$ rpki-client -vvf rpki.apnic.net/member_repository/A911AD81/87D3520A89E111EF8921404DC4F9AE02/LejyFtzSvsbTj-vwHgbYqZAnDr8.mft File: LejyFtzSvsbTj-vwHgbYqZAnDr8.mft (raw, json) Hash identifier: 2zhsB0J6OeNPVps4VW0NySy5fpNV5KmsYGnHgcq+/SM= Subject key identifier: 59:52:91:01:65:9F:25:E1:EB:EE:D2:E0:78:51:D2:C3:29:B7:BF:21 Authority key identifier: 2D:E8:F2:16:DC:D2:BE:C6:D3:8F:EB:F0:1E:06:D8:A9:90:27:0E:BF Certificate issuer: /CN=A911AD81/serialNumber=2DE8F216DCD2BEC6D38FEBF01E06D8A990270EBF Certificate serial: 65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LejyFtzSvsbTj-vwHgbYqZAnDr8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AD81/87D3520A89E111EF8921404DC4F9AE02/LejyFtzSvsbTj-vwHgbYqZAnDr8.mft Manifest number: 60 Signing time: Sat 29 Mar 2025 06:28:37 +0000 Manifest this update: Sat 29 Mar 2025 06:28:36 +0000 Manifest next update: Sat 05 Apr 2025 06:28:36 +0000 Files and hashes: 1: LejyFtzSvsbTj-vwHgbYqZAnDr8.crl (hash: 3kvYJeV3ipMD/Cd3n5pL8/UNSbnYq9bKZk2aTXx3RKo=) 2: 0E0C2FDA8A9211EF928F7977C4F9AE02.roa (hash: D50MfgKogwzT5uP2v0jQRRWmVMAdx71+85AyPtqqgw0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AD81/87D3520A89E111EF8921404DC4F9AE02/LejyFtzSvsbTj-vwHgbYqZAnDr8.crl rsync://rpki.apnic.net/member_repository/A911AD81/87D3520A89E111EF8921404DC4F9AE02/LejyFtzSvsbTj-vwHgbYqZAnDr8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LejyFtzSvsbTj-vwHgbYqZAnDr8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 101 (0x65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AD81 Validity Not Before: Mar 29 06:28:36 2025 GMT Not After : Apr 5 06:28:36 2025 GMT Subject: CN=67e79315-614d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:81:74:e1:2f:aa:be:ab:92:a0:c0:54:1e:02: bb:56:05:9f:b0:ca:21:9c:07:3a:87:af:78:82:8c: 94:fd:58:75:1a:e3:37:4d:d7:79:d9:f0:ed:2c:06: 13:6e:5d:03:04:5e:e0:e5:41:17:24:d8:84:cf:da: 85:1d:13:67:2a:59:a7:eb:da:1c:99:22:b0:f7:55: c0:ad:3b:3a:12:55:c8:aa:e4:45:36:af:a8:e7:87: 1c:b3:62:47:48:1e:bb:b3:50:b1:50:ce:1b:ca:ac: 9c:99:78:d8:c5:7e:72:c6:6d:85:d4:71:c9:c8:8a: c2:74:a8:e3:da:5c:d0:08:c2:d2:c3:48:ea:de:5f: b7:17:83:c1:d0:bd:16:1e:61:b5:37:87:5b:20:5a: 3c:40:0f:32:31:13:30:29:e4:7f:32:d7:00:1b:19: 0b:24:64:a0:41:bc:7f:83:cb:f7:10:b4:34:ca:5d: 30:2f:89:c5:eb:60:6e:6b:17:67:af:7d:3a:60:fe: 3c:44:ae:ca:0b:51:77:8c:2e:63:e0:2c:39:c2:7b: fb:b3:70:31:6c:6c:d9:ff:b7:db:0b:b4:1d:02:ea: 04:13:34:0d:e7:70:86:a5:3b:be:2a:20:46:49:a5: bb:08:ac:ab:9f:d4:9b:13:72:6e:78:21:05:d9:2e: 89:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:52:91:01:65:9F:25:E1:EB:EE:D2:E0:78:51:D2:C3:29:B7:BF:21 X509v3 Authority Key Identifier: keyid:2D:E8:F2:16:DC:D2:BE:C6:D3:8F:EB:F0:1E:06:D8:A9:90:27:0E:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AD81/87D3520A89E111EF8921404DC4F9AE02/LejyFtzSvsbTj-vwHgbYqZAnDr8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LejyFtzSvsbTj-vwHgbYqZAnDr8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AD81/87D3520A89E111EF8921404DC4F9AE02/LejyFtzSvsbTj-vwHgbYqZAnDr8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:83:db:2f:78:cf:bf:2f:5f:0f:d7:78:a2:68:2f:ad:73:b0: b0:53:12:ac:88:29:89:7f:ac:73:d8:04:04:3c:c7:28:d6:7a: 0b:ea:4c:cd:38:50:c3:04:9a:38:12:23:0f:c3:7a:11:aa:dc: d8:a2:60:db:87:76:6d:1f:a8:21:b2:e0:f2:76:ca:1a:26:75: 20:c5:e1:30:e2:a7:6d:0e:00:8a:16:30:24:b8:ed:c5:de:38: e2:d6:8c:be:6b:ed:cb:5f:47:a8:95:89:1c:e2:0c:6d:17:39: b0:22:56:19:a1:7a:43:81:54:2f:39:ce:56:2a:95:ca:03:eb: 92:96:e3:5e:df:ce:72:3b:ea:80:04:54:f0:37:b6:9a:37:bb: a8:f3:04:ea:58:38:ee:56:fc:f2:96:91:99:ed:0b:e9:28:6a: 59:7a:98:2a:e2:9c:5c:a8:a9:8b:4a:dc:4d:c7:2a:c1:cd:21: 84:26:5b:4f:85:17:09:bf:39:b0:08:58:f4:a8:e6:0b:c1:c5: 43:5d:76:d2:3e:93:a2:20:45:f8:f8:7e:dd:87:41:46:06:5e: 06:b8:57:20:f9:b8:19:04:13:ba:e7:5c:91:05:67:a0:86:52: ff:e0:fd:bf:fb:0d:94:ff:c2:df:45:18:6b:dc:c9:a7:ea:d8: 80:ec:ac:b0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx QUQ4MTExMC8GA1UEBRMoMkRFOEYyMTZEQ0QyQkVDNkQzOEZFQkYwMUUwNkQ4QTk5 MDI3MEVCRjAeFw0yNTAzMjkwNjI4MzZaFw0yNTA0MDUwNjI4MzZaMBgxFjAUBgNV BAMTDTY3ZTc5MzE1LTYxNGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1gXThL6q+q5KgwFQeArtWBZ+wyiGcBzqHr3iCjJT9WHUa4zdN13nZ8O0sBhNu XQMEXuDlQRck2ITP2oUdE2cqWafr2hyZIrD3VcCtOzoSVciq5EU2r6jnhxyzYkdI HruzULFQzhvKrJyZeNjFfnLGbYXUccnIisJ0qOPaXNAIwtLDSOreX7cXg8HQvRYe YbU3h1sgWjxADzIxEzAp5H8y1wAbGQskZKBBvH+Dy/cQtDTKXTAvicXrYG5rF2ev fTpg/jxErsoLUXeMLmPgLDnCe/uzcDFsbNn/t9sLtB0C6gQTNA3ncIalO74qIEZJ pbsIrKuf1JsTcm54IQXZLokjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUWVKRAWWf JeHr7tLgeFHSwym3vyEwHwYDVR0jBBgwFoAULejyFtzSvsbTj+vwHgbYqZAnDr8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFBRDgxLzg3RDM1MjBBODlF MTExRUY4OTIxNDA0REM0RjlBRTAyL0xlanlGdHpTdnNiVGotdndIZ2JZcVpBbkRy OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTGVqeUZ0elN2c2JUai12d0hnYllxWkFuRHI4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFB RDgxLzg3RDM1MjBBODlFMTExRUY4OTIxNDA0REM0RjlBRTAyL0xlanlGdHpTdnNi VGotdndIZ2JZcVpBbkRyOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJCD2y94z78vXw/XeKJoL61zsLBTEqyIKYl/rHPYBAQ8xyjWegvqTM04 UMMEmjgSIw/DehGq3NiiYNuHdm0fqCGy4PJ2yhomdSDF4TDip20OAIoWMCS47cXe OOLWjL5r7ctfR6iViRziDG0XObAiVhmhekOBVC85zlYqlcoD65KW417fznI76oAE VPA3tpo3u6jzBOpYOO5W/PKWkZntC+koall6mCrinFyoqYtK3E3HKsHNIYQmW0+F Fwm/ObAIWPSo5gvBxUNddtI+k6IgRfj4ft2HQUYGXga4VyD5uBkEE7rnXJEFZ6CG Uv/g/b/7DZT/wt9FGGvcyafq2IDsrLA= -----END CERTIFICATE-----Generated at Fri Apr 4 18:32:30 2025 by rpki-client