$ rpki-client -vvf rpki.apnic.net/member_repository/A91A58AA/C1939CE6240211F0961B646DC4F9AE02/lnO1zPCo6lzkGi5HYxHzdc2DwNI.mft File: lnO1zPCo6lzkGi5HYxHzdc2DwNI.mft (raw, json) Hash identifier: NFZv25+c4CtdPSFMT0JXcv/o+B3FXteGEtejKOYvwo0= Subject key identifier: AD:4D:DC:93:4D:D2:97:FD:23:B8:AC:C9:99:74:FC:1C:5E:09:EB:0C Authority key identifier: 96:73:B5:CC:F0:A8:EA:5C:E4:1A:2E:47:63:11:F3:75:CD:83:C0:D2 Certificate issuer: /CN=A91A58AA/serialNumber=9673B5CCF0A8EA5CE41A2E476311F375CD83C0D2 Certificate serial: 09 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lnO1zPCo6lzkGi5HYxHzdc2DwNI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A58AA/C1939CE6240211F0961B646DC4F9AE02/lnO1zPCo6lzkGi5HYxHzdc2DwNI.mft Manifest number: 09 Signing time: Sun 11 May 2025 06:51:47 +0000 Manifest this update: Sun 11 May 2025 06:51:47 +0000 Manifest next update: Sun 18 May 2025 06:51:47 +0000 Files and hashes: 1: lnO1zPCo6lzkGi5HYxHzdc2DwNI.crl (hash: krVWi2f4upWfK7n7mgBLv4SXq2EQNWEh8Au6pAB72sc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A58AA/C1939CE6240211F0961B646DC4F9AE02/lnO1zPCo6lzkGi5HYxHzdc2DwNI.crl rsync://rpki.apnic.net/member_repository/A91A58AA/C1939CE6240211F0961B646DC4F9AE02/lnO1zPCo6lzkGi5HYxHzdc2DwNI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lnO1zPCo6lzkGi5HYxHzdc2DwNI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 06:51:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9 (0x9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A58AA, serialNumber=9673B5CCF0A8EA5CE41A2E476311F375CD83C0D2 Validity Not Before: May 11 06:51:47 2025 GMT Not After : May 18 06:51:47 2025 GMT Subject: CN=68204903-f1df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:0b:73:37:17:ce:21:8d:d9:8d:35:4d:be:b4: 23:36:56:14:76:8d:82:c7:7b:27:45:fb:c5:d0:6a: 71:7f:9c:b7:81:6c:16:1e:8b:84:09:fa:e6:42:8e: a6:14:76:a0:d7:27:80:9b:e4:26:50:fe:5c:eb:4f: d5:d2:0d:b1:b8:27:fa:d4:d0:9b:da:ec:98:ba:ea: eb:e9:0a:b0:c6:7e:25:9e:d2:97:09:eb:90:52:28: d9:3b:ba:0d:4a:9c:94:47:ec:47:43:61:92:d2:78: da:c0:b7:46:c9:ce:cc:9e:fe:3c:f4:4c:e5:31:f9: 7d:99:13:29:49:50:51:1e:17:d4:84:76:67:73:e3: 60:6b:5f:b6:39:05:51:3b:e6:44:f8:cb:f3:0c:66: 11:be:39:2f:fe:aa:24:c3:71:1f:34:b3:20:bd:f4: 23:9a:5f:19:fb:8d:4c:e8:e3:ec:fd:77:4e:47:2f: 7c:49:4c:bb:32:e0:c4:73:d0:f6:b8:cb:20:31:34: a8:87:d2:65:9d:0a:22:4e:77:93:79:43:47:f0:c8: 83:15:3f:54:69:1c:65:a5:c6:2c:b7:05:ab:a2:b0: dc:8e:9b:c3:ec:e5:64:a6:a0:5a:d4:a2:a7:56:5d: 8e:77:1d:af:4d:53:58:c1:75:70:c1:79:63:f1:1e: d3:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:4D:DC:93:4D:D2:97:FD:23:B8:AC:C9:99:74:FC:1C:5E:09:EB:0C X509v3 Authority Key Identifier: keyid:96:73:B5:CC:F0:A8:EA:5C:E4:1A:2E:47:63:11:F3:75:CD:83:C0:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A58AA/C1939CE6240211F0961B646DC4F9AE02/lnO1zPCo6lzkGi5HYxHzdc2DwNI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lnO1zPCo6lzkGi5HYxHzdc2DwNI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A58AA/C1939CE6240211F0961B646DC4F9AE02/lnO1zPCo6lzkGi5HYxHzdc2DwNI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:aa:68:2a:b5:bb:0b:b3:b5:0c:63:aa:93:81:ab:3f:58:76: 8a:f8:86:2d:13:4c:3e:ed:92:cd:67:ba:a2:b5:16:20:4d:bb: 69:82:3f:1a:b8:72:48:5d:8d:00:26:42:10:27:82:d6:c4:1d: 4f:b0:e4:7a:f6:74:38:03:7f:13:dc:60:c3:bd:5a:62:8d:50: b3:da:8a:53:74:9f:b3:3c:4a:63:b8:37:4c:87:3a:0b:68:ac: db:2f:63:49:98:a4:52:0a:f1:90:c0:78:28:da:56:27:06:a2: 5e:9e:1f:0f:6d:1f:d8:39:8b:b1:5a:f0:d1:a3:0c:ca:f0:20: 7c:4f:59:e5:49:ad:db:65:8b:1b:71:c4:bc:ac:36:fd:4a:f4: d9:b9:82:9e:8f:78:19:79:10:9c:51:e1:94:37:e7:cf:a3:e0: ae:1f:bd:31:29:40:19:15:0e:57:8e:9d:42:84:14:8f:80:fd: 29:b2:3c:15:b9:2c:0c:e1:d5:ec:ae:45:9e:10:34:2d:14:43: 4e:ba:18:6d:ee:5a:0d:a2:75:13:6a:28:d5:ca:72:0c:61:0b: 82:3e:e0:0d:ca:8f:cb:93:fc:ae:af:14:c4:46:59:85:f8:31: f2:fd:ab:b1:93:3e:69:ed:0b:48:95:fc:ab:2d:0e:ad:d6:63: 6b:bb:70:a8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NThBQTExMC8GA1UEBRMoOTY3M0I1Q0NGMEE4RUE1Q0U0MUEyRTQ3NjMxMUYzNzVD RDgzQzBEMjAeFw0yNTA1MTEwNjUxNDdaFw0yNTA1MTgwNjUxNDdaMBgxFjAUBgNV BAMTDTY4MjA0OTAzLWYxZGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0C3M3F84hjdmNNU2+tCM2VhR2jYLHeydF+8XQanF/nLeBbBYei4QJ+uZCjqYU dqDXJ4Cb5CZQ/lzrT9XSDbG4J/rU0Jva7Ji66uvpCrDGfiWe0pcJ65BSKNk7ug1K nJRH7EdDYZLSeNrAt0bJzsye/jz0TOUx+X2ZEylJUFEeF9SEdmdz42BrX7Y5BVE7 5kT4y/MMZhG+OS/+qiTDcR80syC99COaXxn7jUzo4+z9d05HL3xJTLsy4MRz0Pa4 yyAxNKiH0mWdCiJOd5N5Q0fwyIMVP1RpHGWlxiy3BauisNyOm8Ps5WSmoFrUoqdW XY53Ha9NU1jBdXDBeWPxHtMtAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUrU3ck03S l/0juKzJmXT8HF4J6wwwHwYDVR0jBBgwFoAUlnO1zPCo6lzkGi5HYxHzdc2DwNIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1OEFBL0MxOTM5Q0U2MjQw MjExRjA5NjFCNjQ2REM0RjlBRTAyL2xuTzF6UENvNmx6a0dpNUhZeEh6ZGMyRHdO SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvbG5PMXpQQ282bHprR2k1SFl4SHpkYzJEd05JLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1 OEFBL0MxOTM5Q0U2MjQwMjExRjA5NjFCNjQ2REM0RjlBRTAyL2xuTzF6UENvNmx6 a0dpNUhZeEh6ZGMyRHdOSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFeqaCq1uwuztQxjqpOBqz9Ydor4hi0TTD7tks1nuqK1FiBNu2mCPxq4 ckhdjQAmQhAngtbEHU+w5Hr2dDgDfxPcYMO9WmKNULPailN0n7M8SmO4N0yHOgto rNsvY0mYpFIK8ZDAeCjaVicGol6eHw9tH9g5i7Fa8NGjDMrwIHxPWeVJrdtlixtx xLysNv1K9Nm5gp6PeBl5EJxR4ZQ358+j4K4fvTEpQBkVDleOnUKEFI+A/SmyPBW5 LAzh1eyuRZ4QNC0UQ066GG3uWg2idRNqKNXKcgxhC4I+4A3Kj8uT/K6vFMRGWYX4 MfL9q7GTPmntC0iV/KstDq3WY2u7cKg= -----END CERTIFICATE-----Generated at Sun May 11 19:17:56 2025 by rpki-client