$ rpki-client -vvf rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.mft File: LRgGu3n37GppfLCmWiHlyxIv3nY.mft (raw, json) Hash identifier: 6Dt8oVCrzuQhUbXe/LPVbHHATegVASX5tKFyFqniZCQ= Subject key identifier: 79:B1:4A:A7:4A:B7:F3:92:E8:9C:8D:9A:FD:74:E8:DF:B3:55:A4:58 Authority key identifier: 2D:18:06:BB:79:F7:EC:6A:69:7C:B0:A6:5A:21:E5:CB:12:2F:DE:76 Certificate issuer: /CN=A9165A58/serialNumber=2D1806BB79F7EC6A697CB0A65A21E5CB122FDE76 Certificate serial: 68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LRgGu3n37GppfLCmWiHlyxIv3nY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.mft Manifest number: 67 Signing time: Fri 11 Apr 2025 06:09:31 +0000 Manifest this update: Fri 11 Apr 2025 06:09:31 +0000 Manifest next update: Fri 18 Apr 2025 06:09:31 +0000 Files and hashes: 1: LRgGu3n37GppfLCmWiHlyxIv3nY.crl (hash: kqCWvN2jWSUJujW2PFyHwWwHxqvyNiqUqcM8RFxXSmY=) 2: BDBEED967C0011EFB63C7076C4F9AE02.roa (hash: Nz2FGej23dIiDwRtV6Sp50mpW+TP9HnxQFOScAwf8wk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.crl rsync://rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LRgGu3n37GppfLCmWiHlyxIv3nY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 06:09:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 104 (0x68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165A58, serialNumber=2D1806BB79F7EC6A697CB0A65A21E5CB122FDE76 Validity Not Before: Apr 11 06:09:31 2025 GMT Not After : Apr 18 06:09:31 2025 GMT Subject: CN=67f8b21b-31cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:18:60:5d:4a:9a:55:44:be:55:4b:cf:a5:51: 22:7d:f0:70:13:5a:19:39:3f:f8:f0:56:6f:e1:d2: 32:3b:75:6d:93:3b:33:70:45:dd:84:98:c1:db:0a: bb:52:e2:4e:2e:65:bf:d4:ec:dd:f8:41:1a:02:13: 12:53:54:73:81:b8:60:42:bd:76:c5:e4:b0:58:77: 31:95:a7:e3:ae:79:12:ab:ab:94:42:9c:b5:fd:10: 41:cf:aa:fe:db:c6:63:5e:c9:22:be:a2:d8:09:46: 32:d6:ec:cb:11:6a:95:8c:f1:75:35:18:32:fe:ef: 6f:39:29:fe:de:79:f6:ce:00:1c:8e:28:99:f3:0a: 8c:45:7b:f6:53:e4:e9:9f:09:f0:5a:45:40:d0:eb: b8:f6:01:25:1f:b6:b5:37:fb:6f:1c:c6:7c:17:d5: 8e:f1:51:41:7b:4d:6f:77:db:16:cb:53:b9:c6:57: a0:15:7b:90:c3:c0:b4:3b:34:f3:79:0c:e2:9e:14: dd:6e:cb:7b:f0:30:9d:13:b8:d1:20:a2:70:8f:31: d3:ad:d3:88:60:8c:d2:6e:f8:5f:cd:92:fa:f8:e9: d2:0a:26:73:be:70:4f:0a:12:bf:33:ec:c0:46:ba: c2:f6:fa:70:2f:8c:de:46:61:3b:f5:d7:61:1b:3a: c9:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:B1:4A:A7:4A:B7:F3:92:E8:9C:8D:9A:FD:74:E8:DF:B3:55:A4:58 X509v3 Authority Key Identifier: keyid:2D:18:06:BB:79:F7:EC:6A:69:7C:B0:A6:5A:21:E5:CB:12:2F:DE:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LRgGu3n37GppfLCmWiHlyxIv3nY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e1:14:a1:d4:0a:f9:af:8f:c6:53:64:b6:ea:79:32:bb:33:17: a9:ad:6d:7e:19:3e:6f:9a:be:4e:0a:5a:8a:a0:90:05:5a:7e: 69:c4:16:a5:4a:e8:5e:67:ef:b7:b5:5c:ea:d0:91:d7:63:12: ff:e3:17:bb:23:91:bc:f1:bd:c1:69:33:b0:50:96:97:cf:82: 1e:3b:44:f8:36:f4:ce:53:1a:a2:3c:45:f6:0f:e0:ac:b5:97: 2d:e0:ec:3c:8b:2c:81:0d:1d:43:3c:4d:60:16:88:bd:88:a7: c9:a3:05:73:77:4a:01:de:7c:10:f1:04:32:ce:f7:15:49:bb: 4a:c2:bd:76:46:14:8a:23:ec:8f:d5:83:42:64:a8:d4:36:f5: 6e:08:25:9b:c4:8d:c3:31:ac:93:c5:f2:32:34:20:e0:a8:a1: 87:be:86:dc:d8:a4:d0:b5:4b:7a:b9:16:e7:5f:1b:44:e1:23: 03:0a:00:63:ea:7a:61:5c:ff:7c:38:e0:a9:d2:b1:1d:76:37: f0:11:4f:c2:95:4e:43:4e:00:1e:80:04:3c:f0:ca:1a:4b:32: f0:42:45:d6:27:19:6f:d7:7a:a9:63:04:23:d0:ef:58:9c:1e: 82:12:f5:fa:08:bc:10:9c:eb:8b:8e:5d:53:01:c7:6c:34:e7: ac:bf:ec:8c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBaDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NUE1ODExMC8GA1UEBRMoMkQxODA2QkI3OUY3RUM2QTY5N0NCMEE2NUEyMUU1Q0Ix MjJGREU3NjAeFw0yNTA0MTEwNjA5MzFaFw0yNTA0MTgwNjA5MzFaMBgxFjAUBgNV BAMTDTY3ZjhiMjFiLTMxY2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6GGBdSppVRL5VS8+lUSJ98HATWhk5P/jwVm/h0jI7dW2TOzNwRd2EmMHbCrtS 4k4uZb/U7N34QRoCExJTVHOBuGBCvXbF5LBYdzGVp+OueRKrq5RCnLX9EEHPqv7b xmNeySK+otgJRjLW7MsRapWM8XU1GDL+7285Kf7eefbOAByOKJnzCoxFe/ZT5Omf CfBaRUDQ67j2ASUftrU3+28cxnwX1Y7xUUF7TW932xbLU7nGV6AVe5DDwLQ7NPN5 DOKeFN1uy3vwMJ0TuNEgonCPMdOt04hgjNJu+F/Nkvr46dIKJnO+cE8KEr8z7MBG usL2+nAvjN5GYTv112EbOslDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUebFKp0q3 85LonI2a/XTo37NVpFgwHwYDVR0jBBgwFoAULRgGu3n37GppfLCmWiHlyxIv3nYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1QTU4L0RGNjk0QkE2N0JG RDExRUZBN0I4RUI1Q0M0RjlBRTAyL0xSZ0d1M24zN0dwcGZMQ21XaUhseXhJdjNu WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTFJnR3UzbjM3R3BwZkxDbVdpSGx5eEl2M25ZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1 QTU4L0RGNjk0QkE2N0JGRDExRUZBN0I4RUI1Q0M0RjlBRTAyL0xSZ0d1M24zN0dw cGZMQ21XaUhseXhJdjNuWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAOEUodQK+a+PxlNktup5MrszF6mtbX4ZPm+avk4KWoqgkAVafmnEFqVK 6F5n77e1XOrQkddjEv/jF7sjkbzxvcFpM7BQlpfPgh47RPg29M5TGqI8RfYP4Ky1 ly3g7DyLLIENHUM8TWAWiL2Ip8mjBXN3SgHefBDxBDLO9xVJu0rCvXZGFIoj7I/V g0JkqNQ29W4IJZvEjcMxrJPF8jI0IOCooYe+htzYpNC1S3q5FudfG0ThIwMKAGPq emFc/3w44KnSsR12N/ART8KVTkNOAB6ABDzwyhpLMvBCRdYnGW/XeqljBCPQ71ic HoIS9foIvBCc64uOXVMBx2w056y/7Iw= -----END CERTIFICATE-----Generated at Sat Apr 12 18:32:17 2025 by rpki-client