$ rpki-client -vvf rpki.apnic.net/member_repository/A9186D9F/B290A3462E0411EF86F29D79C4F9AE02/2DPFFS4_LSebiQT4PQDdkKymK9U.mft File: 2DPFFS4_LSebiQT4PQDdkKymK9U.mft (raw, json) Hash identifier: Hxmr6mBIdlt5BuT59BG6ueEZZdWE5Yl5lHujyrObINU= Subject key identifier: 5C:B1:79:7E:04:45:56:84:FE:1A:CB:F5:93:D4:68:9B:90:A7:1F:9F Authority key identifier: D8:33:C5:15:2E:3F:2D:27:9B:89:04:F8:3D:00:DD:90:AC:A6:2B:D5 Certificate issuer: /CN=A9186D9F/serialNumber=D833C5152E3F2D279B8904F83D00DD90ACA62BD5 Certificate serial: A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DPFFS4_LSebiQT4PQDdkKymK9U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186D9F/B290A3462E0411EF86F29D79C4F9AE02/2DPFFS4_LSebiQT4PQDdkKymK9U.mft Manifest number: A7 Signing time: Sun 11 May 2025 04:53:11 +0000 Manifest this update: Sun 11 May 2025 04:53:11 +0000 Manifest next update: Sun 18 May 2025 04:53:11 +0000 Files and hashes: 1: 2DPFFS4_LSebiQT4PQDdkKymK9U.crl (hash: 9tZ54tcQ0cNHMh6Bm3DyAJBxUAxLr+y0xCyaxL91AyQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186D9F/B290A3462E0411EF86F29D79C4F9AE02/2DPFFS4_LSebiQT4PQDdkKymK9U.crl rsync://rpki.apnic.net/member_repository/A9186D9F/B290A3462E0411EF86F29D79C4F9AE02/2DPFFS4_LSebiQT4PQDdkKymK9U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DPFFS4_LSebiQT4PQDdkKymK9U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 167 (0xa7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186D9F, serialNumber=D833C5152E3F2D279B8904F83D00DD90ACA62BD5 Validity Not Before: May 11 04:53:11 2025 GMT Not After : May 18 04:53:11 2025 GMT Subject: CN=68202d37-ff11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:9d:ae:cc:88:d9:55:09:3c:64:09:81:6d:ce: 55:68:f9:66:36:1e:d7:2a:a2:76:63:52:4b:1d:48: 10:6c:f9:fe:bb:fe:eb:fb:be:02:8d:59:15:93:d0: 38:e8:d9:22:00:1c:50:6a:bd:7e:6e:03:82:52:de: a9:1c:fd:07:31:07:16:f1:07:f4:95:73:38:c4:bf: a0:0e:c4:98:8c:4e:6d:3d:ff:0b:3a:27:14:72:d2: 67:c8:b2:c1:7b:f3:63:56:21:8f:29:d9:e2:ef:f7: 3c:f3:02:82:d4:46:0e:7b:d8:7b:9b:59:e3:09:08: 7d:c3:64:81:b4:3e:8f:5f:2a:d9:d3:37:a3:86:68: dd:d0:50:7c:53:7f:21:96:11:41:82:20:7c:de:2a: 84:24:15:5f:13:e2:e1:a2:10:fa:a6:c7:30:d1:58: c8:34:ce:14:1b:09:6f:20:bc:fc:3f:9a:6b:14:00: de:20:6f:08:1b:cd:1a:17:b3:bc:6e:15:1c:08:1d: 85:52:b6:b3:aa:37:bd:48:df:b6:53:06:94:75:7b: a8:1a:f7:5e:e0:15:9d:86:af:57:20:14:fe:79:61: 98:df:e6:26:1f:8b:1a:47:ce:fa:bd:a9:45:ee:26: 62:d2:81:08:e4:e8:ad:d5:f3:05:e6:17:72:1c:6e: 60:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:B1:79:7E:04:45:56:84:FE:1A:CB:F5:93:D4:68:9B:90:A7:1F:9F X509v3 Authority Key Identifier: keyid:D8:33:C5:15:2E:3F:2D:27:9B:89:04:F8:3D:00:DD:90:AC:A6:2B:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186D9F/B290A3462E0411EF86F29D79C4F9AE02/2DPFFS4_LSebiQT4PQDdkKymK9U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DPFFS4_LSebiQT4PQDdkKymK9U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186D9F/B290A3462E0411EF86F29D79C4F9AE02/2DPFFS4_LSebiQT4PQDdkKymK9U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:7b:e9:b0:87:92:32:52:a2:cb:21:ac:be:fe:59:b0:20:33: aa:a8:01:ac:22:ad:32:58:40:5b:07:4e:12:6b:8a:5c:e9:5f: 1f:f8:ca:f5:c0:d4:cd:67:26:82:25:7b:d0:0d:81:fa:ef:5f: e8:ba:b1:74:d7:c8:74:0d:0b:7e:1f:1a:7f:23:1f:1f:2c:f8: 7c:82:e4:38:46:16:b5:5f:7e:cc:3c:86:d8:69:61:e2:4f:19: 32:f4:7d:70:14:d7:9d:93:70:4b:d6:34:40:c6:b7:44:eb:db: d0:01:07:b0:05:17:72:09:79:2e:05:0e:90:a4:5c:16:f4:4b: f6:de:d5:50:6e:93:56:cf:6d:39:d5:00:3f:8f:f6:b7:f1:63: 54:52:4d:f8:67:7b:a4:b9:97:e4:97:63:c7:69:2a:b7:65:d8: cd:41:a1:aa:0c:45:9c:a8:9c:01:b7:f1:55:57:e2:ac:10:0e: 82:99:76:18:e7:d1:b7:a2:cb:c9:b8:8f:90:2e:1c:04:34:15: 42:7c:4e:f9:d3:70:29:4f:83:16:ee:b5:5d:d2:ef:77:e0:39: ad:99:e0:87:ed:aa:c9:19:75:0e:94:e0:9a:58:90:48:92:d6: 6f:38:c8:2d:29:3e:6a:49:79:e3:09:6d:a3:1e:44:3f:5e:98: 7c:3b:f7:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODZEOUYxMTAvBgNVBAUTKEQ4MzNDNTE1MkUzRjJEMjc5Qjg5MDRGODNEMDBERDkw QUNBNjJCRDUwHhcNMjUwNTExMDQ1MzExWhcNMjUwNTE4MDQ1MzExWjAYMRYwFAYD VQQDEw02ODIwMmQzNy1mZjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyp2uzIjZVQk8ZAmBbc5VaPlmNh7XKqJ2Y1JLHUgQbPn+u/7r+74CjVkVk9A4 6NkiABxQar1+bgOCUt6pHP0HMQcW8Qf0lXM4xL+gDsSYjE5tPf8LOicUctJnyLLB e/NjViGPKdni7/c88wKC1EYOe9h7m1njCQh9w2SBtD6PXyrZ0zejhmjd0FB8U38h lhFBgiB83iqEJBVfE+LhohD6pscw0VjINM4UGwlvILz8P5prFADeIG8IG80aF7O8 bhUcCB2FUrazqje9SN+2UwaUdXuoGvde4BWdhq9XIBT+eWGY3+YmH4saR876valF 7iZi0oEI5Oit1fMF5hdyHG5gzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFyxeX4E RVaE/hrL9ZPUaJuQpx+fMB8GA1UdIwQYMBaAFNgzxRUuPy0nm4kE+D0A3ZCspivV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NkQ5Ri9CMjkwQTM0NjJF MDQxMUVGODZGMjlENzlDNEY5QUUwMi8yRFBGRlM0X0xTZWJpUVQ0UFFEZGtLeW1L OVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJEUEZGUzRfTFNlYmlRVDRQUURka0t5bUs5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NkQ5Ri9CMjkwQTM0NjJFMDQxMUVGODZGMjlENzlDNEY5QUUwMi8yRFBGRlM0X0xT ZWJpUVQ0UFFEZGtLeW1LOVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFe+mwh5IyUqLLIay+/lmwIDOqqAGsIq0yWEBbB04Sa4pc6V8f+Mr1 wNTNZyaCJXvQDYH671/ourF018h0DQt+Hxp/Ix8fLPh8guQ4Rha1X37MPIbYaWHi Txky9H1wFNedk3BL1jRAxrdE69vQAQewBRdyCXkuBQ6QpFwW9Ev23tVQbpNWz205 1QA/j/a38WNUUk34Z3ukuZfkl2PHaSq3ZdjNQaGqDEWcqJwBt/FVV+KsEA6CmXYY 59G3osvJuI+QLhwENBVCfE7503ApT4MW7rVd0u934DmtmeCH7arJGXUOlOCaWJBI ktZvOMgtKT5qSXnjCW2jHkQ/Xph8O/fW -----END CERTIFICATE-----Generated at Sun May 11 10:10:53 2025 by rpki-client