$ rpki-client -vvf rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft File: L9JLb9eYBEVzVDhmYs4w3aOyALU.mft (raw, json) Hash identifier: XpkJXUFRKCQo2bt7/wEYGnd4z9kI+bKKiNmyP/A6U0g= Subject key identifier: 27:F1:2B:EC:D6:27:08:16:77:21:89:66:C2:6C:9F:18:48:C1:6E:08 Authority key identifier: 2F:D2:4B:6F:D7:98:04:45:73:54:38:66:62:CE:30:DD:A3:B2:00:B5 Certificate issuer: /CN=A91A29DA/serialNumber=2FD24B6FD79804457354386662CE30DDA3B200B5 Certificate serial: CC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft Manifest number: CB Signing time: Wed 09 Apr 2025 04:35:10 +0000 Manifest this update: Wed 09 Apr 2025 04:35:09 +0000 Manifest next update: Wed 16 Apr 2025 04:35:09 +0000 Files and hashes: 1: L9JLb9eYBEVzVDhmYs4w3aOyALU.crl (hash: FKbytjGlF1f/bvKZ19r7Jx3qR7Tqt5agJtez9/xQPuk=) 2: AE2FD9C4DA5411EE83E9E67EC4F9AE02.roa (hash: xVEJPm+31bLznblOWhCpwIQYSTvCz1YQ0x0L0sMQxuU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.crl rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 04:35:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 204 (0xcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A29DA Validity Not Before: Apr 9 04:35:09 2025 GMT Not After : Apr 16 04:35:09 2025 GMT Subject: CN=67f5f8fd-6d9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ca:bd:01:0c:9c:1f:0b:c6:b2:6c:0d:f1:ed: 59:cd:59:92:40:41:34:85:a3:3d:0b:78:e3:b5:72: f6:ae:b9:af:a6:2f:a0:34:81:95:c6:78:4e:15:1e: f7:60:83:75:4d:97:b6:38:c4:4e:37:02:de:a1:55: 3e:65:82:aa:ea:14:46:94:53:22:2b:7d:81:8d:07: 93:1d:94:b0:f0:04:c9:b8:2b:9f:d9:0e:a4:c8:48: a9:87:02:9a:b0:79:c8:b1:82:c9:06:36:c3:d2:5e: 6e:73:22:d4:30:69:f7:b3:46:79:ec:67:d0:e0:74: 29:b9:e6:e1:6c:09:95:74:9a:28:e0:a3:1f:c4:16: 47:33:b9:72:42:eb:d7:9a:e3:6b:89:da:cb:b4:10: 74:a1:41:db:a1:69:55:29:9c:47:9d:24:64:48:00: 83:d3:34:33:d4:05:91:9a:5e:00:9f:78:2d:67:b9: a0:48:ee:5c:63:a0:1a:38:f5:72:40:01:d5:e7:c8: 1a:b8:8e:d5:4e:35:0b:93:65:2d:96:1f:2c:ba:94: ce:9b:eb:60:fb:11:71:f7:e7:97:7b:16:35:66:d0: e0:15:1b:f6:4e:37:e1:71:29:8a:3a:68:ec:07:65: bd:26:9f:83:74:77:32:32:5b:56:0c:6e:9e:74:74: 47:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:F1:2B:EC:D6:27:08:16:77:21:89:66:C2:6C:9F:18:48:C1:6E:08 X509v3 Authority Key Identifier: keyid:2F:D2:4B:6F:D7:98:04:45:73:54:38:66:62:CE:30:DD:A3:B2:00:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c5:1f:08:3f:08:3b:dc:3b:60:0d:ec:14:21:29:55:bb:9a:79: 03:f5:4a:e7:c1:14:d9:79:93:7c:4e:37:c6:2a:c1:f3:c0:52: ce:1c:cc:e6:c6:0e:2c:9a:dc:a3:c1:1e:3a:ae:e3:85:8b:de: 0c:cb:93:d3:c6:da:b2:9b:55:3f:dc:53:2e:b0:7e:09:97:3f: 64:8f:a9:f8:1c:c6:3c:a6:d6:f1:b3:fd:ba:16:e2:a8:40:1e: 7c:b9:d4:3d:e3:e3:ba:e2:6c:03:54:31:59:73:15:33:2a:ea: 19:16:cf:a6:b9:70:8b:9e:f2:e7:02:5a:fd:ef:18:f5:69:66: 7d:ab:fa:8a:da:b3:11:15:2c:c2:a2:0e:ab:42:87:76:0a:2a: 48:7b:1e:26:94:d0:69:7e:ad:78:da:10:3a:ab:62:f7:b3:f1: 4a:89:ba:4f:fc:82:85:f8:19:5e:66:7b:31:ba:f9:98:4f:61: bc:25:39:af:de:a5:5d:72:24:11:37:0b:77:44:40:08:8b:1b: 31:69:e5:66:9c:ed:c7:3c:54:a5:74:45:39:0c:c0:61:f1:54: 46:d4:55:e5:8b:e5:b5:3e:7a:ff:6c:7d:57:ce:80:01:ff:7e: 97:ba:c3:6b:e7:4f:07:f3:27:11:12:01:6e:4f:19:be:49:3a: f8:87:d5:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTI5REExMTAvBgNVBAUTKDJGRDI0QjZGRDc5ODA0NDU3MzU0Mzg2NjYyQ0UzMERE QTNCMjAwQjUwHhcNMjUwNDA5MDQzNTA5WhcNMjUwNDE2MDQzNTA5WjAYMRYwFAYD VQQDEw02N2Y1ZjhmZC02ZDljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzsq9AQycHwvGsmwN8e1ZzVmSQEE0haM9C3jjtXL2rrmvpi+gNIGVxnhOFR73 YIN1TZe2OMRONwLeoVU+ZYKq6hRGlFMiK32BjQeTHZSw8ATJuCuf2Q6kyEiphwKa sHnIsYLJBjbD0l5ucyLUMGn3s0Z57GfQ4HQpuebhbAmVdJoo4KMfxBZHM7lyQuvX muNridrLtBB0oUHboWlVKZxHnSRkSACD0zQz1AWRml4An3gtZ7mgSO5cY6AaOPVy QAHV58gauI7VTjULk2Utlh8supTOm+tg+xFx9+eXexY1ZtDgFRv2TjfhcSmKOmjs B2W9Jp+DdHcyMltWDG6edHRHaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCfxK+zW JwgWdyGJZsJsnxhIwW4IMB8GA1UdIwQYMBaAFC/SS2/XmARFc1Q4ZmLOMN2jsgC1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMjlEQS8zNEI1QjUxNERB NTQxMUVFODI3Q0E1N0RDNEY5QUUwMi9MOUpMYjllWUJFVnpWRGhtWXM0dzNhT3lB TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0w5SkxiOWVZQkVWelZEaG1ZczR3M2FPeUFMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MjlEQS8zNEI1QjUxNERBNTQxMUVFODI3Q0E1N0RDNEY5QUUwMi9MOUpMYjllWUJF VnpWRGhtWXM0dzNhT3lBTFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDFHwg/CDvcO2AN7BQhKVW7mnkD9UrnwRTZeZN8TjfGKsHzwFLOHMzm xg4smtyjwR46ruOFi94My5PTxtqym1U/3FMusH4Jlz9kj6n4HMY8ptbxs/26FuKo QB58udQ94+O64mwDVDFZcxUzKuoZFs+muXCLnvLnAlr97xj1aWZ9q/qK2rMRFSzC og6rQod2CipIex4mlNBpfq142hA6q2L3s/FKibpP/IKF+BleZnsxuvmYT2G8JTmv 3qVdciQRNwt3REAIixsxaeVmnO3HPFSldEU5DMBh8VRG1FXli+W1Pnr/bH1XzoAB /36XusNr508H8ycREgFuTxm+STr4h9XL -----END CERTIFICATE-----Generated at Thu Apr 10 23:00:45 2025 by rpki-client