$ rpki-client -vvf rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft File: loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft (raw, json) Hash identifier: n/81GaT6ua9uqjMqrhs8PyJrogCdw0gyZ4KTk4+LwlU= Subject key identifier: 28:60:FA:07:5C:55:A9:EF:C0:CA:EC:43:89:B9:BF:64:7C:8A:09:00 Authority key identifier: 96:82:C2:AB:E2:53:23:58:07:76:B1:D0:E2:75:D2:FD:2D:69:7E:B6 Certificate issuer: /CN=A91514B1/serialNumber=9682C2ABE25323580776B1D0E275D2FD2D697EB6 Certificate serial: 0550 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft Manifest number: 0539 Signing time: Wed 14 May 2025 23:35:10 +0000 Manifest this update: Wed 14 May 2025 23:35:09 +0000 Manifest next update: Wed 21 May 2025 23:35:09 +0000 Files and hashes: 1: loLCq-JTI1gHdrHQ4nXS_S1pfrY.crl (hash: rMr8E701+z9FF+tdab05Mur0mpg8T0UWDvQTERynfjo=) 2: AF0A3F14178911EC876F5F50C4F9AE02.roa (hash: IVU27JRYWuBmIt6QcWFMqPFM6vDpf9nhIJBTc75GYY0=) 3: F1C7A044D91E11EFAD3C7613C4F9AE02.roa (hash: iDEEL9U9FxQCZ93LBYj286NgN76ygoYjLl0M4z8SPpI=) 4: D3D36BE0271011ECA0D7D95AC4F9AE02.roa (hash: U7esX+0iuEFV+x7WiXgxLOpS83nYnKPDWOfbwdSRies=) 5: AE8BB766178911EC876F5F50C4F9AE02.roa (hash: OD4QLqvF0E7NjniUYIqO9yXt+jiElu9IZS+rh6A1NUw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.crl rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 23:35:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1360 (0x550) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91514B1, serialNumber=9682C2ABE25323580776B1D0E275D2FD2D697EB6 Validity Not Before: May 14 23:35:09 2025 GMT Not After : May 21 23:35:09 2025 GMT Subject: CN=682528ae-1645 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:23:13:c5:07:05:92:2a:6e:15:b5:b1:32:a9: 5d:92:0f:58:47:90:47:4b:fe:34:de:fd:8f:03:c2: e1:7f:6e:30:e2:dc:48:48:6f:6e:4b:c0:ef:04:03: 2c:4d:02:68:66:41:a5:f5:89:05:62:73:6b:30:1f: 8e:1b:64:7c:cc:30:ce:0a:59:53:69:37:c5:ad:8a: 23:09:61:50:45:52:9e:f0:88:bd:81:6c:4a:48:c4: 98:1e:80:87:ca:34:1f:4e:8e:2c:af:b6:f9:cc:9b: 47:77:cf:8e:08:80:7d:24:b9:e2:84:2c:59:63:de: 11:e1:f7:d9:54:82:76:7a:a9:18:5e:c9:13:53:00: b0:7e:97:d9:12:35:16:67:95:12:dd:80:30:b2:5b: 62:25:ee:bc:f6:cc:3c:44:d8:ac:fa:6e:3c:37:8b: a4:4b:6a:ce:79:7d:f1:4d:bd:14:4c:17:bf:36:08: 9d:2c:7d:e2:7d:29:e8:69:89:1a:92:b0:cb:79:c4: 15:e2:f0:63:e5:5b:25:a8:d3:66:b3:ee:b2:02:41: e2:78:4d:f4:7a:22:87:da:92:52:70:7f:b5:ee:15: 2d:00:c2:43:a0:7a:8d:6f:46:29:55:7d:1b:c9:59: f6:36:12:35:10:0e:79:4e:95:13:a6:ba:31:3f:94: 9c:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:60:FA:07:5C:55:A9:EF:C0:CA:EC:43:89:B9:BF:64:7C:8A:09:00 X509v3 Authority Key Identifier: keyid:96:82:C2:AB:E2:53:23:58:07:76:B1:D0:E2:75:D2:FD:2D:69:7E:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:9c:24:43:71:2f:18:c5:33:2f:d4:1b:b3:b7:05:05:80:50: c2:cb:cc:5b:cc:01:ce:8f:d8:09:0a:e9:1e:72:e6:7a:08:a8: 60:76:34:d6:91:5f:a1:2b:2c:ad:41:4a:83:ab:d0:ef:b3:1e: 10:68:25:4c:de:37:ac:a3:52:b8:e9:66:b7:57:6e:e9:a3:cb: cc:1b:17:e0:37:10:f5:83:b6:e7:78:42:1c:14:95:f2:4f:0f: ec:5c:a3:28:f5:65:dd:7d:18:b2:b1:74:c1:01:89:86:42:63: cc:be:74:ad:45:5a:74:f7:23:34:0e:6c:94:c6:6e:77:16:1e: 64:d0:89:1f:9f:5a:04:a1:b5:16:a6:3b:f3:f2:19:75:43:d0: e9:03:33:61:9b:57:e9:d2:3c:85:9c:c9:8f:3e:14:bf:be:6b: cd:96:13:56:fb:90:8a:45:62:56:bc:ef:6e:41:63:53:37:06: 6c:f3:fd:42:d3:2b:d7:bc:af:81:40:ad:23:d4:ae:31:5a:8f: a6:cd:b1:96:61:91:f9:14:10:f6:c2:a1:63:59:22:0c:4b:17: de:a2:57:04:d4:b2:88:4d:58:11:03:18:ad:d2:57:f1:13:43: 88:4e:91:d3:b7:7d:6f:11:00:17:3b:db:6a:ce:0a:37:8a:4f: df:3d:ea:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE0QjExMTAvBgNVBAUTKDk2ODJDMkFCRTI1MzIzNTgwNzc2QjFEMEUyNzVEMkZE MkQ2OTdFQjYwHhcNMjUwNTE0MjMzNTA5WhcNMjUwNTIxMjMzNTA5WjAYMRYwFAYD VQQDEw02ODI1MjhhZS0xNjQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4SMTxQcFkipuFbWxMqldkg9YR5BHS/403v2PA8Lhf24w4txISG9uS8DvBAMs TQJoZkGl9YkFYnNrMB+OG2R8zDDOCllTaTfFrYojCWFQRVKe8Ii9gWxKSMSYHoCH yjQfTo4sr7b5zJtHd8+OCIB9JLnihCxZY94R4ffZVIJ2eqkYXskTUwCwfpfZEjUW Z5US3YAwsltiJe689sw8RNis+m48N4ukS2rOeX3xTb0UTBe/NgidLH3ifSnoaYka krDLecQV4vBj5VslqNNms+6yAkHieE30eiKH2pJScH+17hUtAMJDoHqNb0YpVX0b yVn2NhI1EA55TpUTproxP5ScrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFChg+gdc VanvwMrsQ4m5v2R8igkAMB8GA1UdIwQYMBaAFJaCwqviUyNYB3ax0OJ10v0taX62 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTRCMS83QTg4NjRBQ0ZC RTQxMUVCODJCNjI2NEZDNEY5QUUwMi9sb0xDcS1KVEkxZ0hkckhRNG5YU19TMXBm clkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xvTENxLUpUSTFnSGRySFE0blhTX1MxcGZyWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTRCMS83QTg4NjRBQ0ZCRTQxMUVCODJCNjI2NEZDNEY5QUUwMi9sb0xDcS1KVEkx Z0hkckhRNG5YU19TMXBmclkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/nCRDcS8YxTMv1BuztwUFgFDCy8xbzAHOj9gJCukecuZ6CKhgdjTW kV+hKyytQUqDq9Dvsx4QaCVM3jeso1K46Wa3V27po8vMGxfgNxD1g7bneEIcFJXy Tw/sXKMo9WXdfRiysXTBAYmGQmPMvnStRVp09yM0DmyUxm53Fh5k0Ikfn1oEobUW pjvz8hl1Q9DpAzNhm1fp0jyFnMmPPhS/vmvNlhNW+5CKRWJWvO9uQWNTNwZs8/1C 0yvXvK+BQK0j1K4xWo+mzbGWYZH5FBD2wqFjWSIMSxfeolcE1LKITVgRAxit0lfx E0OITpHTt31vEQAXO9tqzgo3ik/fPep3 -----END CERTIFICATE-----Generated at Fri May 16 22:26:25 2025 by rpki-client