$ rpki-client -vvf rpki.apnic.net/member_repository/A915B551/5AB1920216C511F08815F46EC4F9AE02/L904BNZFjq8cs5F7XjMvulxxX5E.mft File: L904BNZFjq8cs5F7XjMvulxxX5E.mft (raw, json) Hash identifier: NisAhfZsdaWgV0CqBs5LLyvbc/gGBTtT/OPaxvKmPu4= Subject key identifier: FE:2C:FB:68:79:0E:78:BD:33:D2:F6:5B:D2:75:B2:89:6E:FB:98:D9 Authority key identifier: 2F:DD:38:04:D6:45:8E:AF:1C:B3:91:7B:5E:33:2F:BA:5C:71:5F:91 Certificate issuer: /CN=A915B551/serialNumber=2FDD3804D6458EAF1CB3917B5E332FBA5C715F91 Certificate serial: 12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L904BNZFjq8cs5F7XjMvulxxX5E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B551/5AB1920216C511F08815F46EC4F9AE02/L904BNZFjq8cs5F7XjMvulxxX5E.mft Manifest number: 11 Signing time: Sun 11 May 2025 06:47:07 +0000 Manifest this update: Sun 11 May 2025 06:47:06 +0000 Manifest next update: Sun 18 May 2025 06:47:06 +0000 Files and hashes: 1: L904BNZFjq8cs5F7XjMvulxxX5E.crl (hash: vpqA32kvCWv/6P5976ef8oQKdanDRiY/Fq6BuPIvWm4=) 2: DE917E7016C511F085B4FF6FC4F9AE02.roa (hash: gTUMCdfGUWrs1q6ayMOBwf36vGkRjWbK2xqTfFcnmzw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B551/5AB1920216C511F08815F46EC4F9AE02/L904BNZFjq8cs5F7XjMvulxxX5E.crl rsync://rpki.apnic.net/member_repository/A915B551/5AB1920216C511F08815F46EC4F9AE02/L904BNZFjq8cs5F7XjMvulxxX5E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L904BNZFjq8cs5F7XjMvulxxX5E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18 (0x12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B551, serialNumber=2FDD3804D6458EAF1CB3917B5E332FBA5C715F91 Validity Not Before: May 11 06:47:06 2025 GMT Not After : May 18 06:47:06 2025 GMT Subject: CN=682047ea-97fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:8f:5e:37:66:ae:bb:11:63:e8:43:32:eb:8c: 6b:15:d4:f7:46:37:c6:dd:ac:8f:0b:4e:c0:8e:79: b9:6d:0d:9e:b0:a5:3c:dd:2a:9e:ea:6d:86:e4:28: 8c:88:7c:06:21:e3:b6:49:bf:7f:f6:72:23:a2:48: 0e:8d:e8:35:19:2f:2d:6f:c7:c2:a8:27:34:d0:7e: d4:2f:87:05:16:1f:2f:70:e2:30:c6:96:25:48:58: 76:a3:0c:c9:7c:f4:5e:cd:08:89:11:01:67:b8:65: 27:43:aa:dd:81:29:17:a5:da:89:31:43:c4:8d:47: 72:cb:6d:85:5a:ba:29:8b:ed:5f:5c:05:1d:10:26: 68:b8:0d:b8:03:4b:c3:28:db:02:05:42:ce:02:db: 93:70:b2:28:c6:3e:8d:91:63:c3:32:3a:2c:7a:56: 17:2f:8b:2e:65:2d:8a:59:e8:0d:aa:31:6a:9b:ec: 32:b3:7f:29:f9:35:5d:1e:6a:87:f6:c7:c2:78:e1: a8:2c:4c:72:0c:3e:e2:69:e5:85:fa:69:74:1a:bc: 0f:4c:ea:ee:fe:52:2f:8d:69:4a:24:8c:98:9b:90: 45:25:bc:72:1b:83:f2:91:01:eb:0f:97:1d:bd:cd: 0f:82:a1:af:e4:64:e9:25:cd:c7:b9:40:a7:59:8f: 80:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:2C:FB:68:79:0E:78:BD:33:D2:F6:5B:D2:75:B2:89:6E:FB:98:D9 X509v3 Authority Key Identifier: keyid:2F:DD:38:04:D6:45:8E:AF:1C:B3:91:7B:5E:33:2F:BA:5C:71:5F:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B551/5AB1920216C511F08815F46EC4F9AE02/L904BNZFjq8cs5F7XjMvulxxX5E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L904BNZFjq8cs5F7XjMvulxxX5E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B551/5AB1920216C511F08815F46EC4F9AE02/L904BNZFjq8cs5F7XjMvulxxX5E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:f1:ce:c2:cc:02:74:f1:2f:14:fe:dd:ad:ec:91:e9:4d:b2: 92:c1:41:bd:90:ea:5b:cf:cf:a8:53:1a:5e:02:af:94:2d:f9: 39:a2:d8:0f:e2:48:e7:a6:be:a6:79:4c:14:34:99:c6:37:75: 62:a4:c0:7e:6d:fb:34:1d:d1:b9:d1:ce:5a:64:5e:c3:0b:0e: 5c:ca:46:92:d5:aa:84:f1:99:a9:3c:69:e6:27:65:29:f6:81: 9d:43:db:82:b9:a2:90:95:02:e0:f4:16:d3:41:a5:95:59:48: 68:72:08:7a:fe:c4:65:67:f1:e7:86:f1:91:77:38:2f:63:e9: d9:50:6e:e8:3f:84:ca:11:a6:70:bf:50:64:9c:2b:d8:56:80: a9:95:54:8a:95:ec:81:ee:bf:e2:7c:5d:7b:ff:af:9f:72:fa: e4:c2:0b:0b:67:de:42:9f:9c:38:a1:0a:f5:f3:62:18:f6:2e: e6:e0:11:f5:9d:b3:47:89:df:b6:6e:ea:34:4d:42:62:8f:c1: 9a:77:8f:25:d0:66:f0:4a:13:36:cd:f1:dc:54:4b:58:0f:a5: e5:3f:9f:74:57:57:fb:d6:ea:4a:10:0a:fd:0c:be:72:34:5e: 6b:23:9f:0b:92:95:8f:ab:2c:b1:98:6d:0b:5e:47:32:c8:7a: 49:bc:2b:be -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 QjU1MTExMC8GA1UEBRMoMkZERDM4MDRENjQ1OEVBRjFDQjM5MTdCNUUzMzJGQkE1 QzcxNUY5MTAeFw0yNTA1MTEwNjQ3MDZaFw0yNTA1MTgwNjQ3MDZaMBgxFjAUBgNV BAMTDTY4MjA0N2VhLTk3ZmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDMj143Zq67EWPoQzLrjGsV1PdGN8bdrI8LTsCOebltDZ6wpTzdKp7qbYbkKIyI fAYh47ZJv3/2ciOiSA6N6DUZLy1vx8KoJzTQftQvhwUWHy9w4jDGliVIWHajDMl8 9F7NCIkRAWe4ZSdDqt2BKRel2okxQ8SNR3LLbYVauimL7V9cBR0QJmi4DbgDS8Mo 2wIFQs4C25NwsijGPo2RY8MyOix6Vhcviy5lLYpZ6A2qMWqb7DKzfyn5NV0eaof2 x8J44agsTHIMPuJp5YX6aXQavA9M6u7+Ui+NaUokjJibkEUlvHIbg/KRAesPlx29 zQ+Coa/kZOklzce5QKdZj4AfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU/iz7aHkO eL0z0vZb0nWyiW77mNkwHwYDVR0jBBgwFoAUL904BNZFjq8cs5F7XjMvulxxX5Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVCNTUxLzVBQjE5MjAyMTZD NTExRjA4ODE1RjQ2RUM0RjlBRTAyL0w5MDRCTlpGanE4Y3M1RjdYak12dWx4eFg1 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTDkwNEJOWkZqcThjczVGN1hqTXZ1bHh4WDVFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVC NTUxLzVBQjE5MjAyMTZDNTExRjA4ODE1RjQ2RUM0RjlBRTAyL0w5MDRCTlpGanE4 Y3M1RjdYak12dWx4eFg1RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABTxzsLMAnTxLxT+3a3skelNspLBQb2Q6lvPz6hTGl4Cr5Qt+Tmi2A/i SOemvqZ5TBQ0mcY3dWKkwH5t+zQd0bnRzlpkXsMLDlzKRpLVqoTxmak8aeYnZSn2 gZ1D24K5opCVAuD0FtNBpZVZSGhyCHr+xGVn8eeG8ZF3OC9j6dlQbug/hMoRpnC/ UGScK9hWgKmVVIqV7IHuv+J8XXv/r59y+uTCCwtn3kKfnDihCvXzYhj2LubgEfWd s0eJ37Zu6jRNQmKPwZp3jyXQZvBKEzbN8dxUS1gPpeU/n3RXV/vW6koQCv0MvnI0 XmsjnwuSlY+rLLGYbQteRzLIekm8K74= -----END CERTIFICATE-----Generated at Sun May 11 10:21:27 2025 by rpki-client