$ rpki-client -vvf rpki.apnic.net/member_repository/A9155688/9D5629A0814211EBBD8C4284C4F9AE02/luWqcIJLjRPdz-YfzJogytZeYME.mft File: luWqcIJLjRPdz-YfzJogytZeYME.mft (raw, json) Hash identifier: AC+VUdc5bKO3XTsjDMr8OilV6urMAHD8G5RjtZtNM5A= Subject key identifier: 30:F2:31:8C:72:09:B4:27:65:BF:3A:4B:89:80:B7:65:64:EC:31:6C Authority key identifier: 96:E5:AA:70:82:4B:8D:13:DD:CF:E6:1F:CC:9A:20:CA:D6:5E:60:C1 Certificate issuer: /CN=A9155688/serialNumber=96E5AA70824B8D13DDCFE61FCC9A20CAD65E60C1 Certificate serial: 0667 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/luWqcIJLjRPdz-YfzJogytZeYME.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155688/9D5629A0814211EBBD8C4284C4F9AE02/luWqcIJLjRPdz-YfzJogytZeYME.mft Manifest number: 065F Signing time: Wed 14 May 2025 22:31:19 +0000 Manifest this update: Wed 14 May 2025 22:31:19 +0000 Manifest next update: Wed 21 May 2025 22:31:19 +0000 Files and hashes: 1: luWqcIJLjRPdz-YfzJogytZeYME.crl (hash: WuZgIqyGirx0EqgLjf2+hO5mwMnziYsz7cCzz7zpKYo=) 2: 6656B366814C11EB913AEC78C4F9AE02.roa (hash: hWmIjVl3wq2WAFI85MCQWSOZgmGgPc2bb2Ktcia7bs0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155688/9D5629A0814211EBBD8C4284C4F9AE02/luWqcIJLjRPdz-YfzJogytZeYME.crl rsync://rpki.apnic.net/member_repository/A9155688/9D5629A0814211EBBD8C4284C4F9AE02/luWqcIJLjRPdz-YfzJogytZeYME.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/luWqcIJLjRPdz-YfzJogytZeYME.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 22:31:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1639 (0x667) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155688, serialNumber=96E5AA70824B8D13DDCFE61FCC9A20CAD65E60C1 Validity Not Before: May 14 22:31:19 2025 GMT Not After : May 21 22:31:19 2025 GMT Subject: CN=682519b7-5a1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:19:3a:d6:06:38:7c:6d:d0:9c:e6:61:26:ae: 7b:db:75:02:29:ed:90:13:6b:4f:1d:40:48:ae:e4: 78:1c:f1:91:71:88:aa:92:a1:e7:bc:24:9d:6f:3c: 1d:d2:61:a0:b6:f3:32:93:b5:75:39:31:3c:36:d9: 24:f5:01:5d:7f:9f:c0:2c:21:bc:ac:f8:63:21:a9: 25:76:56:80:d9:70:0d:7e:8e:8d:cc:6e:76:8d:1b: f8:e9:f3:bf:cc:dc:d5:d3:ce:7b:cf:90:50:7c:58: a4:10:04:86:62:f9:7b:d4:c0:91:cf:a5:f1:51:dd: 2d:37:51:2d:a4:5b:36:28:cc:eb:b5:e7:44:1e:17: 8c:b0:1d:51:4b:49:50:5d:6e:ed:54:39:9a:86:58: 44:ff:fb:78:94:d7:8c:90:51:2c:c9:18:35:9a:5c: 28:8c:e8:77:b2:07:96:38:47:7b:b5:0a:e2:74:bc: 93:bd:3e:27:70:cc:58:ea:70:18:57:e7:52:83:1b: 78:d9:81:72:3d:9b:09:4f:b1:93:50:e7:96:f7:e4: 51:ee:c0:16:21:ce:74:1a:24:fb:ac:28:75:2f:61: c6:c3:22:19:bf:69:f8:34:d8:53:12:64:16:b9:c1: 74:b0:c9:d0:1f:90:9c:a0:38:9e:4f:4a:64:e1:e5: 68:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:F2:31:8C:72:09:B4:27:65:BF:3A:4B:89:80:B7:65:64:EC:31:6C X509v3 Authority Key Identifier: keyid:96:E5:AA:70:82:4B:8D:13:DD:CF:E6:1F:CC:9A:20:CA:D6:5E:60:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155688/9D5629A0814211EBBD8C4284C4F9AE02/luWqcIJLjRPdz-YfzJogytZeYME.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/luWqcIJLjRPdz-YfzJogytZeYME.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155688/9D5629A0814211EBBD8C4284C4F9AE02/luWqcIJLjRPdz-YfzJogytZeYME.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:3e:45:58:ce:f9:e5:d2:c3:0d:17:bd:f6:fb:94:10:22:3a: 35:3c:14:66:ac:38:00:dd:99:c8:cd:79:64:dd:3c:de:b2:fc: 20:b4:1c:64:e4:bb:c8:a7:8d:27:b6:57:0c:fb:e2:e8:18:d1: 13:62:56:24:a5:2a:39:ff:93:6c:63:72:45:24:f0:4d:1c:9e: df:d4:37:e9:c4:2e:83:69:11:89:99:ab:88:d9:64:80:f0:0f: a2:02:0e:41:6c:32:d3:40:1e:da:9b:9e:1e:64:a9:f0:42:41: e0:97:25:35:59:b6:f8:14:7f:2f:cc:d6:26:df:fc:d8:58:53: ac:23:95:80:de:f1:a0:ba:1d:38:82:4d:b0:71:f8:34:8c:8d: 7f:be:5c:df:e9:6a:d1:a8:86:9a:8e:28:49:8c:80:2f:59:2d: 1b:7e:b9:7f:f3:2a:3a:83:df:92:0e:08:d9:18:3b:b0:7f:8c: 4d:6c:b0:38:2d:3a:45:f3:b0:e7:e8:31:73:97:ea:51:08:bd: 60:ab:cf:75:06:53:e9:9b:8f:8a:25:1f:19:c1:67:12:88:83: d0:e3:ae:52:df:9e:05:75:01:bd:26:7b:34:b6:c7:8f:b8:5a: 02:c5:55:ef:24:5d:f2:5f:e5:dc:19:10:22:77:8e:7a:74:a9: 0d:f9:d8:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU2ODgxMTAvBgNVBAUTKDk2RTVBQTcwODI0QjhEMTNERENGRTYxRkNDOUEyMENB RDY1RTYwQzEwHhcNMjUwNTE0MjIzMTE5WhcNMjUwNTIxMjIzMTE5WjAYMRYwFAYD VQQDEw02ODI1MTliNy01YTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArRk61gY4fG3QnOZhJq5723UCKe2QE2tPHUBIruR4HPGRcYiqkqHnvCSdbzwd 0mGgtvMyk7V1OTE8Ntkk9QFdf5/ALCG8rPhjIakldlaA2XANfo6NzG52jRv46fO/ zNzV0857z5BQfFikEASGYvl71MCRz6XxUd0tN1EtpFs2KMzrtedEHheMsB1RS0lQ XW7tVDmahlhE//t4lNeMkFEsyRg1mlwojOh3sgeWOEd7tQridLyTvT4ncMxY6nAY V+dSgxt42YFyPZsJT7GTUOeW9+RR7sAWIc50GiT7rCh1L2HGwyIZv2n4NNhTEmQW ucF0sMnQH5CcoDieT0pk4eVonwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDDyMYxy CbQnZb86S4mAt2Vk7DFsMB8GA1UdIwQYMBaAFJblqnCCS40T3c/mH8yaIMrWXmDB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTY4OC85RDU2MjlBMDgx NDIxMUVCQkQ4QzQyODRDNEY5QUUwMi9sdVdxY0lKTGpSUGR6LVlmekpvZ3l0WmVZ TUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x1V3FjSUpMalJQZHotWWZ6Sm9neXRaZVlNRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTY4OC85RDU2MjlBMDgxNDIxMUVCQkQ4QzQyODRDNEY5QUUwMi9sdVdxY0lKTGpS UGR6LVlmekpvZ3l0WmVZTUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCPkVYzvnl0sMNF732+5QQIjo1PBRmrDgA3ZnIzXlk3TzesvwgtBxk 5LvIp40ntlcM++LoGNETYlYkpSo5/5NsY3JFJPBNHJ7f1DfpxC6DaRGJmauI2WSA 8A+iAg5BbDLTQB7am54eZKnwQkHglyU1Wbb4FH8vzNYm3/zYWFOsI5WA3vGguh04 gk2wcfg0jI1/vlzf6WrRqIaajihJjIAvWS0bfrl/8yo6g9+SDgjZGDuwf4xNbLA4 LTpF87Dn6DFzl+pRCL1gq891BlPpm4+KJR8ZwWcSiIPQ465S354FdQG9Jns0tseP uFoCxVXvJF3yX+XcGRAid456dKkN+dgb -----END CERTIFICATE-----Generated at Fri May 16 06:17:35 2025 by rpki-client