$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft File: LD0jWhshn0FmEJALADuKv9wXAqI.mft (raw, json) Hash identifier: beHHhdTlbrr7qBpkt+aMs1K3ADM+Vm/iRB1glH/fu4I= Subject key identifier: 80:45:67:68:D8:8B:7A:A7:93:3F:7F:9C:F4:0A:0A:0B:45:DD:DC:43 Authority key identifier: 2C:3D:23:5A:1B:21:9F:41:66:10:90:0B:00:3B:8A:BF:DC:17:02:A2 Certificate issuer: /CN=A91CEA40/serialNumber=2C3D235A1B219F416610900B003B8ABFDC1702A2 Certificate serial: 060B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft Manifest number: 05FE Signing time: Fri 16 May 2025 23:12:40 +0000 Manifest this update: Fri 16 May 2025 23:12:40 +0000 Manifest next update: Fri 23 May 2025 23:12:40 +0000 Files and hashes: 1: LD0jWhshn0FmEJALADuKv9wXAqI.crl (hash: gfBv7PJFpk5NWZiCCv6A9Mo+hCwZHNwsidZn4NMNoPk=) 2: 96F093D4BEA011EB8CAD965FC4F9AE02.roa (hash: NpLkQ/NypmNX/0X8ZR0aPK3YWZwmOShkZdvPXd4fivY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.crl rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 23:12:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1547 (0x60b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEA40, serialNumber=2C3D235A1B219F416610900B003B8ABFDC1702A2 Validity Not Before: May 16 23:12:40 2025 GMT Not After : May 23 23:12:40 2025 GMT Subject: CN=6827c668-2f7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:75:04:da:9d:e0:b3:89:41:fc:a6:c3:f1:e7: 8e:a7:4a:c1:12:51:c1:97:36:74:53:37:43:4a:9b: 1e:7b:ba:e1:49:d8:f2:d5:0e:7a:03:f0:da:83:0a: 48:26:bb:e4:76:cb:86:ab:2f:c7:6f:45:f4:40:f4: 80:4b:ec:70:25:6d:e1:ab:30:47:b4:dd:c8:a6:5f: b6:7f:63:b9:7d:6c:76:aa:67:38:c5:82:2b:24:71: 40:6e:f6:3d:c7:09:34:46:60:46:5e:68:32:8b:55: 1f:e6:c7:b5:8b:70:6c:ae:90:99:18:44:c8:46:9e: 36:d5:bf:6a:31:76:89:43:07:8c:fc:b0:f9:95:bb: 39:73:30:f2:6b:db:eb:83:06:32:dd:ae:92:1f:da: 29:2f:5a:8e:65:cb:e2:e7:55:ee:51:90:d6:66:9c: 5d:84:34:c2:2a:c9:a0:51:3f:16:19:c9:b0:c2:8b: 9d:d7:4f:32:b8:4f:6b:bb:23:3c:3a:00:98:9c:d7: 67:b7:f4:c3:90:fb:8a:c3:9e:05:50:3a:4f:8a:72: d8:a7:f1:94:84:2f:22:f8:bd:03:f6:fe:3c:4e:c3: f6:3c:8e:54:67:eb:2e:b0:a1:df:66:2b:c9:ee:a1: 37:3e:df:47:44:44:ed:8e:6f:ff:29:39:43:d8:7f: 56:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:45:67:68:D8:8B:7A:A7:93:3F:7F:9C:F4:0A:0A:0B:45:DD:DC:43 X509v3 Authority Key Identifier: keyid:2C:3D:23:5A:1B:21:9F:41:66:10:90:0B:00:3B:8A:BF:DC:17:02:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:37:02:a6:09:b2:f2:94:cf:a3:cc:17:e7:78:0b:43:3c:86: 34:9a:4f:fc:b9:60:06:f2:bd:d4:07:73:99:58:d5:b5:08:81: 78:ef:1f:0d:36:2c:2d:a8:4a:bd:41:31:bf:9d:49:6b:0b:29: 59:58:0d:02:cd:b7:60:54:d9:04:00:e0:2a:27:f7:73:96:92: 2b:76:bf:98:2f:a4:cb:9d:18:d5:a3:16:5e:40:e8:90:6c:db: dd:e7:6f:e1:9b:72:f9:2f:70:b2:ac:3c:c8:ff:36:44:17:92: db:fe:9b:97:05:35:24:b4:61:ca:19:eb:33:99:c9:41:81:a2: f3:bf:82:2d:83:c3:af:c4:f2:67:91:42:15:2c:98:9c:f9:ce: d2:03:a4:11:5d:51:db:2d:96:b9:db:f9:37:0f:57:32:89:2d: 8b:42:ae:4e:ec:b0:26:44:08:2c:6c:9c:cf:6d:11:75:07:6e: b8:e5:9d:48:9a:28:25:a8:d2:c8:55:78:eb:80:51:cf:fd:5c: 2b:1a:39:89:db:b3:17:b2:81:18:34:08:ff:a1:c3:3d:7d:74: 17:d9:a5:25:40:9e:e3:41:f0:56:be:66:ed:e4:62:df:d2:50: 0d:90:f0:84:6e:ce:99:08:6b:ff:96:b9:9a:30:96:30:8f:90: 1f:f1:50:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBgswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VBNDAxMTAvBgNVBAUTKDJDM0QyMzVBMUIyMTlGNDE2NjEwOTAwQjAwM0I4QUJG REMxNzAyQTIwHhcNMjUwNTE2MjMxMjQwWhcNMjUwNTIzMjMxMjQwWjAYMRYwFAYD VQQDEw02ODI3YzY2OC0yZjdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx3UE2p3gs4lB/KbD8eeOp0rBElHBlzZ0UzdDSpsee7rhSdjy1Q56A/DagwpI JrvkdsuGqy/Hb0X0QPSAS+xwJW3hqzBHtN3Ipl+2f2O5fWx2qmc4xYIrJHFAbvY9 xwk0RmBGXmgyi1Uf5se1i3BsrpCZGETIRp421b9qMXaJQweM/LD5lbs5czDya9vr gwYy3a6SH9opL1qOZcvi51XuUZDWZpxdhDTCKsmgUT8WGcmwwoud108yuE9ruyM8 OgCYnNdnt/TDkPuKw54FUDpPinLYp/GUhC8i+L0D9v48TsP2PI5UZ+susKHfZivJ 7qE3Pt9HRETtjm//KTlD2H9WIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIBFZ2jY i3qnkz9/nPQKCgtF3dxDMB8GA1UdIwQYMBaAFCw9I1obIZ9BZhCQCwA7ir/cFwKi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUE0MC84RTk2NEJDRUFG NzkxMUVCODQyMTdBNThDNEY5QUUwMi9MRDBqV2hzaG4wRm1FSkFMQUR1S3Y5d1hB cUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xEMGpXaHNobjBGbUVKQUxBRHVLdjl3WEFxSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUE0MC84RTk2NEJDRUFGNzkxMUVCODQyMTdBNThDNEY5QUUwMi9MRDBqV2hzaG4w Rm1FSkFMQUR1S3Y5d1hBcUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuNwKmCbLylM+jzBfneAtDPIY0mk/8uWAG8r3UB3OZWNW1CIF47x8N NiwtqEq9QTG/nUlrCylZWA0CzbdgVNkEAOAqJ/dzlpIrdr+YL6TLnRjVoxZeQOiQ bNvd52/hm3L5L3CyrDzI/zZEF5Lb/puXBTUktGHKGeszmclBgaLzv4Itg8OvxPJn kUIVLJic+c7SA6QRXVHbLZa52/k3D1cyiS2LQq5O7LAmRAgsbJzPbRF1B2645Z1I miglqNLIVXjrgFHP/VwrGjmJ27MXsoEYNAj/ocM9fXQX2aUlQJ7jQfBWvmbt5GLf 0lANkPCEbs6ZCGv/lrmaMJYwj5Af8VBj -----END CERTIFICATE-----Generated at Sat May 17 05:45:27 2025 by rpki-client