$ rpki-client -vvf rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.mft File: L4vvSDpBiuHAMSMIGG70zXskZuU.mft (raw, json) Hash identifier: atg+sua0D1Q8oPgHiNgmO+Mm/JT78zjZaprsGKQxL14= Subject key identifier: 78:AC:5C:25:B6:BC:02:F1:FF:4D:0A:71:E4:F3:99:89:DC:61:AE:B3 Authority key identifier: 2F:8B:EF:48:3A:41:8A:E1:C0:31:23:08:18:6E:F4:CD:7B:24:66:E5 Certificate issuer: /CN=A9125758/serialNumber=2F8BEF483A418AE1C0312308186EF4CD7B2466E5 Certificate serial: 0227 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4vvSDpBiuHAMSMIGG70zXskZuU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.mft Manifest number: 0223 Signing time: Sat 17 May 2025 02:10:23 +0000 Manifest this update: Sat 17 May 2025 02:10:23 +0000 Manifest next update: Sat 24 May 2025 02:10:23 +0000 Files and hashes: 1: L4vvSDpBiuHAMSMIGG70zXskZuU.crl (hash: OgB9GXmOptEzNNTncJXjLipyox2CABshaUxoMucFvyw=) 2: 117300B62CDB11EDB2E1DD0DC4F9AE02.roa (hash: SvlTkdhfP2Vy/Mu+17rsFwHULfYPp5POSAbZ7IEAOKw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.crl rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4vvSDpBiuHAMSMIGG70zXskZuU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 02:10:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 551 (0x227) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125758, serialNumber=2F8BEF483A418AE1C0312308186EF4CD7B2466E5 Validity Not Before: May 17 02:10:23 2025 GMT Not After : May 24 02:10:23 2025 GMT Subject: CN=6827f00f-5fde Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:c4:13:de:06:36:9c:f2:06:7e:1b:7e:bd:f8: 46:2f:af:e7:d2:ff:fa:f8:26:ac:e4:6f:d4:f0:a3: 8e:2e:bd:93:a7:68:10:c7:39:12:0c:c4:64:b2:d6: 62:8d:c5:dd:5b:cf:a3:5a:78:e9:7c:94:e4:da:b3: 69:3c:ba:f8:f6:bd:68:58:80:b3:f2:68:d1:50:f5: 78:d5:f2:c3:39:d6:50:73:41:48:45:3c:44:34:75: bc:91:a1:3e:32:0a:34:00:08:09:c5:42:fb:ef:fd: c9:e5:38:e5:96:69:03:f3:f0:32:d0:7a:c6:f4:4e: 16:5b:50:93:eb:a9:89:4c:92:8f:d9:1a:7f:8b:1a: c9:69:6d:5f:35:ae:91:66:34:a7:0c:e1:c1:09:a6: 1d:50:ad:71:84:6d:10:d5:4a:7b:80:39:7c:20:fb: 4b:98:46:fd:e8:3c:0f:36:3c:ba:07:1f:c9:98:05: 7e:c8:4b:3c:7b:9c:8b:eb:97:fd:ef:38:40:d4:4e: 04:45:ae:56:0a:98:02:3c:f1:23:7f:0e:cb:75:10: 36:45:52:a5:b7:d3:27:be:ba:dd:29:2d:a6:59:96: 62:4d:da:aa:ea:31:61:97:4b:d6:09:d8:d0:e9:fe: 4a:8b:72:75:8f:48:30:df:9d:c6:96:a7:b6:87:0e: 23:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:AC:5C:25:B6:BC:02:F1:FF:4D:0A:71:E4:F3:99:89:DC:61:AE:B3 X509v3 Authority Key Identifier: keyid:2F:8B:EF:48:3A:41:8A:E1:C0:31:23:08:18:6E:F4:CD:7B:24:66:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4vvSDpBiuHAMSMIGG70zXskZuU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:02:25:3f:35:a4:9e:a3:bd:ee:dd:de:c0:2c:2d:c6:27:c7: c0:fe:5b:58:0d:74:df:5a:6e:d3:0a:06:17:a0:0e:72:c9:f1: 9f:c2:75:dc:8e:39:dc:fc:1a:ca:68:6b:5d:55:fb:a7:db:54: f6:9e:17:3d:12:bc:28:15:59:ce:74:d4:d6:26:57:f8:f7:f6: 22:9e:1c:bb:9e:9d:de:7c:b5:23:3e:3d:96:5c:84:26:a8:05: ac:88:bd:f2:62:55:b5:7c:9f:dd:d9:b3:41:d6:0d:d3:92:da: 61:49:3d:df:b9:4e:30:3d:c9:77:14:4c:15:6e:b8:e5:73:99: 59:c4:e4:e4:f7:92:c5:3c:08:dd:db:7d:d3:41:12:5b:d1:2b: 15:18:c4:e9:40:0d:81:94:f2:eb:1d:51:43:f1:5d:85:25:7d: 29:45:86:c6:eb:a5:a5:34:10:18:eb:02:f7:ab:18:0f:e6:e3: 30:3c:be:c4:c0:f7:92:ae:e6:d3:4a:31:95:b1:eb:eb:f1:b0: 60:ed:ea:e0:73:8a:b7:a3:b0:ee:bb:db:81:e6:fb:a0:9d:2b: 04:e8:70:3f:96:4f:ba:44:6a:1a:9d:1a:8b:cb:82:55:15:7b: be:1e:91:ba:6f:dd:f3:30:e8:ca:1e:e3:50:0a:62:0a:d8:8d: 98:f3:a7:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAicwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU3NTgxMTAvBgNVBAUTKDJGOEJFRjQ4M0E0MThBRTFDMDMxMjMwODE4NkVGNENE N0IyNDY2RTUwHhcNMjUwNTE3MDIxMDIzWhcNMjUwNTI0MDIxMDIzWjAYMRYwFAYD VQQDEw02ODI3ZjAwZi01ZmRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1sQT3gY2nPIGfht+vfhGL6/n0v/6+Cas5G/U8KOOLr2Tp2gQxzkSDMRkstZi jcXdW8+jWnjpfJTk2rNpPLr49r1oWICz8mjRUPV41fLDOdZQc0FIRTxENHW8kaE+ Mgo0AAgJxUL77/3J5TjllmkD8/Ay0HrG9E4WW1CT66mJTJKP2Rp/ixrJaW1fNa6R ZjSnDOHBCaYdUK1xhG0Q1Up7gDl8IPtLmEb96DwPNjy6Bx/JmAV+yEs8e5yL65f9 7zhA1E4ERa5WCpgCPPEjfw7LdRA2RVKlt9MnvrrdKS2mWZZiTdqq6jFhl0vWCdjQ 6f5Ki3J1j0gw353Glqe2hw4jMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHisXCW2 vALx/00KceTzmYncYa6zMB8GA1UdIwQYMBaAFC+L70g6QYrhwDEjCBhu9M17JGbl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTc1OC83MUVCRTdDMjJD RDcxMUVEQjAyQjFEMTlDNEY5QUUwMi9MNHZ2U0RwQml1SEFNU01JR0c3MHpYc2ta dVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0w0dnZTRHBCaXVIQU1TTUlHRzcwelhza1p1VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NTc1OC83MUVCRTdDMjJDRDcxMUVEQjAyQjFEMTlDNEY5QUUwMi9MNHZ2U0RwQml1 SEFNU01JR0c3MHpYc2tadVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoAiU/NaSeo73u3d7ALC3GJ8fA/ltYDXTfWm7TCgYXoA5yyfGfwnXc jjnc/BrKaGtdVfun21T2nhc9ErwoFVnOdNTWJlf49/Yinhy7np3efLUjPj2WXIQm qAWsiL3yYlW1fJ/d2bNB1g3TktphST3fuU4wPcl3FEwVbrjlc5lZxOTk95LFPAjd 233TQRJb0SsVGMTpQA2BlPLrHVFD8V2FJX0pRYbG66WlNBAY6wL3qxgP5uMwPL7E wPeSrubTSjGVsevr8bBg7ergc4q3o7Duu9uB5vugnSsE6HA/lk+6RGoanRqLy4JV FXu+HpG6b93zMOjKHuNQCmIK2I2Y86eq -----END CERTIFICATE-----Generated at Sat May 17 15:06:27 2025 by rpki-client