$ rpki-client -vvf rpki.apnic.net/member_repository/A9125532/F37BD67A19C511F0A59D8928C4F9AE02/lFCLKqsDKqM_mgAoJYI_mrhccBI.mft File: lFCLKqsDKqM_mgAoJYI_mrhccBI.mft (raw, json) Hash identifier: b6YehfewvNpmS06RdQ/uSHYcQFQ2G6nSRzbT8e0zxgo= Subject key identifier: 84:26:C0:01:6F:82:E3:64:83:C6:B8:02:57:E9:51:83:13:D0:3D:D4 Authority key identifier: 94:50:8B:2A:AB:03:2A:A3:3F:9A:00:28:25:82:3F:9A:B8:5C:70:12 Certificate issuer: /CN=A9125532/serialNumber=94508B2AAB032AA33F9A002825823F9AB85C7012 Certificate serial: 18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFCLKqsDKqM_mgAoJYI_mrhccBI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125532/F37BD67A19C511F0A59D8928C4F9AE02/lFCLKqsDKqM_mgAoJYI_mrhccBI.mft Manifest number: 14 Signing time: Sun 11 May 2025 06:47:41 +0000 Manifest this update: Sun 11 May 2025 06:47:40 +0000 Manifest next update: Sun 18 May 2025 06:47:40 +0000 Files and hashes: 1: lFCLKqsDKqM_mgAoJYI_mrhccBI.crl (hash: 00ioDglF6jfTExljYcG62s4L5G98wyniCHDsYmLOsWg=) 2: CB08B0C019C811F0958CB24EC4F9AE02.roa (hash: y8xxOVA8cK5Sc+i2B8yZIUqOuhkVjbuKi4OA78/BPFQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125532/F37BD67A19C511F0A59D8928C4F9AE02/lFCLKqsDKqM_mgAoJYI_mrhccBI.crl rsync://rpki.apnic.net/member_repository/A9125532/F37BD67A19C511F0A59D8928C4F9AE02/lFCLKqsDKqM_mgAoJYI_mrhccBI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFCLKqsDKqM_mgAoJYI_mrhccBI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 06:47:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24 (0x18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125532, serialNumber=94508B2AAB032AA33F9A002825823F9AB85C7012 Validity Not Before: May 11 06:47:40 2025 GMT Not After : May 18 06:47:40 2025 GMT Subject: CN=6820480d-2648 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:93:ac:2e:47:01:9b:c3:c1:b1:4a:7e:78:57: a5:df:14:06:90:50:5f:c6:4b:c2:f5:29:1e:4b:bb: f6:ef:05:13:f7:1e:a6:47:c1:51:dc:ef:87:18:40: 4c:99:7b:b4:a5:55:34:f0:9d:d7:f1:6a:da:07:8a: aa:b8:b8:a0:88:44:74:4d:2f:f2:df:da:55:7d:d2: db:ca:dd:49:67:7d:59:36:b6:ce:ad:7f:d9:57:e8: a6:39:32:db:08:a9:bf:7d:86:12:a4:58:f3:26:90: 87:6e:0d:c8:4f:9a:15:d8:a2:e0:5b:78:b3:ec:20: f1:dc:4e:70:93:6a:6a:55:7b:94:8c:b8:0c:bb:18: 94:19:70:00:cd:c9:51:fe:78:75:48:ce:9f:35:77: 51:b0:aa:3d:0a:97:de:d9:27:65:13:93:71:48:65: cc:36:3f:ca:4c:7c:7a:02:ac:a2:b5:c2:25:5d:23: 56:63:78:2d:11:b1:73:b7:7a:5a:38:a4:d4:70:55: 3c:f6:49:8b:e7:1b:ee:fb:43:e8:c2:dd:40:79:83: 33:2b:b8:ff:82:e6:0f:a0:ea:8a:6d:56:83:a2:41: d2:d0:73:a9:6e:5d:50:64:22:b6:c4:44:9f:66:db: ce:12:fc:d5:d9:fc:bb:29:8c:64:41:54:7d:2d:3a: 7c:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:26:C0:01:6F:82:E3:64:83:C6:B8:02:57:E9:51:83:13:D0:3D:D4 X509v3 Authority Key Identifier: keyid:94:50:8B:2A:AB:03:2A:A3:3F:9A:00:28:25:82:3F:9A:B8:5C:70:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125532/F37BD67A19C511F0A59D8928C4F9AE02/lFCLKqsDKqM_mgAoJYI_mrhccBI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFCLKqsDKqM_mgAoJYI_mrhccBI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125532/F37BD67A19C511F0A59D8928C4F9AE02/lFCLKqsDKqM_mgAoJYI_mrhccBI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:7b:53:da:4e:d1:88:46:58:6d:7a:03:a1:4f:fd:ec:70:e1: 35:9c:cd:f4:07:3f:d2:69:71:16:4f:cc:0e:d2:38:57:59:9c: c0:2c:5d:02:a9:e7:91:aa:ee:62:54:4c:34:a0:43:f0:84:64: f2:8f:5d:98:2d:a6:1b:19:f6:8c:b9:fd:af:28:41:bd:89:15: a8:f4:36:d8:84:79:fa:d3:34:29:33:ea:30:2b:f8:a8:ba:96: bc:00:de:57:aa:ff:83:9e:ef:79:17:41:4b:8d:d2:b9:f8:ad: 87:df:67:0e:9c:77:1e:80:28:50:80:00:40:aa:4a:29:7c:90: 5a:e6:05:c2:5d:70:1f:4c:1c:43:6a:e5:8c:07:ab:b2:56:ef: a4:89:4e:73:f9:22:86:21:56:32:77:9d:72:c2:1f:ec:24:37: f6:29:bc:0e:b0:00:91:22:84:15:e4:42:6e:42:ae:5f:0f:7d: 20:65:6d:59:09:37:70:a4:51:ea:ad:59:cb:57:c0:eb:32:b9: 1e:8b:b1:51:7f:c0:29:6b:99:a7:1e:2e:22:6f:f2:f5:79:ca: 16:34:1f:c9:cb:a9:f3:00:a4:b0:26:c0:33:c1:f8:2b:fb:10: 5a:00:d3:bf:4c:20:04:a7:ef:c8:ed:33:f3:81:4a:4f:49:aa: 4a:bf:96:50 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NTUzMjExMC8GA1UEBRMoOTQ1MDhCMkFBQjAzMkFBMzNGOUEwMDI4MjU4MjNGOUFC ODVDNzAxMjAeFw0yNTA1MTEwNjQ3NDBaFw0yNTA1MTgwNjQ3NDBaMBgxFjAUBgNV BAMTDTY4MjA0ODBkLTI2NDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIk6wuRwGbw8GxSn54V6XfFAaQUF/GS8L1KR5Lu/bvBRP3HqZHwVHc74cYQEyZ e7SlVTTwndfxatoHiqq4uKCIRHRNL/Lf2lV90tvK3UlnfVk2ts6tf9lX6KY5MtsI qb99hhKkWPMmkIduDchPmhXYouBbeLPsIPHcTnCTampVe5SMuAy7GJQZcADNyVH+ eHVIzp81d1Gwqj0Kl97ZJ2UTk3FIZcw2P8pMfHoCrKK1wiVdI1ZjeC0RsXO3elo4 pNRwVTz2SYvnG+77Q+jC3UB5gzMruP+C5g+g6optVoOiQdLQc6luXVBkIrbERJ9m 284S/NXZ/LspjGRBVH0tOny5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUhCbAAW+C 42SDxrgCV+lRgxPQPdQwHwYDVR0jBBgwFoAUlFCLKqsDKqM/mgAoJYI/mrhccBIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI1NTMyL0YzN0JENjdBMTlD NTExRjBBNTlEODkyOEM0RjlBRTAyL2xGQ0xLcXNES3FNX21nQW9KWUlfbXJoY2NC SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbEZDTEtxc0RLcU1fbWdBb0pZSV9tcmhjY0JJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI1 NTMyL0YzN0JENjdBMTlDNTExRjBBNTlEODkyOEM0RjlBRTAyL2xGQ0xLcXNES3FN X21nQW9KWUlfbXJoY2NCSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFp7U9pO0YhGWG16A6FP/exw4TWczfQHP9JpcRZPzA7SOFdZnMAsXQKp 55Gq7mJUTDSgQ/CEZPKPXZgtphsZ9oy5/a8oQb2JFaj0NtiEefrTNCkz6jAr+Ki6 lrwA3leq/4Oe73kXQUuN0rn4rYffZw6cdx6AKFCAAECqSil8kFrmBcJdcB9MHENq 5YwHq7JW76SJTnP5IoYhVjJ3nXLCH+wkN/YpvA6wAJEihBXkQm5Crl8PfSBlbVkJ N3CkUeqtWctXwOsyuR6LsVF/wClrmaceLiJv8vV5yhY0H8nLqfMApLAmwDPB+Cv7 EFoA079MIASn78jtM/OBSk9Jqkq/llA= -----END CERTIFICATE-----Generated at Mon May 12 04:29:26 2025 by rpki-client