$ rpki-client -vvf rpki.apnic.net/member_repository/A9196285/8C258B12027B11F0A946ED34C4F9AE02/LgN_IhyajV_cyIxDyosl1ENrsDk.mft File: LgN_IhyajV_cyIxDyosl1ENrsDk.mft (raw, json) Hash identifier: XY8RbM0wxwQ5lSBP27Hen3T4W1xZKL0BGNcqH+wWYXw= Subject key identifier: B7:2E:73:B8:E1:6C:C7:8F:78:F5:1F:87:89:F4:EA:99:7E:92:8D:48 Authority key identifier: 2E:03:7F:22:1C:9A:8D:5F:DC:C8:8C:43:CA:8B:25:D4:43:6B:B0:39 Certificate issuer: /CN=A9196285/serialNumber=2E037F221C9A8D5FDCC88C43CA8B25D4436BB039 Certificate serial: 20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgN_IhyajV_cyIxDyosl1ENrsDk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196285/8C258B12027B11F0A946ED34C4F9AE02/LgN_IhyajV_cyIxDyosl1ENrsDk.mft Manifest number: 1F Signing time: Tue 13 May 2025 07:07:19 +0000 Manifest this update: Tue 13 May 2025 07:07:18 +0000 Manifest next update: Tue 20 May 2025 07:07:18 +0000 Files and hashes: 1: LgN_IhyajV_cyIxDyosl1ENrsDk.crl (hash: d428AnbMllCYxb/QfCP///dPG/NNbQ5f2ZFhEXDIsRU=) 2: D3E69766027B11F0ACFB0B53C4F9AE02.roa (hash: riovgsjK6T9Xk/OVypXbdv81H28kZxqc1J6kqB+epyE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196285/8C258B12027B11F0A946ED34C4F9AE02/LgN_IhyajV_cyIxDyosl1ENrsDk.crl rsync://rpki.apnic.net/member_repository/A9196285/8C258B12027B11F0A946ED34C4F9AE02/LgN_IhyajV_cyIxDyosl1ENrsDk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgN_IhyajV_cyIxDyosl1ENrsDk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 07:07:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32 (0x20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196285, serialNumber=2E037F221C9A8D5FDCC88C43CA8B25D4436BB039 Validity Not Before: May 13 07:07:18 2025 GMT Not After : May 20 07:07:18 2025 GMT Subject: CN=6822efa6-3765 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:a9:3a:e6:14:e7:5c:75:84:62:92:81:57:a9: b3:54:0e:3b:bc:70:db:f5:74:4d:fd:90:71:02:d4: 14:e2:52:d7:24:4f:65:69:45:86:f2:29:65:a6:20: 0f:67:e4:70:ef:41:90:bd:74:52:d2:68:87:35:35: c1:2f:27:d8:fa:31:4f:89:75:c6:c9:03:fd:91:70: 04:c9:56:35:e7:74:d5:3e:5c:a0:0b:90:08:10:f7: 5f:a5:82:11:d2:4b:7f:bf:13:cd:02:90:0f:8b:11: 1e:87:ac:64:96:d2:97:0f:01:2b:7f:18:d5:b8:fe: e6:e6:05:ee:8f:68:68:77:f0:5d:80:70:6e:38:6d: 9b:e0:61:10:fd:ae:7f:3b:5d:dc:3f:2f:00:b6:fc: 84:74:b5:d9:32:1a:ed:c2:9f:d6:9c:67:23:97:32: 3e:b0:07:eb:bb:10:9c:dc:bb:74:3d:15:b4:35:b3: fb:d6:25:2d:38:13:80:cc:3a:5f:52:5b:d1:20:3e: 87:b0:b2:a3:30:7e:25:25:07:de:1e:b2:55:36:f7: f0:18:e8:8f:32:9f:e3:69:80:17:6f:eb:33:48:d6: 8a:ee:44:9b:95:dc:20:88:93:d1:9d:e5:a3:c9:b0: 80:c6:af:08:d2:2e:d7:de:ff:aa:1c:2f:b6:d5:90: 15:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:2E:73:B8:E1:6C:C7:8F:78:F5:1F:87:89:F4:EA:99:7E:92:8D:48 X509v3 Authority Key Identifier: keyid:2E:03:7F:22:1C:9A:8D:5F:DC:C8:8C:43:CA:8B:25:D4:43:6B:B0:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196285/8C258B12027B11F0A946ED34C4F9AE02/LgN_IhyajV_cyIxDyosl1ENrsDk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgN_IhyajV_cyIxDyosl1ENrsDk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196285/8C258B12027B11F0A946ED34C4F9AE02/LgN_IhyajV_cyIxDyosl1ENrsDk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:43:24:cf:33:ca:9c:7e:ec:24:92:0c:88:47:4a:62:cb:a7: 52:85:d8:79:d8:c1:8e:ae:fb:3c:c3:79:9e:a0:2c:8c:0e:e8: 3d:27:50:59:a8:44:21:a4:fe:45:06:b9:18:5c:6f:c8:09:56: 96:f6:e7:c1:6c:69:74:c4:14:01:e6:6c:e1:16:1d:d1:89:d3: e3:03:fc:50:ea:ed:39:26:fd:58:3d:06:23:09:44:b7:bc:9e: 5f:78:8c:37:88:1c:cb:0d:23:ee:64:c3:24:42:19:0a:8f:57: 8c:3d:52:48:ea:bb:18:6a:e7:14:e5:23:e9:25:9c:8c:35:a4: 19:78:63:e5:b4:91:ef:6f:66:17:bf:69:87:f2:f5:53:85:4c: aa:df:3f:a8:27:9a:4d:e5:26:0c:54:81:88:e9:69:fe:e7:85: d8:d6:4c:2e:06:c5:60:a7:10:28:72:d7:44:fd:65:ab:5c:39: 24:95:6d:0c:77:b4:36:47:09:3f:7b:cb:01:51:62:24:2e:35: 9c:be:b7:f1:f6:5c:d8:85:54:7d:d3:28:93:a5:c7:a5:86:60: dc:f7:49:3f:1a:df:a0:03:9f:ad:56:46:5f:57:97:38:1e:6a: 7f:73:8b:b0:db:bc:b6:7a:0b:33:11:71:95:02:e1:88:c7:3a: f7:b4:8e:5c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NjI4NTExMC8GA1UEBRMoMkUwMzdGMjIxQzlBOEQ1RkRDQzg4QzQzQ0E4QjI1RDQ0 MzZCQjAzOTAeFw0yNTA1MTMwNzA3MThaFw0yNTA1MjAwNzA3MThaMBgxFjAUBgNV BAMTDTY4MjJlZmE2LTM3NjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5qTrmFOdcdYRikoFXqbNUDju8cNv1dE39kHEC1BTiUtckT2VpRYbyKWWmIA9n 5HDvQZC9dFLSaIc1NcEvJ9j6MU+JdcbJA/2RcATJVjXndNU+XKALkAgQ91+lghHS S3+/E80CkA+LER6HrGSW0pcPASt/GNW4/ubmBe6PaGh38F2AcG44bZvgYRD9rn87 Xdw/LwC2/IR0tdkyGu3Cn9acZyOXMj6wB+u7EJzcu3Q9FbQ1s/vWJS04E4DMOl9S W9EgPoewsqMwfiUlB94eslU29/AY6I8yn+NpgBdv6zNI1oruRJuV3CCIk9Gd5aPJ sIDGrwjSLtfe/6ocL7bVkBX9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUty5zuOFs x4949R+HifTqmX6SjUgwHwYDVR0jBBgwFoAULgN/IhyajV/cyIxDyosl1ENrsDkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk2Mjg1LzhDMjU4QjEyMDI3 QjExRjBBOTQ2RUQzNEM0RjlBRTAyL0xnTl9JaHlhalZfY3lJeER5b3NsMUVOcnNE ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTGdOX0loeWFqVl9jeUl4RHlvc2wxRU5yc0RrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk2 Mjg1LzhDMjU4QjEyMDI3QjExRjBBOTQ2RUQzNEM0RjlBRTAyL0xnTl9JaHlhalZf Y3lJeER5b3NsMUVOcnNEay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKFDJM8zypx+7CSSDIhHSmLLp1KF2HnYwY6u+zzDeZ6gLIwO6D0nUFmo RCGk/kUGuRhcb8gJVpb258FsaXTEFAHmbOEWHdGJ0+MD/FDq7Tkm/Vg9BiMJRLe8 nl94jDeIHMsNI+5kwyRCGQqPV4w9Ukjquxhq5xTlI+klnIw1pBl4Y+W0ke9vZhe/ aYfy9VOFTKrfP6gnmk3lJgxUgYjpaf7nhdjWTC4GxWCnEChy10T9ZatcOSSVbQx3 tDZHCT97ywFRYiQuNZy+t/H2XNiFVH3TKJOlx6WGYNz3ST8a36ADn61WRl9Xlzge an9zi7DbvLZ6CzMRcZUC4YjHOve0jlw= -----END CERTIFICATE-----Generated at Wed May 14 20:35:53 2025 by rpki-client