$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB001/83D54E52574811ECA77E5D86C4F9AE02/ltGlmUmhu3ombXKg8S_81fUFnxc.mft File: ltGlmUmhu3ombXKg8S_81fUFnxc.mft (raw, json) Hash identifier: 0DDdgrV49esrkBg88j1DJEOXvoobwmfXVc6Ywa7xImM= Subject key identifier: DC:51:00:98:A3:1A:F2:B0:02:D7:F0:5C:7E:14:54:8A:9B:5B:D9:7E Authority key identifier: 96:D1:A5:99:49:A1:BB:7A:26:6D:72:A0:F1:2F:FC:D5:F5:05:9F:17 Certificate issuer: /CN=A91AB001/serialNumber=96D1A59949A1BB7A266D72A0F12FFCD5F5059F17 Certificate serial: 0460 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ltGlmUmhu3ombXKg8S_81fUFnxc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB001/83D54E52574811ECA77E5D86C4F9AE02/ltGlmUmhu3ombXKg8S_81fUFnxc.mft Manifest number: 045B Signing time: Thu 03 Jul 2025 00:32:02 +0000 Manifest this update: Thu 03 Jul 2025 00:32:01 +0000 Manifest next update: Thu 10 Jul 2025 00:32:01 +0000 Files and hashes: 1: ltGlmUmhu3ombXKg8S_81fUFnxc.crl (hash: Xdwm1J2Ysk12WIzssFm39XDn1BWHKKaJHZLnFVLSUIY=) 2: 5BD4372457DE11EC88BC6713C4F9AE02.roa (hash: 8wyGVainQ6D893xesOuFf+FM10EglgdmC+4yeYmYJKU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB001/83D54E52574811ECA77E5D86C4F9AE02/ltGlmUmhu3ombXKg8S_81fUFnxc.crl rsync://rpki.apnic.net/member_repository/A91AB001/83D54E52574811ECA77E5D86C4F9AE02/ltGlmUmhu3ombXKg8S_81fUFnxc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ltGlmUmhu3ombXKg8S_81fUFnxc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 00:32:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1120 (0x460) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB001, serialNumber=96D1A59949A1BB7A266D72A0F12FFCD5F5059F17 Validity Not Before: Jul 3 00:32:01 2025 GMT Not After : Jul 10 00:32:01 2025 GMT Subject: CN=6865cf82-2e01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:31:cc:96:dc:21:aa:46:e2:e4:9b:20:56:de: 1b:67:d7:0d:3f:34:20:32:55:91:52:64:78:7a:d4: fd:80:d1:bc:b6:4d:cb:c0:55:6a:08:d9:d9:22:82: c7:cf:05:fa:c0:1d:64:35:2a:20:30:96:57:34:45: d1:32:6c:26:43:7b:64:66:aa:79:65:37:cb:18:55: 33:79:3e:fa:4b:f2:ae:4b:43:df:3b:9a:31:fe:4e: 0c:6e:ef:3b:b3:9f:72:59:9a:a4:8b:ba:ed:58:68: 23:73:5f:84:11:0d:16:eb:4d:38:f2:5b:c7:75:c2: ec:cf:b3:54:87:76:36:b2:65:7b:87:b1:4c:b9:18: 3e:51:73:b1:98:45:59:82:f4:7c:7a:71:bc:0a:e1: a7:48:94:f2:f3:ee:5e:cd:8b:50:89:50:5d:e7:d1: c3:b2:67:f6:68:fa:ed:b3:42:16:6b:f1:12:0a:91: 05:30:6d:33:33:79:5f:96:b1:43:c5:1e:7e:87:bd: a9:5e:2e:9e:e6:0b:7e:88:87:d7:31:10:f7:39:e8: 78:2d:c7:2b:c8:9e:d3:0d:91:a1:7e:64:e4:c6:e6: 69:60:ae:9a:27:27:c7:e3:6f:df:af:82:17:60:3a: 3a:72:69:d0:ba:57:47:45:68:6e:a9:99:ae:bb:b8: 1b:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:51:00:98:A3:1A:F2:B0:02:D7:F0:5C:7E:14:54:8A:9B:5B:D9:7E X509v3 Authority Key Identifier: keyid:96:D1:A5:99:49:A1:BB:7A:26:6D:72:A0:F1:2F:FC:D5:F5:05:9F:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB001/83D54E52574811ECA77E5D86C4F9AE02/ltGlmUmhu3ombXKg8S_81fUFnxc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ltGlmUmhu3ombXKg8S_81fUFnxc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB001/83D54E52574811ECA77E5D86C4F9AE02/ltGlmUmhu3ombXKg8S_81fUFnxc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:8f:35:e3:5a:ff:cb:aa:a7:be:73:de:aa:f8:84:17:2a:ff: 4d:4f:52:cd:f0:55:dc:c7:45:22:24:c5:0d:6d:20:c9:1d:8d: 5b:2b:4e:f4:df:f6:f3:ed:f6:37:b6:51:d3:68:9f:25:0c:66: 4e:ca:04:b8:65:93:e0:59:a0:a7:2e:ff:4b:86:ff:45:86:09: 09:62:0a:16:ab:8a:a5:9b:f4:cb:15:e9:f2:d6:0f:67:fb:fb: 8f:32:6e:6c:9b:f4:39:4a:66:5f:80:64:ec:7a:2c:c5:e3:1e: e6:b8:c8:ec:a1:24:cc:00:16:14:31:e1:18:12:c8:08:57:3e: f0:e8:90:f1:98:2c:fd:24:77:cb:e4:fc:5b:5b:98:11:ae:61: 8b:93:ac:82:fa:31:56:5a:0c:df:9b:25:6e:de:2c:43:d4:e3: a7:9a:ca:20:5d:46:1e:26:d3:e8:c4:09:0c:01:d4:56:69:db: c9:bc:aa:5b:e4:f3:6e:48:5e:f3:25:6b:53:18:cd:ad:6d:f0: da:77:c1:07:66:6b:40:5d:9c:17:ea:5e:29:12:30:2c:43:d6: 78:4f:fb:c0:18:9e:c8:64:11:9e:1a:09:ff:2c:9e:81:48:5b: 27:af:04:7c:ba:7d:82:60:65:52:43:e4:d4:2e:2c:68:63:d1: de:b3:24:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBGAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIwMDExMTAvBgNVBAUTKDk2RDFBNTk5NDlBMUJCN0EyNjZENzJBMEYxMkZGQ0Q1 RjUwNTlGMTcwHhcNMjUwNzAzMDAzMjAxWhcNMjUwNzEwMDAzMjAxWjAYMRYwFAYD VQQDEw02ODY1Y2Y4Mi0yZTAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzjHMltwhqkbi5JsgVt4bZ9cNPzQgMlWRUmR4etT9gNG8tk3LwFVqCNnZIoLH zwX6wB1kNSogMJZXNEXRMmwmQ3tkZqp5ZTfLGFUzeT76S/KuS0PfO5ox/k4Mbu87 s59yWZqki7rtWGgjc1+EEQ0W60048lvHdcLsz7NUh3Y2smV7h7FMuRg+UXOxmEVZ gvR8enG8CuGnSJTy8+5ezYtQiVBd59HDsmf2aPrts0IWa/ESCpEFMG0zM3lflrFD xR5+h72pXi6e5gt+iIfXMRD3Oeh4LccryJ7TDZGhfmTkxuZpYK6aJyfH42/fr4IX YDo6cmnQuldHRWhuqZmuu7gbqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNxRAJij GvKwAtfwXH4UVIqbW9l+MB8GA1UdIwQYMBaAFJbRpZlJobt6Jm1yoPEv/NX1BZ8X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjAwMS84M0Q1NEU1MjU3 NDgxMUVDQTc3RTVEODZDNEY5QUUwMi9sdEdsbVVtaHUzb21iWEtnOFNfODFmVUZu eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x0R2xtVW1odTNvbWJYS2c4U184MWZVRm54Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjAwMS84M0Q1NEU1MjU3NDgxMUVDQTc3RTVEODZDNEY5QUUwMi9sdEdsbVVtaHUz b21iWEtnOFNfODFmVUZueGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwjzXjWv/Lqqe+c96q+IQXKv9NT1LN8FXcx0UiJMUNbSDJHY1bK070 3/bz7fY3tlHTaJ8lDGZOygS4ZZPgWaCnLv9Lhv9FhgkJYgoWq4qlm/TLFeny1g9n +/uPMm5sm/Q5SmZfgGTseizF4x7muMjsoSTMABYUMeEYEsgIVz7w6JDxmCz9JHfL 5PxbW5gRrmGLk6yC+jFWWgzfmyVu3ixD1OOnmsogXUYeJtPoxAkMAdRWadvJvKpb 5PNuSF7zJWtTGM2tbfDad8EHZmtAXZwX6l4pEjAsQ9Z4T/vAGJ7IZBGeGgn/LJ6B SFsnrwR8un2CYGVSQ+TULixoY9HesyRW -----END CERTIFICATE-----Generated at Thu Jul 3 15:04:17 2025 by rpki-client