$ rpki-client -vvf rpki.apnic.net/member_repository/A915B551/5AB1920216C511F08815F46EC4F9AE02/L904BNZFjq8cs5F7XjMvulxxX5E.mft File: L904BNZFjq8cs5F7XjMvulxxX5E.mft (raw, json) Hash identifier: f38BXiBeQY8zi14aBSE43do34M8gYkK46nWhiKJPVe8= Subject key identifier: F9:D7:EC:98:9E:37:42:C6:E8:82:04:36:CC:4D:31:B0:C4:8C:37:32 Authority key identifier: 2F:DD:38:04:D6:45:8E:AF:1C:B3:91:7B:5E:33:2F:BA:5C:71:5F:91 Certificate issuer: /CN=A915B551/serialNumber=2FDD3804D6458EAF1CB3917B5E332FBA5C715F91 Certificate serial: 2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L904BNZFjq8cs5F7XjMvulxxX5E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B551/5AB1920216C511F08815F46EC4F9AE02/L904BNZFjq8cs5F7XjMvulxxX5E.mft Manifest number: 29 Signing time: Tue 01 Jul 2025 08:32:07 +0000 Manifest this update: Tue 01 Jul 2025 08:32:07 +0000 Manifest next update: Tue 08 Jul 2025 08:32:07 +0000 Files and hashes: 1: L904BNZFjq8cs5F7XjMvulxxX5E.crl (hash: VPMzzVYsOujNAPsMAq7p8iQ86V6lF/31WxKWL4poufY=) 2: DE917E7016C511F085B4FF6FC4F9AE02.roa (hash: gTUMCdfGUWrs1q6ayMOBwf36vGkRjWbK2xqTfFcnmzw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B551/5AB1920216C511F08815F46EC4F9AE02/L904BNZFjq8cs5F7XjMvulxxX5E.crl rsync://rpki.apnic.net/member_repository/A915B551/5AB1920216C511F08815F46EC4F9AE02/L904BNZFjq8cs5F7XjMvulxxX5E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L904BNZFjq8cs5F7XjMvulxxX5E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 08:32:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B551, serialNumber=2FDD3804D6458EAF1CB3917B5E332FBA5C715F91 Validity Not Before: Jul 1 08:32:07 2025 GMT Not After : Jul 8 08:32:07 2025 GMT Subject: CN=68639d07-794e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:86:0a:a6:58:7e:ad:7c:c3:6a:0e:4b:b2:25: b4:2d:a3:74:c3:a2:e3:cd:4e:f3:6c:08:0e:3f:b7: d7:d1:54:89:04:fc:57:53:2d:ee:89:83:63:d8:1e: b6:38:5d:97:b5:83:18:df:1b:2d:6f:36:f8:ae:98: 3a:df:00:97:f7:15:13:56:a9:5b:37:8c:ea:b4:a0: 0c:0f:06:de:41:b7:7e:36:f7:5d:9f:c0:bb:2e:86: fa:0b:17:c2:3c:4b:6f:f4:99:be:cb:16:c4:db:98: f1:e5:fa:4a:e5:97:cf:f9:03:a4:7e:30:89:cc:e4: 04:59:a3:1e:7c:91:e8:e9:dd:6b:72:9b:5c:be:6c: b4:11:9e:41:6e:ac:7f:6d:19:3d:50:76:1f:15:e1: 0c:09:73:c2:ee:33:00:5b:c2:6c:07:f9:d3:33:49: 12:1d:7b:eb:d8:c5:ea:89:de:89:a9:99:37:6a:fc: 70:21:9d:8d:70:53:ec:0e:89:0d:df:24:ec:53:03: 33:b5:f6:f3:c0:55:8d:e4:5e:58:9e:1a:21:c0:4d: dc:43:58:23:19:97:79:fb:fe:e1:12:d4:a1:1c:99: b7:7d:ed:77:dd:76:41:1c:85:c5:d4:56:24:f4:45: d3:b2:5c:81:c5:19:ff:6c:5b:ee:63:83:87:6f:f5: e3:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:D7:EC:98:9E:37:42:C6:E8:82:04:36:CC:4D:31:B0:C4:8C:37:32 X509v3 Authority Key Identifier: keyid:2F:DD:38:04:D6:45:8E:AF:1C:B3:91:7B:5E:33:2F:BA:5C:71:5F:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B551/5AB1920216C511F08815F46EC4F9AE02/L904BNZFjq8cs5F7XjMvulxxX5E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L904BNZFjq8cs5F7XjMvulxxX5E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B551/5AB1920216C511F08815F46EC4F9AE02/L904BNZFjq8cs5F7XjMvulxxX5E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:e2:1a:43:57:94:81:c6:71:46:bd:e2:77:dd:1c:e5:1e:37: 51:fc:1d:8c:a0:a1:be:2c:be:0c:e6:cd:35:0c:0a:19:08:3b: d2:8c:10:61:e6:58:a2:27:2c:97:7a:94:df:0a:8b:15:bc:ab: d1:e7:d8:0a:5f:f0:49:85:dd:74:35:9d:f6:4e:83:db:1c:7a: b0:55:7e:be:e9:3f:47:3e:c6:65:08:38:94:17:12:62:fe:30: b5:4a:e8:b4:17:ff:9d:9a:a9:7a:23:60:d5:fc:bd:ed:15:90: cb:5c:22:82:bd:15:88:65:bc:69:68:58:83:24:ba:7e:19:db: 1b:25:09:ba:93:22:eb:03:b2:d5:bf:1e:ae:72:ec:58:b2:1f: 58:04:00:7f:5f:58:b4:88:b8:ac:76:b3:8d:52:2e:d5:b3:79: c4:9f:d1:7a:e3:73:b9:fc:b7:19:20:05:c3:c9:d6:27:a4:d5: c0:3a:76:fb:33:45:5e:60:50:7c:05:fe:3a:e3:45:3a:15:9d: 18:44:90:57:56:4f:dd:17:3a:c5:c9:4d:b3:ee:de:36:89:46: 7d:ef:c0:9b:07:5f:20:e3:e6:6b:df:29:d3:fc:e0:75:6f:00: ee:91:b0:4a:60:5a:50:98:30:8f:fa:c7:c2:69:3a:46:8d:25: 0b:0f:89:79 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 QjU1MTExMC8GA1UEBRMoMkZERDM4MDRENjQ1OEVBRjFDQjM5MTdCNUUzMzJGQkE1 QzcxNUY5MTAeFw0yNTA3MDEwODMyMDdaFw0yNTA3MDgwODMyMDdaMBgxFjAUBgNV BAMTDTY4NjM5ZDA3LTc5NGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9hgqmWH6tfMNqDkuyJbQto3TDouPNTvNsCA4/t9fRVIkE/FdTLe6Jg2PYHrY4 XZe1gxjfGy1vNviumDrfAJf3FRNWqVs3jOq0oAwPBt5Bt342912fwLsuhvoLF8I8 S2/0mb7LFsTbmPHl+krll8/5A6R+MInM5ARZox58kejp3Wtym1y+bLQRnkFurH9t GT1Qdh8V4QwJc8LuMwBbwmwH+dMzSRIde+vYxeqJ3ompmTdq/HAhnY1wU+wOiQ3f JOxTAzO19vPAVY3kXlieGiHATdxDWCMZl3n7/uES1KEcmbd97XfddkEchcXUViT0 RdOyXIHFGf9sW+5jg4dv9eN9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU+dfsmJ43 QsboggQ2zE0xsMSMNzIwHwYDVR0jBBgwFoAUL904BNZFjq8cs5F7XjMvulxxX5Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVCNTUxLzVBQjE5MjAyMTZD NTExRjA4ODE1RjQ2RUM0RjlBRTAyL0w5MDRCTlpGanE4Y3M1RjdYak12dWx4eFg1 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTDkwNEJOWkZqcThjczVGN1hqTXZ1bHh4WDVFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVC NTUxLzVBQjE5MjAyMTZDNTExRjA4ODE1RjQ2RUM0RjlBRTAyL0w5MDRCTlpGanE4 Y3M1RjdYak12dWx4eFg1RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFriGkNXlIHGcUa94nfdHOUeN1H8HYygob4svgzmzTUMChkIO9KMEGHm WKInLJd6lN8KixW8q9Hn2Apf8EmF3XQ1nfZOg9scerBVfr7pP0c+xmUIOJQXEmL+ MLVK6LQX/52aqXojYNX8ve0VkMtcIoK9FYhlvGloWIMkun4Z2xslCbqTIusDstW/ Hq5y7FiyH1gEAH9fWLSIuKx2s41SLtWzecSf0Xrjc7n8txkgBcPJ1iek1cA6dvsz RV5gUHwF/jrjRToVnRhEkFdWT90XOsXJTbPu3jaJRn3vwJsHXyDj5mvfKdP84HVv AO6RsEpgWlCYMI/6x8JpOkaNJQsPiXk= -----END CERTIFICATE-----Generated at Tue Jul 1 11:09:15 2025 by rpki-client