$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.mft File: lFlKrsbtZqaAoVv-tc2leC1MLYg.mft (raw, json) Hash identifier: Efxxm8onjwGa7LzHbpFELjxH+luABA+FO7UycZkfnf4= Subject key identifier: 32:DC:6F:7F:27:37:23:29:0F:3C:2F:A2:BE:AF:E8:AC:4B:AC:69:17 Authority key identifier: 94:59:4A:AE:C6:ED:66:A6:80:A1:5B:FE:B5:CD:A5:78:2D:4C:2D:88 Certificate issuer: /CN=A91E2EF9/serialNumber=94594AAEC6ED66A680A15BFEB5CDA5782D4C2D88 Certificate serial: 8F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFlKrsbtZqaAoVv-tc2leC1MLYg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.mft Manifest number: 8B Signing time: Sun 11 May 2025 05:18:55 +0000 Manifest this update: Sun 11 May 2025 05:18:55 +0000 Manifest next update: Sun 18 May 2025 05:18:54 +0000 Files and hashes: 1: lFlKrsbtZqaAoVv-tc2leC1MLYg.crl (hash: gi9w5rzh+jK0M0X2u+h3lhYfKH8dw8Okj7S0x4b4FXU=) 2: D926DBDA605211EF90C2C621C4F9AE02.roa (hash: Cl2PJo7826qehYKKSG2/VdHV6kV/QSQl5KdRQS87oS0=) 3: E7C7DBF8A0E411EF98A7340EC4F9AE02.roa (hash: 7jEw+cOkWTAknu5PcBj2MNehVkDO0rbITl2EdNIaO7o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.crl rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFlKrsbtZqaAoVv-tc2leC1MLYg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 05:18:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 143 (0x8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2EF9, serialNumber=94594AAEC6ED66A680A15BFEB5CDA5782D4C2D88 Validity Not Before: May 11 05:18:55 2025 GMT Not After : May 18 05:18:54 2025 GMT Subject: CN=6820333f-c906 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:43:0e:4a:db:3e:55:98:ce:30:a0:0a:14:52: 74:14:3a:5d:05:5b:15:01:a6:63:d9:01:86:28:21: c9:51:a4:06:02:85:ab:60:a4:52:b4:32:eb:b5:ab: 83:a3:fd:b4:14:ec:35:c2:6f:7a:69:01:ee:9d:6e: eb:5f:25:39:c2:5e:88:2f:9c:e8:52:20:12:bc:0f: 57:03:20:b8:4f:bf:b1:80:82:ed:07:06:75:82:27: 6b:f1:70:6f:eb:bf:94:5f:6b:e9:8a:72:3f:f4:d9: c8:15:92:6d:93:7c:c5:69:5e:53:2c:52:3b:df:ff: 83:38:eb:dc:52:df:46:ed:3d:4a:68:29:c2:99:ea: 7d:0e:17:05:71:86:83:be:1a:92:c1:6c:00:83:63: 0c:88:c1:7b:d3:92:f9:9b:b0:49:52:30:d8:60:ba: 24:48:e4:dd:8a:31:0e:6f:3c:79:32:c9:7e:d0:32: b8:4b:51:df:d3:35:14:83:e8:03:5b:69:7f:43:d3: f5:8a:10:0e:c6:de:c7:e3:2a:70:4a:a6:4b:48:ca: bf:d7:b6:e6:47:ce:14:96:00:d2:26:80:6c:6f:f1: 99:0d:eb:4f:aa:ea:86:3c:5c:01:16:4a:82:88:41: ee:50:0d:89:7b:f9:04:c7:9e:57:21:b8:62:e2:4a: c4:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:DC:6F:7F:27:37:23:29:0F:3C:2F:A2:BE:AF:E8:AC:4B:AC:69:17 X509v3 Authority Key Identifier: keyid:94:59:4A:AE:C6:ED:66:A6:80:A1:5B:FE:B5:CD:A5:78:2D:4C:2D:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFlKrsbtZqaAoVv-tc2leC1MLYg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:2c:34:22:17:86:35:37:c1:15:7b:34:a9:b0:73:5b:65:b9: 28:09:84:65:3d:d0:12:ce:25:53:2e:78:2b:36:fe:09:c8:8b: c1:c0:76:a0:0b:66:ca:ff:8e:11:57:da:6a:17:64:bf:41:df: 8c:09:9a:ff:0f:54:85:e3:1a:d3:6e:19:ea:ae:87:9d:95:27: 7b:7a:65:1e:7f:23:dd:7d:e2:6b:cc:24:51:2c:39:80:20:02: b5:ea:68:8b:d4:0e:d2:74:43:3e:7b:26:ba:4d:ed:d9:3a:08: 27:b4:90:78:44:a2:cd:a5:38:37:bf:20:f0:90:a3:45:65:47: 0e:89:0a:76:36:6a:bf:45:3a:73:5a:4b:c5:fe:7d:0c:a4:e2: bc:64:73:35:9a:dd:36:5d:4a:3a:3f:8a:1e:01:c8:04:70:15: 4a:fc:68:da:1e:fb:10:9d:3b:d3:19:ee:81:7d:23:5c:8a:88: 89:42:dd:6f:47:8a:77:e7:02:fa:d5:12:d3:47:68:f2:8b:13: 4a:fe:60:c7:9f:db:40:ca:2a:5b:03:88:5d:5d:3c:3b:ce:f8: d5:3f:b8:ac:0b:98:ef:8d:07:73:67:eb:37:2b:dd:47:24:31: d2:56:83:dd:93:b6:d1:4b:1b:d2:e9:ac:aa:1a:8b:1c:49:38: 26:f5:ad:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJFRjkxMTAvBgNVBAUTKDk0NTk0QUFFQzZFRDY2QTY4MEExNUJGRUI1Q0RBNTc4 MkQ0QzJEODgwHhcNMjUwNTExMDUxODU1WhcNMjUwNTE4MDUxODU0WjAYMRYwFAYD VQQDEw02ODIwMzMzZi1jOTA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr0MOSts+VZjOMKAKFFJ0FDpdBVsVAaZj2QGGKCHJUaQGAoWrYKRStDLrtauD o/20FOw1wm96aQHunW7rXyU5wl6IL5zoUiASvA9XAyC4T7+xgILtBwZ1gidr8XBv 67+UX2vpinI/9NnIFZJtk3zFaV5TLFI73/+DOOvcUt9G7T1KaCnCmep9DhcFcYaD vhqSwWwAg2MMiMF705L5m7BJUjDYYLokSOTdijEObzx5Msl+0DK4S1Hf0zUUg+gD W2l/Q9P1ihAOxt7H4ypwSqZLSMq/17bmR84UlgDSJoBsb/GZDetPquqGPFwBFkqC iEHuUA2Je/kEx55XIbhi4krETQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDLcb38n NyMpDzwvor6v6KxLrGkXMB8GA1UdIwQYMBaAFJRZSq7G7WamgKFb/rXNpXgtTC2I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkVGOS84MDRENkJGMDYw NTIxMUVGQjI4NkZEMjBDNEY5QUUwMi9sRmxLcnNidFpxYUFvVnYtdGMybGVDMU1M WWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xGbEtyc2J0WnFhQW9Wdi10YzJsZUMxTUxZZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkVGOS84MDRENkJGMDYwNTIxMUVGQjI4NkZEMjBDNEY5QUUwMi9sRmxLcnNidFpx YUFvVnYtdGMybGVDMU1MWWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0LDQiF4Y1N8EVezSpsHNbZbkoCYRlPdASziVTLngrNv4JyIvBwHag C2bK/44RV9pqF2S/Qd+MCZr/D1SF4xrTbhnqroedlSd7emUefyPdfeJrzCRRLDmA IAK16miL1A7SdEM+eya6Te3ZOggntJB4RKLNpTg3vyDwkKNFZUcOiQp2Nmq/RTpz WkvF/n0MpOK8ZHM1mt02XUo6P4oeAcgEcBVK/GjaHvsQnTvTGe6BfSNcioiJQt1v R4p35wL61RLTR2jyixNK/mDHn9tAyipbA4hdXTw7zvjVP7isC5jvjQdzZ+s3K91H JDHSVoPdk7bRSxvS6ayqGoscSTgm9a3M -----END CERTIFICATE-----Generated at Mon May 12 04:36:51 2025 by rpki-client