$ rpki-client -vvf rpki.apnic.net/member_repository/A913A7E7/6B923544E6EA11EC99942667C4F9AE02/5luo-mVwW4879u3NnQ2xD9rcuRY.mft File: 5luo-mVwW4879u3NnQ2xD9rcuRY.mft (raw, json) Hash identifier: qVAxN9e+eGmGlPsuTZf5G+9J8eXtPAuktktfJcGvq2U= Subject key identifier: 87:3C:64:BC:A6:1B:C8:9F:E3:8A:07:B3:86:50:75:FC:A8:C6:C7:E0 Authority key identifier: E6:5B:A8:FA:65:70:5B:8F:3B:F6:ED:CD:9D:0D:B1:0F:DA:DC:B9:16 Certificate issuer: /CN=A913A7E7/serialNumber=E65BA8FA65705B8F3BF6EDCD9D0DB10FDADCB916 Certificate serial: 02F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5luo-mVwW4879u3NnQ2xD9rcuRY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A7E7/6B923544E6EA11EC99942667C4F9AE02/5luo-mVwW4879u3NnQ2xD9rcuRY.mft Manifest number: 02EC Signing time: Sun 29 Jun 2025 00:50:42 +0000 Manifest this update: Sun 29 Jun 2025 00:50:41 +0000 Manifest next update: Sun 06 Jul 2025 00:50:41 +0000 Files and hashes: 1: 5luo-mVwW4879u3NnQ2xD9rcuRY.crl (hash: TKKuBi3+bo8tHfCjnkx8yBXnB/TvrvaslUS1Ok8gr14=) 2: 35C2303AE6FA11EC87D3034DC4F9AE02.roa (hash: xwFfQ62VDe7rBIlaeVRpIKtxnY1xzIwaQ+FoK7Z2AtU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A7E7/6B923544E6EA11EC99942667C4F9AE02/5luo-mVwW4879u3NnQ2xD9rcuRY.crl rsync://rpki.apnic.net/member_repository/A913A7E7/6B923544E6EA11EC99942667C4F9AE02/5luo-mVwW4879u3NnQ2xD9rcuRY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5luo-mVwW4879u3NnQ2xD9rcuRY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 00:50:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 753 (0x2f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A7E7, serialNumber=E65BA8FA65705B8F3BF6EDCD9D0DB10FDADCB916 Validity Not Before: Jun 29 00:50:41 2025 GMT Not After : Jul 6 00:50:41 2025 GMT Subject: CN=68608de1-f0a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:6a:5a:22:cb:3f:1d:21:bf:94:af:ff:75:09: 77:bd:54:47:0d:97:63:03:68:9f:63:2a:fb:d0:c4: be:f5:5f:71:68:d1:b0:54:d7:5d:ac:05:3f:51:d3: c3:39:c0:19:72:e3:1f:4f:05:f2:73:82:18:a2:14: 6e:dc:e9:92:d7:71:51:13:b6:3d:43:29:7f:40:4c: c4:a8:e9:12:95:83:8f:95:28:b9:12:69:a7:65:bc: 32:3f:ee:8d:e8:43:64:a7:d0:e5:b0:81:6a:47:bd: bd:54:8d:92:8f:13:03:f1:90:e2:10:05:87:37:fa: 75:de:96:0b:60:aa:d1:17:1e:f4:11:14:45:d4:14: d8:dd:7b:91:33:f7:ae:96:c2:e4:3e:80:dc:99:ae: c7:75:ba:c6:e1:b0:eb:50:e2:dd:6d:5d:05:62:f7: 23:bc:92:ad:b4:f8:92:1b:63:6e:44:78:f3:3a:dc: f7:99:20:32:e3:cc:c1:3b:02:47:4c:5b:f1:30:0d: 3a:a4:95:42:71:74:b1:4b:7f:8b:29:ab:76:a9:44: c0:8f:33:cd:68:49:4e:13:21:3e:b9:e9:a7:0c:cb: 62:25:e2:22:07:fd:f8:d8:54:85:c0:d9:7e:aa:8d: ac:c8:9e:f9:8a:f9:45:b0:ba:bd:dd:fd:92:81:4e: 60:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:3C:64:BC:A6:1B:C8:9F:E3:8A:07:B3:86:50:75:FC:A8:C6:C7:E0 X509v3 Authority Key Identifier: keyid:E6:5B:A8:FA:65:70:5B:8F:3B:F6:ED:CD:9D:0D:B1:0F:DA:DC:B9:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A7E7/6B923544E6EA11EC99942667C4F9AE02/5luo-mVwW4879u3NnQ2xD9rcuRY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5luo-mVwW4879u3NnQ2xD9rcuRY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A7E7/6B923544E6EA11EC99942667C4F9AE02/5luo-mVwW4879u3NnQ2xD9rcuRY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:45:9d:a6:83:80:ee:3f:54:a5:dd:f0:9f:ea:20:71:c6:15: d2:78:6d:14:0f:f7:f3:74:1e:9f:6b:2d:e6:9e:6c:e4:84:a0: d6:6a:98:8e:ac:33:12:12:36:9d:53:0b:c9:45:ea:2c:97:eb: e6:cf:a9:e2:2d:df:f5:62:40:1d:63:b3:05:ed:74:89:32:be: 86:92:9d:96:30:c6:dd:af:e3:19:da:53:07:75:1d:ce:cb:d5: 68:a0:bd:4a:76:32:c7:92:7e:f1:86:56:9b:30:45:a8:ee:9a: e2:16:09:71:e4:04:bf:dc:2b:e4:e8:13:77:04:9a:eb:bd:ca: 9a:75:1c:c4:ff:cb:b7:a8:ee:27:7c:a8:6d:db:2f:ab:db:01: 88:ee:d4:83:6a:e3:b7:20:a8:4d:d0:da:de:f4:07:ed:7e:aa: da:4a:fa:e3:d9:7a:c5:82:ac:3c:d6:9a:8a:8a:2b:e1:56:a1: aa:f9:2a:00:ae:e6:5c:b5:09:d1:49:00:bc:15:ae:87:9f:41: 15:9e:02:4a:21:34:a1:18:9b:9f:09:8c:0b:e8:e9:71:8a:71: a1:06:8f:bc:8e:f2:99:81:4a:c5:93:2a:f1:b5:f8:3d:48:6e: 85:7d:fe:ff:52:95:92:c3:d4:d6:df:58:dd:67:77:31:7f:d6: e3:bf:71:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAvEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E3RTcxMTAvBgNVBAUTKEU2NUJBOEZBNjU3MDVCOEYzQkY2RURDRDlEMERCMTBG REFEQ0I5MTYwHhcNMjUwNjI5MDA1MDQxWhcNMjUwNzA2MDA1MDQxWjAYMRYwFAYD VQQDEw02ODYwOGRlMS1mMGExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo2paIss/HSG/lK//dQl3vVRHDZdjA2ifYyr70MS+9V9xaNGwVNddrAU/UdPD OcAZcuMfTwXyc4IYohRu3OmS13FRE7Y9Qyl/QEzEqOkSlYOPlSi5EmmnZbwyP+6N 6ENkp9DlsIFqR729VI2SjxMD8ZDiEAWHN/p13pYLYKrRFx70ERRF1BTY3XuRM/eu lsLkPoDcma7HdbrG4bDrUOLdbV0FYvcjvJKttPiSG2NuRHjzOtz3mSAy48zBOwJH TFvxMA06pJVCcXSxS3+LKat2qUTAjzPNaElOEyE+uemnDMtiJeIiB/342FSFwNl+ qo2syJ75ivlFsLq93f2SgU5gtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIc8ZLym G8if44oHs4ZQdfyoxsfgMB8GA1UdIwQYMBaAFOZbqPplcFuPO/btzZ0NsQ/a3LkW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTdFNy82QjkyMzU0NEU2 RUExMUVDOTk5NDI2NjdDNEY5QUUwMi81bHVvLW1Wd1c0ODc5dTNOblEyeEQ5cmN1 UlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVsdW8tbVZ3VzQ4Nzl1M05uUTJ4RDlyY3VSWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTdFNy82QjkyMzU0NEU2RUExMUVDOTk5NDI2NjdDNEY5QUUwMi81bHVvLW1Wd1c0 ODc5dTNOblEyeEQ5cmN1UlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRRZ2mg4DuP1Sl3fCf6iBxxhXSeG0UD/fzdB6fay3mnmzkhKDWapiO rDMSEjadUwvJReosl+vmz6niLd/1YkAdY7MF7XSJMr6Gkp2WMMbdr+MZ2lMHdR3O y9VooL1KdjLHkn7xhlabMEWo7priFglx5AS/3Cvk6BN3BJrrvcqadRzE/8u3qO4n fKht2y+r2wGI7tSDauO3IKhN0Nre9AftfqraSvrj2XrFgqw81pqKiivhVqGq+SoA ruZctQnRSQC8Fa6Hn0EVngJKITShGJufCYwL6OlxinGhBo+8jvKZgUrFkyrxtfg9 SG6Fff7/UpWSw9TW31jdZ3cxf9bjv3Fp -----END CERTIFICATE-----Generated at Mon Jun 30 16:11:37 2025 by rpki-client