$ rpki-client -vvf rpki.apnic.net/member_repository/A911BD54/D90112843F4F11E59512E04CC4F9AE02/L1nO2mFIFfRjLznVoxwqUUjGtPo.mft File: L1nO2mFIFfRjLznVoxwqUUjGtPo.mft (raw, json) Hash identifier: Aarm4Sr8Yj041p/TtyZOQFkXTiJntQZbvjApIckqhwg= Subject key identifier: F7:78:9A:28:D3:4C:39:74:04:B4:B4:50:27:31:C4:AF:EF:A1:2A:98 Authority key identifier: 2F:59:CE:DA:61:48:15:F4:63:2F:39:D5:A3:1C:2A:51:48:C6:B4:FA Certificate issuer: /CN=A911BD54/serialNumber=2F59CEDA614815F4632F39D5A31C2A5148C6B4FA Certificate serial: 254F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L1nO2mFIFfRjLznVoxwqUUjGtPo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BD54/D90112843F4F11E59512E04CC4F9AE02/L1nO2mFIFfRjLznVoxwqUUjGtPo.mft Manifest number: 24E8 Signing time: Wed 14 May 2025 15:48:08 +0000 Manifest this update: Wed 14 May 2025 15:48:08 +0000 Manifest next update: Wed 21 May 2025 15:48:08 +0000 Files and hashes: 1: L1nO2mFIFfRjLznVoxwqUUjGtPo.crl (hash: OSqycSzfFCCxHe66FiLySUPn5V8AeaD4OuLaamxjC+0=) 2: 6A4C0AE89B1111EEADD68539C4F9AE02.roa (hash: 2DQNtDG5SlXbYPNKHWvlCf1LoqXbXRDiCCKULGtJnHM=) 3: 7135F534A05E11EDAC005F21C4F9AE02.roa (hash: BPqGgTO/FXgmhll9acyqoVIwbgNH2EbF72C/59rTKAs=) 4: 6CD99EF455C911E78F401587C4F9AE02.roa (hash: W5BOpPvdDaVJRiPCvQRJeUEXAu9OuHFa28A+g1a29VM=) 5: 407F0056629711EEB706DD75C4F9AE02.roa (hash: PPHYcuwo/hi+gWIj/jwhtP8TpkDUisIVIpssgpxO+Uk=) 6: 50A7914A5B9011EE82A2243AC4F9AE02.roa (hash: ssVkoQGU9abtVaOJ8QQiFzJ2u/KxDVyiUSGDeDLOq7k=) 7: 260428EC312211EEAF54935BC4F9AE02.roa (hash: rs1BLbvYE3DjY31zt5pMsjMWm6NZ1lEGyNnSPudZWnw=) 8: B77A93FE852411EFA67F8144C4F9AE02.roa (hash: card7JNSXN/xmFN4DueLt9CEoLfIixAjl6O1VFSsoLU=) 9: B6B65E76852411EFA67F8144C4F9AE02.roa (hash: ZjX79axkNC/VnRSkKPjshmIjcGsGG06UJjQxdQstgRg=) 10: 8659FCFEB12811EE98786F82C4F9AE02.roa (hash: uTcSN/s3jafNB4/D11q5q+/m0pypV3YLg7hL+NBlIuc=) 11: AE5BAB8CA05B11ED9406DE26C4F9AE02.roa (hash: bI6DNZ+SMQoiH31SjdXczk0YB7z1qgZ9bG+qqRhYG1Q=) 12: EAF1B720D85A11E9B476E954C4F9AE02.roa (hash: tGAr+6Zn60awTp8cl05laafAibPgTaCeJzxGTywN05I=) 13: 18D20D12852511EFBE3D6E47C4F9AE02.roa (hash: Xf4WUlVOVXX5jFG9PvkmpeYeh0+vfoKZddXectuS1PA=) 14: E0CD5510BE6111ED88CAF164C4F9AE02.roa (hash: DZxtCrPx9nVC06xsT0giYHAu0uYg4D08gJHGXJpz69w=) 15: 71D21A40A05E11EDAC005F21C4F9AE02.roa (hash: wWAuh5kIJNSIRZFUI/17Ka/eUztNPx+QrG0g1L0q+HM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BD54/D90112843F4F11E59512E04CC4F9AE02/L1nO2mFIFfRjLznVoxwqUUjGtPo.crl rsync://rpki.apnic.net/member_repository/A911BD54/D90112843F4F11E59512E04CC4F9AE02/L1nO2mFIFfRjLznVoxwqUUjGtPo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L1nO2mFIFfRjLznVoxwqUUjGtPo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 15:48:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9551 (0x254f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BD54, serialNumber=2F59CEDA614815F4632F39D5A31C2A5148C6B4FA Validity Not Before: May 14 15:48:08 2025 GMT Not After : May 21 15:48:08 2025 GMT Subject: CN=6824bb38-07a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:ba:d6:58:a7:ea:77:d6:a4:2e:23:9b:e6:1e: 42:1e:96:31:78:3c:7a:09:28:bf:c8:1b:70:44:b2: da:ae:29:30:39:18:ab:8b:46:12:86:2e:4d:ce:47: 1e:fc:38:62:f6:32:f8:8c:70:e5:d7:f8:e6:f5:a8: a8:b2:73:ea:7c:2f:4c:66:7c:ff:11:e1:cb:56:03: 5f:86:7d:a2:38:82:c8:13:56:c5:6e:e1:d5:6c:a7: df:7f:39:f9:d2:32:bb:8b:cd:dc:c3:d3:0e:71:94: d9:dd:5a:d3:fa:ba:e4:4a:4a:31:5d:fc:0c:9f:68: 4c:75:ee:80:1f:81:85:87:8d:da:53:e5:4e:f9:93: ba:79:b4:49:d9:54:a2:6a:44:7b:cb:43:d1:c8:3a: 6c:32:f2:40:83:99:01:2c:db:13:02:3a:9f:01:fe: 40:1f:06:52:ba:3c:c1:e5:14:89:c0:00:0f:95:1f: 1b:ac:8b:e8:e2:92:19:37:79:2f:b7:3e:4b:8b:10: b7:66:6f:07:b9:78:bf:8c:86:5a:20:6f:ee:28:c0: da:0e:aa:0a:04:92:b7:c4:1c:3f:82:1a:17:67:67: 41:69:64:d3:cc:53:90:da:6b:74:64:32:70:4c:1d: 1f:d0:10:f0:fe:3a:e5:2d:00:70:10:51:34:89:8a: 5a:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:78:9A:28:D3:4C:39:74:04:B4:B4:50:27:31:C4:AF:EF:A1:2A:98 X509v3 Authority Key Identifier: keyid:2F:59:CE:DA:61:48:15:F4:63:2F:39:D5:A3:1C:2A:51:48:C6:B4:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BD54/D90112843F4F11E59512E04CC4F9AE02/L1nO2mFIFfRjLznVoxwqUUjGtPo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L1nO2mFIFfRjLznVoxwqUUjGtPo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BD54/D90112843F4F11E59512E04CC4F9AE02/L1nO2mFIFfRjLznVoxwqUUjGtPo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:36:b2:4d:95:43:5c:7d:7b:67:90:9e:db:c3:91:e6:d2:84: 93:5a:06:0a:5a:5f:44:bb:83:d1:ec:96:8f:c3:c0:83:91:7b: 32:6e:fb:c8:ec:46:ef:75:51:19:d0:23:be:5a:16:10:5b:66: f8:05:63:c6:d2:30:ae:1b:4f:57:92:5e:a0:0a:75:8e:97:ac: 5d:f0:f8:b8:64:62:60:9d:21:e2:e8:f0:8f:85:9a:18:bc:30: e6:ea:a7:5d:71:82:b7:a8:ca:03:a6:87:cc:ed:46:29:1c:e5: 88:af:d0:03:26:a1:ae:3e:5e:08:30:de:fc:5f:26:49:05:5c: 59:1c:63:e6:74:41:fe:16:16:9b:97:9a:5d:5c:8e:a4:74:96: 5c:f8:3a:2d:01:f1:10:ce:b4:a4:f0:94:b0:d1:26:c3:f1:46: e1:3e:f3:5f:0a:1d:a3:af:92:d5:c9:13:3c:5c:b0:65:65:d1: 36:13:77:0d:0e:bc:72:7d:3c:da:2f:0c:81:66:2e:04:a6:98: a0:8a:6b:02:7c:79:6d:2c:42:91:2c:6f:93:46:b4:3d:a8:6c: 4d:22:34:82:82:b6:56:56:8e:62:46:26:2e:58:b8:88:2a:41: 05:40:2b:54:79:d2:db:71:c6:cc:6a:8f:ad:60:44:0e:74:0f: 20:f7:35:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJU8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJENTQxMTAvBgNVBAUTKDJGNTlDRURBNjE0ODE1RjQ2MzJGMzlENUEzMUMyQTUx NDhDNkI0RkEwHhcNMjUwNTE0MTU0ODA4WhcNMjUwNTIxMTU0ODA4WjAYMRYwFAYD VQQDEw02ODI0YmIzOC0wN2EyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3LrWWKfqd9akLiOb5h5CHpYxeDx6CSi/yBtwRLLarikwORiri0YShi5Nzkce /Dhi9jL4jHDl1/jm9aiosnPqfC9MZnz/EeHLVgNfhn2iOILIE1bFbuHVbKfffzn5 0jK7i83cw9MOcZTZ3VrT+rrkSkoxXfwMn2hMde6AH4GFh43aU+VO+ZO6ebRJ2VSi akR7y0PRyDpsMvJAg5kBLNsTAjqfAf5AHwZSujzB5RSJwAAPlR8brIvo4pIZN3kv tz5LixC3Zm8HuXi/jIZaIG/uKMDaDqoKBJK3xBw/ghoXZ2dBaWTTzFOQ2mt0ZDJw TB0f0BDw/jrlLQBwEFE0iYpaBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPd4mijT TDl0BLS0UCcxxK/voSqYMB8GA1UdIwQYMBaAFC9ZztphSBX0Yy851aMcKlFIxrT6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkQ1NC9EOTAxMTI4NDNG NEYxMUU1OTUxMkUwNENDNEY5QUUwMi9MMW5PMm1GSUZmUmpMem5Wb3h3cVVVakd0 UG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0wxbk8ybUZJRmZSakx6blZveHdxVVVqR3RQby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QkQ1NC9EOTAxMTI4NDNGNEYxMUU1OTUxMkUwNENDNEY5QUUwMi9MMW5PMm1GSUZm UmpMem5Wb3h3cVVVakd0UG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNNrJNlUNcfXtnkJ7bw5Hm0oSTWgYKWl9Eu4PR7JaPw8CDkXsybvvI 7EbvdVEZ0CO+WhYQW2b4BWPG0jCuG09Xkl6gCnWOl6xd8Pi4ZGJgnSHi6PCPhZoY vDDm6qddcYK3qMoDpofM7UYpHOWIr9ADJqGuPl4IMN78XyZJBVxZHGPmdEH+Fhab l5pdXI6kdJZc+DotAfEQzrSk8JSw0SbD8UbhPvNfCh2jr5LVyRM8XLBlZdE2E3cN DrxyfTzaLwyBZi4EppigimsCfHltLEKRLG+TRrQ9qGxNIjSCgrZWVo5iRiYuWLiI KkEFQCtUedLbccbMao+tYEQOdA8g9zVo -----END CERTIFICATE-----Generated at Fri May 16 03:08:12 2025 by rpki-client