$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft File: lHy2dKhYzZGupVJro2aKEeSey5M.mft (raw, json) Hash identifier: ODrQFfL5AtnX/2IgnqMuxDtbrgOT405q+XuVrgTkH+E= Subject key identifier: F8:12:AB:8C:9A:E4:3E:22:12:10:81:ED:8B:CA:B0:27:68:C5:39:10 Authority key identifier: 94:7C:B6:74:A8:58:CD:91:AE:A5:52:6B:A3:66:8A:11:E4:9E:CB:93 Certificate issuer: /CN=A91DFC30/serialNumber=947CB674A858CD91AEA5526BA3668A11E49ECB93 Certificate serial: 03D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft Manifest number: 03CF Signing time: Sun 11 May 2025 00:12:34 +0000 Manifest this update: Sun 11 May 2025 00:12:34 +0000 Manifest next update: Sun 18 May 2025 00:12:34 +0000 Files and hashes: 1: lHy2dKhYzZGupVJro2aKEeSey5M.crl (hash: JWondgfMmnThlz2857zFcYtkeMlFtV2TUoAGNg1CKZQ=) 2: 13F5D28685B111ECB675B552C4F9AE02.roa (hash: wg979tEV/edC9z/60lEEUA1wH6+Atveb0Z20mtMK9/g=) 3: 147D51CA85B111ECB675B552C4F9AE02.roa (hash: e9cwg8d7bC8r2DHgx/kL7/A4+KHztZ7rWF6Yv+XqYD8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.crl rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 18:24:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 984 (0x3d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFC30, serialNumber=947CB674A858CD91AEA5526BA3668A11E49ECB93 Validity Not Before: May 11 00:12:34 2025 GMT Not After : May 18 00:12:34 2025 GMT Subject: CN=681feb72-344b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:eb:bf:40:c6:03:64:b0:c9:8a:a9:29:5c:f8: 50:95:00:0d:48:de:9d:81:c8:b1:53:88:ce:3d:98: c6:3b:06:ef:d3:2a:07:8c:83:3b:59:8b:5c:7a:b8: 0d:a8:e2:80:3e:cf:9e:46:1b:57:d3:97:ce:0a:46: 2f:1c:91:cf:25:7e:6c:a3:11:70:a6:13:e2:e5:9c: c6:2d:d9:e3:54:9c:3c:8b:1c:bd:41:e3:7e:d4:67: ce:76:84:9f:d7:98:d4:a5:c4:e1:ae:75:ca:99:fb: 07:e4:83:b6:58:3d:ac:e2:f0:26:d6:36:0a:95:67: ce:c3:ee:07:9e:45:6e:47:04:9e:ab:4b:ed:55:26: 19:38:a9:d5:0e:75:14:ac:39:61:1e:98:4e:55:43: ec:a4:05:73:97:23:f5:5d:43:12:ac:41:a6:b8:7e: c8:46:e4:10:d3:e7:ac:fd:45:83:5e:cb:ce:7f:44: 4c:66:ef:1e:e8:99:d0:36:e9:24:88:66:bd:32:cc: b9:d2:4a:fa:5c:a9:d0:09:53:96:7f:13:c8:5d:78: 4c:c5:8c:a4:5c:6a:5f:fc:a7:23:4f:e8:66:e5:ee: 73:19:54:3f:86:fa:df:a0:9a:aa:5d:0d:84:0a:f7: 2f:c4:90:0a:ed:45:5c:15:3c:06:01:a7:1a:65:80: 89:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:12:AB:8C:9A:E4:3E:22:12:10:81:ED:8B:CA:B0:27:68:C5:39:10 X509v3 Authority Key Identifier: keyid:94:7C:B6:74:A8:58:CD:91:AE:A5:52:6B:A3:66:8A:11:E4:9E:CB:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:77:18:81:2f:49:54:db:1e:a7:12:d3:49:e1:b8:ed:59:5b: 18:87:e5:cc:14:0f:93:58:ec:28:60:ea:39:6d:e8:0f:27:00: 5d:92:d3:c5:96:9a:8a:49:3d:f9:6a:48:49:eb:39:40:82:d8: 84:60:60:21:5c:ba:d0:ce:ad:08:2e:c4:8e:98:96:52:54:fa: 39:90:33:53:99:15:dc:f2:38:a2:60:9c:57:b4:74:85:38:58: 27:ec:79:b2:90:d8:32:ec:8b:4f:1e:2c:76:81:82:eb:88:62: 19:8f:bc:d5:d9:bc:fd:7d:7f:6a:f9:7d:60:dd:48:e0:9f:02: 89:a2:47:4c:2e:e1:27:25:33:a8:cd:4f:c3:0f:1a:05:ab:98: 91:f7:8e:24:40:91:d3:7c:3c:8c:db:8e:ad:8e:69:bf:e4:27: 97:2a:29:c8:00:a2:68:59:94:3b:4d:89:35:f4:6b:a4:38:39: 34:a0:1a:72:89:d9:70:7e:55:3a:70:ed:43:9a:36:f6:1c:e3: 55:40:26:01:2a:7e:f5:6e:df:60:b9:8a:c9:0b:31:62:08:87: be:a4:79:a2:3b:36:3d:93:63:ce:a4:dd:d8:16:6e:8f:58:16: 97:9e:43:98:c6:da:a1:f6:8d:f2:8d:71:14:a9:e2:f9:bc:41: 6a:2a:2f:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZDMzAxMTAvBgNVBAUTKDk0N0NCNjc0QTg1OENEOTFBRUE1NTI2QkEzNjY4QTEx RTQ5RUNCOTMwHhcNMjUwNTExMDAxMjM0WhcNMjUwNTE4MDAxMjM0WjAYMRYwFAYD VQQDEw02ODFmZWI3Mi0zNDRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmuu/QMYDZLDJiqkpXPhQlQANSN6dgcixU4jOPZjGOwbv0yoHjIM7WYtcergN qOKAPs+eRhtX05fOCkYvHJHPJX5soxFwphPi5ZzGLdnjVJw8ixy9QeN+1GfOdoSf 15jUpcThrnXKmfsH5IO2WD2s4vAm1jYKlWfOw+4HnkVuRwSeq0vtVSYZOKnVDnUU rDlhHphOVUPspAVzlyP1XUMSrEGmuH7IRuQQ0+es/UWDXsvOf0RMZu8e6JnQNukk iGa9Msy50kr6XKnQCVOWfxPIXXhMxYykXGpf/KcjT+hm5e5zGVQ/hvrfoJqqXQ2E CvcvxJAK7UVcFTwGAacaZYCJjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPgSq4ya 5D4iEhCB7YvKsCdoxTkQMB8GA1UdIwQYMBaAFJR8tnSoWM2RrqVSa6NmihHknsuT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkMzMC8xMTJBRjFBQzg1 QUQxMUVDQjM2RjQxNERDNEY5QUUwMi9sSHkyZEtoWXpaR3VwVkpybzJhS0VlU2V5 NU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xIeTJkS2hZelpHdXBWSnJvMmFLRWVTZXk1TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RkMzMC8xMTJBRjFBQzg1QUQxMUVDQjM2RjQxNERDNEY5QUUwMi9sSHkyZEtoWXpa R3VwVkpybzJhS0VlU2V5NU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrdxiBL0lU2x6nEtNJ4bjtWVsYh+XMFA+TWOwoYOo5begPJwBdktPF lpqKST35akhJ6zlAgtiEYGAhXLrQzq0ILsSOmJZSVPo5kDNTmRXc8jiiYJxXtHSF OFgn7HmykNgy7ItPHix2gYLriGIZj7zV2bz9fX9q+X1g3UjgnwKJokdMLuEnJTOo zU/DDxoFq5iR944kQJHTfDyM246tjmm/5CeXKinIAKJoWZQ7TYk19GukODk0oBpy idlwflU6cO1Dmjb2HONVQCYBKn71bt9guYrJCzFiCIe+pHmiOzY9k2POpN3YFm6P WBaXnkOYxtqh9o3yjXEUqeL5vEFqKi8Z -----END CERTIFICATE-----Generated at Sun May 11 03:01:11 2025 by rpki-client