$ rpki-client -vvf rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft File: l_lzn2QJyHWu4cSbtpqnQ882YRs.mft (raw, json) Hash identifier: CkrnmMq9Vf+lM8emTXt55GK+iUZ/3fAoUOb9X4PlbqY= Subject key identifier: 75:7E:05:44:2A:43:B8:A0:6C:59:84:3A:1E:A2:F9:3E:74:2E:4B:6A Authority key identifier: 97:F9:73:9F:64:09:C8:75:AE:E1:C4:9B:B6:9A:A7:43:CF:36:61:1B Certificate issuer: /CN=A917047F/serialNumber=97F9739F6409C875AEE1C49BB69AA743CF36611B Certificate serial: 0E3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_lzn2QJyHWu4cSbtpqnQ882YRs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft Manifest number: 0E32 Signing time: Mon 12 May 2025 17:41:36 +0000 Manifest this update: Mon 12 May 2025 17:41:35 +0000 Manifest next update: Mon 19 May 2025 17:41:35 +0000 Files and hashes: 1: l_lzn2QJyHWu4cSbtpqnQ882YRs.crl (hash: WfoK2N33yZv3i5K2tKifJnVjz4KMlroHtZ3Hx5NjnvI=) 2: 06FD60AAA8CE11EBBD4DB90DC4F9AE02.roa (hash: fNpUJmaY/58+uPHYwxaUVKQVkJ1Z1JQOjKMefzdFE80=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.crl rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_lzn2QJyHWu4cSbtpqnQ882YRs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 17:41:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3647 (0xe3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917047F, serialNumber=97F9739F6409C875AEE1C49BB69AA743CF36611B Validity Not Before: May 12 17:41:35 2025 GMT Not After : May 19 17:41:35 2025 GMT Subject: CN=682232d0-81be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:c3:08:06:a9:a8:d2:00:78:fd:a6:b6:49:3e: 43:f1:66:a3:f4:dc:1a:bc:0d:23:2d:09:0f:0d:b4: c4:3b:f9:c9:08:98:a8:57:1a:7a:10:f0:1c:11:d2: 14:83:fe:7d:8b:99:e6:8d:8c:17:9f:bb:36:79:ee: 83:eb:0b:1f:dc:75:66:89:25:cb:61:f7:86:e5:5d: a9:b3:26:33:4d:c9:48:98:a1:30:b7:7e:35:de:fe: 59:dc:c2:ad:92:24:f0:f1:13:03:1e:89:1d:96:8a: 0d:0a:1e:00:a3:2b:a8:e4:33:3d:46:51:81:c9:54: e2:d7:7c:f9:dc:63:4a:a1:f8:fd:13:16:e1:22:e6: ad:35:70:88:32:5d:91:2e:82:f1:6d:dd:c3:83:89: f8:9a:68:0c:10:b9:78:20:d5:8e:5d:ba:06:80:e9: 73:9b:f2:1e:8d:90:a0:5c:54:64:86:89:38:da:56: 12:47:81:00:e8:91:a9:d1:6b:fc:f2:0c:a7:ad:20: cf:3b:f4:34:fc:aa:f9:07:ea:32:22:c8:00:cb:31: 54:3e:b8:b4:75:f2:b5:88:ee:aa:06:96:8c:24:87: b5:45:0f:7d:f2:53:da:f4:7d:04:f0:69:66:e9:60: 04:7c:20:2d:f0:ed:4c:73:3a:0e:63:54:48:19:5f: f9:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:7E:05:44:2A:43:B8:A0:6C:59:84:3A:1E:A2:F9:3E:74:2E:4B:6A X509v3 Authority Key Identifier: keyid:97:F9:73:9F:64:09:C8:75:AE:E1:C4:9B:B6:9A:A7:43:CF:36:61:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_lzn2QJyHWu4cSbtpqnQ882YRs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:c9:0f:55:63:c0:5c:b0:e6:01:26:17:60:8c:96:21:75:4a: 71:38:3c:08:0a:e9:ab:0f:19:36:4a:8b:99:d0:fe:a0:46:3e: 70:5b:42:1d:40:2e:1e:60:9a:89:2a:d3:b5:41:d1:8f:49:50: 24:f4:9b:42:9f:ce:f4:cb:d0:b5:9d:22:92:68:b9:8f:ef:4f: f8:29:1a:35:87:40:20:06:00:13:71:e2:ec:8d:11:ba:c9:fd: cd:df:83:fb:25:08:0b:7a:97:30:7b:10:f4:6f:1b:0a:20:ac: 7b:82:ff:78:35:92:68:11:b5:d2:ec:fa:75:c0:83:f5:67:a9: 0d:36:08:70:70:9a:6d:38:cd:19:77:f0:11:bb:8d:83:fa:c9: 55:7d:7a:e0:3b:32:94:a0:8b:be:2c:3f:a4:05:8e:06:5f:43: 37:dd:78:39:34:e5:9f:64:49:ce:e7:00:80:3b:55:bf:2a:58: 60:11:e7:a8:c5:bb:83:8e:52:3b:08:69:38:1c:b4:05:9e:56: 8a:c4:69:bd:ae:1a:de:a3:fc:e1:d2:cb:25:0d:2f:fe:20:e4: 0c:ee:6b:b7:41:45:76:ba:7d:4e:30:24:2a:c3:ad:5c:1f:35: bd:dc:af:79:03:b6:00:15:26:59:89:f5:1f:b0:97:8f:54:76: 54:0b:b5:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDj8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA0N0YxMTAvBgNVBAUTKDk3Rjk3MzlGNjQwOUM4NzVBRUUxQzQ5QkI2OUFBNzQz Q0YzNjYxMUIwHhcNMjUwNTEyMTc0MTM1WhcNMjUwNTE5MTc0MTM1WjAYMRYwFAYD VQQDEw02ODIyMzJkMC04MWJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0MMIBqmo0gB4/aa2ST5D8Waj9NwavA0jLQkPDbTEO/nJCJioVxp6EPAcEdIU g/59i5nmjYwXn7s2ee6D6wsf3HVmiSXLYfeG5V2psyYzTclImKEwt3413v5Z3MKt kiTw8RMDHokdlooNCh4Aoyuo5DM9RlGByVTi13z53GNKofj9ExbhIuatNXCIMl2R LoLxbd3Dg4n4mmgMELl4INWOXboGgOlzm/IejZCgXFRkhok42lYSR4EA6JGp0Wv8 8gynrSDPO/Q0/Kr5B+oyIsgAyzFUPri0dfK1iO6qBpaMJIe1RQ998lPa9H0E8Glm 6WAEfCAt8O1MczoOY1RIGV/54wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHV+BUQq Q7igbFmEOh6i+T50LktqMB8GA1UdIwQYMBaAFJf5c59kCch1ruHEm7aap0PPNmEb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDQ3Ri9GRDcyREUxNEEz QTkxMUU5OUY3NTc3N0JDNEY5QUUwMi9sX2x6bjJRSnlIV3U0Y1NidHBxblE4ODJZ UnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xfbHpuMlFKeUhXdTRjU2J0cHFuUTg4MllScy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDQ3Ri9GRDcyREUxNEEzQTkxMUU5OUY3NTc3N0JDNEY5QUUwMi9sX2x6bjJRSnlI V3U0Y1NidHBxblE4ODJZUnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsyQ9VY8BcsOYBJhdgjJYhdUpxODwICumrDxk2SouZ0P6gRj5wW0Id QC4eYJqJKtO1QdGPSVAk9JtCn870y9C1nSKSaLmP70/4KRo1h0AgBgATceLsjRG6 yf3N34P7JQgLepcwexD0bxsKIKx7gv94NZJoEbXS7Pp1wIP1Z6kNNghwcJptOM0Z d/ARu42D+slVfXrgOzKUoIu+LD+kBY4GX0M33Xg5NOWfZEnO5wCAO1W/KlhgEeeo xbuDjlI7CGk4HLQFnlaKxGm9rhreo/zh0sslDS/+IOQM7mu3QUV2un1OMCQqw61c HzW93K95A7YAFSZZifUfsJePVHZUC7X4 -----END CERTIFICATE-----Generated at Tue May 13 16:12:43 2025 by rpki-client