$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.mft File: lzdxMASBm2tm_Fbm7Ia-TcLijhc.mft (raw, json) Hash identifier: t694jlBo3exbGTZttJ4Q9Esm3ZxukZsdHLmBUh2Vfhw= Subject key identifier: 8C:31:7A:6C:7F:30:B2:30:AE:5F:50:E1:30:04:C5:FD:71:6D:17:7B Authority key identifier: 97:37:71:30:04:81:9B:6B:66:FC:56:E6:EC:86:BE:4D:C2:E2:8E:17 Certificate issuer: /CN=A91A1C06/serialNumber=9737713004819B6B66FC56E6EC86BE4DC2E28E17 Certificate serial: 34A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.mft Manifest number: 3493 Signing time: Wed 14 May 2025 15:00:48 +0000 Manifest this update: Wed 14 May 2025 15:00:47 +0000 Manifest next update: Wed 21 May 2025 15:00:47 +0000 Files and hashes: 1: lzdxMASBm2tm_Fbm7Ia-TcLijhc.crl (hash: c1n7bSEHOaYGI/mr86HWfsOUm2Y6iu3O9CoFoczezuY=) 2: C64C7958422411EA9CA5F423C4F9AE02.roa (hash: gJwOccgnH3xfVK9Ge3NY4ACv1N9EO/ya1L5O9ulfS9A=) 3: FB50A65027B311EFBA31BB40C4F9AE02.roa (hash: lCjcuN3RSUzDTTX5oZhMnE3axtzeaFw5cyewHimqMWM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.crl rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 15:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13472 (0x34a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1C06, serialNumber=9737713004819B6B66FC56E6EC86BE4DC2E28E17 Validity Not Before: May 14 15:00:47 2025 GMT Not After : May 21 15:00:47 2025 GMT Subject: CN=6824b01f-54b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:33:07:8d:04:49:3e:dc:37:89:61:15:f6:b3: ad:85:94:9b:1a:cc:75:fa:e7:74:84:e9:41:1e:3c: 13:db:bb:4a:6a:82:4b:63:79:81:f5:46:f8:7d:e6: ff:a3:b9:ab:ee:68:4d:79:37:9c:12:78:13:99:2c: 99:d2:e8:9b:53:1c:b3:a3:8f:25:fe:52:61:2e:0e: 64:50:0e:24:85:40:9d:5f:5d:91:b3:ad:de:c2:62: 86:de:cd:87:44:3b:04:73:88:29:fa:94:f1:ea:86: f5:8c:b2:69:bb:56:78:7c:bb:11:d5:c8:61:b9:91: 24:b5:fb:97:32:6e:61:52:d0:8e:1f:f7:e6:31:3e: 4f:c3:8c:17:d5:e6:4e:91:95:1e:5f:ee:54:3e:e5: f0:fe:1f:6c:61:5c:9a:be:14:52:e6:64:28:b1:da: c3:26:86:45:0b:79:81:7b:aa:65:4f:c4:1a:cb:8b: 32:da:6c:18:34:15:ea:f8:01:3e:57:33:02:89:74: ca:61:86:26:5e:02:72:af:80:ee:b2:71:09:38:25: f4:43:de:71:05:4f:30:41:a9:3d:6f:cc:4b:2c:95: c1:7e:05:da:33:a5:57:89:74:6b:e0:74:ee:81:fb: fc:41:60:d0:88:1f:70:af:cb:af:16:30:3f:e7:b7: 8f:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:31:7A:6C:7F:30:B2:30:AE:5F:50:E1:30:04:C5:FD:71:6D:17:7B X509v3 Authority Key Identifier: keyid:97:37:71:30:04:81:9B:6B:66:FC:56:E6:EC:86:BE:4D:C2:E2:8E:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:20:2b:b9:4d:2d:38:57:30:9f:cc:d3:4d:7e:a0:32:c2:f9: 69:52:38:42:1a:81:19:56:6c:33:3c:24:ad:0f:d0:19:74:4b: 62:73:ec:43:33:2e:b3:47:2a:c9:02:d1:b5:eb:63:1e:18:78: bb:10:2f:df:bd:cd:d3:12:e5:fb:88:de:d6:6b:8a:af:28:64: 5d:d0:29:f1:71:c6:8b:e8:3a:83:65:e3:84:d3:fd:58:83:3e: 4a:3b:1c:9e:d3:d0:20:37:0a:7a:cf:e7:ac:01:f9:c7:35:dd: 5d:e1:02:64:a8:cd:1e:02:5a:4f:04:3d:64:f5:79:95:d3:ec: 2a:b4:c9:35:0d:93:4c:4b:d4:f7:e2:c4:11:07:1a:65:7e:cb: 08:c4:53:a6:1a:50:6e:3b:6e:bf:58:df:59:46:57:e5:96:09: bc:89:6b:d8:83:30:4a:76:3e:cb:f8:0b:e6:8c:b8:71:c6:89: df:10:d4:cc:7a:3e:c6:4b:56:f6:4b:66:c3:d6:73:17:a5:0a: b5:9d:67:d1:26:32:a8:ae:bd:32:6f:75:d3:bd:88:95:e9:99: 22:06:f0:81:61:e5:6d:19:32:e0:25:08:73:66:c0:a2:f5:63: 0b:ce:0c:65:4d:31:da:44:e7:70:a5:b1:f8:55:39:26:43:f1: b4:e4:67:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFDMDYxMTAvBgNVBAUTKDk3Mzc3MTMwMDQ4MTlCNkI2NkZDNTZFNkVDODZCRTRE QzJFMjhFMTcwHhcNMjUwNTE0MTUwMDQ3WhcNMjUwNTIxMTUwMDQ3WjAYMRYwFAYD VQQDEw02ODI0YjAxZi01NGIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvDMHjQRJPtw3iWEV9rOthZSbGsx1+ud0hOlBHjwT27tKaoJLY3mB9Ub4feb/ o7mr7mhNeTecEngTmSyZ0uibUxyzo48l/lJhLg5kUA4khUCdX12Rs63ewmKG3s2H RDsEc4gp+pTx6ob1jLJpu1Z4fLsR1chhuZEktfuXMm5hUtCOH/fmMT5Pw4wX1eZO kZUeX+5UPuXw/h9sYVyavhRS5mQosdrDJoZFC3mBe6plT8Qay4sy2mwYNBXq+AE+ VzMCiXTKYYYmXgJyr4DusnEJOCX0Q95xBU8wQak9b8xLLJXBfgXaM6VXiXRr4HTu gfv8QWDQiB9wr8uvFjA/57eP6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIwxemx/ MLIwrl9Q4TAExf1xbRd7MB8GA1UdIwQYMBaAFJc3cTAEgZtrZvxW5uyGvk3C4o4X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUMwNi82REVBRTIxQzFE OUQxMUUyOEIxRkE3OEMwOEIwMkNEMi9semR4TUFTQm0ydG1fRmJtN0lhLVRjTGlq aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x6ZHhNQVNCbTJ0bV9GYm03SWEtVGNMaWpoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUMwNi82REVBRTIxQzFEOUQxMUUyOEIxRkE3OEMwOEIwMkNEMi9semR4TUFTQm0y dG1fRmJtN0lhLVRjTGlqaGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjICu5TS04VzCfzNNNfqAywvlpUjhCGoEZVmwzPCStD9AZdEtic+xD My6zRyrJAtG162MeGHi7EC/fvc3TEuX7iN7Wa4qvKGRd0CnxccaL6DqDZeOE0/1Y gz5KOxye09AgNwp6z+esAfnHNd1d4QJkqM0eAlpPBD1k9XmV0+wqtMk1DZNMS9T3 4sQRBxplfssIxFOmGlBuO26/WN9ZRlfllgm8iWvYgzBKdj7L+AvmjLhxxonfENTM ej7GS1b2S2bD1nMXpQq1nWfRJjKorr0yb3XTvYiV6ZkiBvCBYeVtGTLgJQhzZsCi 9WMLzgxlTTHaROdwpbH4VTkmQ/G05Gdm -----END CERTIFICATE-----Generated at Thu May 15 12:44:41 2025 by rpki-client