$ rpki-client -vvf rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.mft File: LzabRI0hcVlrosk82-JY6vMxdZQ.mft (raw, json) Hash identifier: hti8/fN3WpW26ZD4yfxq822G8W1cKOHEvGjqUgFwa3k= Subject key identifier: FD:DA:F8:72:9D:AF:D7:E5:01:98:BC:1E:67:53:45:24:92:B8:31:0E Authority key identifier: 2F:36:9B:44:8D:21:71:59:6B:A2:C9:3C:DB:E2:58:EA:F3:31:75:94 Certificate issuer: /CN=A9161A5A/serialNumber=2F369B448D2171596BA2C93CDBE258EAF3317594 Certificate serial: 06AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LzabRI0hcVlrosk82-JY6vMxdZQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.mft Manifest number: 06A7 Signing time: Wed 14 May 2025 22:15:37 +0000 Manifest this update: Wed 14 May 2025 22:15:36 +0000 Manifest next update: Wed 21 May 2025 22:15:36 +0000 Files and hashes: 1: LzabRI0hcVlrosk82-JY6vMxdZQ.crl (hash: tpYm9aHnKvmw5K3capX2AHvpZaFnf1BlZsAmhIzZxMY=) 2: 79D611D265E711EBB6FD8A0DC4F9AE02.roa (hash: 8jITrnqODr3hbw+6QboJeBK8U7SJ4xuwPGHj3X5tTD4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.crl rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LzabRI0hcVlrosk82-JY6vMxdZQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 22:15:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1711 (0x6af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161A5A, serialNumber=2F369B448D2171596BA2C93CDBE258EAF3317594 Validity Not Before: May 14 22:15:36 2025 GMT Not After : May 21 22:15:36 2025 GMT Subject: CN=68251609-d63c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:2c:e0:d5:fd:08:58:cc:45:3b:32:3f:b7:f8: 52:da:54:24:a7:f5:dc:b5:f1:ea:e1:1d:06:64:b0: 1f:50:80:d2:ce:81:00:96:c4:73:db:75:6b:79:f1: 81:d4:f1:14:45:49:e9:03:97:cc:6c:43:3d:b0:e5: 40:01:b4:ee:94:63:3d:a7:59:32:4a:09:3f:40:61: c3:85:61:40:f8:b3:57:9f:2c:3c:f4:aa:83:be:6e: ca:5d:e4:ee:71:26:bb:29:f1:fa:82:2a:05:46:20: af:af:83:93:4f:2d:ad:0e:6b:1b:ce:cb:ae:ba:3f: 9f:c9:68:fb:eb:e2:08:d5:00:36:7e:58:02:1e:5a: 94:5c:4e:82:ad:4e:ef:ab:c8:aa:e6:a3:42:11:b2: d3:ea:f7:4c:67:71:d0:8a:5e:84:71:a4:0a:22:64: 9a:32:07:fe:e0:ab:12:0b:2a:1d:34:ef:0f:f0:51: 58:12:dd:54:cb:13:9e:7a:85:93:6a:23:1d:02:45: 0d:4c:af:d5:97:e5:6c:52:f4:d2:dc:da:e6:a5:6a: 6f:25:75:26:e1:ad:72:5d:51:0a:0d:f7:de:d6:7f: 29:63:95:67:b7:60:99:53:02:91:bc:52:2a:46:67: dc:75:df:ed:c5:c6:22:b6:2c:dd:8b:af:2b:f2:58: 50:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:DA:F8:72:9D:AF:D7:E5:01:98:BC:1E:67:53:45:24:92:B8:31:0E X509v3 Authority Key Identifier: keyid:2F:36:9B:44:8D:21:71:59:6B:A2:C9:3C:DB:E2:58:EA:F3:31:75:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LzabRI0hcVlrosk82-JY6vMxdZQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:3d:2c:5b:d2:0e:7f:81:5a:a2:08:fc:09:34:84:0a:80:ed: 0e:4f:c5:69:dd:74:70:d6:b8:a3:18:8d:52:e5:9c:7f:d5:c6: 45:28:45:b0:28:c7:d1:8b:a2:5d:58:1d:77:ea:5d:bf:1f:d7: 36:a3:33:46:1d:45:d9:b0:99:11:f4:b0:00:ac:54:cc:42:cd: 5f:46:8a:a8:ec:7f:55:07:ff:6c:2c:52:3b:7c:01:ea:3f:cc: ee:69:7f:4d:a8:b0:e1:ea:ec:5d:1b:8a:1f:fe:aa:2e:84:a9: 10:b3:01:ce:c6:d3:59:80:5f:c3:b1:94:4c:b4:90:cd:35:96: 18:e0:f2:ea:fe:5a:81:0e:8d:df:7e:b3:52:39:13:a6:a3:2f: 95:bc:47:e2:64:b8:2d:39:3a:cd:db:72:bb:1e:e6:40:68:d7: 00:ac:a9:59:1d:a1:8b:79:82:85:06:33:7d:26:03:98:56:d9: 7e:2f:1a:73:28:67:9a:77:99:8a:cd:ad:cf:8a:82:6f:fa:24: 35:d2:75:92:4c:2c:42:9e:0b:60:a8:08:00:53:13:ce:cd:b0: fa:b3:45:7e:c4:1c:c7:48:fc:c3:c5:cd:54:2a:4f:c8:ce:85: de:36:25:b7:4d:34:71:8b:db:ec:ea:9a:7d:d1:30:ec:65:3f: 20:a0:c3:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBq8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjFBNUExMTAvBgNVBAUTKDJGMzY5QjQ0OEQyMTcxNTk2QkEyQzkzQ0RCRTI1OEVB RjMzMTc1OTQwHhcNMjUwNTE0MjIxNTM2WhcNMjUwNTIxMjIxNTM2WjAYMRYwFAYD VQQDEw02ODI1MTYwOS1kNjNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzyzg1f0IWMxFOzI/t/hS2lQkp/XctfHq4R0GZLAfUIDSzoEAlsRz23VrefGB 1PEURUnpA5fMbEM9sOVAAbTulGM9p1kySgk/QGHDhWFA+LNXnyw89KqDvm7KXeTu cSa7KfH6gioFRiCvr4OTTy2tDmsbzsuuuj+fyWj76+II1QA2flgCHlqUXE6CrU7v q8iq5qNCEbLT6vdMZ3HQil6EcaQKImSaMgf+4KsSCyodNO8P8FFYEt1UyxOeeoWT aiMdAkUNTK/Vl+VsUvTS3NrmpWpvJXUm4a1yXVEKDffe1n8pY5Vnt2CZUwKRvFIq Rmfcdd/txcYitizdi68r8lhQXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP3a+HKd r9flAZi8HmdTRSSSuDEOMB8GA1UdIwQYMBaAFC82m0SNIXFZa6LJPNviWOrzMXWU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MUE1QS9COEJCNTY4RTY1 RTUxMUVCQTI1RjkyMEJDNEY5QUUwMi9MemFiUkkwaGNWbHJvc2s4Mi1KWTZ2TXhk WlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0x6YWJSSTBoY1Zscm9zazgyLUpZNnZNeGRaUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MUE1QS9COEJCNTY4RTY1RTUxMUVCQTI1RjkyMEJDNEY5QUUwMi9MemFiUkkwaGNW bHJvc2s4Mi1KWTZ2TXhkWlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkPSxb0g5/gVqiCPwJNIQKgO0OT8Vp3XRw1rijGI1S5Zx/1cZFKEWw KMfRi6JdWB136l2/H9c2ozNGHUXZsJkR9LAArFTMQs1fRoqo7H9VB/9sLFI7fAHq P8zuaX9NqLDh6uxdG4of/qouhKkQswHOxtNZgF/DsZRMtJDNNZYY4PLq/lqBDo3f frNSOROmoy+VvEfiZLgtOTrN23K7HuZAaNcArKlZHaGLeYKFBjN9JgOYVtl+Lxpz KGead5mKza3PioJv+iQ10nWSTCxCngtgqAgAUxPOzbD6s0V+xBzHSPzDxc1UKk/I zoXeNiW3TTRxi9vs6pp90TDsZT8goMOf -----END CERTIFICATE-----Generated at Fri May 16 18:50:14 2025 by rpki-client