f:29: 16:dc:d3:9f:98:2a:e6:91:8c:9f:de:40:da:54:a2:fa:70:02: 0a:9e:de:a5:0f:62:02:eb:27:f5:fc:e8:05:98:43:28:4d:6b: 6e:28:d0:15:3e:70:26:92:91:dd:89:a8:73:57:2c:8e:42:5a: 8f:8d:18:8a:44:6b:07:14:90:1b:5c:c6:a7:a7:66:df:c3:52: f9:02:bf:9a:b9:71:87:66:56:aa:e0:aa:90:d6:ed:e6:5c:ce: 0f:fe:53:b2:1a:55:94:8c:cc:e5:46:bc:ac:4b:7a:d1:43:78: 0f:8c:16:0b:c9:37:a6:98:89:fe:5e:94:f9:ce:d8:42:93:8a: 2f:1c:bd:67:6e:38:82:20:3d:e9:a8:58:52:68:4e:b7:4d:54: 5a:ec:22:5e:a6:7c:76:57:3d:a2:2f:0f:24:79:30:cb:b1:da: 28:8f:10:c9:84:85:9b:49:37:be:d3:43:2d:15:54:2d:7f:fb: c9:12:a2:15:00:b7:be:b3:40:97:9e:2c:ba:63:49:f4:ed:70: 7d:e7:17:56:67:eb:3f:5c:5f:32:ec:f7:7e:f4:34:b5:6e:8e: 35:f2:65:ed:60:a4:f2:3d:56:46:a1:8f:d1:9e:1f:bd:5a:ce: a3:1e:b3:33 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx ODc0OTExMC8GA1UEBRMoOTU0NTlENUQxRUIwNDA5NUZEMTYzRjBEODREMUYzQTQ2 QzE1RTRGMDAeFw0yNTA1MDUwNjI2MTlaFw0yNTA1MTIwNjI2MTlaMBgxFjAUBgNV BAMTDTY4MTg1YTBiLTBlYTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDRj4hxersSm5yUpqkt2sWFCHxVt4ywFn7h0Q2uc/FDtD/IkB2E9wMg7fV1Mu7e PGyWxnr4gUcYRUmI9B0FsB+GhLH1tX68rmTZuAY8PEofSyHZywi4nGkLvVqEOdfP LYa/YAom60CgElTFM1RuwMsaur6JVFzoTg+jfQQJomN57ZJtk8WrqwCFVYVHSgEG Z1HIYE/SbRmFbns3vTOZQqw9YvkU7mrWKPEvDoc1t5uyILgkHAGPoFXLiAiHCLrn KvV8J/Fs6ybQZv6DGmgnnl5nKOqRJPKa2su0Ymzl4WaI8VpGNl6VvFTrXODT3uZ8 3r/UeKVxuJxUgfPgMXo0WFirAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUtwDRAJb2 GaxyMDsWic6PKG/aLkUwHwYDVR0jBBgwFoAUlUWdXR6wQJX9Fj8NhNHzpGwV5PAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4NzQ5L0JBNTdEQkE2REMy MDExRUY5MUI1NDAxRUM0RjlBRTAyL2xVV2RYUjZ3UUpYOUZqOE5oTkh6cEd3VjVQ QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbFVXZFhSNndRSlg5Rmo4TmhOSHpwR3dWNVBBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4 NzQ5L0JBNTdEQkE2REMyMDExRUY5MUI1NDAxRUM0RjlBRTAyL2xVV2RYUjZ3UUpY OUZqOE5oTkh6cEd3VjVQQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADqDUeYAjqUlGuDTqdf0JzOPKRbc05+YKuaRjJ/eQNpUovpwAgqe3qUP YgLrJ/X86AWYQyhNa24o0BU+cCaSkd2JqHNXLI5CWo+NGIpEawcUkBtcxqenZt/D UvkCv5q5cYdmVqrgqpDW7eZczg/+U7IaVZSMzOVGvKxLetFDeA+MFgvJN6aYif5e lPnO2EKTii8cvWduOIIgPemoWFJoTrdNVFrsIl6mfHZXPaIvDyR5MMux2iiPEMmE hZtJN77TQy0VVC1/+8kSohUAt76zQJeeLLpjSfTtcH3nF1Zn6z9cXzLs9370NLVu jjXyZe1gpPI9Vkahj9GeH71azqMeszM= -----END CERTIFICATE-----Generated at Mon May 5 07:54:12 2025 by rpki-client