$ rpki-client -vvf rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.mft File: lRKAntQ1o2QK-bdfCvspKNQWPDE.mft (raw, json) Hash identifier: QqyIOMeQE14H49pxXlmma+rTvKKTts6xx0Myp8runek= Subject key identifier: 60:34:45:9B:2B:51:BE:9E:9D:6D:FF:44:8A:93:70:1C:82:80:B7:0D Authority key identifier: 95:12:80:9E:D4:35:A3:64:0A:F9:B7:5F:0A:FB:29:28:D4:16:3C:31 Certificate issuer: /CN=A91B45C0/serialNumber=9512809ED435A3640AF9B75F0AFB2928D4163C31 Certificate serial: 11E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRKAntQ1o2QK-bdfCvspKNQWPDE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.mft Manifest number: 11DD Signing time: Mon 05 May 2025 02:45:22 +0000 Manifest this update: Mon 05 May 2025 02:45:21 +0000 Manifest next update: Mon 12 May 2025 02:45:21 +0000 Files and hashes: 1: lRKAntQ1o2QK-bdfCvspKNQWPDE.crl (hash: zWMfwCOp1+CZdKnDnoPugbAyeD+JcsbHwA4viM6aVfs=) 2: 9995A38CFADC11EF87E86958C4F9AE02.roa (hash: yLXI1UMMK5WxRwwK0Xf02zpdT97YTqeLDzwOXx9chwk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.crl rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRKAntQ1o2QK-bdfCvspKNQWPDE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 02:27:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4576 (0x11e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B45C0, serialNumber=9512809ED435A3640AF9B75F0AFB2928D4163C31 Validity Not Before: May 5 02:45:21 2025 GMT Not After : May 12 02:45:21 2025 GMT Subject: CN=68182641-eb42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:00:34:42:cc:cc:aa:e3:bd:26:4f:87:90:f5: 70:2b:d4:7c:c5:a1:15:5b:ef:0f:c7:34:0f:97:14: b4:23:28:cd:5d:d9:ce:d8:de:f0:07:5d:3f:9a:15: d6:75:84:74:41:cf:9e:eb:2b:5d:3c:79:0b:0d:11: 24:15:85:d4:29:b7:ed:78:00:73:28:64:a0:c1:89: d1:e6:60:e0:96:93:c2:ba:e0:8a:db:1e:c1:4e:6f: 57:d5:c2:87:d9:5d:3d:9e:2c:38:41:ba:a6:74:d9: f6:2d:bf:bd:ea:29:e8:d4:3f:e8:cd:28:8d:33:a7: 6b:47:d4:4d:5e:bc:00:9b:6f:90:35:cb:f2:8a:e4: 45:cb:05:aa:7e:9a:e3:22:c3:82:e6:37:ff:86:11: fb:a0:3c:f6:4f:c7:a5:7f:d9:2a:d3:ff:3a:44:74: 59:5b:c0:24:df:4e:9c:d5:60:cc:c9:78:ab:27:5b: f4:47:99:16:56:41:24:ae:c1:64:25:8c:f4:f9:55: e1:d9:07:fa:73:a6:c3:84:fe:f3:f2:48:e7:fa:6f: 19:d8:e5:2a:42:25:47:cc:59:5c:67:b7:16:fe:45: b6:7d:f8:b9:6a:81:bc:44:aa:9b:fc:80:6e:7a:8a: 01:8f:5c:2b:82:58:0f:ca:35:32:4a:11:ef:d4:b6: b8:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:34:45:9B:2B:51:BE:9E:9D:6D:FF:44:8A:93:70:1C:82:80:B7:0D X509v3 Authority Key Identifier: keyid:95:12:80:9E:D4:35:A3:64:0A:F9:B7:5F:0A:FB:29:28:D4:16:3C:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRKAntQ1o2QK-bdfCvspKNQWPDE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:fb:f1:e5:28:45:12:a3:84:89:2f:97:5f:0c:c3:5b:e6:44: 69:0b:cb:be:9a:e1:77:55:77:16:4b:69:f1:05:81:29:f0:7a: c4:4a:c1:06:2b:c8:e1:7e:86:20:7c:44:95:d5:28:91:a1:70: da:9f:23:62:24:c9:57:1a:d9:6f:ae:b7:1b:92:3f:69:42:5c: 9d:de:a5:3d:c6:12:a1:e0:69:22:b3:12:c9:d6:8c:e1:cf:bb: c3:7a:bf:a8:94:c5:3e:e3:b4:3c:f2:23:8b:1a:2b:e3:32:3a: ae:2b:e7:73:cf:80:9f:59:42:27:42:69:f3:ab:4a:cd:c3:5a: 2c:3b:95:ec:74:68:84:03:66:64:f4:c4:42:15:56:eb:a6:fa: 79:10:89:57:3d:6b:1c:2f:07:cf:2f:04:91:28:6e:d8:a8:cd: 0a:22:c8:41:72:67:c9:a7:be:b0:f1:93:14:4d:67:d7:20:da: 10:26:55:4f:47:a1:77:87:ec:f6:8f:a6:50:f7:7a:f5:87:96: 60:ef:23:ee:81:cd:64:b4:89:30:ff:f7:ee:8b:90:44:87:94: 15:ef:d9:95:d6:63:fe:c4:34:01:33:9e:76:18:ab:82:05:54: c4:0c:5a:d2:6c:d6:70:35:5f:b6:28:66:87:a2:5b:27:b8:9e: 5d:6c:74:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEeAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ1QzAxMTAvBgNVBAUTKDk1MTI4MDlFRDQzNUEzNjQwQUY5Qjc1RjBBRkIyOTI4 RDQxNjNDMzEwHhcNMjUwNTA1MDI0NTIxWhcNMjUwNTEyMDI0NTIxWjAYMRYwFAYD VQQDEw02ODE4MjY0MS1lYjQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4wA0QszMquO9Jk+HkPVwK9R8xaEVW+8PxzQPlxS0IyjNXdnO2N7wB10/mhXW dYR0Qc+e6ytdPHkLDREkFYXUKbfteABzKGSgwYnR5mDglpPCuuCK2x7BTm9X1cKH 2V09niw4QbqmdNn2Lb+96ino1D/ozSiNM6drR9RNXrwAm2+QNcvyiuRFywWqfprj IsOC5jf/hhH7oDz2T8elf9kq0/86RHRZW8Ak306c1WDMyXirJ1v0R5kWVkEkrsFk JYz0+VXh2Qf6c6bDhP7z8kjn+m8Z2OUqQiVHzFlcZ7cW/kW2ffi5aoG8RKqb/IBu eooBj1wrglgPyjUyShHv1La4IQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGA0RZsr Ub6enW3/RIqTcByCgLcNMB8GA1UdIwQYMBaAFJUSgJ7UNaNkCvm3Xwr7KSjUFjwx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDVDMC9CREVFNzI5QUU2 RDkxMUU4OEI4QkY3N0NDNEY5QUUwMi9sUktBbnRRMW8yUUstYmRmQ3ZzcEtOUVdQ REUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xSS0FudFExbzJRSy1iZGZDdnNwS05RV1BERS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDVDMC9CREVFNzI5QUU2RDkxMUU4OEI4QkY3N0NDNEY5QUUwMi9sUktBbnRRMW8y UUstYmRmQ3ZzcEtOUVdQREUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJ+/HlKEUSo4SJL5dfDMNb5kRpC8u+muF3VXcWS2nxBYEp8HrESsEG K8jhfoYgfESV1SiRoXDanyNiJMlXGtlvrrcbkj9pQlyd3qU9xhKh4GkisxLJ1ozh z7vDer+olMU+47Q88iOLGivjMjquK+dzz4CfWUInQmnzq0rNw1osO5XsdGiEA2Zk 9MRCFVbrpvp5EIlXPWscLwfPLwSRKG7YqM0KIshBcmfJp76w8ZMUTWfXINoQJlVP R6F3h+z2j6ZQ93r1h5Zg7yPugc1ktIkw//fui5BEh5QV79mV1mP+xDQBM552GKuC BVTEDFrSbNZwNV+2KGaHolsnuJ5dbHQ3 -----END CERTIFICATE-----Generated at Mon May 5 04:10:26 2025 by rpki-client