$ rpki-client -vvf rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.mft File: L4dzyVEFOxQ4vCfsxV45KvteK7I.mft (raw, json) Hash identifier: yEJKoIvDSSKIxNrCS4/gWInGpN9NkW/GaTQlbxyp4qU= Subject key identifier: D6:16:AD:86:98:71:73:19:D0:C3:D8:5B:28:81:1C:1F:8C:E1:32:87 Authority key identifier: 2F:87:73:C9:51:05:3B:14:38:BC:27:EC:C5:5E:39:2A:FB:5E:2B:B2 Certificate issuer: /CN=A91B56F0/serialNumber=2F8773C951053B1438BC27ECC55E392AFB5E2BB2 Certificate serial: 0B4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4dzyVEFOxQ4vCfsxV45KvteK7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.mft Manifest number: 0B39 Signing time: Mon 12 May 2025 19:01:32 +0000 Manifest this update: Mon 12 May 2025 19:01:31 +0000 Manifest next update: Mon 19 May 2025 19:01:31 +0000 Files and hashes: 1: L4dzyVEFOxQ4vCfsxV45KvteK7I.crl (hash: 7hjGaomUTYzERd95xGBxTj+/6mxVusNIg87dDugU1Fo=) 2: 84AC17989B0811EDB5FDAF75C4F9AE02.roa (hash: oocbcY3iFDyepn5SUv3wuDXzWJtrjmxt4UkH5Dd68Ak=) 3: 837821AA9B0811EDB5FDAF75C4F9AE02.roa (hash: kTlw3wh1lAf36RxrCeqt67ctmc2qb6ZS1z3/jQIhcLU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.crl rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4dzyVEFOxQ4vCfsxV45KvteK7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 19:01:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2893 (0xb4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B56F0, serialNumber=2F8773C951053B1438BC27ECC55E392AFB5E2BB2 Validity Not Before: May 12 19:01:31 2025 GMT Not After : May 19 19:01:31 2025 GMT Subject: CN=6822458b-88ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:ed:64:cd:25:12:fa:3d:78:0d:07:83:13:fe: 71:2c:84:a5:21:c2:ba:c2:26:88:65:83:ee:b2:04: 2e:93:40:53:83:81:f1:c5:50:27:7b:22:3d:4c:f1: 80:11:85:d9:e5:3c:d0:51:3c:41:3a:40:27:ac:12: 17:89:ba:47:a6:56:2d:41:c6:74:44:4b:22:e8:b8: 66:06:39:6b:44:8f:a3:67:5b:d5:61:bf:02:cc:58: f4:28:9a:6c:4d:c4:b4:c0:4d:04:b9:ea:9c:0c:68: a1:7d:33:0d:97:85:84:02:f8:53:c8:d4:14:bb:1b: e6:7e:86:0a:87:31:a0:55:c5:53:41:13:fc:6d:3d: 0a:4a:12:10:b8:a8:35:06:78:28:62:ad:12:81:68: a7:5d:9c:1e:b7:6f:4e:47:f2:3a:3e:4f:35:4a:9c: 27:4f:f1:3a:41:d6:93:5f:da:66:0c:90:ac:e9:92: 24:38:fe:63:55:8f:d6:a8:25:08:1f:9a:36:c2:1d: a8:d3:3c:26:59:b1:6c:aa:a2:2e:db:73:c4:6d:19: ad:59:e5:a7:2a:06:7e:02:17:3e:9e:7d:6b:f5:0b: 73:48:8a:39:e7:40:2d:e9:3d:71:8c:8c:00:bf:c4: ca:9e:b5:b7:db:34:32:63:dd:ea:e9:85:ee:d0:47: a0:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:16:AD:86:98:71:73:19:D0:C3:D8:5B:28:81:1C:1F:8C:E1:32:87 X509v3 Authority Key Identifier: keyid:2F:87:73:C9:51:05:3B:14:38:BC:27:EC:C5:5E:39:2A:FB:5E:2B:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4dzyVEFOxQ4vCfsxV45KvteK7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:01:c9:18:4a:39:b1:d0:0a:3b:ed:a2:e8:97:f9:34:5b:ba: e9:48:d7:46:6e:d6:35:79:21:be:84:d9:73:e9:53:03:88:25: 6e:27:d4:08:46:9c:28:a6:02:49:98:45:af:4b:ef:ef:2b:3d: 93:4f:48:1a:30:d1:2f:e6:b1:7b:1d:b6:4f:38:35:0a:0e:69: 6b:85:82:19:a5:8f:fe:53:34:13:6f:5f:8e:f8:37:b0:a5:4c: da:88:fa:d0:43:2a:18:af:37:24:14:e4:c0:87:65:3f:78:54: ab:0f:be:a8:20:20:54:b2:84:e5:f6:6b:46:e5:61:17:95:25: 19:df:29:5b:61:f9:a5:a0:f5:da:38:7a:59:52:bb:ce:85:a0: c0:f5:b6:26:b3:e2:9d:69:ee:63:65:ea:c1:3a:32:95:a8:99: 1d:ef:e3:90:34:8d:f4:19:86:ca:c8:37:25:19:ac:ca:86:67: 2d:f1:fe:3b:b3:7a:6a:bd:b5:92:d4:32:8d:58:6d:ad:b1:4d: f7:8d:91:e7:46:04:df:7d:93:6e:cd:96:db:64:3a:bf:d3:b4: b2:4e:c0:0a:1a:ea:50:2e:49:9d:7a:ee:0d:51:1e:ba:2d:b4: 8e:d9:21:ca:3e:8b:af:e4:6d:d5:13:96:06:cb:61:5a:f7:19: 4f:0f:7e:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC00wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU2RjAxMTAvBgNVBAUTKDJGODc3M0M5NTEwNTNCMTQzOEJDMjdFQ0M1NUUzOTJB RkI1RTJCQjIwHhcNMjUwNTEyMTkwMTMxWhcNMjUwNTE5MTkwMTMxWjAYMRYwFAYD VQQDEw02ODIyNDU4Yi04OGFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4+1kzSUS+j14DQeDE/5xLISlIcK6wiaIZYPusgQuk0BTg4HxxVAneyI9TPGA EYXZ5TzQUTxBOkAnrBIXibpHplYtQcZ0REsi6LhmBjlrRI+jZ1vVYb8CzFj0KJps TcS0wE0EueqcDGihfTMNl4WEAvhTyNQUuxvmfoYKhzGgVcVTQRP8bT0KShIQuKg1 BngoYq0SgWinXZwet29OR/I6Pk81SpwnT/E6QdaTX9pmDJCs6ZIkOP5jVY/WqCUI H5o2wh2o0zwmWbFsqqIu23PEbRmtWeWnKgZ+Ahc+nn1r9QtzSIo550At6T1xjIwA v8TKnrW32zQyY93q6YXu0Eeg7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNYWrYaY cXMZ0MPYWyiBHB+M4TKHMB8GA1UdIwQYMBaAFC+Hc8lRBTsUOLwn7MVeOSr7Xiuy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTZGMC83RDY3RTRENDM4 NEMxMUVBQkVBMkRCNzFDNEY5QUUwMi9MNGR6eVZFRk94UTR2Q2ZzeFY0NUt2dGVL N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0w0ZHp5VkVGT3hRNHZDZnN4VjQ1S3Z0ZUs3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTZGMC83RDY3RTRENDM4NEMxMUVBQkVBMkRCNzFDNEY5QUUwMi9MNGR6eVZFRk94 UTR2Q2ZzeFY0NUt2dGVLN0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYAckYSjmx0Ao77aLol/k0W7rpSNdGbtY1eSG+hNlz6VMDiCVuJ9QI RpwopgJJmEWvS+/vKz2TT0gaMNEv5rF7HbZPODUKDmlrhYIZpY/+UzQTb1+O+Dew pUzaiPrQQyoYrzckFOTAh2U/eFSrD76oICBUsoTl9mtG5WEXlSUZ3ylbYfmloPXa OHpZUrvOhaDA9bYms+Kdae5jZerBOjKVqJkd7+OQNI30GYbKyDclGazKhmct8f47 s3pqvbWS1DKNWG2tsU33jZHnRgTffZNuzZbbZDq/07SyTsAKGupQLkmdeu4NUR66 LbSO2SHKPouv5G3VE5YGy2Fa9xlPD37x -----END CERTIFICATE-----Generated at Tue May 13 04:52:06 2025 by rpki-client