$ rpki-client -vvf rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.mft File: lRKAntQ1o2QK-bdfCvspKNQWPDE.mft (raw, json) Hash identifier: y4cUjzGWuUB5/alMbe0axicr/Q2ZErxr65/1pFy6cPQ= Subject key identifier: 7D:5F:74:0B:CF:29:8A:52:D9:79:AF:72:2F:7E:A2:BE:40:21:A4:6E Authority key identifier: 95:12:80:9E:D4:35:A3:64:0A:F9:B7:5F:0A:FB:29:28:D4:16:3C:31 Certificate issuer: /CN=A91B45C0/serialNumber=9512809ED435A3640AF9B75F0AFB2928D4163C31 Certificate serial: 11D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRKAntQ1o2QK-bdfCvspKNQWPDE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.mft Manifest number: 11D0 Signing time: Thu 10 Apr 2025 17:09:43 +0000 Manifest this update: Thu 10 Apr 2025 17:09:42 +0000 Manifest next update: Thu 17 Apr 2025 17:09:42 +0000 Files and hashes: 1: lRKAntQ1o2QK-bdfCvspKNQWPDE.crl (hash: ukrlHlCuRQwNBnZp3ZMJOlcnzTDqH7EK8b4IAEVRnv8=) 2: 9995A38CFADC11EF87E86958C4F9AE02.roa (hash: ysxysi1JRRCeXPbgklO9daFHXOXqs2WRrFVz0QeKvyg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.crl rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRKAntQ1o2QK-bdfCvspKNQWPDE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 17:09:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4562 (0x11d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B45C0, serialNumber=9512809ED435A3640AF9B75F0AFB2928D4163C31 Validity Not Before: Apr 10 17:09:42 2025 GMT Not After : Apr 17 17:09:42 2025 GMT Subject: CN=67f7fb57-77e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:3e:ab:f9:b1:f8:d4:19:5d:0e:ac:93:a0:87: 59:28:3f:38:59:5c:31:34:e7:ac:5e:16:d4:cc:7b: 55:6c:a7:f9:38:48:6d:a3:af:bd:9e:67:97:c2:cf: 0f:dd:f5:a9:8c:2a:7e:59:1b:14:a0:28:30:0b:74: 52:2f:b8:2d:ba:21:04:8f:86:e3:55:22:83:d7:5a: 1f:f4:35:f8:1a:dd:72:6d:eb:60:9e:75:ad:f4:37: 63:1b:57:23:1c:1e:c7:f9:59:62:a9:48:fc:b7:71: 5a:54:38:90:ca:92:10:b9:5c:d2:1c:12:0d:2d:64: b5:d4:b0:18:4a:13:73:73:0c:b9:7c:bc:47:fc:3b: ff:84:6d:41:1d:a5:0d:1f:c4:c3:17:3f:20:b5:93: e4:a6:14:17:1a:ae:e1:25:49:6e:08:53:5a:19:bc: 4d:cb:77:3a:61:57:97:a1:3e:d9:1f:d1:29:5c:05: c5:57:c9:4c:8c:5e:7b:c9:24:fc:81:9e:0c:e5:17: 24:45:17:0b:58:fd:c4:b4:31:a3:df:50:30:a6:1a: fc:89:c0:88:81:6d:53:1a:8e:d6:dc:4c:ff:43:9b: 3e:47:6f:70:25:a3:0e:04:eb:6e:de:eb:75:93:2d: 20:3f:7e:40:d1:66:b8:5e:94:82:ad:1f:ee:72:94: 2f:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:5F:74:0B:CF:29:8A:52:D9:79:AF:72:2F:7E:A2:BE:40:21:A4:6E X509v3 Authority Key Identifier: keyid:95:12:80:9E:D4:35:A3:64:0A:F9:B7:5F:0A:FB:29:28:D4:16:3C:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRKAntQ1o2QK-bdfCvspKNQWPDE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:90:4f:1b:a5:2d:bc:8d:e0:e0:d5:b3:83:51:6c:85:4e:d0: f7:c3:4b:d7:b1:ef:17:d0:d9:05:8d:fd:24:c1:d1:50:24:62: 0f:21:f3:7c:a8:bd:e6:0d:dd:76:d7:3e:5f:d9:8e:58:af:b5: 02:d4:05:94:c3:db:b3:32:7f:67:f8:b9:70:64:dd:be:9e:d4: 86:82:4d:bc:ad:f2:06:30:a0:e8:5c:2d:43:e4:e6:c1:2f:8e: ef:c0:2f:43:6c:9b:47:ae:83:7a:67:f1:04:9b:64:6a:10:20: 64:63:26:fc:9f:4a:d5:db:64:1f:71:f9:77:3a:dd:b1:f9:dd: 35:54:13:9c:e0:4c:56:d5:5a:13:e4:ad:a0:32:e1:5b:5c:d9: 23:24:0b:16:3a:3a:4d:de:4c:35:11:1b:94:45:9c:a7:8d:93: d7:6b:68:ff:02:78:21:72:c6:48:44:0b:14:ed:95:f6:8b:a6: 6c:eb:c0:eb:a2:5f:3c:09:6e:d6:45:29:a0:58:5c:84:ae:c3: 0e:11:6f:fb:78:92:ad:94:33:ff:18:0f:1f:4d:33:47:10:ea: e0:52:c1:cc:83:30:61:2a:9d:e1:50:eb:09:a8:4c:a4:74:23: 9a:34:b1:27:35:69:94:29:fd:57:d3:fe:22:6a:b1:10:27:d3: ae:68:8d:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEdIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ1QzAxMTAvBgNVBAUTKDk1MTI4MDlFRDQzNUEzNjQwQUY5Qjc1RjBBRkIyOTI4 RDQxNjNDMzEwHhcNMjUwNDEwMTcwOTQyWhcNMjUwNDE3MTcwOTQyWjAYMRYwFAYD VQQDEw02N2Y3ZmI1Ny03N2UzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxj6r+bH41BldDqyToIdZKD84WVwxNOesXhbUzHtVbKf5OEhto6+9nmeXws8P 3fWpjCp+WRsUoCgwC3RSL7gtuiEEj4bjVSKD11of9DX4Gt1ybetgnnWt9DdjG1cj HB7H+VliqUj8t3FaVDiQypIQuVzSHBINLWS11LAYShNzcwy5fLxH/Dv/hG1BHaUN H8TDFz8gtZPkphQXGq7hJUluCFNaGbxNy3c6YVeXoT7ZH9EpXAXFV8lMjF57yST8 gZ4M5RckRRcLWP3EtDGj31Awphr8icCIgW1TGo7W3Ez/Q5s+R29wJaMOBOtu3ut1 ky0gP35A0Wa4XpSCrR/ucpQvHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH1fdAvP KYpS2Xmvci9+or5AIaRuMB8GA1UdIwQYMBaAFJUSgJ7UNaNkCvm3Xwr7KSjUFjwx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDVDMC9CREVFNzI5QUU2 RDkxMUU4OEI4QkY3N0NDNEY5QUUwMi9sUktBbnRRMW8yUUstYmRmQ3ZzcEtOUVdQ REUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xSS0FudFExbzJRSy1iZGZDdnNwS05RV1BERS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDVDMC9CREVFNzI5QUU2RDkxMUU4OEI4QkY3N0NDNEY5QUUwMi9sUktBbnRRMW8y UUstYmRmQ3ZzcEtOUVdQREUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0kE8bpS28jeDg1bODUWyFTtD3w0vXse8X0NkFjf0kwdFQJGIPIfN8 qL3mDd121z5f2Y5Yr7UC1AWUw9uzMn9n+LlwZN2+ntSGgk28rfIGMKDoXC1D5ObB L47vwC9DbJtHroN6Z/EEm2RqECBkYyb8n0rV22Qfcfl3Ot2x+d01VBOc4ExW1VoT 5K2gMuFbXNkjJAsWOjpN3kw1ERuURZynjZPXa2j/AnghcsZIRAsU7ZX2i6Zs68Dr ol88CW7WRSmgWFyErsMOEW/7eJKtlDP/GA8fTTNHEOrgUsHMgzBhKp3hUOsJqEyk dCOaNLEnNWmUKf1X0/4iarEQJ9OuaI1b -----END CERTIFICATE-----Generated at Sat Apr 12 14:52:55 2025 by rpki-client