$ rpki-client -vvf rpki.apnic.net/member_repository/A91CDBF5/5E9C4BB0CB5111EF90400D17C4F9AE02/mAzlu_LPNdYK47ByGKtcqRAULJA.mft File: mAzlu_LPNdYK47ByGKtcqRAULJA.mft (raw, json) Hash identifier: qEhOw647rSeGajfdh7g0EdEV41O57/hg2UaCKRwcU74= Subject key identifier: 42:61:1B:9B:50:26:9E:A7:FF:04:62:9E:4E:3A:E7:61:72:B5:98:32 Authority key identifier: 98:0C:E5:BB:F2:CF:35:D6:0A:E3:B0:72:18:AB:5C:A9:10:14:2C:90 Certificate issuer: /CN=A91CDBF5/serialNumber=980CE5BBF2CF35D60AE3B07218AB5CA910142C90 Certificate serial: 41 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mAzlu_LPNdYK47ByGKtcqRAULJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CDBF5/5E9C4BB0CB5111EF90400D17C4F9AE02/mAzlu_LPNdYK47ByGKtcqRAULJA.mft Manifest number: 40 Signing time: Wed 07 May 2025 06:34:21 +0000 Manifest this update: Wed 07 May 2025 06:34:21 +0000 Manifest next update: Wed 14 May 2025 06:34:21 +0000 Files and hashes: 1: mAzlu_LPNdYK47ByGKtcqRAULJA.crl (hash: pfwi6n4lSU9OCB0PxPiXMv+iflUTs9GdHAZJS9JhyrI=) 2: EA8CF7A8CB5311EF91F1081BC4F9AE02.roa (hash: GSX0pyaiwOS5Abzctg8JuUZl0TI6LV3O2e6/wEsG5kM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CDBF5/5E9C4BB0CB5111EF90400D17C4F9AE02/mAzlu_LPNdYK47ByGKtcqRAULJA.crl rsync://rpki.apnic.net/member_repository/A91CDBF5/5E9C4BB0CB5111EF90400D17C4F9AE02/mAzlu_LPNdYK47ByGKtcqRAULJA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mAzlu_LPNdYK47ByGKtcqRAULJA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 14 May 2025 06:34:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65 (0x41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CDBF5, serialNumber=980CE5BBF2CF35D60AE3B07218AB5CA910142C90 Validity Not Before: May 7 06:34:21 2025 GMT Not After : May 14 06:34:21 2025 GMT Subject: CN=681afeed-3a0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:1f:8d:ea:f5:48:e1:81:b3:6d:e9:f5:68:80: 42:b0:3c:31:97:14:5f:f6:52:88:c5:bc:54:37:6d: a6:09:f6:76:02:47:66:cf:84:9f:aa:17:a5:c4:cf: ab:15:55:61:8a:d5:0d:b8:15:fa:9a:96:5e:11:fd: a9:86:6f:f9:90:50:2d:b1:ac:21:cc:c4:16:eb:7c: 0e:7a:f6:8d:ba:f4:81:c6:12:88:0d:0b:ab:f0:2c: 09:0c:bb:a0:cd:94:7a:45:1d:af:b2:b8:4c:97:a4: 0f:87:6f:fc:f5:25:f4:36:8b:49:f2:1b:e8:b8:eb: 1d:bd:b2:0f:5b:ae:84:d0:dd:db:f2:90:f2:2a:54: cd:60:a2:9b:c9:be:2a:0f:fe:9c:79:7b:2a:aa:89: 6c:c7:40:40:bc:f0:1d:28:c1:20:0c:60:d9:b6:ad: 29:7d:a9:bd:91:a3:ab:40:81:0b:af:47:8d:d0:9a: ae:f9:95:cf:70:1d:01:69:85:02:ca:4e:51:e6:10: bb:17:fa:0c:0d:61:23:f4:ee:6f:b2:73:ff:0a:2b: bc:44:a0:7c:5e:43:f1:a2:65:1f:47:16:41:a0:1c: e1:0e:df:e4:15:4d:ce:c7:7e:f5:90:9b:79:c9:c6: 0a:1a:55:03:64:d0:f3:00:4e:84:8c:b4:90:91:37: 32:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:61:1B:9B:50:26:9E:A7:FF:04:62:9E:4E:3A:E7:61:72:B5:98:32 X509v3 Authority Key Identifier: keyid:98:0C:E5:BB:F2:CF:35:D6:0A:E3:B0:72:18:AB:5C:A9:10:14:2C:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CDBF5/5E9C4BB0CB5111EF90400D17C4F9AE02/mAzlu_LPNdYK47ByGKtcqRAULJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mAzlu_LPNdYK47ByGKtcqRAULJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CDBF5/5E9C4BB0CB5111EF90400D17C4F9AE02/mAzlu_LPNdYK47ByGKtcqRAULJA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:01:67:04:9e:4b:d7:68:9b:5b:c6:e5:fd:62:09:bc:14:c1: 63:69:8c:15:f0:9f:e1:87:07:2b:57:43:dc:2e:ac:6e:10:f2: fc:d1:33:b7:85:61:0f:57:53:22:83:a0:e5:71:5e:90:2a:4f: b9:b1:b1:c4:5c:4f:6b:9b:6b:66:85:0e:71:8d:61:1d:fb:5a: 0f:fb:a0:4f:fe:4a:bb:a8:69:c5:87:96:ef:03:79:03:9b:56: 3b:c8:2c:3d:73:0c:4b:1f:92:6a:e7:db:25:f5:de:e6:1c:f9: ab:07:7c:e1:f1:ba:25:b5:89:34:90:f0:9c:db:a4:1e:df:97: e3:8c:be:01:3e:4b:50:bd:68:76:4f:fb:42:b4:d4:fa:a7:37: f6:29:d8:50:61:2e:94:04:9b:81:e0:25:17:06:53:41:9e:b8: 45:32:c9:1b:64:80:a8:cd:94:56:4b:65:ac:17:8b:b5:03:e6: 7e:13:ab:c0:5b:b5:38:a8:e7:42:01:24:36:11:c9:28:5b:8b: e3:31:3f:3b:cf:44:79:60:cc:8b:e1:39:5f:48:08:46:ae:4d: 34:5d:ab:b7:bf:a2:24:ce:fa:4e:6f:77:15:f2:72:91:7d:3b: be:c8:72:3a:92:cb:30:da:b8:f4:80:69:33:11:b3:c0:ad:b8: 43:39:d1:38 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD REJGNTExMC8GA1UEBRMoOTgwQ0U1QkJGMkNGMzVENjBBRTNCMDcyMThBQjVDQTkx MDE0MkM5MDAeFw0yNTA1MDcwNjM0MjFaFw0yNTA1MTQwNjM0MjFaMBgxFjAUBgNV BAMTDTY4MWFmZWVkLTNhMGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDUH43q9UjhgbNt6fVogEKwPDGXFF/2UojFvFQ3baYJ9nYCR2bPhJ+qF6XEz6sV VWGK1Q24Ffqall4R/amGb/mQUC2xrCHMxBbrfA569o269IHGEogNC6vwLAkMu6DN lHpFHa+yuEyXpA+Hb/z1JfQ2i0nyG+i46x29sg9broTQ3dvykPIqVM1gopvJvioP /px5eyqqiWzHQEC88B0owSAMYNm2rSl9qb2Ro6tAgQuvR43Qmq75lc9wHQFphQLK TlHmELsX+gwNYSP07m+yc/8KK7xEoHxeQ/GiZR9HFkGgHOEO3+QVTc7HfvWQm3nJ xgoaVQNk0PMAToSMtJCRNzLFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUQmEbm1Am nqf/BGKeTjrnYXK1mDIwHwYDVR0jBBgwFoAUmAzlu/LPNdYK47ByGKtcqRAULJAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNEQkY1LzVFOUM0QkIwQ0I1 MTExRUY5MDQwMEQxN0M0RjlBRTAyL21Bemx1X0xQTmRZSzQ3QnlHS3RjcVJBVUxK QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvbUF6bHVfTFBOZFlLNDdCeUdLdGNxUkFVTEpBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNE QkY1LzVFOUM0QkIwQ0I1MTExRUY5MDQwMEQxN0M0RjlBRTAyL21Bemx1X0xQTmRZ SzQ3QnlHS3RjcVJBVUxKQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEQBZwSeS9dom1vG5f1iCbwUwWNpjBXwn+GHBytXQ9wurG4Q8vzRM7eF YQ9XUyKDoOVxXpAqT7mxscRcT2uba2aFDnGNYR37Wg/7oE/+SruoacWHlu8DeQOb VjvILD1zDEsfkmrn2yX13uYc+asHfOHxuiW1iTSQ8JzbpB7fl+OMvgE+S1C9aHZP +0K01PqnN/Yp2FBhLpQEm4HgJRcGU0GeuEUyyRtkgKjNlFZLZawXi7UD5n4Tq8Bb tTio50IBJDYRyShbi+MxPzvPRHlgzIvhOV9ICEauTTRdq7e/oiTO+k5vdxXycpF9 O77IcjqSyzDauPSAaTMRs8CtuEM50Tg= -----END CERTIFICATE-----Generated at Thu May 8 13:59:15 2025 by rpki-client