$ rpki-client -vvf rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft File: L9JLb9eYBEVzVDhmYs4w3aOyALU.mft (raw, json) Hash identifier: uxNLpxKKaJPqHuVXXqrMOm2EguecHdBEPtiED1kkp/A= Subject key identifier: 1E:B7:47:DE:D3:9F:FF:61:72:97:86:3B:4E:8A:C7:93:D6:00:D4:8B Authority key identifier: 2F:D2:4B:6F:D7:98:04:45:73:54:38:66:62:CE:30:DD:A3:B2:00:B5 Certificate issuer: /CN=A91A29DA/serialNumber=2FD24B6FD79804457354386662CE30DDA3B200B5 Certificate serial: E0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft Manifest number: DE Signing time: Sun 11 May 2025 04:19:33 +0000 Manifest this update: Sun 11 May 2025 04:19:33 +0000 Manifest next update: Sun 18 May 2025 04:19:33 +0000 Files and hashes: 1: L9JLb9eYBEVzVDhmYs4w3aOyALU.crl (hash: BmYr0CKnWLq3yymmsorJEe7Kv8XXzhHmyTmv6rNsPf4=) 2: AE2FD9C4DA5411EE83E9E67EC4F9AE02.roa (hash: tK5HTPbAj/ZNMX+j7tcaCGQxo/xqwq0UKtlHWscWUVg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.crl rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 04:19:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 224 (0xe0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A29DA, serialNumber=2FD24B6FD79804457354386662CE30DDA3B200B5 Validity Not Before: May 11 04:19:33 2025 GMT Not After : May 18 04:19:33 2025 GMT Subject: CN=68202555-7b97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:35:8c:f3:40:92:33:8a:b0:79:d9:fd:6a:94: ae:c6:1c:55:37:32:c0:1a:d9:66:2d:09:da:1b:8c: 6a:fb:0c:40:76:d3:91:c5:6a:42:2d:e1:7c:71:46: 6a:94:7f:cd:f2:2a:dc:5b:2b:8d:9f:72:1d:65:c7: ae:59:84:29:b7:5f:6e:77:ed:3a:1b:56:9e:41:e5: 2e:1b:1f:89:75:a8:aa:54:0a:a7:c0:39:41:15:30: 7c:6c:66:29:63:94:67:36:0e:74:b0:56:90:95:5d: c3:f9:b8:16:29:c7:db:58:19:ab:f0:91:7d:9c:0e: ed:a0:5a:92:f0:9c:25:76:fd:b5:18:d1:ad:6b:f0: 37:0b:8c:39:bc:5c:a3:d7:ed:b0:fd:e9:12:0e:bc: 77:b1:dc:49:74:0b:5e:ec:df:0e:e2:b8:79:19:cf: 79:72:59:0b:b3:d4:6b:bf:ed:06:3c:47:d9:ab:e9: b1:3b:b2:a5:de:c1:b6:9e:a2:60:d6:b7:1b:08:10: 9b:36:a1:11:13:84:f5:1d:74:9a:ec:b4:81:1e:47: e4:bd:02:17:13:27:99:77:72:9f:2d:e4:ac:89:aa: bd:58:be:a0:59:6e:fa:81:2a:41:46:33:4b:a0:78: c1:f5:79:64:15:77:7b:ad:35:ca:de:fa:fe:b9:b0: 67:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:B7:47:DE:D3:9F:FF:61:72:97:86:3B:4E:8A:C7:93:D6:00:D4:8B X509v3 Authority Key Identifier: keyid:2F:D2:4B:6F:D7:98:04:45:73:54:38:66:62:CE:30:DD:A3:B2:00:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:4c:2e:ba:34:dd:17:38:a8:aa:43:61:ae:ec:3a:c4:f0:30: 23:54:9c:0f:e6:bb:0e:47:d7:ed:d3:59:4d:8b:7d:84:90:85: b3:a1:59:19:81:f6:33:26:d1:f0:fb:ca:6d:6f:6a:ca:be:9c: ba:6c:03:34:0b:d4:0a:2b:90:97:5e:f1:92:a7:a5:9b:68:78: f5:89:a7:f8:1f:ef:60:0a:08:dd:25:ff:08:d4:5c:ce:30:6c: 81:3f:97:f6:7f:8a:fe:77:7a:f7:74:b8:7b:f5:d7:80:91:73: 34:7a:45:40:ef:d7:6e:b5:ef:61:5a:81:fd:1f:ef:dd:bc:a1: 16:ef:b0:0e:ca:10:c6:f7:4a:8c:1d:a6:47:5a:b6:fe:54:24: 81:ff:74:d2:67:87:20:44:73:0f:41:76:76:81:cb:5a:7c:11: b4:06:5c:5a:38:bf:88:ac:c2:23:38:48:f6:5b:a4:8a:10:48: 3d:ac:0d:37:8c:02:d4:10:aa:02:a5:b3:27:76:87:c0:15:2a: 47:34:22:37:83:b4:94:86:f3:4a:54:14:76:91:36:50:b5:8e: fc:a8:35:05:61:76:df:6c:9c:bc:32:9f:47:e4:ab:98:b8:52: 96:58:b5:09:ef:0e:94:87:45:66:b5:08:58:79:8a:1b:d5:f0: 1f:f1:60:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTI5REExMTAvBgNVBAUTKDJGRDI0QjZGRDc5ODA0NDU3MzU0Mzg2NjYyQ0UzMERE QTNCMjAwQjUwHhcNMjUwNTExMDQxOTMzWhcNMjUwNTE4MDQxOTMzWjAYMRYwFAYD VQQDEw02ODIwMjU1NS03Yjk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4zWM80CSM4qwedn9apSuxhxVNzLAGtlmLQnaG4xq+wxAdtORxWpCLeF8cUZq lH/N8ircWyuNn3IdZceuWYQpt19ud+06G1aeQeUuGx+JdaiqVAqnwDlBFTB8bGYp Y5RnNg50sFaQlV3D+bgWKcfbWBmr8JF9nA7toFqS8Jwldv21GNGta/A3C4w5vFyj 1+2w/ekSDrx3sdxJdAte7N8O4rh5Gc95clkLs9Rrv+0GPEfZq+mxO7Kl3sG2nqJg 1rcbCBCbNqERE4T1HXSa7LSBHkfkvQIXEyeZd3KfLeSsiaq9WL6gWW76gSpBRjNL oHjB9XlkFXd7rTXK3vr+ubBn4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB63R97T n/9hcpeGO06Kx5PWANSLMB8GA1UdIwQYMBaAFC/SS2/XmARFc1Q4ZmLOMN2jsgC1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMjlEQS8zNEI1QjUxNERB NTQxMUVFODI3Q0E1N0RDNEY5QUUwMi9MOUpMYjllWUJFVnpWRGhtWXM0dzNhT3lB TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0w5SkxiOWVZQkVWelZEaG1ZczR3M2FPeUFMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MjlEQS8zNEI1QjUxNERBNTQxMUVFODI3Q0E1N0RDNEY5QUUwMi9MOUpMYjllWUJF VnpWRGhtWXM0dzNhT3lBTFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJTC66NN0XOKiqQ2Gu7DrE8DAjVJwP5rsOR9ft01lNi32EkIWzoVkZ gfYzJtHw+8ptb2rKvpy6bAM0C9QKK5CXXvGSp6WbaHj1iaf4H+9gCgjdJf8I1FzO MGyBP5f2f4r+d3r3dLh79deAkXM0ekVA79dute9hWoH9H+/dvKEW77AOyhDG90qM HaZHWrb+VCSB/3TSZ4cgRHMPQXZ2gctafBG0BlxaOL+IrMIjOEj2W6SKEEg9rA03 jALUEKoCpbMndofAFSpHNCI3g7SUhvNKVBR2kTZQtY78qDUFYXbfbJy8Mp9H5KuY uFKWWLUJ7w6Uh0VmtQhYeYob1fAf8WBj -----END CERTIFICATE-----Generated at Mon May 12 06:37:51 2025 by rpki-client