$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.mft File: ldQuwvRot-OPlYyPupMYARfcJuA.mft (raw, json) Hash identifier: Ce8QasZ3FelhGYnQmY7AQBIhvUNGEoUZg6GzS9Ua7SA= Subject key identifier: A5:6E:62:F4:2C:51:01:83:DC:9C:48:E3:51:A4:02:AA:3E:43:AD:10 Authority key identifier: 95:D4:2E:C2:F4:68:B7:E3:8F:95:8C:8F:BA:93:18:01:17:DC:26:E0 Certificate issuer: /CN=A91A7F6A/serialNumber=95D42EC2F468B7E38F958C8FBA93180117DC26E0 Certificate serial: 09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldQuwvRot-OPlYyPupMYARfcJuA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.mft Manifest number: 06 Signing time: Sat 29 Mar 2025 07:33:38 +0000 Manifest this update: Sat 29 Mar 2025 07:33:38 +0000 Manifest next update: Sat 05 Apr 2025 07:33:38 +0000 Files and hashes: 1: ldQuwvRot-OPlYyPupMYARfcJuA.crl (hash: 9qLYn1tZCFTB3n7ACVVyupe23gUadUHjmjvy9PA2mp0=) 2: DE08EC260AF011F09BE4823DC4F9AE02.roa (hash: tS0pbkGyUAuopYmy/atTnvcHHOXmpYRnPtmCrrMVkIw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.crl rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldQuwvRot-OPlYyPupMYARfcJuA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9 (0x9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7F6A Validity Not Before: Mar 29 07:33:38 2025 GMT Not After : Apr 5 07:33:38 2025 GMT Subject: CN=67e7a252-0a73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:d6:17:13:ac:24:94:7d:81:b3:41:96:57:2c: 9f:42:c4:49:4d:f6:67:17:51:a2:7d:b0:fb:42:53: db:db:4b:4a:8a:c6:b6:21:28:2d:71:e2:14:47:9d: d9:03:3b:5c:f7:26:76:6f:dd:5e:60:e7:ee:38:77: 3a:28:3d:e7:5a:f4:4f:94:b0:b2:61:4f:50:a0:f3: 14:66:9a:03:b3:56:49:0e:ef:49:4b:91:2a:38:87: 0c:21:b5:c6:b4:fd:53:49:4f:a2:71:09:2d:31:87: d1:f1:87:41:9d:b2:ac:e8:39:ce:98:b9:58:d5:e3: 4f:d2:ab:e3:d8:44:d6:2c:17:52:49:84:be:55:be: 29:7a:c6:15:3b:18:1f:b6:f7:98:bb:0b:fd:9e:80: b2:ab:59:8e:06:3b:8c:ed:7c:c2:68:96:33:b4:57: fd:e7:01:0d:7c:b9:9e:f1:c5:ba:e7:ce:b1:7e:da: 4d:66:75:b4:45:8a:09:bb:0f:6c:b2:39:e2:f4:2d: c8:0b:3d:dc:00:b7:6d:55:d4:ad:f5:00:5f:25:1e: 60:62:4a:57:f6:32:47:54:4e:b0:b3:1f:dd:72:bd: a0:fd:e4:08:60:ba:84:d0:ef:47:45:bb:f9:a7:5a: 39:13:ea:28:ce:cf:7a:49:d1:48:1c:cb:c1:1c:7a: 1e:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:6E:62:F4:2C:51:01:83:DC:9C:48:E3:51:A4:02:AA:3E:43:AD:10 X509v3 Authority Key Identifier: keyid:95:D4:2E:C2:F4:68:B7:E3:8F:95:8C:8F:BA:93:18:01:17:DC:26:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldQuwvRot-OPlYyPupMYARfcJuA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e1:4f:75:c7:b8:be:63:1c:34:7a:c5:21:45:be:6d:63:6a:74: f9:a5:d0:53:fb:51:c3:9d:e9:35:0c:94:5d:a9:a5:04:39:fc: 73:ea:39:44:ef:8a:c7:27:f5:ca:27:e7:96:ac:3a:12:40:98: a2:57:10:7e:7b:0a:00:1a:05:ad:0e:1c:b3:30:98:16:eb:26: 99:47:f7:9e:07:62:74:f7:ac:8b:1b:b6:8e:a3:6c:9d:ef:e8: f7:99:28:00:39:2b:80:69:c8:fa:67:11:be:28:42:9f:4c:d9: d7:3a:31:c8:ae:85:0a:f8:d2:bf:10:23:0c:86:d5:64:f4:5f: f0:04:83:bc:fb:63:22:76:d4:37:76:a0:37:60:49:73:5c:cb: a3:65:df:56:e7:1d:1b:16:e6:f6:22:01:7d:ef:cf:ad:9d:d0: 3b:05:b3:4a:6a:36:6b:69:25:80:b8:7a:9f:e7:d9:3f:8c:88: ec:1e:ba:ff:b3:9e:67:8a:0a:0c:a6:0f:87:d5:53:55:35:5d: da:bc:f4:3f:0e:71:df:b6:8f:78:f7:9a:d6:80:a0:98:f9:23: e4:89:99:95:4e:2b:80:27:e8:75:93:50:eb:b3:51:09:4a:c5: 28:7b:51:f8:67:fe:81:01:fd:a0:f2:65:b2:6f:af:c3:f0:e2: 57:54:d0:56 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB N0Y2QTExMC8GA1UEBRMoOTVENDJFQzJGNDY4QjdFMzhGOTU4QzhGQkE5MzE4MDEx N0RDMjZFMDAeFw0yNTAzMjkwNzMzMzhaFw0yNTA0MDUwNzMzMzhaMBgxFjAUBgNV BAMTDTY3ZTdhMjUyLTBhNzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCc1hcTrCSUfYGzQZZXLJ9CxElN9mcXUaJ9sPtCU9vbS0qKxrYhKC1x4hRHndkD O1z3JnZv3V5g5+44dzooPeda9E+UsLJhT1Cg8xRmmgOzVkkO70lLkSo4hwwhtca0 /VNJT6JxCS0xh9Hxh0GdsqzoOc6YuVjV40/Sq+PYRNYsF1JJhL5Vvil6xhU7GB+2 95i7C/2egLKrWY4GO4ztfMJoljO0V/3nAQ18uZ7xxbrnzrF+2k1mdbRFigm7D2yy OeL0LcgLPdwAt21V1K31AF8lHmBiSlf2MkdUTrCzH91yvaD95AhguoTQ70dFu/mn WjkT6ijOz3pJ0Ugcy8Eceh5NAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUpW5i9CxR AYPcnEjjUaQCqj5DrRAwHwYDVR0jBBgwFoAUldQuwvRot+OPlYyPupMYARfcJuAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE3RjZBLzdBNTI5ODc2MEFG MDExRjA4NTMxRDQzQ0M0RjlBRTAyL2xkUXV3dlJvdC1PUGxZeVB1cE1ZQVJmY0p1 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbGRRdXd2Um90LU9QbFl5UHVwTVlBUmZjSnVBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE3 RjZBLzdBNTI5ODc2MEFGMDExRjA4NTMxRDQzQ0M0RjlBRTAyL2xkUXV3dlJvdC1P UGxZeVB1cE1ZQVJmY0p1QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAOFPdce4vmMcNHrFIUW+bWNqdPml0FP7UcOd6TUMlF2ppQQ5/HPqOUTv iscn9con55asOhJAmKJXEH57CgAaBa0OHLMwmBbrJplH954HYnT3rIsbto6jbJ3v 6PeZKAA5K4BpyPpnEb4oQp9M2dc6MciuhQr40r8QIwyG1WT0X/AEg7z7YyJ21Dd2 oDdgSXNcy6Nl31bnHRsW5vYiAX3vz62d0DsFs0pqNmtpJYC4ep/n2T+MiOweuv+z nmeKCgymD4fVU1U1Xdq89D8Ocd+2j3j3mtaAoJj5I+SJmZVOK4An6HWTUOuzUQlK xSh7Ufhn/oEB/aDyZbJvr8Pw4ldU0FY= -----END CERTIFICATE-----Generated at Sat Apr 5 03:55:09 2025 by rpki-client