$ rpki-client -vvf rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.mft File: lVqjNNYHfBfALW18rdIVmRIeTvo.mft (raw, json) Hash identifier: C3niv6x0ky7PcWzSm6NnfHVjN5dqiKy1iyPVds1xBWM= Subject key identifier: 6D:B9:DB:B3:C9:8A:32:FC:42:54:4D:95:49:8B:E8:24:AE:8A:D9:20 Authority key identifier: 95:5A:A3:34:D6:07:7C:17:C0:2D:6D:7C:AD:D2:15:99:12:1E:4E:FA Certificate issuer: /CN=A91D01AF/serialNumber=955AA334D6077C17C02D6D7CADD21599121E4EFA Certificate serial: 07D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lVqjNNYHfBfALW18rdIVmRIeTvo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.mft Manifest number: 07C9 Signing time: Thu 08 May 2025 20:55:11 +0000 Manifest this update: Thu 08 May 2025 20:55:10 +0000 Manifest next update: Thu 15 May 2025 20:55:10 +0000 Files and hashes: 1: lVqjNNYHfBfALW18rdIVmRIeTvo.crl (hash: inp8op5ymZhFsKtP0AAVdO6ekO+Y5hNHwcFI83er/ak=) 2: AD797FA2F17E11EAA3CC597BC4F9AE02.roa (hash: h5ITx5pXE/9NCEhkkWyRU4Y7R0J0MFf0GXuloXcx21g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.crl rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lVqjNNYHfBfALW18rdIVmRIeTvo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 May 2025 20:55:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2000 (0x7d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D01AF, serialNumber=955AA334D6077C17C02D6D7CADD21599121E4EFA Validity Not Before: May 8 20:55:10 2025 GMT Not After : May 15 20:55:10 2025 GMT Subject: CN=681d1a2e-2f99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:b9:03:ec:23:39:19:b7:44:3f:72:5f:78:b9: 5d:c4:04:dc:68:02:55:db:69:18:4a:93:0c:0d:85: 45:8a:64:c8:f6:67:5e:f7:13:dc:b9:d8:e4:3d:27: 5c:95:6c:1b:a4:0d:9e:63:41:a2:79:00:03:ef:a8: a4:63:e2:a0:ba:31:56:0f:e5:3e:1f:e8:e6:38:3a: 26:23:3c:5a:28:2a:d8:51:f5:60:51:58:35:0a:bd: e9:a1:0f:84:ce:24:e7:eb:2d:37:cb:fa:ce:35:1b: cb:30:e6:2e:04:ba:58:7b:6a:2c:1d:2a:9a:e1:11: 2e:c8:d2:f6:80:7d:fe:b5:3e:aa:33:f8:9f:30:84: 6e:15:a7:70:ef:d2:b3:14:98:2e:8f:4a:63:fa:43: e9:18:a2:12:ba:f8:00:de:87:6b:a6:d9:8d:36:fa: e8:01:ba:0e:f2:38:55:07:1f:e4:05:df:87:7a:3b: 45:49:26:67:f3:88:7f:0f:17:fd:a3:f4:48:5c:25: 75:88:ea:b0:c5:c3:1e:15:f3:45:70:b8:45:36:be: f5:e5:1a:59:62:5e:cb:b6:90:d7:13:f9:97:1c:79: 27:13:0c:29:93:b1:5b:d5:b1:da:63:49:b8:7d:7f: 86:0a:4b:f5:4c:58:d1:ba:d6:55:33:1d:ed:32:d8: 82:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:B9:DB:B3:C9:8A:32:FC:42:54:4D:95:49:8B:E8:24:AE:8A:D9:20 X509v3 Authority Key Identifier: keyid:95:5A:A3:34:D6:07:7C:17:C0:2D:6D:7C:AD:D2:15:99:12:1E:4E:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lVqjNNYHfBfALW18rdIVmRIeTvo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:67:93:20:18:50:66:76:d9:ca:4a:ae:09:ee:f2:fa:50:d1: c3:9e:55:17:8f:31:32:29:8f:01:a9:e1:3e:91:f2:6f:8a:23: 84:01:a0:55:57:7b:28:bf:46:80:3e:71:da:c4:32:43:4b:4e: 74:7e:5b:e3:a3:88:da:ce:21:b5:ea:d5:cb:31:c6:c3:59:d0: 37:4e:05:b7:85:dc:af:72:91:bc:58:21:4d:0b:9a:92:e1:30: aa:f6:d7:1d:21:44:c2:65:06:f9:df:8a:5e:2d:d8:9b:53:62: f7:5f:4d:7d:f2:6e:67:fe:73:dc:79:8f:65:29:f4:af:bd:72: 23:56:8e:92:8d:b6:ea:03:f1:9b:dc:f7:2d:f7:b3:35:fc:31: 8e:3e:19:ed:99:92:da:29:f1:90:e0:52:8a:d3:69:3b:ed:a2: 1f:23:8f:ec:15:72:31:c5:cd:71:e0:8f:85:f6:84:6b:41:5c: 73:d4:34:a7:fb:47:8a:d8:14:c7:56:16:c2:cf:0e:27:4c:d1: ec:cb:26:6a:93:78:84:29:6e:40:5f:d6:61:d3:49:27:7c:e8: fd:cb:b9:bd:b8:55:bc:66:95:c1:76:49:3a:ad:80:48:f0:dd: 37:46:29:64:ac:2b:7e:ca:d1:74:40:a1:2b:3f:25:9e:2a:f1: c9:57:54:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDAxQUYxMTAvBgNVBAUTKDk1NUFBMzM0RDYwNzdDMTdDMDJENkQ3Q0FERDIxNTk5 MTIxRTRFRkEwHhcNMjUwNTA4MjA1NTEwWhcNMjUwNTE1MjA1NTEwWjAYMRYwFAYD VQQDEw02ODFkMWEyZS0yZjk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3LkD7CM5GbdEP3JfeLldxATcaAJV22kYSpMMDYVFimTI9mde9xPcudjkPSdc lWwbpA2eY0GieQAD76ikY+KgujFWD+U+H+jmODomIzxaKCrYUfVgUVg1Cr3poQ+E ziTn6y03y/rONRvLMOYuBLpYe2osHSqa4REuyNL2gH3+tT6qM/ifMIRuFadw79Kz FJguj0pj+kPpGKISuvgA3odrptmNNvroAboO8jhVBx/kBd+HejtFSSZn84h/Dxf9 o/RIXCV1iOqwxcMeFfNFcLhFNr715RpZYl7LtpDXE/mXHHknEwwpk7Fb1bHaY0m4 fX+GCkv1TFjRutZVMx3tMtiCIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG2527PJ ijL8QlRNlUmL6CSuitkgMB8GA1UdIwQYMBaAFJVaozTWB3wXwC1tfK3SFZkSHk76 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDFBRi9DRDdFNzBEOEYx N0QxMUVBQUIzOTI1NzhDNEY5QUUwMi9sVnFqTk5ZSGZCZkFMVzE4cmRJVm1SSWVU dm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xWcWpOTllIZkJmQUxXMThyZElWbVJJZVR2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MDFBRi9DRDdFNzBEOEYxN0QxMUVBQUIzOTI1NzhDNEY5QUUwMi9sVnFqTk5ZSGZC ZkFMVzE4cmRJVm1SSWVUdm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSZ5MgGFBmdtnKSq4J7vL6UNHDnlUXjzEyKY8BqeE+kfJviiOEAaBV V3sov0aAPnHaxDJDS050flvjo4jaziG16tXLMcbDWdA3TgW3hdyvcpG8WCFNC5qS 4TCq9tcdIUTCZQb534peLdibU2L3X0198m5n/nPceY9lKfSvvXIjVo6SjbbqA/Gb 3Pct97M1/DGOPhntmZLaKfGQ4FKK02k77aIfI4/sFXIxxc1x4I+F9oRrQVxz1DSn +0eK2BTHVhbCzw4nTNHsyyZqk3iEKW5AX9Zh00knfOj9y7m9uFW8ZpXBdkk6rYBI 8N03RilkrCt+ytF0QKErPyWeKvHJV1Q3 -----END CERTIFICATE-----Generated at Fri May 9 09:32:52 2025 by rpki-client