$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0C8E/032E57B8743911ECB557236FC4F9AE02/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.mft File: lTXXYRCzwCnFhVtMF0UFr2EZ8ww.mft (raw, json) Hash identifier: ZDpDK86bokrfPV36Ty4YxFvpfDadhllF0UXS/SghvHg= Subject key identifier: 57:15:54:7D:40:DD:55:78:D1:95:01:76:93:6E:5D:5B:BC:1A:53:B6 Authority key identifier: 95:35:D7:61:10:B3:C0:29:C5:85:5B:4C:17:45:05:AF:61:19:F3:0C Certificate issuer: /CN=A91D0C8E/serialNumber=9535D76110B3C029C5855B4C174505AF6119F30C Certificate serial: 042D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0C8E/032E57B8743911ECB557236FC4F9AE02/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.mft Manifest number: 040D Signing time: Thu 15 May 2025 00:30:19 +0000 Manifest this update: Thu 15 May 2025 00:30:19 +0000 Manifest next update: Thu 22 May 2025 00:30:19 +0000 Files and hashes: 1: lTXXYRCzwCnFhVtMF0UFr2EZ8ww.crl (hash: Xz35XCGq50GqhGm88oilVp2UWZ5Lg18ax+ItkE/OOtI=) 2: A8827568116911EEBB241C32C4F9AE02.roa (hash: ePscgiftvgu3AgZJRcwiRUYhc5l5akEknNm+3bxCM0A=) 3: E248BDA63C5211EF94184A20C4F9AE02.roa (hash: uCKPAwy0X3Z4CL+hlBr0CZ+w6vMoqyCthCGEPEwyTxY=) 4: A6FA9A4A116911EEBB241C32C4F9AE02.roa (hash: RgkBiig85GBTWo6hrTV95O/BhHQIjrp9qKOVuIGC96Q=) 5: F4D295243FDA11EFAF5E676AC4F9AE02.roa (hash: 1RhS2h2tWn1m1rNY8jrx9gtNAHNEkDyNHgYU79X2jK0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0C8E/032E57B8743911ECB557236FC4F9AE02/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.crl rsync://rpki.apnic.net/member_repository/A91D0C8E/032E57B8743911ECB557236FC4F9AE02/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 00:30:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1069 (0x42d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0C8E, serialNumber=9535D76110B3C029C5855B4C174505AF6119F30C Validity Not Before: May 15 00:30:19 2025 GMT Not After : May 22 00:30:19 2025 GMT Subject: CN=6825359b-15a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:bd:aa:cd:65:d2:7c:38:ce:37:88:b6:ee:41: 9d:cc:32:36:f0:65:92:e9:42:14:0b:04:5f:0b:0a: 3c:d7:be:ad:64:b9:66:b5:c8:f0:82:15:f4:b0:73: fd:03:2f:3d:f6:cd:60:8a:12:db:ce:b2:77:7b:c8: 50:b6:03:72:99:3f:8e:78:4f:c7:40:e4:ea:55:c2: 02:50:1c:d4:ac:d5:15:90:62:0b:27:3f:15:e6:88: 28:de:e9:f4:5d:e3:23:6b:13:4d:a5:fa:68:2b:2e: de:7a:57:07:75:54:80:e9:10:b4:99:2d:6f:56:ee: 81:99:01:cd:ef:10:d9:63:57:4f:26:d5:d1:ff:51: 21:8b:58:bd:46:14:c1:77:eb:c0:54:26:9a:d8:a2: 90:ee:17:65:42:9f:48:49:f6:36:a4:55:d8:f4:ce: c6:85:ae:ad:56:74:cd:09:3a:8e:e3:61:7a:74:ae: 23:3d:e7:fd:41:d8:78:92:5a:f3:d8:d0:9d:f4:f8: fe:d8:e9:3f:e4:8e:dc:81:2d:78:93:17:f7:02:59: 89:22:7e:70:b5:52:1c:89:5e:76:61:8d:22:c7:c1: c3:d9:e4:8d:54:a2:10:5d:2e:13:19:91:75:d1:d3: 69:06:1d:ce:53:d5:d3:7b:78:a0:21:a2:93:08:49: 8d:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:15:54:7D:40:DD:55:78:D1:95:01:76:93:6E:5D:5B:BC:1A:53:B6 X509v3 Authority Key Identifier: keyid:95:35:D7:61:10:B3:C0:29:C5:85:5B:4C:17:45:05:AF:61:19:F3:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0C8E/032E57B8743911ECB557236FC4F9AE02/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0C8E/032E57B8743911ECB557236FC4F9AE02/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:6c:b2:c9:dd:3c:fe:b5:43:6e:7c:48:fa:16:e3:4d:a1:28: 9f:3b:27:02:b2:64:cf:5a:de:39:b2:fc:d4:79:6d:2f:3b:29: 82:71:18:dd:0a:3b:4f:1c:36:ef:0b:0d:c1:aa:bb:fd:35:f3: fd:07:64:94:a1:1a:b1:d1:4f:4c:b3:36:15:8f:f9:66:59:2b: 17:07:b6:b4:60:fe:dc:36:09:ff:5f:b0:c6:68:c2:7a:f2:2d: 0e:e1:98:ca:84:69:a1:05:a6:0e:b7:15:5d:44:95:bb:93:0d: 5f:a2:cb:27:ec:7f:a2:81:79:e8:bc:42:19:d9:f8:12:76:fd: 7a:d7:be:83:5f:b0:a9:fa:e5:86:33:c6:88:bd:cd:ed:a7:93: e6:99:d4:b6:80:6f:00:72:21:0e:48:c5:4e:50:54:f0:62:f8: e6:1e:a3:ec:58:2c:36:c7:f7:f0:a3:02:7b:52:1e:55:99:38: 3c:62:15:ec:95:de:68:6e:ef:dc:77:c2:a1:79:ac:be:16:f4: 0b:d3:8b:b7:e5:c7:a3:00:0d:d6:cf:d4:3d:8a:a9:49:3b:b3: 3e:82:48:51:83:98:d2:73:22:49:f4:fe:06:7f:ab:d0:9e:2a: a2:09:a3:02:a4:b8:52:b2:eb:cd:b9:5e:38:92:81:b4:0d:a3: de:f8:7e:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBC0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBDOEUxMTAvBgNVBAUTKDk1MzVENzYxMTBCM0MwMjlDNTg1NUI0QzE3NDUwNUFG NjExOUYzMEMwHhcNMjUwNTE1MDAzMDE5WhcNMjUwNTIyMDAzMDE5WjAYMRYwFAYD VQQDEw02ODI1MzU5Yi0xNWE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3L2qzWXSfDjON4i27kGdzDI28GWS6UIUCwRfCwo8176tZLlmtcjwghX0sHP9 Ay899s1gihLbzrJ3e8hQtgNymT+OeE/HQOTqVcICUBzUrNUVkGILJz8V5ogo3un0 XeMjaxNNpfpoKy7eelcHdVSA6RC0mS1vVu6BmQHN7xDZY1dPJtXR/1Ehi1i9RhTB d+vAVCaa2KKQ7hdlQp9ISfY2pFXY9M7Gha6tVnTNCTqO42F6dK4jPef9Qdh4klrz 2NCd9Pj+2Ok/5I7cgS14kxf3AlmJIn5wtVIciV52YY0ix8HD2eSNVKIQXS4TGZF1 0dNpBh3OU9XTe3igIaKTCEmN1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFcVVH1A 3VV40ZUBdpNuXVu8GlO2MB8GA1UdIwQYMBaAFJU112EQs8ApxYVbTBdFBa9hGfMM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEM4RS8wMzJFNTdCODc0 MzkxMUVDQjU1NzIzNkZDNEY5QUUwMi9sVFhYWVJDendDbkZoVnRNRjBVRnIyRVo4 d3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xUWFhZUkN6d0NuRmhWdE1GMFVGcjJFWjh3dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEM4RS8wMzJFNTdCODc0MzkxMUVDQjU1NzIzNkZDNEY5QUUwMi9sVFhYWVJDendD bkZoVnRNRjBVRnIyRVo4d3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJbLLJ3Tz+tUNufEj6FuNNoSifOycCsmTPWt45svzUeW0vOymCcRjd CjtPHDbvCw3Bqrv9NfP9B2SUoRqx0U9MszYVj/lmWSsXB7a0YP7cNgn/X7DGaMJ6 8i0O4ZjKhGmhBaYOtxVdRJW7kw1fossn7H+igXnovEIZ2fgSdv16176DX7Cp+uWG M8aIvc3tp5PmmdS2gG8AciEOSMVOUFTwYvjmHqPsWCw2x/fwowJ7Uh5VmTg8YhXs ld5obu/cd8Kheay+FvQL04u35cejAA3Wz9Q9iqlJO7M+gkhRg5jScyJJ9P4Gf6vQ niqiCaMCpLhSsuvNuV44koG0DaPe+H7u -----END CERTIFICATE-----Generated at Thu May 15 19:13:36 2025 by rpki-client