$ rpki-client -vvf rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft File: lCJM-heqoN5UOrYQifwdOdGZDj4.mft (raw, json) Hash identifier: ZrPlYX1ERvmwv3aEQRrBYd4FmcbcG6qHexb52mIUgYA= Subject key identifier: 8C:D0:52:CA:A5:31:A9:A1:FF:08:6D:A9:C5:28:FB:8F:70:C2:02:3A Authority key identifier: 94:22:4C:FA:17:AA:A0:DE:54:3A:B6:10:89:FC:1D:39:D1:99:0E:3E Certificate issuer: /CN=A918B936/serialNumber=94224CFA17AAA0DE543AB61089FC1D39D1990E3E Certificate serial: 20FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lCJM-heqoN5UOrYQifwdOdGZDj4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft Manifest number: 20FA Signing time: Tue 06 May 2025 15:58:44 +0000 Manifest this update: Tue 06 May 2025 15:58:43 +0000 Manifest next update: Tue 13 May 2025 15:58:43 +0000 Files and hashes: 1: lCJM-heqoN5UOrYQifwdOdGZDj4.crl (hash: OFmmgLz9XxGQ/G10CTyVe0FJEy9thFhUVpZ6tWAKoYQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.crl rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lCJM-heqoN5UOrYQifwdOdGZDj4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 15:58:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8442 (0x20fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B936, serialNumber=94224CFA17AAA0DE543AB61089FC1D39D1990E3E Validity Not Before: May 6 15:58:43 2025 GMT Not After : May 13 15:58:43 2025 GMT Subject: CN=681a31b3-c24f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a2:ce:9b:05:a0:ed:2b:43:0b:88:fd:db:ce: 12:56:ad:24:c5:99:70:47:90:d5:67:be:db:0b:5a: 31:5e:d8:2d:24:95:bb:53:0c:c2:91:5b:45:89:1c: fd:d1:c0:d8:bd:d5:cb:a7:71:5d:e3:3d:da:f7:9f: 71:e2:1b:c1:89:8e:b4:34:20:c7:88:9d:10:ad:97: 53:23:0b:01:96:b9:b7:d9:9f:a0:f2:45:d1:27:6c: ea:86:11:c6:8b:33:4e:3d:a2:9c:df:0f:99:6f:2c: c4:15:f6:c9:c3:38:51:9a:b1:0f:2c:07:f5:be:0f: 21:47:b8:13:28:a4:a7:65:f8:08:52:99:ef:ac:c2: bf:14:b6:8d:a3:67:98:b9:43:04:c3:f4:0c:02:bf: b4:ba:a3:54:f0:73:a0:39:64:c5:03:a9:64:22:04: 5c:6c:fb:be:36:37:19:04:62:a9:36:2f:33:83:35: 87:c4:f0:0f:d5:00:20:ae:61:b0:33:94:b4:34:d7: c8:ba:a1:76:c6:58:a9:2a:d0:3c:9d:ee:7c:d4:99: b8:0a:97:22:88:b8:25:2b:e9:e4:be:43:77:ca:91: 46:e3:ca:7a:0f:8e:b8:ce:2f:b7:59:02:d4:39:28: 1a:0a:6e:21:6f:fd:97:7a:29:f5:6c:48:d2:b7:e9: 16:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:D0:52:CA:A5:31:A9:A1:FF:08:6D:A9:C5:28:FB:8F:70:C2:02:3A X509v3 Authority Key Identifier: keyid:94:22:4C:FA:17:AA:A0:DE:54:3A:B6:10:89:FC:1D:39:D1:99:0E:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lCJM-heqoN5UOrYQifwdOdGZDj4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:63:88:3e:7a:fa:23:47:5f:a6:de:38:f7:2c:f9:22:a5:fe: 53:5b:c6:34:7e:ac:2c:73:b3:c6:bc:f2:49:92:79:0f:26:4c: 2e:a7:49:ef:6c:8b:61:9b:f9:8f:27:86:e8:3e:8d:c5:c7:99: 7c:d3:72:2b:80:fe:26:af:02:5c:7c:8d:5d:28:e5:76:95:09: f5:5b:19:52:bf:3b:f5:aa:f6:d8:7d:ef:17:c1:f7:67:a4:4b: 25:08:1e:0f:4a:29:01:b3:12:52:57:9e:3b:6b:8a:e7:1e:ec: 36:49:3a:23:1a:43:99:ee:f5:15:5b:09:e5:de:38:5a:b4:26: 21:38:14:e6:20:e3:3c:13:ab:4a:d8:ee:8d:37:32:af:3f:95: 24:2d:db:95:ea:4a:4e:e4:16:81:3d:3d:67:a9:26:cc:4b:0d: e1:42:87:9b:e5:af:8f:10:a9:3b:91:55:c9:1c:db:38:02:c9: 2f:07:38:84:21:76:6b:7c:d8:f9:77:55:95:52:55:92:29:57: 39:c0:06:52:d7:1e:ae:38:1e:a9:45:ed:a7:95:89:04:2d:e7: cb:8d:43:50:7c:4d:ac:b2:06:dd:68:37:b0:af:17:0e:d1:8f: 24:f7:59:a3:66:49:6d:cc:a8:31:b3:d4:fc:9a:e3:68:16:14: f4:64:fb:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIPowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEI5MzYxMTAvBgNVBAUTKDk0MjI0Q0ZBMTdBQUEwREU1NDNBQjYxMDg5RkMxRDM5 RDE5OTBFM0UwHhcNMjUwNTA2MTU1ODQzWhcNMjUwNTEzMTU1ODQzWjAYMRYwFAYD VQQDEw02ODFhMzFiMy1jMjRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyaLOmwWg7StDC4j9284SVq0kxZlwR5DVZ77bC1oxXtgtJJW7UwzCkVtFiRz9 0cDYvdXLp3Fd4z3a959x4hvBiY60NCDHiJ0QrZdTIwsBlrm32Z+g8kXRJ2zqhhHG izNOPaKc3w+ZbyzEFfbJwzhRmrEPLAf1vg8hR7gTKKSnZfgIUpnvrMK/FLaNo2eY uUMEw/QMAr+0uqNU8HOgOWTFA6lkIgRcbPu+NjcZBGKpNi8zgzWHxPAP1QAgrmGw M5S0NNfIuqF2xlipKtA8ne581Jm4CpciiLglK+nkvkN3ypFG48p6D464zi+3WQLU OSgaCm4hb/2Xein1bEjSt+kWlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIzQUsql Mamh/whtqcUo+49wwgI6MB8GA1UdIwQYMBaAFJQiTPoXqqDeVDq2EIn8HTnRmQ4+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjkzNi80RUQyMkZEMkYw Q0QxMUU1QTQ0MzJFNzRDNEY5QUUwMi9sQ0pNLWhlcW9ONVVPcllRaWZ3ZE9kR1pE ajQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xDSk0taGVxb041VU9yWVFpZndkT2RHWkRqNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjkzNi80RUQyMkZEMkYwQ0QxMUU1QTQ0MzJFNzRDNEY5QUUwMi9sQ0pNLWhlcW9O NVVPcllRaWZ3ZE9kR1pEajQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7Y4g+evojR1+m3jj3LPkipf5TW8Y0fqwsc7PGvPJJknkPJkwup0nv bIthm/mPJ4boPo3Fx5l803IrgP4mrwJcfI1dKOV2lQn1WxlSvzv1qvbYfe8Xwfdn pEslCB4PSikBsxJSV547a4rnHuw2STojGkOZ7vUVWwnl3jhatCYhOBTmIOM8E6tK 2O6NNzKvP5UkLduV6kpO5BaBPT1nqSbMSw3hQoeb5a+PEKk7kVXJHNs4AskvBziE IXZrfNj5d1WVUlWSKVc5wAZS1x6uOB6pRe2nlYkELefLjUNQfE2ssgbdaDewrxcO 0Y8k91mjZkltzKgxs9T8muNoFhT0ZPti -----END CERTIFICATE-----Generated at Thu May 8 00:22:55 2025 by rpki-client