$ rpki-client -vvf rpki.apnic.net/member_repository/A9125532/F37BD67A19C511F0A59D8928C4F9AE02/lFCLKqsDKqM_mgAoJYI_mrhccBI.mft File: lFCLKqsDKqM_mgAoJYI_mrhccBI.mft (raw, json) Hash identifier: gvM5NbSatg9NaBN6vVWXJBmpfxaycwAWfJ9EBSz/cKo= Subject key identifier: 60:1B:89:0B:B2:DF:CD:B3:D4:00:E1:51:D6:57:F2:A8:9E:DC:61:E9 Authority key identifier: 94:50:8B:2A:AB:03:2A:A3:3F:9A:00:28:25:82:3F:9A:B8:5C:70:12 Certificate issuer: /CN=A9125532/serialNumber=94508B2AAB032AA33F9A002825823F9AB85C7012 Certificate serial: 30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFCLKqsDKqM_mgAoJYI_mrhccBI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125532/F37BD67A19C511F0A59D8928C4F9AE02/lFCLKqsDKqM_mgAoJYI_mrhccBI.mft Manifest number: 2C Signing time: Tue 01 Jul 2025 08:32:44 +0000 Manifest this update: Tue 01 Jul 2025 08:32:43 +0000 Manifest next update: Tue 08 Jul 2025 08:32:43 +0000 Files and hashes: 1: lFCLKqsDKqM_mgAoJYI_mrhccBI.crl (hash: pEVNyS6Fr8inN0SFSPPQXo+VVlzEvR7EiKhp9r5vfpM=) 2: CB08B0C019C811F0958CB24EC4F9AE02.roa (hash: y8xxOVA8cK5Sc+i2B8yZIUqOuhkVjbuKi4OA78/BPFQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125532/F37BD67A19C511F0A59D8928C4F9AE02/lFCLKqsDKqM_mgAoJYI_mrhccBI.crl rsync://rpki.apnic.net/member_repository/A9125532/F37BD67A19C511F0A59D8928C4F9AE02/lFCLKqsDKqM_mgAoJYI_mrhccBI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFCLKqsDKqM_mgAoJYI_mrhccBI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 08:32:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48 (0x30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125532, serialNumber=94508B2AAB032AA33F9A002825823F9AB85C7012 Validity Not Before: Jul 1 08:32:43 2025 GMT Not After : Jul 8 08:32:43 2025 GMT Subject: CN=68639d2c-1ee7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:0a:83:3d:26:6e:7c:45:dc:40:f4:b3:d6:a6: d1:19:e9:c1:13:8c:8e:f7:a3:54:ac:c2:ec:c3:dd: 05:97:fc:c4:bb:08:c6:c1:a5:48:ad:e8:0d:c1:b1: e1:88:fe:bc:d6:af:51:48:1c:fd:a2:05:4c:c4:e4: f8:60:e7:d7:32:2a:fb:dd:e5:79:b3:dd:21:08:62: 65:4a:14:d3:43:3c:b7:a1:4b:9e:eb:cb:6c:6a:26: a0:c6:fd:ef:e8:a4:d9:9d:33:34:0c:82:16:ba:48: 27:50:5e:a7:e4:32:00:3b:b4:d5:1b:4f:d5:04:d9: 1b:c4:ee:08:e1:88:95:10:68:ca:8c:34:3b:0a:5b: a2:35:e6:a8:0a:30:ea:b6:8b:30:26:29:59:37:10: 1b:e4:b9:20:f5:29:3f:52:d3:17:a7:86:d7:c4:af: a7:3a:a1:b4:9c:45:ae:9f:71:88:a5:91:61:fe:ab: 58:85:9d:c1:6a:a1:0f:f0:5a:34:e9:4c:ab:48:b4: 13:d8:ac:5d:8e:c4:bd:74:28:5e:12:ae:01:a0:ad: c3:f8:a3:4d:f0:8b:d4:4b:8f:67:69:17:90:8f:98: 97:33:01:08:cd:39:ea:28:d8:f3:07:22:ce:a0:85: 81:dd:9f:58:64:51:36:7a:49:56:05:af:f4:cb:70: 46:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:1B:89:0B:B2:DF:CD:B3:D4:00:E1:51:D6:57:F2:A8:9E:DC:61:E9 X509v3 Authority Key Identifier: keyid:94:50:8B:2A:AB:03:2A:A3:3F:9A:00:28:25:82:3F:9A:B8:5C:70:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125532/F37BD67A19C511F0A59D8928C4F9AE02/lFCLKqsDKqM_mgAoJYI_mrhccBI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFCLKqsDKqM_mgAoJYI_mrhccBI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125532/F37BD67A19C511F0A59D8928C4F9AE02/lFCLKqsDKqM_mgAoJYI_mrhccBI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:87:f6:0e:9f:1a:fd:59:f4:fe:e9:d3:7a:ca:79:19:9c:72: 67:6e:f8:b8:8a:96:fd:c3:d5:10:41:b0:22:7b:5e:fa:a3:4a: 11:42:ff:63:26:1a:b6:15:2e:a5:66:90:13:dd:40:cd:59:b1: ff:05:32:3d:55:ba:ce:2e:00:40:e8:4d:cc:e1:4d:85:cf:cb: cc:fe:ab:c5:bc:2e:ab:14:36:ad:02:e6:e1:01:02:13:cd:00: 52:90:a6:5e:73:a7:b7:bc:94:93:44:19:ec:4d:50:15:6b:3c: 22:03:b6:1b:08:d0:ac:c2:3b:6b:a6:ea:41:c4:a7:a9:bd:e7: 2b:ac:19:91:67:4a:db:6e:3e:69:bc:d3:ab:58:41:36:57:c3: 9d:a3:2c:05:07:65:7d:8c:6f:9f:3e:6a:9b:f2:f4:8c:99:3c: f2:1a:03:ff:79:90:e4:8a:26:ee:9c:f2:7b:8c:04:28:6e:e5: a0:c5:f5:bd:7b:d9:ae:7a:c2:b6:df:d5:12:52:cf:bf:3d:32: e3:2c:d9:f0:a0:5a:f0:7b:9a:6a:18:50:1f:18:e8:cd:71:1e: a8:2b:da:de:da:54:01:fe:c5:3e:72:b0:95:3a:7d:bf:8c:6b: 16:11:18:cc:5b:ac:05:60:e6:c5:bd:4c:c8:71:7e:ae:22:eb: 8f:ba:a9:9d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NTUzMjExMC8GA1UEBRMoOTQ1MDhCMkFBQjAzMkFBMzNGOUEwMDI4MjU4MjNGOUFC ODVDNzAxMjAeFw0yNTA3MDEwODMyNDNaFw0yNTA3MDgwODMyNDNaMBgxFjAUBgNV BAMTDTY4NjM5ZDJjLTFlZTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCsCoM9Jm58RdxA9LPWptEZ6cETjI73o1SswuzD3QWX/MS7CMbBpUit6A3BseGI /rzWr1FIHP2iBUzE5Phg59cyKvvd5Xmz3SEIYmVKFNNDPLehS57ry2xqJqDG/e/o pNmdMzQMgha6SCdQXqfkMgA7tNUbT9UE2RvE7gjhiJUQaMqMNDsKW6I15qgKMOq2 izAmKVk3EBvkuSD1KT9S0xenhtfEr6c6obScRa6fcYilkWH+q1iFncFqoQ/wWjTp TKtItBPYrF2OxL10KF4SrgGgrcP4o03wi9RLj2dpF5CPmJczAQjNOeoo2PMHIs6g hYHdn1hkUTZ6SVYFr/TLcEbDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUYBuJC7Lf zbPUAOFR1lfyqJ7cYekwHwYDVR0jBBgwFoAUlFCLKqsDKqM/mgAoJYI/mrhccBIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI1NTMyL0YzN0JENjdBMTlD NTExRjBBNTlEODkyOEM0RjlBRTAyL2xGQ0xLcXNES3FNX21nQW9KWUlfbXJoY2NC SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbEZDTEtxc0RLcU1fbWdBb0pZSV9tcmhjY0JJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI1 NTMyL0YzN0JENjdBMTlDNTExRjBBNTlEODkyOEM0RjlBRTAyL2xGQ0xLcXNES3FN X21nQW9KWUlfbXJoY2NCSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJ+H9g6fGv1Z9P7p03rKeRmccmdu+LiKlv3D1RBBsCJ7XvqjShFC/2Mm GrYVLqVmkBPdQM1Zsf8FMj1Vus4uAEDoTczhTYXPy8z+q8W8LqsUNq0C5uEBAhPN AFKQpl5zp7e8lJNEGexNUBVrPCIDthsI0KzCO2um6kHEp6m95yusGZFnSttuPmm8 06tYQTZXw52jLAUHZX2Mb58+apvy9IyZPPIaA/95kOSKJu6c8nuMBChu5aDF9b17 2a56wrbf1RJSz789MuMs2fCgWvB7mmoYUB8Y6M1xHqgr2t7aVAH+xT5ysJU6fb+M axYRGMxbrAVg5sW9TMhxfq4i64+6qZ0= -----END CERTIFICATE-----Generated at Wed Jul 2 07:33:42 2025 by rpki-client