$ rpki-client -vvf rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.mft File: LzabRI0hcVlrosk82-JY6vMxdZQ.mft (raw, json) Hash identifier: uY0aRiz3zZdUKdHuCdaZgF9euIjIMFMrh4xrJ5N9faA= Subject key identifier: 4B:48:E2:EA:D1:2A:63:20:A9:77:D4:41:AE:BB:7D:02:A5:48:55:FA Authority key identifier: 2F:36:9B:44:8D:21:71:59:6B:A2:C9:3C:DB:E2:58:EA:F3:31:75:94 Certificate issuer: /CN=A9161A5A/serialNumber=2F369B448D2171596BA2C93CDBE258EAF3317594 Certificate serial: 069A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LzabRI0hcVlrosk82-JY6vMxdZQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.mft Manifest number: 0692 Signing time: Wed 02 Apr 2025 22:15:48 +0000 Manifest this update: Wed 02 Apr 2025 22:15:47 +0000 Manifest next update: Wed 09 Apr 2025 22:15:47 +0000 Files and hashes: 1: LzabRI0hcVlrosk82-JY6vMxdZQ.crl (hash: 9xuAj9srEdwj6icxKieKo5KryMKCS67cQF8gMU+yyhU=) 2: 79D611D265E711EBB6FD8A0DC4F9AE02.roa (hash: 8jITrnqODr3hbw+6QboJeBK8U7SJ4xuwPGHj3X5tTD4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.crl rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LzabRI0hcVlrosk82-JY6vMxdZQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 22:15:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1690 (0x69a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161A5A Validity Not Before: Apr 2 22:15:47 2025 GMT Not After : Apr 9 22:15:47 2025 GMT Subject: CN=67edb713-a3f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f0:f6:25:54:9e:88:bb:a9:4b:a5:31:b2:0f: f6:5d:c1:a1:93:0d:15:20:72:25:cb:bd:8d:c0:d8: 34:3f:ec:ab:cd:05:9d:d7:29:f5:4e:21:cf:a8:66: b8:28:55:5e:43:8b:a3:85:03:59:90:39:51:4d:9f: 63:d7:ce:cb:80:dd:bf:7f:fa:c0:fc:3e:6e:a2:32: 1d:12:77:72:dc:55:53:ea:8e:02:ff:c5:a6:aa:8e: 2c:5a:6e:a4:f3:1f:f7:19:83:78:f3:2a:e0:f2:7a: 4e:74:f7:d0:4e:16:df:11:be:bf:a1:91:87:8d:f1: 39:26:a4:96:ce:c9:8b:72:65:5a:f9:4d:d9:a3:21: 9d:ea:1f:2b:ef:bf:ab:41:da:dd:81:08:d2:90:bf: e4:d6:f1:7d:73:0c:21:1b:e2:8b:e4:86:b0:43:b0: 83:2b:6e:0e:3e:7a:90:40:70:6d:46:1f:a4:c7:5e: 8c:38:f5:68:c9:f7:8e:fc:07:f1:6e:f8:d2:0a:2d: 03:45:9d:22:79:da:0b:77:19:ea:e6:8d:6f:d1:fd: f8:5f:a3:3a:4d:bc:1d:10:a0:f2:4e:47:fd:41:f5: c1:13:95:2b:41:75:83:55:4f:dc:54:34:86:4c:df: 6d:b5:43:f6:3a:95:33:00:46:25:c7:09:a7:d5:8f: e4:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:48:E2:EA:D1:2A:63:20:A9:77:D4:41:AE:BB:7D:02:A5:48:55:FA X509v3 Authority Key Identifier: keyid:2F:36:9B:44:8D:21:71:59:6B:A2:C9:3C:DB:E2:58:EA:F3:31:75:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LzabRI0hcVlrosk82-JY6vMxdZQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:62:26:40:96:04:c3:2f:f1:6c:b3:0f:9e:29:4c:f2:54:53: e0:30:53:79:65:d7:b0:35:36:c2:34:24:f0:f3:c6:d7:6b:10: 6a:98:4c:36:fa:90:70:94:91:cb:d2:87:7b:c7:ae:87:a5:38: 5c:3b:e6:17:64:c3:3c:18:7f:df:37:ab:20:98:c9:cb:45:24: 5d:cc:14:71:31:e8:71:68:33:44:8d:a2:6c:d3:15:f0:24:a6: f0:84:34:83:32:bb:67:2e:8f:02:ea:7a:41:2e:d9:23:2c:02: 77:9d:50:c0:76:c4:71:6f:67:61:e2:69:97:04:d6:bd:9c:2f: c1:a6:d2:3c:40:f2:6d:fc:f4:8f:43:58:16:5f:94:e2:23:77: 7b:c8:72:5b:04:0a:f3:65:da:8d:a1:73:8e:f7:cf:46:15:56: 49:b6:4e:43:60:0d:a2:0e:47:2d:95:c4:65:2f:18:63:25:ee: 9c:8e:7d:78:f8:56:42:be:f8:22:2d:4f:d0:d1:93:e8:29:9c: a9:ee:e2:e2:bd:46:04:25:f5:3a:d5:6d:f6:b7:97:9d:ef:ae: 91:21:2f:7d:13:5b:15:2e:48:64:f9:6f:ed:78:1f:93:2d:30: a3:87:8b:67:3b:5f:13:1f:60:c8:6f:76:42:6a:db:ac:15:3f: 6b:e1:11:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjFBNUExMTAvBgNVBAUTKDJGMzY5QjQ0OEQyMTcxNTk2QkEyQzkzQ0RCRTI1OEVB RjMzMTc1OTQwHhcNMjUwNDAyMjIxNTQ3WhcNMjUwNDA5MjIxNTQ3WjAYMRYwFAYD VQQDEw02N2VkYjcxMy1hM2YzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsfD2JVSeiLupS6Uxsg/2XcGhkw0VIHIly72NwNg0P+yrzQWd1yn1TiHPqGa4 KFVeQ4ujhQNZkDlRTZ9j187LgN2/f/rA/D5uojIdEndy3FVT6o4C/8Wmqo4sWm6k 8x/3GYN48yrg8npOdPfQThbfEb6/oZGHjfE5JqSWzsmLcmVa+U3ZoyGd6h8r77+r QdrdgQjSkL/k1vF9cwwhG+KL5IawQ7CDK24OPnqQQHBtRh+kx16MOPVoyfeO/Afx bvjSCi0DRZ0iedoLdxnq5o1v0f34X6M6TbwdEKDyTkf9QfXBE5UrQXWDVU/cVDSG TN9ttUP2OpUzAEYlxwmn1Y/kCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEtI4urR KmMgqXfUQa67fQKlSFX6MB8GA1UdIwQYMBaAFC82m0SNIXFZa6LJPNviWOrzMXWU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MUE1QS9COEJCNTY4RTY1 RTUxMUVCQTI1RjkyMEJDNEY5QUUwMi9MemFiUkkwaGNWbHJvc2s4Mi1KWTZ2TXhk WlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0x6YWJSSTBoY1Zscm9zazgyLUpZNnZNeGRaUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MUE1QS9COEJCNTY4RTY1RTUxMUVCQTI1RjkyMEJDNEY5QUUwMi9MemFiUkkwaGNW bHJvc2s4Mi1KWTZ2TXhkWlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSYiZAlgTDL/Fssw+eKUzyVFPgMFN5ZdewNTbCNCTw88bXaxBqmEw2 +pBwlJHL0od7x66HpThcO+YXZMM8GH/fN6sgmMnLRSRdzBRxMehxaDNEjaJs0xXw JKbwhDSDMrtnLo8C6npBLtkjLAJ3nVDAdsRxb2dh4mmXBNa9nC/BptI8QPJt/PSP Q1gWX5TiI3d7yHJbBArzZdqNoXOO989GFVZJtk5DYA2iDkctlcRlLxhjJe6cjn14 +FZCvvgiLU/Q0ZPoKZyp7uLivUYEJfU61W32t5ed766RIS99E1sVLkhk+W/teB+T LTCjh4tnO18TH2DIb3ZCatusFT9r4RF3 -----END CERTIFICATE-----Generated at Fri Apr 4 22:34:54 2025 by rpki-client