$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft File: lKlQswO0aQDdWjBhAwyJpIloA68.mft (raw, json) Hash identifier: +7uM6UUv0KpODgWcsb1avoVVgcN6KwYeAIZQ8PxEI74= Subject key identifier: D3:E8:E7:36:53:9C:3F:E0:B6:DE:DB:CD:2E:C2:CA:AF:B2:34:B2:5B Authority key identifier: 94:A9:50:B3:03:B4:69:00:DD:5A:30:61:03:0C:89:A4:89:68:03:AF Certificate issuer: /CN=A91BAD2D/serialNumber=94A950B303B46900DD5A3061030C89A4896803AF Certificate serial: CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKlQswO0aQDdWjBhAwyJpIloA68.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft Manifest number: C9 Signing time: Mon 07 Apr 2025 04:42:40 +0000 Manifest this update: Mon 07 Apr 2025 04:42:39 +0000 Manifest next update: Mon 14 Apr 2025 04:42:39 +0000 Files and hashes: 1: lKlQswO0aQDdWjBhAwyJpIloA68.crl (hash: MxTXzv7C28Gbtj7FyvZU5j4DKt+i5T+jdW9Cw67VcYk=) 2: 33B566F2E80811EEB4888B0FC4F9AE02.roa (hash: ZSDoXQLk70kw9Tv9vuIwvYTULilf6nNLQq+LER2jQIQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.crl rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKlQswO0aQDdWjBhAwyJpIloA68.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 04:42:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 204 (0xcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAD2D Validity Not Before: Apr 7 04:42:39 2025 GMT Not After : Apr 14 04:42:39 2025 GMT Subject: CN=67f357c0-df92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:40:d4:d0:c3:40:20:81:2b:2b:d1:d8:98:31: 62:e4:91:76:7b:73:23:e2:c4:16:cf:e4:f1:82:fc: 98:24:93:6b:97:11:95:13:93:cd:76:10:95:af:d7: f9:ae:18:9b:c5:24:d8:72:44:b8:2a:52:24:0c:22: 20:1e:8a:a8:e4:44:76:d6:4a:dc:32:65:1d:1e:e0: 5b:a8:5d:9b:e1:2b:09:0d:3c:a0:27:ca:fe:e0:02: 2d:f2:ce:16:20:cc:a1:c2:39:23:db:dd:21:9c:a2: 8e:de:21:3c:4f:d8:aa:0e:8f:13:6c:85:11:d5:71: 50:65:52:f8:79:c3:f6:67:b1:9a:e0:cf:d6:f2:a4: f6:32:29:8c:fb:20:32:1c:dc:38:55:d3:9e:7f:07: 83:76:74:7b:be:c4:55:93:d9:74:c3:d1:4f:ed:52: e5:f7:01:92:bc:42:a2:5f:73:c4:13:36:7a:f5:87: 28:95:ff:52:c7:a2:56:39:35:34:6b:00:d9:1c:83: 13:17:9c:1b:f0:4d:15:88:34:d3:3e:88:e6:eb:98: e6:6f:7b:9a:1d:b7:eb:f2:57:a5:62:84:83:bc:0d: f5:d9:27:0b:60:cb:24:1c:c4:27:11:a5:1d:31:5f: 7b:ac:87:3e:db:01:0a:52:cc:b6:11:4a:27:94:0e: 7c:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:E8:E7:36:53:9C:3F:E0:B6:DE:DB:CD:2E:C2:CA:AF:B2:34:B2:5B X509v3 Authority Key Identifier: keyid:94:A9:50:B3:03:B4:69:00:DD:5A:30:61:03:0C:89:A4:89:68:03:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKlQswO0aQDdWjBhAwyJpIloA68.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:35:cd:ee:4d:fa:d2:05:0a:18:e5:24:e6:13:ab:a2:62:dc: fa:20:6e:2d:35:3e:6e:52:90:87:03:58:72:68:5f:b8:2d:e0: 7c:37:1e:76:06:fe:48:ac:d2:50:e3:04:e3:40:38:a1:0c:11: 82:5d:7d:87:aa:89:f1:77:2d:38:63:e4:d2:75:74:84:b7:b4: 5a:b1:b2:0b:28:4d:9d:32:97:c8:10:2a:dd:5c:80:bd:11:c8: bd:7b:eb:c9:be:20:37:10:1e:0a:44:5b:0f:9e:1a:9c:6a:90: d8:0b:83:5e:8a:ea:a5:e4:3b:a7:8f:e4:28:8e:6f:9d:ae:b4: 89:11:5a:c8:e9:37:11:18:2e:96:c6:c9:4b:65:ee:e1:22:fa: aa:a6:3a:79:9a:6a:fd:c5:d8:95:92:0f:1c:7b:00:0e:58:62: 35:2e:85:38:3d:78:aa:95:6f:b8:7f:c0:6a:8f:0c:c2:71:f2: ee:64:4a:1c:83:0b:d1:14:8d:24:38:03:09:ef:7f:b5:b1:ce: e0:70:1d:01:6f:50:26:a1:70:ce:79:af:23:08:43:98:b0:b7: 60:dd:22:ec:b0:c6:a7:e3:37:99:d2:03:43:f5:e0:93:a7:f7: e5:13:42:8a:68:45:0a:aa:af:e7:ec:88:24:81:97:c0:58:21: de:e5:5a:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFEMkQxMTAvBgNVBAUTKDk0QTk1MEIzMDNCNDY5MDBERDVBMzA2MTAzMEM4OUE0 ODk2ODAzQUYwHhcNMjUwNDA3MDQ0MjM5WhcNMjUwNDE0MDQ0MjM5WjAYMRYwFAYD VQQDEw02N2YzNTdjMC1kZjkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzEDU0MNAIIErK9HYmDFi5JF2e3Mj4sQWz+TxgvyYJJNrlxGVE5PNdhCVr9f5 rhibxSTYckS4KlIkDCIgHoqo5ER21krcMmUdHuBbqF2b4SsJDTygJ8r+4AIt8s4W IMyhwjkj290hnKKO3iE8T9iqDo8TbIUR1XFQZVL4ecP2Z7Ga4M/W8qT2MimM+yAy HNw4VdOefweDdnR7vsRVk9l0w9FP7VLl9wGSvEKiX3PEEzZ69Ycolf9Sx6JWOTU0 awDZHIMTF5wb8E0ViDTTPojm65jmb3uaHbfr8lelYoSDvA312ScLYMskHMQnEaUd MV97rIc+2wEKUsy2EUonlA58uwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNPo5zZT nD/gtt7bzS7Cyq+yNLJbMB8GA1UdIwQYMBaAFJSpULMDtGkA3VowYQMMiaSJaAOv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUQyRC85MDg4RUU1QUU4 MDExMUVFQUQ2QzUwMzBDNEY5QUUwMi9sS2xRc3dPMGFRRGRXakJoQXd5SnBJbG9B NjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xLbFFzd08wYVFEZFdqQmhBd3lKcElsb0E2OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUQyRC85MDg4RUU1QUU4MDExMUVFQUQ2QzUwMzBDNEY5QUUwMi9sS2xRc3dPMGFR RGRXakJoQXd5SnBJbG9BNjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxNc3uTfrSBQoY5STmE6uiYtz6IG4tNT5uUpCHA1hyaF+4LeB8Nx52 Bv5IrNJQ4wTjQDihDBGCXX2Hqonxdy04Y+TSdXSEt7RasbILKE2dMpfIECrdXIC9 Eci9e+vJviA3EB4KRFsPnhqcapDYC4Neiuql5Dunj+Qojm+drrSJEVrI6TcRGC6W xslLZe7hIvqqpjp5mmr9xdiVkg8cewAOWGI1LoU4PXiqlW+4f8BqjwzCcfLuZEoc gwvRFI0kOAMJ73+1sc7gcB0Bb1AmoXDOea8jCEOYsLdg3SLssMan4zeZ0gND9eCT p/flE0KKaEUKqq/n7IgkgZfAWCHe5Vpg -----END CERTIFICATE-----Generated at Mon Apr 7 13:57:19 2025 by rpki-client