$ rpki-client -vvf rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft File: LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft (raw, json) Hash identifier: U/+KryGngZvbtKSSs3UiuSOGiXijkJ+FJbMNeyvY1z4= Subject key identifier: BB:70:35:35:EE:74:52:53:5B:AB:33:50:B3:A2:68:64:4B:C7:75:3D Authority key identifier: 2D:BC:46:5D:A6:81:B5:B3:11:89:7A:B6:C4:68:C2:54:70:6E:5D:2F Certificate issuer: /CN=A9153D75/serialNumber=2DBC465DA681B5B311897AB6C468C254706E5D2F Certificate serial: 01C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LbxGXaaBtbMRiXq2xGjCVHBuXS8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft Manifest number: 01BD Signing time: Thu 03 Apr 2025 02:20:20 +0000 Manifest this update: Thu 03 Apr 2025 02:20:19 +0000 Manifest next update: Thu 10 Apr 2025 02:20:19 +0000 Files and hashes: 1: LbxGXaaBtbMRiXq2xGjCVHBuXS8.crl (hash: VKZaSfHRFax0Pb7AnY6ZldamRE6OBWkm84P30iDl39w=) 2: 552D155464A711ED99D40117C4F9AE02.roa (hash: vqnq1ln0jacCM48xfrENGgLrWxqslFbyB5Snj9ZJdaw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.crl rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LbxGXaaBtbMRiXq2xGjCVHBuXS8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 02:20:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 448 (0x1c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153D75 Validity Not Before: Apr 3 02:20:19 2025 GMT Not After : Apr 10 02:20:19 2025 GMT Subject: CN=67edf064-3e1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:25:b9:4f:0a:4c:62:bb:ca:48:12:e6:8f:10: a9:98:c4:88:c3:c9:fb:2d:d4:0e:8d:82:31:f1:e5: 35:87:75:27:5b:dd:51:4f:f4:d8:0f:04:0a:64:7c: 21:e2:4f:08:ef:9f:65:a8:86:a8:0b:4d:03:06:2f: b0:f3:6b:31:6a:d7:b5:3b:e2:62:46:d6:2d:97:7e: 39:db:f6:4a:d3:6a:4e:8c:2c:f6:43:73:25:52:6f: 3d:df:5c:d7:1b:8d:1b:db:3b:ed:08:0d:59:0b:ae: 94:64:06:58:63:cc:06:b2:b4:01:24:26:08:5a:5d: 12:a3:a3:79:df:27:f6:4b:66:54:08:a4:fc:02:71: ee:6f:83:92:8c:c7:39:dd:5f:be:95:84:32:b4:f6: 08:5c:16:cc:cc:93:be:ba:75:b1:3c:cc:2d:f7:a7: b4:5b:29:c4:ec:59:92:9d:b7:a3:d5:b0:dc:0c:1d: 02:13:2a:1f:f2:94:21:5d:dd:a0:17:b5:6f:f4:a0: d8:92:60:3b:99:08:39:ec:9e:cf:67:7d:bc:48:a9: 80:b6:1a:9c:63:4a:ae:b5:06:8b:41:4c:1a:d4:5e: 43:2e:a2:d9:26:42:34:90:44:b5:be:7e:12:50:8f: 32:a0:48:0a:a5:33:ff:5e:0e:7b:8b:c7:be:ca:78: 4d:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:70:35:35:EE:74:52:53:5B:AB:33:50:B3:A2:68:64:4B:C7:75:3D X509v3 Authority Key Identifier: keyid:2D:BC:46:5D:A6:81:B5:B3:11:89:7A:B6:C4:68:C2:54:70:6E:5D:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LbxGXaaBtbMRiXq2xGjCVHBuXS8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:71:03:8d:ef:b9:81:62:4c:82:95:c4:1a:8d:f3:15:3c:bc: a4:63:13:d1:f8:53:42:83:54:a9:ab:74:52:16:24:79:ba:8d: c1:26:30:98:67:ff:5f:a2:6c:60:5d:6c:cb:d7:f7:0d:16:30: 2f:bb:6d:2a:9c:bb:43:84:6c:42:5b:a9:06:05:97:35:50:4f: 3d:63:7c:51:3d:d9:e9:e1:54:d9:9a:a5:20:f9:02:a1:ec:b7: bc:ea:9a:c2:b7:26:11:a4:ee:f5:2a:59:86:97:de:c2:82:de: e3:5e:d9:58:1d:4b:82:16:7c:9f:7b:1d:48:d0:63:d3:0a:5e: 39:9b:9b:2f:54:11:37:b1:e6:12:e6:21:92:a5:fa:e0:81:a6: ab:41:6e:34:22:52:2b:67:d0:20:50:29:aa:da:e6:ce:41:50: d0:2b:ba:7a:c0:28:d0:ef:65:e4:5b:63:03:60:5d:e3:0e:1a: 3e:e3:fa:e4:6f:a8:99:41:03:c4:ff:dd:af:fc:99:f1:b5:6d: e4:76:9a:4d:b7:56:46:93:0f:18:c2:6c:91:6c:7f:36:17:58: ac:ac:46:14:16:07:89:0b:31:e5:22:17:d3:76:c4:99:d4:4a: ad:17:25:31:6f:e6:db:cc:de:a2:0d:8b:fd:41:d9:8a:77:22: ec:50:ee:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNENzUxMTAvBgNVBAUTKDJEQkM0NjVEQTY4MUI1QjMxMTg5N0FCNkM0NjhDMjU0 NzA2RTVEMkYwHhcNMjUwNDAzMDIyMDE5WhcNMjUwNDEwMDIyMDE5WjAYMRYwFAYD VQQDEw02N2VkZjA2NC0zZTFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApCW5TwpMYrvKSBLmjxCpmMSIw8n7LdQOjYIx8eU1h3UnW91RT/TYDwQKZHwh 4k8I759lqIaoC00DBi+w82sxate1O+JiRtYtl3452/ZK02pOjCz2Q3MlUm8931zX G40b2zvtCA1ZC66UZAZYY8wGsrQBJCYIWl0So6N53yf2S2ZUCKT8AnHub4OSjMc5 3V++lYQytPYIXBbMzJO+unWxPMwt96e0WynE7FmSnbej1bDcDB0CEyof8pQhXd2g F7Vv9KDYkmA7mQg57J7PZ328SKmAthqcY0qutQaLQUwa1F5DLqLZJkI0kES1vn4S UI8yoEgKpTP/Xg57i8e+ynhNfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLtwNTXu dFJTW6szULOiaGRLx3U9MB8GA1UdIwQYMBaAFC28Rl2mgbWzEYl6tsRowlRwbl0v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0Q3NS81MkRFNEM0QTY0 QTMxMUVEODIyMDI0MTJDNEY5QUUwMi9MYnhHWGFhQnRiTVJpWHEyeEdqQ1ZIQnVY UzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xieEdYYWFCdGJNUmlYcTJ4R2pDVkhCdVhTOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0Q3NS81MkRFNEM0QTY0QTMxMUVEODIyMDI0MTJDNEY5QUUwMi9MYnhHWGFhQnRi TVJpWHEyeEdqQ1ZIQnVYUzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAcQON77mBYkyClcQajfMVPLykYxPR+FNCg1Spq3RSFiR5uo3BJjCY Z/9fomxgXWzL1/cNFjAvu20qnLtDhGxCW6kGBZc1UE89Y3xRPdnp4VTZmqUg+QKh 7Le86prCtyYRpO71KlmGl97Cgt7jXtlYHUuCFnyfex1I0GPTCl45m5svVBE3seYS 5iGSpfrggaarQW40IlIrZ9AgUCmq2ubOQVDQK7p6wCjQ72XkW2MDYF3jDho+4/rk b6iZQQPE/92v/JnxtW3kdppNt1ZGkw8YwmyRbH82F1isrEYUFgeJCzHlIhfTdsSZ 1EqtFyUxb+bbzN6iDYv9QdmKdyLsUO5n -----END CERTIFICATE-----Generated at Fri Apr 4 22:45:28 2025 by rpki-client