$ rpki-client -vvf rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/D5mx_s-lcAT2Q9gr9RHN1HR4baA.mft File: D5mx_s-lcAT2Q9gr9RHN1HR4baA.mft (raw, json) Hash identifier: bOY8nTuwai/s/5iQcW8oBV6drmj4G4g/se6j8kKugCY= Subject key identifier: 23:B6:C9:8C:17:28:E3:5C:92:7F:1D:0E:A2:04:61:EE:01:41:8E:C9 Authority key identifier: 0F:99:B1:FE:CF:A5:70:04:F6:43:D8:2B:F5:11:CD:D4:74:78:6D:A0 Certificate issuer: /CN=A9185413/serialNumber=0F99B1FECFA57004F643D82BF511CDD474786DA0 Certificate serial: F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5mx_s-lcAT2Q9gr9RHN1HR4baA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/D5mx_s-lcAT2Q9gr9RHN1HR4baA.mft Manifest number: F2 Signing time: Thu 17 Apr 2025 04:08:12 +0000 Manifest this update: Thu 17 Apr 2025 04:08:11 +0000 Manifest next update: Thu 24 Apr 2025 04:08:11 +0000 Files and hashes: 1: D5mx_s-lcAT2Q9gr9RHN1HR4baA.crl (hash: LxFIG7Icz480IxTphOHgHJJXXqTaYUUuxJWwZuIUJKo=) 2: C1D49C12AEDF11EE96155C68C4F9AE02.roa (hash: dzuBA92ULhmJzmxGgdHpyawAKCUbaQ8RTfKuM5up9R0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/D5mx_s-lcAT2Q9gr9RHN1HR4baA.crl rsync://rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/D5mx_s-lcAT2Q9gr9RHN1HR4baA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5mx_s-lcAT2Q9gr9RHN1HR4baA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Apr 2025 04:08:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 244 (0xf4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185413, serialNumber=0F99B1FECFA57004F643D82BF511CDD474786DA0 Validity Not Before: Apr 17 04:08:11 2025 GMT Not After : Apr 24 04:08:11 2025 GMT Subject: CN=68007eac-c2e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:99:58:85:de:10:9f:42:aa:4b:a4:55:80:1f: 79:9c:46:6b:3d:cd:a6:3b:4d:af:a4:2d:2f:f4:37: 10:66:c5:3a:7d:6a:8b:de:1f:70:a8:3a:74:5f:fe: 58:f8:75:3d:1b:4c:7e:e4:08:ca:47:f0:93:97:6b: a0:e2:21:8a:94:e5:7d:ac:0d:da:8a:6c:b9:55:53: 95:fc:eb:b3:0a:67:70:47:f6:fe:fb:a7:f1:1f:f1: 8e:22:8d:4c:9f:12:cd:19:5e:2c:55:55:1c:76:25: 25:c5:1b:c3:46:d3:b0:c6:42:b0:23:0c:58:90:e1: d2:94:cc:f8:95:ad:d9:96:c4:de:bc:a5:88:6d:75: 4a:c1:92:7b:d9:3e:7d:ac:99:03:77:cf:b6:e9:07: ed:6c:d4:73:29:b2:33:b2:cf:b5:a6:3b:21:a2:be: 8b:fd:05:b9:74:0b:cf:34:ee:82:2f:dd:c0:70:05: 63:71:a3:1d:ce:e1:70:6b:26:37:c7:4c:2e:81:17: 66:49:67:7d:f4:11:42:b8:ef:fe:a9:fc:cf:e6:1c: 21:8d:43:bf:06:f1:15:9c:57:f9:35:e7:5e:ad:c7: c3:8a:4f:f3:bf:4b:ae:42:20:65:fa:15:0a:20:34: 72:d6:ad:b2:6d:5a:cb:51:40:08:03:3e:14:6c:8d: ab:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:B6:C9:8C:17:28:E3:5C:92:7F:1D:0E:A2:04:61:EE:01:41:8E:C9 X509v3 Authority Key Identifier: keyid:0F:99:B1:FE:CF:A5:70:04:F6:43:D8:2B:F5:11:CD:D4:74:78:6D:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/D5mx_s-lcAT2Q9gr9RHN1HR4baA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5mx_s-lcAT2Q9gr9RHN1HR4baA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/D5mx_s-lcAT2Q9gr9RHN1HR4baA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:c7:44:da:b8:99:b9:5a:a5:be:3c:28:9f:2f:06:56:4b:75: 70:2f:98:f5:38:39:43:c9:7d:f0:52:89:a4:7d:e8:5f:4d:b7: ff:67:42:a9:ef:29:f7:13:c3:0e:46:8f:5d:c9:c8:5d:7b:04: 0e:b0:f6:8b:95:ce:4f:36:fe:fd:e9:dc:ec:f3:70:83:dd:4f: e0:28:a8:f3:e6:ee:f1:bb:25:df:e2:c7:9e:b8:f5:b9:d6:b6: 2e:17:cd:5d:1d:8c:f2:78:b6:21:ff:6c:79:a9:54:62:83:24: be:35:f3:68:9f:1f:a0:b7:24:24:c5:08:24:84:17:51:b7:60: c2:bc:58:03:86:e9:83:ed:88:bc:6c:c6:fb:e4:e3:ad:b2:c6: d7:67:f8:27:55:72:c2:a4:b4:12:54:d1:0d:b4:8e:f8:8e:4a: 1c:bb:ee:43:2d:b5:0b:1f:56:f0:5a:69:db:ab:af:4a:61:2d: c1:b3:76:0b:fa:2d:3a:f5:93:23:20:bd:7b:ba:ac:80:c5:51: 20:20:8f:5d:6e:d5:87:a6:a5:da:32:85:8a:e5:59:a0:66:c7: 26:10:bf:3c:fd:21:98:3d:94:29:9e:13:b0:a1:10:49:bf:48: 43:22:26:b9:00:02:87:f7:d0:77:b5:9d:c4:1a:33:67:20:98: 0c:84:04:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU0MTMxMTAvBgNVBAUTKDBGOTlCMUZFQ0ZBNTcwMDRGNjQzRDgyQkY1MTFDREQ0 NzQ3ODZEQTAwHhcNMjUwNDE3MDQwODExWhcNMjUwNDI0MDQwODExWjAYMRYwFAYD VQQDEw02ODAwN2VhYy1jMmU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtplYhd4Qn0KqS6RVgB95nEZrPc2mO02vpC0v9DcQZsU6fWqL3h9wqDp0X/5Y +HU9G0x+5AjKR/CTl2ug4iGKlOV9rA3aimy5VVOV/OuzCmdwR/b++6fxH/GOIo1M nxLNGV4sVVUcdiUlxRvDRtOwxkKwIwxYkOHSlMz4la3ZlsTevKWIbXVKwZJ72T59 rJkDd8+26QftbNRzKbIzss+1pjshor6L/QW5dAvPNO6CL93AcAVjcaMdzuFwayY3 x0wugRdmSWd99BFCuO/+qfzP5hwhjUO/BvEVnFf5NedercfDik/zv0uuQiBl+hUK IDRy1q2ybVrLUUAIAz4UbI2rUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCO2yYwX KONckn8dDqIEYe4BQY7JMB8GA1UdIwQYMBaAFA+Zsf7PpXAE9kPYK/URzdR0eG2g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTQxMy83NTlBRDI0Q0FC OUUxMUVFOTYzRDMxN0RDNEY5QUUwMi9ENW14X3MtbGNBVDJROWdyOVJITjFIUjRi YUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q1bXhfcy1sY0FUMlE5Z3I5UkhOMUhSNGJhQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTQxMy83NTlBRDI0Q0FCOUUxMUVFOTYzRDMxN0RDNEY5QUUwMi9ENW14X3MtbGNB VDJROWdyOVJITjFIUjRiYUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6x0TauJm5WqW+PCifLwZWS3VwL5j1ODlDyX3wUomkfehfTbf/Z0Kp 7yn3E8MORo9dychdewQOsPaLlc5PNv796dzs83CD3U/gKKjz5u7xuyXf4seeuPW5 1rYuF81dHYzyeLYh/2x5qVRigyS+NfNonx+gtyQkxQgkhBdRt2DCvFgDhumD7Yi8 bMb75OOtssbXZ/gnVXLCpLQSVNENtI74jkocu+5DLbULH1bwWmnbq69KYS3Bs3YL +i069ZMjIL17uqyAxVEgII9dbtWHpqXaMoWK5VmgZscmEL88/SGYPZQpnhOwoRBJ v0hDIia5AAKH99B3tZ3EGjNnIJgMhARp -----END CERTIFICATE-----Generated at Fri Apr 18 18:10:34 2025 by rpki-client