$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5753/7B5624441BBB11EDA87F6E67C4F9AE02/LnNx4gZThK0R1DN9DS7NH2bSGco.mft File: LnNx4gZThK0R1DN9DS7NH2bSGco.mft (raw, json) Hash identifier: VcloC63E6mNqKaOxlceKsLYGEn35dPvBFytt62B6CY4= Subject key identifier: F2:EC:97:09:23:D7:FD:E9:F7:AC:C5:7B:45:89:E6:F8:11:39:AE:14 Authority key identifier: 2E:73:71:E2:06:53:84:AD:11:D4:33:7D:0D:2E:CD:1F:66:D2:19:CA Certificate issuer: /CN=A91F5753/serialNumber=2E7371E2065384AD11D4337D0D2ECD1F66D219CA Certificate serial: 0250 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnNx4gZThK0R1DN9DS7NH2bSGco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5753/7B5624441BBB11EDA87F6E67C4F9AE02/LnNx4gZThK0R1DN9DS7NH2bSGco.mft Manifest number: 024C Signing time: Thu 15 May 2025 01:51:02 +0000 Manifest this update: Thu 15 May 2025 01:51:01 +0000 Manifest next update: Thu 22 May 2025 01:51:01 +0000 Files and hashes: 1: LnNx4gZThK0R1DN9DS7NH2bSGco.crl (hash: w70+lqhcxCi923riQNUlYsXqJqxS1s/DCF7G0eIuOWQ=) 2: 68C425FC1BBF11ED9F87C083C4F9AE02.roa (hash: Zxoh9Ofh0OWLZ5oXPc2RuTae5hFatyn/nJ6RPctUa3I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5753/7B5624441BBB11EDA87F6E67C4F9AE02/LnNx4gZThK0R1DN9DS7NH2bSGco.crl rsync://rpki.apnic.net/member_repository/A91F5753/7B5624441BBB11EDA87F6E67C4F9AE02/LnNx4gZThK0R1DN9DS7NH2bSGco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnNx4gZThK0R1DN9DS7NH2bSGco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 01:51:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 592 (0x250) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5753, serialNumber=2E7371E2065384AD11D4337D0D2ECD1F66D219CA Validity Not Before: May 15 01:51:01 2025 GMT Not After : May 22 01:51:01 2025 GMT Subject: CN=68254885-5786 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:2e:34:83:1a:67:be:5c:91:63:62:04:43:b9: 99:a3:ad:76:24:eb:3e:59:71:2e:26:fb:40:fd:2a: 59:71:9a:36:1d:f6:fb:cd:d6:0c:f9:d1:f6:1f:92: 0b:6e:6a:18:de:2a:47:46:10:30:f5:e3:c1:59:6b: 5d:4d:a9:17:f3:be:ef:77:51:7b:1d:6b:da:a2:03: 0e:c8:fa:3f:17:da:13:45:f6:f1:1c:b7:a7:bf:a8: 39:a7:f1:45:b6:bc:e5:94:9e:8a:84:93:84:b2:54: fc:3d:6f:21:6d:74:56:32:51:2b:61:14:4b:5c:2a: ea:0b:34:5b:b4:8b:d5:ce:f4:8b:d9:9d:98:d4:92: c6:af:b0:fd:a5:0d:c7:72:84:bf:fe:e7:5f:92:86: b7:e1:4f:0f:61:91:d6:b9:61:a7:bb:01:1f:60:85: 60:9e:b4:2b:de:83:94:5f:4d:a3:c8:0f:6a:5c:23: 71:35:fa:b6:99:a0:4c:2f:7f:de:85:07:ba:e5:53: f7:b7:ce:c5:e7:91:95:2b:43:6d:a2:6c:7d:ae:84: a0:97:3d:38:58:99:7c:27:e2:4e:7f:47:54:5b:95: 99:e6:b8:ba:7b:a8:5c:b5:a3:b0:68:45:7a:bf:a0: 8a:86:36:a0:2a:57:01:dd:b2:0b:36:b0:30:c9:b9: 99:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:EC:97:09:23:D7:FD:E9:F7:AC:C5:7B:45:89:E6:F8:11:39:AE:14 X509v3 Authority Key Identifier: keyid:2E:73:71:E2:06:53:84:AD:11:D4:33:7D:0D:2E:CD:1F:66:D2:19:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5753/7B5624441BBB11EDA87F6E67C4F9AE02/LnNx4gZThK0R1DN9DS7NH2bSGco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnNx4gZThK0R1DN9DS7NH2bSGco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5753/7B5624441BBB11EDA87F6E67C4F9AE02/LnNx4gZThK0R1DN9DS7NH2bSGco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:d1:f9:d4:18:a8:44:3b:f4:6b:66:b0:ed:9a:29:33:b6:2a: c2:f3:f0:d6:5e:eb:a3:27:c6:e1:56:e6:13:e6:95:07:79:e6: 30:26:bb:25:bb:ad:df:6c:dc:1d:bc:b1:18:97:4b:42:e8:56: 38:7a:29:22:45:ce:8b:ae:3b:bf:93:73:8c:2d:0f:c9:5d:cb: 2f:53:be:5d:b6:10:d1:9e:06:dd:cd:77:22:b3:9b:59:04:1a: 6a:a5:6c:15:c5:97:9a:c6:56:ca:be:9f:42:24:91:1e:8d:54: 7b:9e:7a:de:8b:cb:c3:38:b8:e0:20:27:06:2c:d2:7d:4f:37: e5:26:fb:0b:72:a7:87:83:82:9b:ff:28:24:f0:8b:d6:49:92: eb:87:af:e7:d7:00:f3:ba:1e:6b:08:f8:76:45:9b:8e:f4:f8: e3:ad:34:40:f5:f5:06:5b:da:17:2c:d7:f0:b4:db:19:64:e5: 0c:7a:fd:06:87:ee:ab:4f:bd:50:4f:14:2f:02:08:5d:cf:74: 51:1f:54:3e:38:42:ec:ab:21:39:e1:2c:4f:80:73:cc:f8:c2: 4d:2f:58:82:e0:d6:98:74:68:f4:b1:16:c1:9c:d6:6a:a5:fc: 7f:3e:f3:5f:b9:c9:65:d7:d9:a9:50:e6:e5:72:58:77:bf:2e: b9:64:c7:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU3NTMxMTAvBgNVBAUTKDJFNzM3MUUyMDY1Mzg0QUQxMUQ0MzM3RDBEMkVDRDFG NjZEMjE5Q0EwHhcNMjUwNTE1MDE1MTAxWhcNMjUwNTIyMDE1MTAxWjAYMRYwFAYD VQQDEw02ODI1NDg4NS01Nzg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtC40gxpnvlyRY2IEQ7mZo612JOs+WXEuJvtA/SpZcZo2Hfb7zdYM+dH2H5IL bmoY3ipHRhAw9ePBWWtdTakX877vd1F7HWvaogMOyPo/F9oTRfbxHLenv6g5p/FF trzllJ6KhJOEslT8PW8hbXRWMlErYRRLXCrqCzRbtIvVzvSL2Z2Y1JLGr7D9pQ3H coS//udfkoa34U8PYZHWuWGnuwEfYIVgnrQr3oOUX02jyA9qXCNxNfq2maBML3/e hQe65VP3t87F55GVK0Ntomx9roSglz04WJl8J+JOf0dUW5WZ5ri6e6hctaOwaEV6 v6CKhjagKlcB3bILNrAwybmZqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPLslwkj 1/3p96zFe0WJ5vgROa4UMB8GA1UdIwQYMBaAFC5zceIGU4StEdQzfQ0uzR9m0hnK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTc1My83QjU2MjQ0NDFC QkIxMUVEQTg3RjZFNjdDNEY5QUUwMi9Mbk54NGdaVGhLMFIxRE45RFM3TkgyYlNH Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xuTng0Z1pUaEswUjFETjlEUzdOSDJiU0djby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTc1My83QjU2MjQ0NDFCQkIxMUVEQTg3RjZFNjdDNEY5QUUwMi9Mbk54NGdaVGhL MFIxRE45RFM3TkgyYlNHY28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJ0fnUGKhEO/RrZrDtmikztirC8/DWXuujJ8bhVuYT5pUHeeYwJrsl u63fbNwdvLEYl0tC6FY4eikiRc6Lrju/k3OMLQ/JXcsvU75dthDRngbdzXcis5tZ BBpqpWwVxZeaxlbKvp9CJJEejVR7nnrei8vDOLjgICcGLNJ9TzflJvsLcqeHg4Kb /ygk8IvWSZLrh6/n1wDzuh5rCPh2RZuO9PjjrTRA9fUGW9oXLNfwtNsZZOUMev0G h+6rT71QTxQvAghdz3RRH1Q+OELsqyE54SxPgHPM+MJNL1iC4NaYdGj0sRbBnNZq pfx/PvNfucll19mpUOblclh3vy65ZMfg -----END CERTIFICATE-----Generated at Fri May 16 07:27:56 2025 by rpki-client