$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA1D4/5545E21CA93611EE884AB159C4F9AE02/LCxcmnhfLqc0B5wUDjpHGbOG04M.mft File: LCxcmnhfLqc0B5wUDjpHGbOG04M.mft (raw, json) Hash identifier: /5YlNke2pO8zquwfgkd/HU5g6UTEs/SqKoDxE3HgivE= Subject key identifier: 7D:32:AF:90:6E:FC:55:FD:30:02:80:66:DB:64:BD:92:1F:4E:93:A7 Authority key identifier: 2C:2C:5C:9A:78:5F:2E:A7:34:07:9C:14:0E:3A:47:19:B3:86:D3:83 Certificate issuer: /CN=A91BA1D4/serialNumber=2C2C5C9A785F2EA734079C140E3A4719B386D383 Certificate serial: F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LCxcmnhfLqc0B5wUDjpHGbOG04M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA1D4/5545E21CA93611EE884AB159C4F9AE02/LCxcmnhfLqc0B5wUDjpHGbOG04M.mft Manifest number: F4 Signing time: Thu 03 Apr 2025 04:32:40 +0000 Manifest this update: Thu 03 Apr 2025 04:32:39 +0000 Manifest next update: Thu 10 Apr 2025 04:32:39 +0000 Files and hashes: 1: LCxcmnhfLqc0B5wUDjpHGbOG04M.crl (hash: t3ax+A94Pxu6XBb9iGewVp0kvS7cq87FXvsxmEt4PHI=) 2: 28FC424AA93711EE91871F0AC4F9AE02.roa (hash: g8Elzlw4tRoXrBliL3a4u/fyR/SHOUoxq/RpKAIAzgk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA1D4/5545E21CA93611EE884AB159C4F9AE02/LCxcmnhfLqc0B5wUDjpHGbOG04M.crl rsync://rpki.apnic.net/member_repository/A91BA1D4/5545E21CA93611EE884AB159C4F9AE02/LCxcmnhfLqc0B5wUDjpHGbOG04M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LCxcmnhfLqc0B5wUDjpHGbOG04M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 04:32:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 249 (0xf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA1D4 Validity Not Before: Apr 3 04:32:39 2025 GMT Not After : Apr 10 04:32:39 2025 GMT Subject: CN=67ee0f67-d6b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f0:bc:1e:c6:4b:38:eb:47:c4:d4:4a:ba:77: 76:6f:85:34:38:af:9c:dd:33:ef:69:9d:43:bb:57: bb:29:24:6f:be:42:ab:6f:f9:f3:06:a8:9b:ae:28: c7:c3:a1:26:5e:b0:83:f9:19:af:64:17:98:91:9c: 0b:04:af:67:20:9b:9c:fa:24:20:f3:1e:bd:3a:1a: 97:64:7d:30:fc:ab:b3:f8:52:32:e3:0c:7b:d9:93: 78:14:1b:15:1d:84:7e:2d:7d:df:a1:47:41:4b:84: c3:9b:58:8d:36:41:d6:93:69:cb:be:cc:58:a7:56: 31:25:93:75:ca:da:1c:fb:ee:e4:33:2e:23:2d:e1: c0:af:92:82:ff:a6:8f:a9:75:08:95:f4:bc:7d:bc: 3a:07:0b:54:47:9f:5d:49:ee:a0:f2:75:56:0c:4e: 7e:96:95:66:4d:0e:22:6d:1e:06:1b:dc:05:08:47: 87:f0:8a:06:c9:f9:0f:34:d2:5c:5b:53:7f:81:72: b2:49:7f:f9:f2:76:15:6d:4e:ce:ba:6b:27:68:cc: c0:97:19:e9:2d:26:c5:64:b0:7a:a4:4a:7a:c2:d5: 18:e7:67:e4:1d:c7:33:e9:93:8d:de:b2:89:72:d1: d1:31:b3:6b:0f:00:e6:4c:a1:42:9f:4e:56:dd:6f: 5a:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:32:AF:90:6E:FC:55:FD:30:02:80:66:DB:64:BD:92:1F:4E:93:A7 X509v3 Authority Key Identifier: keyid:2C:2C:5C:9A:78:5F:2E:A7:34:07:9C:14:0E:3A:47:19:B3:86:D3:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA1D4/5545E21CA93611EE884AB159C4F9AE02/LCxcmnhfLqc0B5wUDjpHGbOG04M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LCxcmnhfLqc0B5wUDjpHGbOG04M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA1D4/5545E21CA93611EE884AB159C4F9AE02/LCxcmnhfLqc0B5wUDjpHGbOG04M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:6a:63:a9:8d:70:2e:42:b2:e2:4b:d0:26:2e:60:9c:42:9e: 66:37:0f:af:62:09:5a:da:b6:ea:db:4b:b4:59:f5:81:3c:a5: c3:34:f0:96:0a:78:18:15:63:7a:0b:f6:ea:c0:9a:37:9e:3e: 43:95:7f:36:cf:03:f1:5f:ea:c4:30:03:8c:c8:66:f2:a9:cb: 21:c0:0f:6b:61:df:0f:dd:ca:2c:99:91:e5:8b:58:23:a3:fb: 5e:eb:01:34:01:93:46:2e:57:11:2e:ae:65:fd:0c:df:4e:a8: cd:0e:fd:8e:09:29:bd:f8:e9:92:65:5d:f3:53:02:cd:8a:6b: 70:d9:9c:61:55:88:16:6c:bd:f1:ad:6a:c9:fb:39:9c:3a:54: 20:32:75:1e:78:73:44:8b:b3:e5:9d:ec:df:8b:46:4d:12:22: da:78:0c:da:b3:ee:9b:f7:fb:fb:aa:a9:18:88:f9:16:b4:e0: a2:d8:7f:2a:a1:7a:ca:41:db:d4:bd:cc:71:82:b3:96:cf:aa: a3:98:d8:58:13:04:8a:69:99:0a:31:a1:82:df:26:e3:35:ba: 44:95:ce:39:d3:53:04:19:ec:e4:cb:49:dc:75:5e:90:8f:68: 96:2b:a2:df:68:4b:40:06:9d:87:a8:e2:23:25:e6:f3:98:79: 2d:9a:97:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkExRDQxMTAvBgNVBAUTKDJDMkM1QzlBNzg1RjJFQTczNDA3OUMxNDBFM0E0NzE5 QjM4NkQzODMwHhcNMjUwNDAzMDQzMjM5WhcNMjUwNDEwMDQzMjM5WjAYMRYwFAYD VQQDEw02N2VlMGY2Ny1kNmIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzPC8HsZLOOtHxNRKund2b4U0OK+c3TPvaZ1Du1e7KSRvvkKrb/nzBqibrijH w6EmXrCD+RmvZBeYkZwLBK9nIJuc+iQg8x69OhqXZH0w/Kuz+FIy4wx72ZN4FBsV HYR+LX3foUdBS4TDm1iNNkHWk2nLvsxYp1YxJZN1ytoc++7kMy4jLeHAr5KC/6aP qXUIlfS8fbw6BwtUR59dSe6g8nVWDE5+lpVmTQ4ibR4GG9wFCEeH8IoGyfkPNNJc W1N/gXKySX/58nYVbU7OumsnaMzAlxnpLSbFZLB6pEp6wtUY52fkHccz6ZON3rKJ ctHRMbNrDwDmTKFCn05W3W9a8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH0yr5Bu /FX9MAKAZttkvZIfTpOnMB8GA1UdIwQYMBaAFCwsXJp4Xy6nNAecFA46RxmzhtOD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTFENC81NTQ1RTIxQ0E5 MzYxMUVFODg0QUIxNTlDNEY5QUUwMi9MQ3hjbW5oZkxxYzBCNXdVRGpwSEdiT0cw NE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xDeGNtbmhmTHFjMEI1d1VEanBIR2JPRzA0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTFENC81NTQ1RTIxQ0E5MzYxMUVFODg0QUIxNTlDNEY5QUUwMi9MQ3hjbW5oZkxx YzBCNXdVRGpwSEdiT0cwNE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQamOpjXAuQrLiS9AmLmCcQp5mNw+vYgla2rbq20u0WfWBPKXDNPCW CngYFWN6C/bqwJo3nj5DlX82zwPxX+rEMAOMyGbyqcshwA9rYd8P3cosmZHli1gj o/te6wE0AZNGLlcRLq5l/QzfTqjNDv2OCSm9+OmSZV3zUwLNimtw2ZxhVYgWbL3x rWrJ+zmcOlQgMnUeeHNEi7Plnezfi0ZNEiLaeAzas+6b9/v7qqkYiPkWtOCi2H8q oXrKQdvUvcxxgrOWz6qjmNhYEwSKaZkKMaGC3ybjNbpElc4501MEGezky0ncdV6Q j2iWK6LfaEtABp2HqOIjJebzmHktmpfA -----END CERTIFICATE-----Generated at Fri Apr 4 22:04:36 2025 by rpki-client