$ rpki-client -vvf rpki.apnic.net/member_repository/A91E28D8/6B24BCC21ABF11EDB5B4CC4CC4F9AE02/lY1wluouaxa8JKHQRXGdLsUUSX4.mft File: lY1wluouaxa8JKHQRXGdLsUUSX4.mft (raw, json) Hash identifier: TtkNfAEROTOD7SuQuLUE3qsXdG2LTjmMHW+GOrufOTY= Subject key identifier: E9:F6:A7:B7:C8:C6:6D:CE:33:76:A4:57:3E:CB:70:38:BD:91:B4:86 Authority key identifier: 95:8D:70:96:EA:2E:6B:16:BC:24:A1:D0:45:71:9D:2E:C5:14:49:7E Certificate issuer: /CN=A91E28D8/serialNumber=958D7096EA2E6B16BC24A1D045719D2EC514497E Certificate serial: 024E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lY1wluouaxa8JKHQRXGdLsUUSX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E28D8/6B24BCC21ABF11EDB5B4CC4CC4F9AE02/lY1wluouaxa8JKHQRXGdLsUUSX4.mft Manifest number: 024B Signing time: Sun 11 May 2025 01:22:55 +0000 Manifest this update: Sun 11 May 2025 01:22:54 +0000 Manifest next update: Sun 18 May 2025 01:22:54 +0000 Files and hashes: 1: lY1wluouaxa8JKHQRXGdLsUUSX4.crl (hash: QWJ+DWn2p/M4u9JTv+5/s2Y8WwDMVObve5KIIxWEWfg=) 2: 01109D481B9011EDBC68484CC4F9AE02.roa (hash: c791advS7FJxJQliNVREZFMZhHtkZDtdWCzXey8hKmc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E28D8/6B24BCC21ABF11EDB5B4CC4CC4F9AE02/lY1wluouaxa8JKHQRXGdLsUUSX4.crl rsync://rpki.apnic.net/member_repository/A91E28D8/6B24BCC21ABF11EDB5B4CC4CC4F9AE02/lY1wluouaxa8JKHQRXGdLsUUSX4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lY1wluouaxa8JKHQRXGdLsUUSX4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 01:22:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 590 (0x24e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E28D8, serialNumber=958D7096EA2E6B16BC24A1D045719D2EC514497E Validity Not Before: May 11 01:22:54 2025 GMT Not After : May 18 01:22:54 2025 GMT Subject: CN=681ffbef-2a3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:8d:f7:b2:b0:bd:1f:4e:15:92:1b:e4:b2:61: 0c:cc:d7:91:74:21:ec:ca:19:5a:44:63:6d:2b:4c: bf:dc:2b:ec:7f:54:fd:49:d7:4b:23:84:98:35:71: 4d:4a:3f:ca:46:d6:30:27:db:97:03:af:95:c2:80: fc:c1:8a:8e:b8:10:42:bc:8f:50:ce:51:23:f4:0a: c2:48:69:a1:9a:be:9c:5d:a1:0b:8b:00:71:c3:0a: 14:b9:4f:b4:de:e3:97:16:a5:20:90:55:5c:57:ec: 3e:5a:fc:1d:de:86:35:01:69:2e:3a:15:bb:c8:a7: e4:c7:5f:d0:da:d4:40:37:d2:17:f1:e9:22:4f:36: 65:86:84:a1:4a:a3:07:75:0f:48:5f:74:8c:8a:89: 1f:85:18:77:65:22:10:93:73:c0:3b:68:52:b9:a9: 3a:29:6d:d4:d8:c7:78:18:de:dc:d4:57:2b:19:0f: 92:c8:21:7a:55:c7:6e:de:b8:bd:e3:41:47:1a:ec: 16:be:b4:1d:97:c2:5b:db:8f:9d:d7:a7:cf:aa:27: f7:7c:ea:b6:92:11:00:29:28:c5:02:5a:73:e3:ea: bb:da:85:a6:17:99:b5:7b:18:22:cf:0d:6a:19:70: b6:05:b5:59:1d:73:2f:e4:2a:7a:b1:ca:76:c8:c0: c0:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:F6:A7:B7:C8:C6:6D:CE:33:76:A4:57:3E:CB:70:38:BD:91:B4:86 X509v3 Authority Key Identifier: keyid:95:8D:70:96:EA:2E:6B:16:BC:24:A1:D0:45:71:9D:2E:C5:14:49:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E28D8/6B24BCC21ABF11EDB5B4CC4CC4F9AE02/lY1wluouaxa8JKHQRXGdLsUUSX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lY1wluouaxa8JKHQRXGdLsUUSX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E28D8/6B24BCC21ABF11EDB5B4CC4CC4F9AE02/lY1wluouaxa8JKHQRXGdLsUUSX4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:5d:92:a5:8f:13:53:5c:a2:c4:62:8e:04:e6:59:7d:46:40: 52:7f:ed:78:42:98:37:74:b4:58:a1:1d:1f:06:b7:4c:33:48: dc:f8:3c:bf:c9:71:2d:35:35:71:43:9a:e1:01:1e:8b:c1:82: 9c:90:d5:82:65:7e:7a:73:1b:a6:14:87:cf:42:a0:8c:af:fa: 23:e8:ba:ca:dd:c4:03:4e:39:de:d1:a0:3d:f7:6b:50:b2:4c: 30:2e:d9:20:94:96:13:d4:08:ba:bf:f4:b9:2f:77:98:36:87: 6f:94:11:08:85:ac:80:a7:5c:59:42:23:8a:c7:b6:7c:5a:69: a8:e3:96:2a:40:1c:24:8f:34:e7:5b:01:ef:53:b6:5a:6c:6d: 22:e7:10:6e:3b:15:72:6d:6d:d6:b0:8c:13:77:ce:85:33:fd: a3:cf:e0:f9:60:97:93:d0:67:e7:c8:43:c7:88:97:b9:96:ea: ec:46:55:75:cb:3a:9d:78:12:bb:35:30:56:b6:8e:31:33:30: 9c:a3:0d:4e:fc:5d:9b:4d:69:94:c2:e7:f4:c4:b4:0f:21:c5: ed:85:81:ad:2f:99:6e:c6:bd:7c:1e:c8:fc:d8:4a:67:b5:80: 44:f0:a2:c8:01:84:4a:aa:b7:2e:92:79:93:c2:35:35:07:1c: f1:1e:94:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAk4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI4RDgxMTAvBgNVBAUTKDk1OEQ3MDk2RUEyRTZCMTZCQzI0QTFEMDQ1NzE5RDJF QzUxNDQ5N0UwHhcNMjUwNTExMDEyMjU0WhcNMjUwNTE4MDEyMjU0WjAYMRYwFAYD VQQDEw02ODFmZmJlZi0yYTNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuI33srC9H04VkhvksmEMzNeRdCHsyhlaRGNtK0y/3Cvsf1T9SddLI4SYNXFN Sj/KRtYwJ9uXA6+VwoD8wYqOuBBCvI9QzlEj9ArCSGmhmr6cXaELiwBxwwoUuU+0 3uOXFqUgkFVcV+w+Wvwd3oY1AWkuOhW7yKfkx1/Q2tRAN9IX8ekiTzZlhoShSqMH dQ9IX3SMiokfhRh3ZSIQk3PAO2hSuak6KW3U2Md4GN7c1FcrGQ+SyCF6Vcdu3ri9 40FHGuwWvrQdl8Jb24+d16fPqif3fOq2khEAKSjFAlpz4+q72oWmF5m1exgizw1q GXC2BbVZHXMv5Cp6scp2yMDAbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOn2p7fI xm3OM3akVz7LcDi9kbSGMB8GA1UdIwQYMBaAFJWNcJbqLmsWvCSh0EVxnS7FFEl+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjhEOC82QjI0QkNDMjFB QkYxMUVEQjVCNENDNENDNEY5QUUwMi9sWTF3bHVvdWF4YThKS0hRUlhHZExzVVVT WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xZMXdsdW91YXhhOEpLSFFSWEdkTHNVVVNYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjhEOC82QjI0QkNDMjFBQkYxMUVEQjVCNENDNENDNEY5QUUwMi9sWTF3bHVvdWF4 YThKS0hRUlhHZExzVVVTWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgXZKljxNTXKLEYo4E5ll9RkBSf+14Qpg3dLRYoR0fBrdMM0jc+Dy/ yXEtNTVxQ5rhAR6LwYKckNWCZX56cxumFIfPQqCMr/oj6LrK3cQDTjne0aA992tQ skwwLtkglJYT1Ai6v/S5L3eYNodvlBEIhayAp1xZQiOKx7Z8Wmmo45YqQBwkjzTn WwHvU7ZabG0i5xBuOxVybW3WsIwTd86FM/2jz+D5YJeT0GfnyEPHiJe5lursRlV1 yzqdeBK7NTBWto4xMzCcow1O/F2bTWmUwuf0xLQPIcXthYGtL5luxr18Hsj82Epn tYBE8KLIAYRKqrcuknmTwjU1BxzxHpS4 -----END CERTIFICATE-----Generated at Mon May 12 19:03:21 2025 by rpki-client