$ rpki-client -vvf rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft File: leqvwkta9LFytYuwGnAc_hltoZk.mft (raw, json) Hash identifier: mMBN0+/kcegsX540QRcTTqYGXIAtZEERDgz41C3g5bA= Subject key identifier: 25:E5:B1:B3:DE:84:03:FF:2D:91:E6:68:9B:26:44:18:A0:F3:B4:2B Authority key identifier: 95:EA:AF:C2:4B:5A:F4:B1:72:B5:8B:B0:1A:70:1C:FE:19:6D:A1:99 Certificate issuer: /CN=A91972B6/serialNumber=95EAAFC24B5AF4B172B58BB01A701CFE196DA199 Certificate serial: 110F Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft Manifest number: 1105 Signing time: Mon 12 May 2025 17:13:12 +0000 Manifest this update: Mon 12 May 2025 17:13:11 +0000 Manifest next update: Mon 19 May 2025 17:13:11 +0000 Files and hashes: 1: leqvwkta9LFytYuwGnAc_hltoZk.crl (hash: 7i3uf0sglVSMUwtQj9QbROPT8U3Fc0/bRvHklsVttCg=) 2: 2837843AA3E811EAB397F675C4F9AE02.roa (hash: y9Ue7Mqnzr2Y9oHbpxdCKjDeFirsk0PRqFHYUCwvvtk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.crl rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 17:13:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4367 (0x110f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91972B6, serialNumber=95EAAFC24B5AF4B172B58BB01A701CFE196DA199 Validity Not Before: May 12 17:13:11 2025 GMT Not After : May 19 17:13:11 2025 GMT Subject: CN=68222c28-0a7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:33:61:b7:28:24:40:e9:36:1e:de:d5:df:81: e2:9d:99:62:9c:28:53:02:a3:3b:9f:6c:05:46:16: a4:21:6b:23:b4:27:33:a4:79:e4:ef:79:51:95:a9: 5a:15:05:d3:01:0e:1b:55:60:80:48:ff:2c:2a:b2: c6:68:5e:37:7a:38:eb:2d:9d:d7:1d:20:da:da:12: e4:0d:78:68:5a:a5:eb:77:44:68:01:f2:6e:2c:47: 12:22:14:da:53:aa:df:b6:01:3d:5c:19:16:6f:25: 05:77:56:1c:06:0e:a7:03:82:65:b4:16:40:19:34: 32:fc:ba:28:ae:aa:d4:37:ac:95:3b:ae:bb:fe:8c: 6a:e6:81:8f:e6:6f:88:36:37:1e:20:c7:79:f8:1a: b1:d8:c7:b3:de:c8:4b:81:86:81:a8:b7:82:23:bc: b9:22:ee:f6:e6:b0:f4:91:44:e0:4b:2a:f5:56:a4: f2:00:2e:11:a5:80:ed:e1:65:7e:e5:d3:de:60:0e: 90:d7:9f:a8:ab:75:7c:38:ca:29:f0:41:38:e3:3f: 5d:ad:96:c0:dc:a1:b4:ff:b4:ed:f8:02:cf:2b:1f: ad:de:de:71:3f:65:f2:65:10:dc:81:ca:f7:e6:ac: 6f:ec:71:c7:b3:1d:b4:1a:6e:4b:7c:e8:9c:88:67: 24:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:E5:B1:B3:DE:84:03:FF:2D:91:E6:68:9B:26:44:18:A0:F3:B4:2B X509v3 Authority Key Identifier: keyid:95:EA:AF:C2:4B:5A:F4:B1:72:B5:8B:B0:1A:70:1C:FE:19:6D:A1:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:7e:30:55:58:e2:c8:3f:30:2b:40:fc:f6:95:91:74:22:6c: 18:4d:3a:46:ef:b8:55:48:58:63:2c:3d:68:0f:09:9d:f5:e3: ff:60:1b:1c:42:e6:67:65:b9:94:bd:0f:94:5c:08:8b:fa:7c: 4f:4d:29:f8:6c:13:1c:97:9d:f2:e5:16:e6:c3:3f:1b:ed:5c: ae:1c:f6:97:ff:95:9f:d9:e9:f6:f5:8b:61:b2:8d:14:28:04: a1:c8:c3:b2:75:43:c8:23:9f:5f:95:9b:d0:45:90:a6:6e:8a: d7:16:21:8c:d3:ab:bf:54:b5:1f:0a:57:7c:14:31:2c:4f:6e: d0:2a:a2:83:12:af:b0:8d:1b:6b:02:b0:5e:ec:8c:43:27:fe: 35:d4:a2:eb:50:ee:c1:78:c8:67:60:c5:7c:fa:aa:1a:d9:d8: f2:88:c1:c4:bb:50:eb:7f:97:e0:68:a1:d1:36:78:59:29:23: 0e:07:bd:2b:30:c0:69:68:81:3f:f2:92:a8:b9:e0:f4:0c:83: fd:17:b2:11:e1:96:86:d7:fa:a4:52:16:9f:2c:75:d3:32:e3: 31:97:b8:cf:6c:73:26:43:d1:9b:cf:10:20:e1:37:27:44:3c: 3f:42:26:c5:f3:47:53:03:fc:c9:1a:ef:e0:f3:7a:c7:10:0f: 70:19:3a:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEQ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyQjYxMTAvBgNVBAUTKDk1RUFBRkMyNEI1QUY0QjE3MkI1OEJCMDFBNzAxQ0ZF MTk2REExOTkwHhcNMjUwNTEyMTcxMzExWhcNMjUwNTE5MTcxMzExWjAYMRYwFAYD VQQDEw02ODIyMmMyOC0wYTdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAujNhtygkQOk2Ht7V34HinZlinChTAqM7n2wFRhakIWsjtCczpHnk73lRlala FQXTAQ4bVWCASP8sKrLGaF43ejjrLZ3XHSDa2hLkDXhoWqXrd0RoAfJuLEcSIhTa U6rftgE9XBkWbyUFd1YcBg6nA4JltBZAGTQy/LoorqrUN6yVO667/oxq5oGP5m+I NjceIMd5+Bqx2Mez3shLgYaBqLeCI7y5Iu725rD0kUTgSyr1VqTyAC4RpYDt4WV+ 5dPeYA6Q15+oq3V8OMop8EE44z9drZbA3KG0/7Tt+ALPKx+t3t5xP2XyZRDcgcr3 5qxv7HHHsx20Gm5LfOiciGck/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCXlsbPe hAP/LZHmaJsmRBig87QrMB8GA1UdIwQYMBaAFJXqr8JLWvSxcrWLsBpwHP4ZbaGZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzJCNi8wODI0M0M4QzEz MkIxMUU5QUU3N0FEN0JDNEY5QUUwMi9sZXF2d2t0YTlMRnl0WXV3R25BY19obHRv WmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2xlcXZ3a3RhOUxGeXRZdXdHbkFjX2hsdG9aay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzJCNi8wODI0M0M4QzEzMkIxMUU5QUU3N0FEN0JDNEY5QUUwMi9sZXF2d2t0YTlM Rnl0WXV3R25BY19obHRvWmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2fjBVWOLIPzArQPz2lZF0ImwYTTpG77hVSFhjLD1oDwmd9eP/YBsc QuZnZbmUvQ+UXAiL+nxPTSn4bBMcl53y5Rbmwz8b7VyuHPaX/5Wf2en29Ythso0U KAShyMOydUPII59flZvQRZCmborXFiGM06u/VLUfCld8FDEsT27QKqKDEq+wjRtr ArBe7IxDJ/411KLrUO7BeMhnYMV8+qoa2djyiMHEu1Drf5fgaKHRNnhZKSMOB70r MMBpaIE/8pKoueD0DIP9F7IR4ZaG1/qkUhafLHXTMuMxl7jPbHMmQ9GbzxAg4Tcn RDw/QibF80dTA/zJGu/g83rHEA9wGTri -----END CERTIFICATE-----Generated at Wed May 14 04:47:59 2025 by rpki-client