$ rpki-client -vvf rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft File: lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft (raw, json) Hash identifier: 83wPdhLwoh/ORX2hCRTvMWA4EseBm+ADpPfnue4UgAk= Subject key identifier: 0E:D2:81:99:B0:60:51:8D:FE:35:CA:EA:D8:1F:2C:C7:EA:EF:2B:1D Authority key identifier: 96:4D:08:72:7D:AE:DA:C7:40:37:AB:9C:43:A5:08:BA:DB:CF:DA:FD Certificate issuer: /CN=A914E0FE/serialNumber=964D08727DAEDAC74037AB9C43A508BADBCFDAFD Certificate serial: 5B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lk0Icn2u2sdAN6ucQ6UIutvP2v0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft Manifest number: 59 Signing time: Sun 11 May 2025 05:56:10 +0000 Manifest this update: Sun 11 May 2025 05:56:09 +0000 Manifest next update: Sun 18 May 2025 05:56:09 +0000 Files and hashes: 1: lk0Icn2u2sdAN6ucQ6UIutvP2v0.crl (hash: KJ2v/hpmduuSB427Bvj3oavgXSI4Cy5rXdNHcaVuQL8=) 2: 8DBD0EBCABCA11EF984C832AC4F9AE02.roa (hash: 8Dmn7khqMXjuTQiezguWUTsHSU/EM/tHFNVuXGCGR0w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.crl rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lk0Icn2u2sdAN6ucQ6UIutvP2v0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 05:56:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 91 (0x5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E0FE, serialNumber=964D08727DAEDAC74037AB9C43A508BADBCFDAFD Validity Not Before: May 11 05:56:09 2025 GMT Not After : May 18 05:56:09 2025 GMT Subject: CN=68203bf9-98a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:89:b5:3f:46:bd:f4:c9:5e:22:32:3f:79:87: c2:b9:66:70:3c:0d:df:42:7f:99:0b:dd:cf:1b:f6: f4:ff:dd:57:f9:d8:13:35:0f:46:90:7c:76:9e:fa: 77:70:52:fc:ac:99:d3:f7:d3:59:89:17:59:a6:53: cb:b3:bd:e7:99:9b:1f:90:24:ec:65:69:b1:23:f0: a1:e3:bc:05:ae:e8:0a:58:0c:57:9c:8c:19:57:f0: 71:95:fa:92:8c:6a:cd:a5:76:38:8f:20:e5:d3:ae: bf:76:f4:1d:25:85:87:4d:15:c1:1d:63:42:f0:0b: e5:fa:1b:46:91:97:be:0c:db:08:ea:12:81:8b:0f: ac:63:bd:18:10:cb:d9:94:74:09:cc:10:17:1c:31: 79:b1:f1:56:86:0f:dc:1e:46:63:af:aa:4b:2a:0e: 88:bc:72:2a:ea:0f:ed:e4:db:82:3e:1f:75:35:ae: 06:2e:15:97:5f:2b:ed:ed:46:88:63:69:11:36:f0: 1f:46:e7:96:62:04:78:40:8e:cf:9f:ef:79:a9:c3: 99:f2:9e:e5:b1:c1:b4:63:7f:10:83:05:90:23:66: 56:c4:b6:d7:ae:bd:61:fb:28:93:ba:08:a0:16:82: a7:96:ba:fa:d3:57:21:95:60:7b:38:80:ff:dd:20: 30:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:D2:81:99:B0:60:51:8D:FE:35:CA:EA:D8:1F:2C:C7:EA:EF:2B:1D X509v3 Authority Key Identifier: keyid:96:4D:08:72:7D:AE:DA:C7:40:37:AB:9C:43:A5:08:BA:DB:CF:DA:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lk0Icn2u2sdAN6ucQ6UIutvP2v0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:59:a9:e4:74:79:5a:00:ac:a6:95:74:05:a8:7e:af:14:1c: d5:64:68:c9:a1:96:b1:1e:18:99:eb:1d:13:fa:59:08:0b:94: 1b:6b:4b:97:49:38:2e:ab:67:c1:b5:81:c4:e8:e0:f0:35:d1: 0e:b9:5d:0f:69:a8:f9:a5:c9:22:6a:ce:8d:77:f9:8b:a6:4d: 7a:77:ee:50:6e:bc:a9:a5:df:1a:ca:91:87:00:e9:5e:88:3f: 6a:a0:fb:6f:45:4a:e3:a3:e7:6d:e3:e1:91:ad:a7:13:f2:63: d1:58:a3:03:89:de:ab:73:84:d9:1e:9d:27:f2:07:4b:77:02: 09:91:2b:ac:75:f3:79:29:a9:c9:6d:28:c4:8c:6b:55:b6:92: a5:6c:f1:6e:92:32:97:ef:b0:60:90:63:87:04:a5:79:96:1e: 35:72:5e:d7:30:a2:1b:74:77:88:d2:6c:1e:02:2d:94:9a:d2: e7:88:c8:b2:94:b8:8f:b4:f5:1a:07:db:5b:9f:44:bf:ef:54: 3f:b6:a4:4c:d6:90:b8:4d:f8:92:fc:2a:af:f0:e1:55:cd:fb: 63:6f:e4:25:d5:3f:dc:c8:9d:ff:8e:c8:b6:a8:46:73:4b:74: 08:c4:1e:29:19:80:e9:6e:4d:40:e7:5e:26:ba:d9:27:60:59: d3:9d:00:ed -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 RTBGRTExMC8GA1UEBRMoOTY0RDA4NzI3REFFREFDNzQwMzdBQjlDNDNBNTA4QkFE QkNGREFGRDAeFw0yNTA1MTEwNTU2MDlaFw0yNTA1MTgwNTU2MDlaMBgxFjAUBgNV BAMTDTY4MjAzYmY5LTk4YTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1ibU/Rr30yV4iMj95h8K5ZnA8Dd9Cf5kL3c8b9vT/3Vf52BM1D0aQfHae+ndw UvysmdP301mJF1mmU8uzveeZmx+QJOxlabEj8KHjvAWu6ApYDFecjBlX8HGV+pKM as2ldjiPIOXTrr929B0lhYdNFcEdY0LwC+X6G0aRl74M2wjqEoGLD6xjvRgQy9mU dAnMEBccMXmx8VaGD9weRmOvqksqDoi8cirqD+3k24I+H3U1rgYuFZdfK+3tRohj aRE28B9G55ZiBHhAjs+f73mpw5nynuWxwbRjfxCDBZAjZlbEtteuvWH7KJO6CKAW gqeWuvrTVyGVYHs4gP/dIDCzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUDtKBmbBg UY3+Ncrq2B8sx+rvKx0wHwYDVR0jBBgwFoAUlk0Icn2u2sdAN6ucQ6UIutvP2v0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRFMEZFLzJGMkI2RkUyQUJD QTExRUZBOTk0RDEyOUM0RjlBRTAyL2xrMEljbjJ1MnNkQU42dWNRNlVJdXR2UDJ2 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvbGswSWNuMnUyc2RBTjZ1Y1E2VUl1dHZQMnYwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRF MEZFLzJGMkI2RkUyQUJDQTExRUZBOTk0RDEyOUM0RjlBRTAyL2xrMEljbjJ1MnNk QU42dWNRNlVJdXR2UDJ2MC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIFZqeR0eVoArKaVdAWofq8UHNVkaMmhlrEeGJnrHRP6WQgLlBtrS5dJ OC6rZ8G1gcTo4PA10Q65XQ9pqPmlySJqzo13+YumTXp37lBuvKml3xrKkYcA6V6I P2qg+29FSuOj523j4ZGtpxPyY9FYowOJ3qtzhNkenSfyB0t3AgmRK6x183kpqclt KMSMa1W2kqVs8W6SMpfvsGCQY4cEpXmWHjVyXtcwoht0d4jSbB4CLZSa0ueIyLKU uI+09RoH21ufRL/vVD+2pEzWkLhN+JL8Kq/w4VXN+2Nv5CXVP9zInf+OyLaoRnNL dAjEHikZgOluTUDnXia62SdgWdOdAO0= -----END CERTIFICATE-----Generated at Mon May 12 04:32:57 2025 by rpki-client