$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft File: lX5Qp1--UC844-2_P0qq5mWuFIs.mft (raw, json) Hash identifier: ujaRwkhkTeTqnWG9YzozpRd9V/XbRPHhQscNyD6WCFc= Subject key identifier: DB:14:2C:2E:44:BB:BD:DD:C3:9A:35:13:BA:40:F8:4E:8D:EA:FB:6F Authority key identifier: 95:7E:50:A7:5F:BE:50:2F:38:E3:ED:BF:3F:4A:AA:E6:65:AE:14:8B Certificate issuer: /CN=A91D0B0E/serialNumber=957E50A75FBE502F38E3EDBF3F4AAAE665AE148B Certificate serial: 75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lX5Qp1--UC844-2_P0qq5mWuFIs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft Manifest number: 74 Signing time: Sun 11 May 2025 05:32:43 +0000 Manifest this update: Sun 11 May 2025 05:32:42 +0000 Manifest next update: Sun 18 May 2025 05:32:42 +0000 Files and hashes: 1: lX5Qp1--UC844-2_P0qq5mWuFIs.crl (hash: CFCoKOjfgvqRJkg7csAGiDKrZNPOu9Svyqw5JviiLWM=) 2: A0A9D60C807511EFAD8C4257C4F9AE02.roa (hash: QmeMLe3zHSz7gk9gq16CkmBIAgYCod6kVBmzDpdZxiM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.crl rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lX5Qp1--UC844-2_P0qq5mWuFIs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 05:32:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 117 (0x75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0B0E, serialNumber=957E50A75FBE502F38E3EDBF3F4AAAE665AE148B Validity Not Before: May 11 05:32:42 2025 GMT Not After : May 18 05:32:42 2025 GMT Subject: CN=6820367a-74c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:aa:03:93:21:d3:ca:89:56:01:56:00:02:44: ab:de:4b:68:11:61:31:fe:01:d3:9e:14:da:0a:f1: 17:84:34:06:b7:00:3d:dd:25:0e:e1:ee:9b:75:ef: 6d:0e:6f:e1:14:77:a0:1e:1a:53:44:35:cf:20:f7: 2c:b1:98:f4:96:04:93:7a:92:16:ed:b0:48:de:30: de:d0:92:f6:54:b0:cf:42:01:18:8b:d7:3a:14:9a: a5:c4:90:1b:4d:40:87:5c:6a:bd:46:bc:8f:e4:71: 92:38:e5:64:fa:82:ca:7f:ca:0d:fe:55:0c:31:6d: ac:78:39:82:93:2f:3e:f8:e3:b5:36:09:b3:cc:5e: 9b:e7:bc:57:99:d0:c6:70:16:ca:ae:9c:06:dd:36: d0:ef:74:29:d9:08:19:b2:c3:1d:8f:9e:37:58:8f: 24:2a:83:85:7c:9c:de:58:88:ad:89:07:63:12:5c: 5a:3c:1f:a9:9f:2b:b6:a9:cb:58:8f:8f:b4:70:93: 5a:1e:8b:43:a9:9f:86:24:41:81:f9:46:8f:fb:f4: 85:fb:90:c8:0c:bc:5f:fa:29:18:bf:d1:15:74:96: 8a:6d:1f:20:60:d6:2b:c5:f3:b3:27:d8:23:fd:3c: 94:e2:72:fb:4b:1a:66:d0:4b:00:e7:1e:9e:f8:9b: f1:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:14:2C:2E:44:BB:BD:DD:C3:9A:35:13:BA:40:F8:4E:8D:EA:FB:6F X509v3 Authority Key Identifier: keyid:95:7E:50:A7:5F:BE:50:2F:38:E3:ED:BF:3F:4A:AA:E6:65:AE:14:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lX5Qp1--UC844-2_P0qq5mWuFIs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:7a:cb:2f:05:e7:70:44:32:69:5d:d4:16:5c:2c:b8:ef:70: fa:3e:b8:b9:3b:08:a0:80:8e:92:62:11:41:d2:83:d4:87:dd: 79:19:38:ac:d3:19:69:73:be:88:23:35:0e:e3:c2:b8:33:88: 59:d8:6a:3a:f2:a3:cd:ac:f4:d5:85:b2:6f:7b:f9:05:5a:83: 38:5b:85:84:ed:99:0f:b2:35:69:0a:0b:16:ac:5f:8e:52:0d: 48:32:31:16:a3:ba:ed:f8:ac:bb:f3:4d:99:75:67:17:0d:d7: d3:03:3a:21:76:ad:9e:53:a3:f4:03:80:63:57:f2:25:48:91: 79:b1:72:d4:27:79:aa:45:a8:8d:d1:a2:70:20:24:cd:9c:8e: 90:d7:4a:cf:73:09:26:9a:67:f0:79:6d:bc:54:30:9a:2c:46: cc:d5:78:ba:39:4f:da:6a:98:06:70:91:a3:81:00:71:be:58: f0:ea:97:7d:8c:10:ca:5b:a8:71:08:ac:f6:ea:f0:61:03:96: 74:fe:4c:eb:8c:1d:f1:57:d5:9a:f4:4f:0a:2c:bd:cd:6d:d4: 45:00:90:1a:41:1e:99:61:a7:e2:e4:fc:98:00:41:e2:4b:a2: 9f:36:0a:0e:13:47:1c:7d:5e:3b:c1:c4:d7:0f:49:f3:a9:0e: cc:b7:21:16 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MEIwRTExMC8GA1UEBRMoOTU3RTUwQTc1RkJFNTAyRjM4RTNFREJGM0Y0QUFBRTY2 NUFFMTQ4QjAeFw0yNTA1MTEwNTMyNDJaFw0yNTA1MTgwNTMyNDJaMBgxFjAUBgNV BAMTDTY4MjAzNjdhLTc0YzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8qgOTIdPKiVYBVgACRKveS2gRYTH+AdOeFNoK8ReENAa3AD3dJQ7h7pt1720O b+EUd6AeGlNENc8g9yyxmPSWBJN6khbtsEjeMN7QkvZUsM9CARiL1zoUmqXEkBtN QIdcar1GvI/kcZI45WT6gsp/yg3+VQwxbax4OYKTLz7447U2CbPMXpvnvFeZ0MZw FsqunAbdNtDvdCnZCBmywx2PnjdYjyQqg4V8nN5YiK2JB2MSXFo8H6mfK7apy1iP j7Rwk1oei0Opn4YkQYH5Ro/79IX7kMgMvF/6KRi/0RV0loptHyBg1ivF87Mn2CP9 PJTicvtLGmbQSwDnHp74m/GHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU2xQsLkS7 vd3DmjUTukD4To3q+28wHwYDVR0jBBgwFoAUlX5Qp1++UC844+2/P0qq5mWuFIsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQwQjBFLzRFNkNCNEY2ODA2 OTExRUY4ODdCNzAzQ0M0RjlBRTAyL2xYNVFwMS0tVUM4NDQtMl9QMHFxNW1XdUZJ cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbFg1UXAxLS1VQzg0NC0yX1AwcXE1bVd1RklzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQw QjBFLzRFNkNCNEY2ODA2OTExRUY4ODdCNzAzQ0M0RjlBRTAyL2xYNVFwMS0tVUM4 NDQtMl9QMHFxNW1XdUZJcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHB6yy8F53BEMmld1BZcLLjvcPo+uLk7CKCAjpJiEUHSg9SH3XkZOKzT GWlzvogjNQ7jwrgziFnYajryo82s9NWFsm97+QVagzhbhYTtmQ+yNWkKCxasX45S DUgyMRajuu34rLvzTZl1ZxcN19MDOiF2rZ5To/QDgGNX8iVIkXmxctQneapFqI3R onAgJM2cjpDXSs9zCSaaZ/B5bbxUMJosRszVeLo5T9pqmAZwkaOBAHG+WPDql32M EMpbqHEIrPbq8GEDlnT+TOuMHfFX1Zr0Twosvc1t1EUAkBpBHplhp+Lk/JgAQeJL op82Cg4TRxx9XjvBxNcPSfOpDsy3IRY= -----END CERTIFICATE-----Generated at Mon May 12 04:20:18 2025 by rpki-client