$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/aLP_FmWJyEQaRP3KYfQrOmOuESk.mft File: aLP_FmWJyEQaRP3KYfQrOmOuESk.mft (raw, json) Hash identifier: IqHYO/rbS91BsRlPe6onRlMwoNYBbzO4BOrk7oz9/VQ= Subject key identifier: 93:1E:A7:F8:88:58:0A:E3:D3:09:69:1A:FF:F0:26:AD:81:BD:6E:7D Authority key identifier: 68:B3:FF:16:65:89:C8:44:1A:44:FD:CA:61:F4:2B:3A:63:AE:11:29 Certificate issuer: /CN=A91A2C5D/serialNumber=68B3FF166589C8441A44FDCA61F42B3A63AE1129 Certificate serial: 010B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLP_FmWJyEQaRP3KYfQrOmOuESk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/aLP_FmWJyEQaRP3KYfQrOmOuESk.mft Manifest number: 0106 Signing time: Fri 11 Apr 2025 04:22:57 +0000 Manifest this update: Fri 11 Apr 2025 04:22:57 +0000 Manifest next update: Fri 18 Apr 2025 04:22:57 +0000 Files and hashes: 1: aLP_FmWJyEQaRP3KYfQrOmOuESk.crl (hash: XArQBz+vDGYMNS6f8+FM0wFjA/zGjA/7GIWHku38Ha8=) 2: 624EED84E05611EF94B15084C4F9AE02.roa (hash: 9e4pncNZ34MiHX43g5ImhaCBiJWYtaKufup08D6wHzU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/aLP_FmWJyEQaRP3KYfQrOmOuESk.crl rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/aLP_FmWJyEQaRP3KYfQrOmOuESk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLP_FmWJyEQaRP3KYfQrOmOuESk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 04:22:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 267 (0x10b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2C5D, serialNumber=68B3FF166589C8441A44FDCA61F42B3A63AE1129 Validity Not Before: Apr 11 04:22:57 2025 GMT Not After : Apr 18 04:22:57 2025 GMT Subject: CN=67f89921-bae2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:1c:6d:3a:9a:60:62:51:dd:64:4e:49:c4:65: 32:e6:3d:81:02:7e:89:8b:3a:67:a4:0f:5f:d9:c0: 7f:64:89:cf:e1:8d:5f:46:8f:25:d8:49:9c:67:84: f7:91:e2:3f:62:a0:ab:98:11:76:a9:23:f0:73:9f: 16:d7:01:e3:18:d5:b0:fd:47:c9:48:e9:c8:56:62: 22:41:f9:bf:c5:0a:12:8b:af:65:3f:c7:29:ab:21: f8:c9:9a:ed:87:2c:8d:c8:fd:ce:7a:79:5f:d6:24: a7:83:08:9c:e5:67:8f:29:75:fb:c8:11:c0:cf:80: 39:35:71:8b:af:fe:e6:f0:28:6f:9b:c9:df:56:d5: ba:52:e9:80:e3:db:08:5d:00:66:91:aa:72:24:aa: c1:4b:e2:20:cb:91:7f:9e:e3:e4:79:49:a6:b6:09: 73:e2:38:50:bb:73:fb:19:39:d0:83:71:a4:3f:5d: 62:47:5b:bd:9b:6e:3c:29:83:97:c8:ee:97:bd:06: 27:00:b5:57:b6:21:4e:98:7b:dd:1c:bf:f8:d7:fd: 88:51:56:49:97:ff:5b:00:e9:fb:46:14:ed:7d:51: a6:23:94:fb:69:49:34:a5:e4:01:a3:83:53:65:16: 3b:bf:c4:98:0c:42:42:79:82:24:10:03:53:b5:04: 2a:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:1E:A7:F8:88:58:0A:E3:D3:09:69:1A:FF:F0:26:AD:81:BD:6E:7D X509v3 Authority Key Identifier: keyid:68:B3:FF:16:65:89:C8:44:1A:44:FD:CA:61:F4:2B:3A:63:AE:11:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/aLP_FmWJyEQaRP3KYfQrOmOuESk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLP_FmWJyEQaRP3KYfQrOmOuESk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/aLP_FmWJyEQaRP3KYfQrOmOuESk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:9a:37:cf:99:61:88:1f:77:3b:9b:e1:d3:37:19:55:c2:ef: a0:c1:96:b2:6b:e5:3a:c8:d8:e0:08:7c:06:78:b9:61:b6:4b: 95:17:0c:9f:46:8b:52:c7:c2:ab:28:f6:56:b0:db:08:fe:0e: 01:fc:ac:56:fe:f7:71:15:b3:49:88:81:6a:a0:02:02:fd:ff: d5:d0:13:10:c1:84:a3:73:9a:4c:c1:eb:8f:a8:a4:cc:8e:c8: 93:90:63:81:8d:66:f7:21:e7:57:b3:53:f9:ba:0f:8b:c0:09: 16:f3:de:3c:ca:55:1f:6d:16:1e:e4:89:38:43:d9:72:33:0a: bd:d4:ff:b0:45:eb:51:0d:35:1b:8d:f3:78:45:f8:62:3e:3d: 9d:12:59:95:47:8a:90:ac:fb:a2:d0:5e:83:06:55:60:32:ef: 97:17:20:b2:3a:e9:9c:ed:d5:39:a3:68:64:0d:ac:77:91:c7: ce:f7:76:2f:a7:dd:35:d0:e4:b3:ee:76:21:ad:41:7b:51:f9: 86:2d:3a:bb:e1:74:b9:9a:43:0e:ba:43:3e:27:54:30:24:6d: b8:b2:f9:2a:4f:de:f6:18:4d:ba:03:68:b3:bf:e0:18:9c:14: 45:3c:22:e5:3e:be:43:57:f8:d5:9a:35:3f:db:aa:04:d0:ee: d9:71:98:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJDNUQxMTAvBgNVBAUTKDY4QjNGRjE2NjU4OUM4NDQxQTQ0RkRDQTYxRjQyQjNB NjNBRTExMjkwHhcNMjUwNDExMDQyMjU3WhcNMjUwNDE4MDQyMjU3WjAYMRYwFAYD VQQDEw02N2Y4OTkyMS1iYWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4BxtOppgYlHdZE5JxGUy5j2BAn6JizpnpA9f2cB/ZInP4Y1fRo8l2EmcZ4T3 keI/YqCrmBF2qSPwc58W1wHjGNWw/UfJSOnIVmIiQfm/xQoSi69lP8cpqyH4yZrt hyyNyP3Oenlf1iSngwic5WePKXX7yBHAz4A5NXGLr/7m8Chvm8nfVtW6UumA49sI XQBmkapyJKrBS+Igy5F/nuPkeUmmtglz4jhQu3P7GTnQg3GkP11iR1u9m248KYOX yO6XvQYnALVXtiFOmHvdHL/41/2IUVZJl/9bAOn7RhTtfVGmI5T7aUk0peQBo4NT ZRY7v8SYDEJCeYIkEANTtQQq0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJMep/iI WArj0wlpGv/wJq2BvW59MB8GA1UdIwQYMBaAFGiz/xZlichEGkT9ymH0KzpjrhEp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkM1RC8zQjlERDQxMDky QzQxMUVFQjUyMUJCNDlDNEY5QUUwMi9hTFBfRm1XSnlFUWFSUDNLWWZRck9tT3VF U2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FMUF9GbVdKeUVRYVJQM0tZZlFyT21PdUVTay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MkM1RC8zQjlERDQxMDkyQzQxMUVFQjUyMUJCNDlDNEY5QUUwMi9hTFBfRm1XSnlF UWFSUDNLWWZRck9tT3VFU2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHmjfPmWGIH3c7m+HTNxlVwu+gwZaya+U6yNjgCHwGeLlhtkuVFwyf RotSx8KrKPZWsNsI/g4B/KxW/vdxFbNJiIFqoAIC/f/V0BMQwYSjc5pMweuPqKTM jsiTkGOBjWb3IedXs1P5ug+LwAkW8948ylUfbRYe5Ik4Q9lyMwq91P+wRetRDTUb jfN4RfhiPj2dElmVR4qQrPui0F6DBlVgMu+XFyCyOumc7dU5o2hkDax3kcfO93Yv p9010OSz7nYhrUF7UfmGLTq74XS5mkMOukM+J1QwJG24svkqT972GE26A2izv+AY nBRFPCLlPr5DV/jVmjU/26oE0O7ZcZgO -----END CERTIFICATE-----Generated at Sat Apr 12 19:05:00 2025 by rpki-client