$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.mft File: lAiiAfAOWP6SWY7gOTkHi673d5U.mft (raw, json) Hash identifier: yW015mlbaIO3N7RPdr2BL5qt4NGFOOiNQx2FsDMIYRc= Subject key identifier: 90:FD:28:75:C8:19:CD:F3:9B:F0:C3:95:FB:4C:A4:17:86:17:FA:DF Authority key identifier: 94:08:A2:01:F0:0E:58:FE:92:59:8E:E0:39:39:07:8B:AE:F7:77:95 Certificate issuer: /CN=A91A6F68/serialNumber=9408A201F00E58FE92598EE03939078BAEF77795 Certificate serial: 38 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lAiiAfAOWP6SWY7gOTkHi673d5U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.mft Manifest number: 38 Signing time: Thu 15 May 2025 06:51:50 +0000 Manifest this update: Thu 15 May 2025 06:51:49 +0000 Manifest next update: Thu 22 May 2025 06:51:49 +0000 Files and hashes: 1: lAiiAfAOWP6SWY7gOTkHi673d5U.crl (hash: Ol0IjcS1fwJ3Lku3t30Zr8qu4WVzY3YHBJRjF/f2QW0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.crl rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lAiiAfAOWP6SWY7gOTkHi673d5U.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 06:51:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56 (0x38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6F68, serialNumber=9408A201F00E58FE92598EE03939078BAEF77795 Validity Not Before: May 15 06:51:49 2025 GMT Not After : May 22 06:51:49 2025 GMT Subject: CN=68258f05-cb5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:be:24:e5:42:e4:17:37:96:40:f1:74:cc:82: f8:42:bf:bb:fb:1b:0b:57:ae:47:71:4c:87:2b:3e: 49:0f:27:8c:bf:59:eb:b6:b0:99:b0:5b:4d:39:5c: e6:e2:e2:6a:52:54:f4:38:2f:9d:1f:6d:b9:37:c1: 4b:81:65:b9:89:57:12:51:eb:09:74:3a:c6:f4:e3: 23:29:e8:46:57:cb:48:1b:6e:36:99:61:d9:8f:f3: bb:51:49:83:81:9f:3d:fe:be:66:96:75:16:6d:ae: 2d:21:92:df:ee:e1:13:2f:d3:e0:c6:93:30:61:11: ce:f3:59:ef:80:bb:0c:68:9f:d9:d6:0e:ec:20:71: b8:b7:5c:55:57:1b:70:c1:5b:8b:52:b5:c5:82:67: 59:83:4f:77:44:30:79:07:c2:5b:27:d2:29:2f:bb: 7b:68:58:ef:12:f4:52:17:8d:d6:f5:e9:a1:d6:f5: 8c:a4:db:c8:4e:6a:4a:16:7c:16:4b:03:1f:ed:16: a1:08:f5:f7:c5:0b:1e:f6:48:6d:a5:6c:3e:47:06: 88:a9:86:fd:71:c6:6c:53:34:92:4e:9f:f0:d1:7a: e0:ca:0c:c5:61:10:a2:11:13:00:c8:6d:79:0f:e7: 39:ee:0e:b8:b8:2b:32:f2:6f:a1:77:cb:ba:68:0e: 22:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:FD:28:75:C8:19:CD:F3:9B:F0:C3:95:FB:4C:A4:17:86:17:FA:DF X509v3 Authority Key Identifier: keyid:94:08:A2:01:F0:0E:58:FE:92:59:8E:E0:39:39:07:8B:AE:F7:77:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lAiiAfAOWP6SWY7gOTkHi673d5U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:80:f7:d0:8c:f3:42:a8:e1:50:c4:a7:80:41:0b:0f:39:bb: cf:b6:72:9b:01:b8:d9:78:d4:79:7f:aa:9e:6d:10:52:cd:4d: a3:42:e1:af:77:ac:2d:cf:dd:b2:62:0c:d3:2d:25:91:5b:04: 45:2d:ae:20:21:cd:83:60:0a:8b:e6:60:3d:c3:dc:f0:e6:56: f9:89:ad:b2:50:c4:46:c5:d6:c4:c2:86:fb:c2:62:7a:91:5a: da:38:b0:3c:8b:50:9f:4f:b8:7d:a0:f4:50:8a:e5:a0:f5:a0: cd:bd:d0:e6:fc:1b:d2:a8:d9:5b:1d:6e:02:2c:c8:f7:33:87: 6a:e3:91:d5:0f:83:3a:b9:17:c5:59:a6:d7:b5:56:b7:d6:c1: 07:2d:4a:66:fb:4a:8e:52:75:2b:78:72:d5:0a:3d:e1:b3:09: 70:28:1b:6d:bd:3e:4a:2a:1a:57:59:4b:54:29:2f:1c:90:55: e2:91:5e:47:80:d7:c9:14:38:21:70:81:57:75:fd:a7:0c:33: d3:d3:82:bd:ef:c3:87:b4:d1:c6:cb:35:93:00:33:12:fb:45: 58:6a:1c:bd:69:9c:49:9c:66:38:10:86:a2:9d:64:3e:90:60: d4:81:1f:60:f1:4d:65:ff:bb:e8:fa:5e:9b:e5:b5:2f:b2:96: 01:7f:21:54 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBODANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NkY2ODExMC8GA1UEBRMoOTQwOEEyMDFGMDBFNThGRTkyNTk4RUUwMzkzOTA3OEJB RUY3Nzc5NTAeFw0yNTA1MTUwNjUxNDlaFw0yNTA1MjIwNjUxNDlaMBgxFjAUBgNV BAMTDTY4MjU4ZjA1LWNiNWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDjviTlQuQXN5ZA8XTMgvhCv7v7GwtXrkdxTIcrPkkPJ4y/Weu2sJmwW005XObi 4mpSVPQ4L50fbbk3wUuBZbmJVxJR6wl0Osb04yMp6EZXy0gbbjaZYdmP87tRSYOB nz3+vmaWdRZtri0hkt/u4RMv0+DGkzBhEc7zWe+Auwxon9nWDuwgcbi3XFVXG3DB W4tStcWCZ1mDT3dEMHkHwlsn0ikvu3toWO8S9FIXjdb16aHW9Yyk28hOakoWfBZL Ax/tFqEI9ffFCx72SG2lbD5HBoiphv1xxmxTNJJOn/DReuDKDMVhEKIREwDIbXkP 5znuDri4KzLyb6F3y7poDiK7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUkP0odcgZ zfOb8MOV+0ykF4YX+t8wHwYDVR0jBBgwFoAUlAiiAfAOWP6SWY7gOTkHi673d5Uw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE2RjY4L0JBNTY1RjVDREYy MTExRUY4MzNGNEYyQ0M0RjlBRTAyL2xBaWlBZkFPV1A2U1dZN2dPVGtIaTY3M2Q1 VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvbEFpaUFmQU9XUDZTV1k3Z09Ua0hpNjczZDVVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE2 RjY4L0JBNTY1RjVDREYyMTExRUY4MzNGNEYyQ0M0RjlBRTAyL2xBaWlBZkFPV1A2 U1dZN2dPVGtIaTY3M2Q1VS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACyA99CM80Ko4VDEp4BBCw85u8+2cpsBuNl41Hl/qp5tEFLNTaNC4a93 rC3P3bJiDNMtJZFbBEUtriAhzYNgCovmYD3D3PDmVvmJrbJQxEbF1sTChvvCYnqR Wto4sDyLUJ9PuH2g9FCK5aD1oM290Ob8G9Ko2VsdbgIsyPczh2rjkdUPgzq5F8VZ pte1VrfWwQctSmb7So5SdSt4ctUKPeGzCXAoG229PkoqGldZS1QpLxyQVeKRXkeA 18kUOCFwgVd1/acMM9PTgr3vw4e00cbLNZMAMxL7RVhqHL1pnEmcZjgQhqKdZD6Q YNSBH2DxTWX/u+j6XpvltS+ylgF/IVQ= -----END CERTIFICATE-----Generated at Thu May 15 17:50:37 2025 by rpki-client