$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/lTUaGSeo8Q660c48bEpaxGUVynA.mft File: lTUaGSeo8Q660c48bEpaxGUVynA.mft (raw, json) Hash identifier: ZigtNX0QeE7iMlhL9EK52Alruy/yGvjMC4MibMCEzj8= Subject key identifier: D4:45:15:D3:ED:2F:A9:22:87:9D:B7:99:A0:CF:BA:44:91:64:7A:AE Authority key identifier: 95:35:1A:19:27:A8:F1:0E:BA:D1:CE:3C:6C:4A:5A:C4:65:15:CA:70 Certificate issuer: /CN=A91D4E15/serialNumber=95351A1927A8F10EBAD1CE3C6C4A5AC46515CA70 Certificate serial: 017B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lTUaGSeo8Q660c48bEpaxGUVynA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/lTUaGSeo8Q660c48bEpaxGUVynA.mft Manifest number: 0178 Signing time: Tue 13 May 2025 02:59:08 +0000 Manifest this update: Tue 13 May 2025 02:59:08 +0000 Manifest next update: Tue 20 May 2025 02:59:08 +0000 Files and hashes: 1: lTUaGSeo8Q660c48bEpaxGUVynA.crl (hash: d8Lz9CaA4G0S5K76uJPKNmwqy64ryc2w4K/CJ43vIBM=) 2: 90F09734F1B311EDA789BB57C4F9AE02.roa (hash: 12wpcAe05HtenMlOH90kdV4i4OluuZbyZiMI0pKZkoI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/lTUaGSeo8Q660c48bEpaxGUVynA.crl rsync://rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/lTUaGSeo8Q660c48bEpaxGUVynA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lTUaGSeo8Q660c48bEpaxGUVynA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 02:59:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 379 (0x17b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4E15, serialNumber=95351A1927A8F10EBAD1CE3C6C4A5AC46515CA70 Validity Not Before: May 13 02:59:08 2025 GMT Not After : May 20 02:59:08 2025 GMT Subject: CN=6822b57c-ffcf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:db:dc:be:44:47:08:33:f4:79:dc:7a:96:fc: 43:c6:35:17:3a:9b:68:c0:a6:6c:cd:82:4a:13:08: 09:57:c5:5d:69:e1:ff:61:2f:47:a9:cc:a5:9e:9b: 63:ef:6a:31:87:fa:96:76:37:23:57:4a:6a:89:5a: 19:a8:b5:28:d7:10:bc:f7:7b:d3:f4:32:9b:da:a6: 8c:e0:52:f4:a3:a7:d9:b3:64:2c:dd:f5:bc:a7:74: d5:f5:17:ce:08:b9:57:56:0a:b6:54:6b:28:a1:33: bd:35:8c:bf:ac:be:7d:9b:6e:40:eb:18:f9:1b:24: de:11:9d:14:56:74:40:f2:6d:61:26:5a:cf:59:31: 08:01:5a:9e:cc:84:89:d9:f1:cc:50:e2:02:64:85: cc:68:5f:21:f9:a9:17:ca:9a:99:0d:88:de:38:70: af:76:44:5e:69:e3:e7:9e:4b:b6:21:5e:d3:bd:11: 0b:ca:2f:6b:84:37:7d:30:f0:05:03:57:81:f7:7f: fa:55:ae:93:8f:d7:c7:78:a5:6d:aa:23:17:c1:6e: 30:d2:d8:ee:cf:93:8f:e7:05:10:4a:8b:c3:52:f1: e8:95:91:20:36:f2:df:32:96:db:15:c4:0c:1e:1b: f0:10:b7:99:1b:73:c7:99:01:b9:5e:e7:a4:89:f2: a7:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:45:15:D3:ED:2F:A9:22:87:9D:B7:99:A0:CF:BA:44:91:64:7A:AE X509v3 Authority Key Identifier: keyid:95:35:1A:19:27:A8:F1:0E:BA:D1:CE:3C:6C:4A:5A:C4:65:15:CA:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/lTUaGSeo8Q660c48bEpaxGUVynA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lTUaGSeo8Q660c48bEpaxGUVynA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/lTUaGSeo8Q660c48bEpaxGUVynA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:28:04:9f:12:b4:6d:c2:7f:86:8a:27:49:fc:55:47:f3:03: 11:85:2a:9c:fd:f5:5f:24:bf:5a:c5:d5:b0:2c:a0:a4:9d:72: a3:35:2a:2b:b0:18:34:8a:8b:0b:8b:ae:5c:8b:d8:06:0a:0f: a4:99:9a:95:c9:d9:98:3e:66:d7:10:d4:2a:b0:39:40:2a:15: d5:89:3c:3c:d8:d9:db:57:b7:1f:a5:af:94:89:27:20:1e:4f: de:45:55:58:81:96:18:86:37:da:4c:07:e0:01:e9:6e:f5:b9: 96:4a:3b:2f:b2:b8:da:59:38:a2:72:08:79:4c:20:2b:7a:3f: 33:bc:77:16:37:49:62:b8:88:fe:31:12:ee:12:d3:a1:68:41: 0d:80:d8:a7:d8:18:3b:3d:f6:2c:4f:1a:32:bd:5f:ba:b4:01: 06:2b:eb:b8:b1:1a:3a:d2:0d:b5:18:6f:28:88:95:f4:cc:70: 9e:4d:d7:58:ed:6e:20:87:76:ea:e8:46:59:50:c4:2c:19:60: 7a:6d:50:62:3f:38:2e:b9:9c:61:24:63:d4:fe:ed:d5:30:4f: 17:27:e6:0d:12:43:15:35:dc:83:64:30:79:24:39:22:e4:82: 37:63:0a:48:d0:9e:b8:ae:4e:59:b4:be:ac:1d:a4:4d:e0:a8: 58:81:73:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDRFMTUxMTAvBgNVBAUTKDk1MzUxQTE5MjdBOEYxMEVCQUQxQ0UzQzZDNEE1QUM0 NjUxNUNBNzAwHhcNMjUwNTEzMDI1OTA4WhcNMjUwNTIwMDI1OTA4WjAYMRYwFAYD VQQDEw02ODIyYjU3Yy1mZmNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAndvcvkRHCDP0edx6lvxDxjUXOptowKZszYJKEwgJV8VdaeH/YS9Hqcylnptj 72oxh/qWdjcjV0pqiVoZqLUo1xC893vT9DKb2qaM4FL0o6fZs2Qs3fW8p3TV9RfO CLlXVgq2VGsooTO9NYy/rL59m25A6xj5GyTeEZ0UVnRA8m1hJlrPWTEIAVqezISJ 2fHMUOICZIXMaF8h+akXypqZDYjeOHCvdkReaePnnku2IV7TvRELyi9rhDd9MPAF A1eB93/6Va6Tj9fHeKVtqiMXwW4w0tjuz5OP5wUQSovDUvHolZEgNvLfMpbbFcQM HhvwELeZG3PHmQG5XuekifKnuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNRFFdPt L6kih523maDPukSRZHquMB8GA1UdIwQYMBaAFJU1GhknqPEOutHOPGxKWsRlFcpw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEUxNS81RERCNDQ0MEYx QUMxMUVEQTNEMUI3NEZDNEY5QUUwMi9sVFVhR1NlbzhRNjYwYzQ4YkVwYXhHVVZ5 bkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xUVWFHU2VvOFE2NjBjNDhiRXBheEdVVnluQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEUxNS81RERCNDQ0MEYxQUMxMUVEQTNEMUI3NEZDNEY5QUUwMi9sVFVhR1NlbzhR NjYwYzQ4YkVwYXhHVVZ5bkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlKASfErRtwn+GiidJ/FVH8wMRhSqc/fVfJL9axdWwLKCknXKjNSor sBg0iosLi65ci9gGCg+kmZqVydmYPmbXENQqsDlAKhXViTw82NnbV7cfpa+UiScg Hk/eRVVYgZYYhjfaTAfgAelu9bmWSjsvsrjaWTiicgh5TCArej8zvHcWN0liuIj+ MRLuEtOhaEENgNin2Bg7PfYsTxoyvV+6tAEGK+u4sRo60g21GG8oiJX0zHCeTddY 7W4gh3bq6EZZUMQsGWB6bVBiPzguuZxhJGPU/u3VME8XJ+YNEkMVNdyDZDB5JDki 5II3YwpI0J64rk5ZtL6sHaRN4KhYgXOx -----END CERTIFICATE-----Generated at Wed May 14 19:54:16 2025 by rpki-client