$ rpki-client -vvf rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft File: lufMd6OOPhgL91JrodlTIYBONeY.mft (raw, json) Hash identifier: UEI6OoZUMSGOH3jCCDt52lj2+ohz7GDyzXrFlpsEIuA= Subject key identifier: 6C:BF:5E:27:23:48:5F:A6:33:87:08:EF:E7:1A:2F:C8:4F:5E:F2:C9 Authority key identifier: 96:E7:CC:77:A3:8E:3E:18:0B:F7:52:6B:A1:D9:53:21:80:4E:35:E6 Certificate issuer: /CN=A916C4FA/serialNumber=96E7CC77A38E3E180BF7526BA1D95321804E35E6 Certificate serial: 01C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lufMd6OOPhgL91JrodlTIYBONeY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft Manifest number: 051F Signing time: Thu 03 Jul 2025 01:19:20 +0000 Manifest this update: Thu 03 Jul 2025 01:19:19 +0000 Manifest next update: Thu 10 Jul 2025 01:19:19 +0000 Files and hashes: 1: lufMd6OOPhgL91JrodlTIYBONeY.crl (hash: ymITBxsfgsZNvKnZqaeNCLC0ZbGYhpMj6XFDrcyl19M=) 2: C310EE5AACD311ED84BAA06EC4F9AE02.roa (hash: NPYNnjaBYs2qmRUfu8/y0KOBedXU4EghxnWja8r1cbI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.crl rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lufMd6OOPhgL91JrodlTIYBONeY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:19:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 450 (0x1c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C4FA, serialNumber=96E7CC77A38E3E180BF7526BA1D95321804E35E6 Validity Not Before: Jul 3 01:19:19 2025 GMT Not After : Jul 10 01:19:19 2025 GMT Subject: CN=6865da98-ad95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:9e:1e:e2:d2:6b:42:13:0b:9d:43:80:0d:6d: 07:15:7a:89:d9:21:88:1f:4b:2e:82:6a:00:97:ad: ce:f6:e5:92:e6:39:55:80:29:34:6c:e0:3c:71:cb: bc:1a:3b:36:87:a5:75:42:2f:84:1b:7b:57:9b:89: d4:4c:5f:98:72:cc:0f:0b:a4:4b:ad:8c:30:bd:4e: 1e:a4:f4:2a:10:d9:07:8b:6c:51:84:50:ef:dd:af: 50:15:04:58:dc:55:c3:68:a4:aa:12:62:71:72:18: 0e:69:e1:a8:ab:61:7e:8e:ea:ff:c4:47:17:24:9c: 4b:16:35:e3:e4:a5:bb:32:a8:f1:7a:30:71:d6:9b: e1:75:0b:53:ac:17:a1:3d:3c:a9:eb:f4:9b:ec:f1: 9c:92:e0:4c:02:47:dd:f1:95:f6:50:fc:82:4a:a0: 32:14:7a:97:42:a0:0a:b9:2c:41:cb:c0:71:f3:55: c0:5e:09:e9:2a:32:1f:be:e3:ca:50:eb:ae:75:ed: 69:ad:25:a3:ae:a8:59:e2:50:85:3a:14:7b:9b:0a: 0d:f0:02:64:46:01:ad:51:a1:74:fa:df:56:7d:1f: f9:2f:0d:48:70:00:4f:15:f5:d3:7c:0f:a8:bc:ec: d8:cc:a6:37:b2:7c:a3:6a:8e:ef:e0:c9:d3:d9:37: c6:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:BF:5E:27:23:48:5F:A6:33:87:08:EF:E7:1A:2F:C8:4F:5E:F2:C9 X509v3 Authority Key Identifier: keyid:96:E7:CC:77:A3:8E:3E:18:0B:F7:52:6B:A1:D9:53:21:80:4E:35:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lufMd6OOPhgL91JrodlTIYBONeY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:80:4e:29:3b:c2:93:a4:f9:18:5a:a9:60:0e:38:41:de:6f: b4:c7:c2:eb:74:dc:bd:02:2c:5b:30:30:1f:a5:a7:c0:ef:29: 66:d5:1e:1d:63:9b:26:8a:f7:cc:0f:f1:3e:78:16:8c:c8:a5: ab:11:58:1e:39:e3:fc:d1:66:62:15:1e:ab:f0:1e:9c:a5:b2: 86:7d:d2:82:17:f6:ff:f7:07:48:b4:2f:e9:9c:d3:5d:c2:ac: 3b:8f:b5:3b:b5:1e:ce:3c:a5:39:b5:74:8c:aa:c0:ee:2f:fc: 2a:5d:a6:49:de:28:1a:a7:62:6f:c5:2c:17:e8:23:c9:da:2f: 2a:12:8d:cf:eb:20:7e:16:07:33:7b:e9:6b:dd:b5:de:db:ec: c2:8e:d1:e1:c3:99:0e:f4:b4:7a:cc:6d:a9:a9:6d:47:2d:40: ff:74:a4:18:34:f7:8d:0d:7e:d1:af:4b:8b:e0:76:88:0d:89: c3:cc:3d:70:2a:90:e4:77:f7:8f:35:3b:75:f1:f8:e2:d7:c9: 07:43:eb:39:d6:00:81:56:b3:e9:ad:1a:3d:8b:92:4e:72:c0: ec:49:bf:79:dd:39:f4:5d:fd:8c:6e:9f:56:d0:af:19:da:01: f4:3f:c0:f9:bd:f3:f8:e9:11:bb:66:1a:1d:db:bc:d0:48:c4: 6e:b4:60:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM0RkExMTAvBgNVBAUTKDk2RTdDQzc3QTM4RTNFMTgwQkY3NTI2QkExRDk1MzIx ODA0RTM1RTYwHhcNMjUwNzAzMDExOTE5WhcNMjUwNzEwMDExOTE5WjAYMRYwFAYD VQQDEw02ODY1ZGE5OC1hZDk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Z4e4tJrQhMLnUOADW0HFXqJ2SGIH0sugmoAl63O9uWS5jlVgCk0bOA8ccu8 Gjs2h6V1Qi+EG3tXm4nUTF+YcswPC6RLrYwwvU4epPQqENkHi2xRhFDv3a9QFQRY 3FXDaKSqEmJxchgOaeGoq2F+jur/xEcXJJxLFjXj5KW7MqjxejBx1pvhdQtTrBeh PTyp6/Sb7PGckuBMAkfd8ZX2UPyCSqAyFHqXQqAKuSxBy8Bx81XAXgnpKjIfvuPK UOuude1prSWjrqhZ4lCFOhR7mwoN8AJkRgGtUaF0+t9WfR/5Lw1IcABPFfXTfA+o vOzYzKY3snyjao7v4MnT2TfGsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGy/Xicj SF+mM4cI7+caL8hPXvLJMB8GA1UdIwQYMBaAFJbnzHejjj4YC/dSa6HZUyGATjXm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzRGQS9CODlCQ0JGNEJB NkExMUVDODJBQzA3ODdDNEY5QUUwMi9sdWZNZDZPT1BoZ0w5MUpyb2RsVElZQk9O ZVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x1Zk1kNk9PUGhnTDkxSnJvZGxUSVlCT05lWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzRGQS9CODlCQ0JGNEJBNkExMUVDODJBQzA3ODdDNEY5QUUwMi9sdWZNZDZPT1Bo Z0w5MUpyb2RsVElZQk9OZVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsgE4pO8KTpPkYWqlgDjhB3m+0x8LrdNy9AixbMDAfpafA7ylm1R4d Y5smivfMD/E+eBaMyKWrEVgeOeP80WZiFR6r8B6cpbKGfdKCF/b/9wdItC/pnNNd wqw7j7U7tR7OPKU5tXSMqsDuL/wqXaZJ3igap2JvxSwX6CPJ2i8qEo3P6yB+Fgcz e+lr3bXe2+zCjtHhw5kO9LR6zG2pqW1HLUD/dKQYNPeNDX7Rr0uL4HaIDYnDzD1w KpDkd/ePNTt18fji18kHQ+s51gCBVrPprRo9i5JOcsDsSb953Tn0Xf2Mbp9W0K8Z 2gH0P8D5vfP46RG7Zhod27zQSMRutGA2 -----END CERTIFICATE-----Generated at Thu Jul 3 10:47:41 2025 by rpki-client