$ rpki-client -vvf rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.mft File: lVqjNNYHfBfALW18rdIVmRIeTvo.mft (raw, json) Hash identifier: UI32sACPn90y0CNZwooM1nPr186PgUpqnqi0wbASKWo= Subject key identifier: 38:DA:AA:5A:57:80:DA:03:A4:34:9C:29:29:F7:84:04:22:1F:2A:DA Authority key identifier: 95:5A:A3:34:D6:07:7C:17:C0:2D:6D:7C:AD:D2:15:99:12:1E:4E:FA Certificate issuer: /CN=A91D01AF/serialNumber=955AA334D6077C17C02D6D7CADD21599121E4EFA Certificate serial: 07BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lVqjNNYHfBfALW18rdIVmRIeTvo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.mft Manifest number: 07B8 Signing time: Fri 04 Apr 2025 21:15:29 +0000 Manifest this update: Fri 04 Apr 2025 21:15:28 +0000 Manifest next update: Fri 11 Apr 2025 21:15:28 +0000 Files and hashes: 1: lVqjNNYHfBfALW18rdIVmRIeTvo.crl (hash: YeD6v8uGtfqc8fsuex8k4ZuMwWCCKQJWpx1bPTxQjpY=) 2: AD797FA2F17E11EAA3CC597BC4F9AE02.roa (hash: h5ITx5pXE/9NCEhkkWyRU4Y7R0J0MFf0GXuloXcx21g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.crl rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lVqjNNYHfBfALW18rdIVmRIeTvo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:15:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1983 (0x7bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D01AF Validity Not Before: Apr 4 21:15:28 2025 GMT Not After : Apr 11 21:15:28 2025 GMT Subject: CN=67f04bf0-d6b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:2c:2a:14:64:99:90:95:07:d8:9b:f0:eb:62: 7c:64:14:a8:b8:5b:56:76:4f:b2:92:47:b8:95:eb: cc:53:71:f4:ac:27:3a:45:b4:e8:a6:b4:29:62:54: c4:69:06:97:a7:50:62:5f:24:22:c4:34:96:d5:e1: 0e:05:c6:04:89:e5:14:84:b4:9d:95:ff:e6:b1:c5: f3:34:4f:8d:06:7c:44:eb:2b:ee:65:16:fb:7d:d1: e8:e0:75:ff:1d:56:98:f7:fd:be:56:c3:d7:63:dd: 44:0e:49:24:3e:57:2b:a6:f0:e1:e8:5f:99:22:16: 09:15:cf:90:8c:fe:dc:c6:7b:45:a2:94:a2:17:6a: cf:22:c3:17:62:a0:70:8f:9b:0a:e8:a5:6c:5b:7c: 73:63:c2:88:f2:46:5f:12:97:c1:1e:7f:b1:9f:15: 29:e3:4c:d8:54:e0:d3:16:89:ed:39:33:17:01:4b: f4:e4:0f:ef:36:8e:45:f7:c4:7d:66:f0:5c:1e:32: c0:11:e3:f7:bb:99:4c:fb:be:31:df:0b:f8:ff:40: ca:8a:f9:d0:7a:c9:d4:32:d7:5f:cc:95:e5:75:57: 1f:94:33:a3:0e:40:24:bf:08:eb:26:83:cb:9f:1b: 5b:34:6f:d7:e6:e6:e3:3b:f8:e8:02:ca:b6:be:b5: 66:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:DA:AA:5A:57:80:DA:03:A4:34:9C:29:29:F7:84:04:22:1F:2A:DA X509v3 Authority Key Identifier: keyid:95:5A:A3:34:D6:07:7C:17:C0:2D:6D:7C:AD:D2:15:99:12:1E:4E:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lVqjNNYHfBfALW18rdIVmRIeTvo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:ea:8f:51:f6:9f:c8:a4:6e:e9:58:dd:61:6d:68:22:07:ff: e7:da:c0:40:f3:25:88:40:23:5b:98:7c:35:84:97:70:cd:31: e2:e9:11:33:a3:c4:2b:d7:ab:dc:f5:e2:1c:1d:12:32:02:48: 4a:5e:c7:52:60:ba:e8:34:19:21:85:f3:35:72:60:ce:84:8e: 96:af:bf:10:38:00:82:7f:a5:ab:af:cd:a7:c4:29:0e:ef:7b: b4:61:51:d2:5b:7d:43:ae:f3:a4:23:56:cb:f8:a1:f8:9d:5c: ad:b2:8f:4e:f8:97:3c:d2:56:9e:37:86:97:15:69:8b:75:87: fd:b0:f1:d0:06:a6:60:1c:98:15:2e:06:cc:26:f2:9d:72:16: 24:27:35:7c:70:71:49:70:39:bc:e5:7b:86:ca:9d:bf:50:99: 19:6b:8d:76:67:0c:78:bb:84:76:be:83:83:41:5a:58:82:a5: ca:fb:4b:b6:47:01:4c:94:11:72:e1:38:4d:8f:b8:4e:37:c8: 55:7e:a2:db:d7:8a:1f:65:bc:cb:51:c3:88:2c:34:3f:83:41: b6:9c:c4:51:7a:ea:38:d6:16:f1:9a:c1:3c:64:78:be:a2:54: 31:1c:c1:41:f3:af:54:68:a0:d8:d1:9e:0d:bb:34:07:f6:b4: a7:8f:b8:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB78wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDAxQUYxMTAvBgNVBAUTKDk1NUFBMzM0RDYwNzdDMTdDMDJENkQ3Q0FERDIxNTk5 MTIxRTRFRkEwHhcNMjUwNDA0MjExNTI4WhcNMjUwNDExMjExNTI4WjAYMRYwFAYD VQQDEw02N2YwNGJmMC1kNmIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtiwqFGSZkJUH2Jvw62J8ZBSouFtWdk+ykke4levMU3H0rCc6RbToprQpYlTE aQaXp1BiXyQixDSW1eEOBcYEieUUhLSdlf/mscXzNE+NBnxE6yvuZRb7fdHo4HX/ HVaY9/2+VsPXY91EDkkkPlcrpvDh6F+ZIhYJFc+QjP7cxntFopSiF2rPIsMXYqBw j5sK6KVsW3xzY8KI8kZfEpfBHn+xnxUp40zYVODTFontOTMXAUv05A/vNo5F98R9 ZvBcHjLAEeP3u5lM+74x3wv4/0DKivnQesnUMtdfzJXldVcflDOjDkAkvwjrJoPL nxtbNG/X5ubjO/joAsq2vrVm8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDjaqlpX gNoDpDScKSn3hAQiHyraMB8GA1UdIwQYMBaAFJVaozTWB3wXwC1tfK3SFZkSHk76 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDFBRi9DRDdFNzBEOEYx N0QxMUVBQUIzOTI1NzhDNEY5QUUwMi9sVnFqTk5ZSGZCZkFMVzE4cmRJVm1SSWVU dm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xWcWpOTllIZkJmQUxXMThyZElWbVJJZVR2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MDFBRi9DRDdFNzBEOEYxN0QxMUVBQUIzOTI1NzhDNEY5QUUwMi9sVnFqTk5ZSGZC ZkFMVzE4cmRJVm1SSWVUdm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCC6o9R9p/IpG7pWN1hbWgiB//n2sBA8yWIQCNbmHw1hJdwzTHi6REz o8Qr16vc9eIcHRIyAkhKXsdSYLroNBkhhfM1cmDOhI6Wr78QOACCf6Wrr82nxCkO 73u0YVHSW31DrvOkI1bL+KH4nVytso9O+Jc80laeN4aXFWmLdYf9sPHQBqZgHJgV LgbMJvKdchYkJzV8cHFJcDm85XuGyp2/UJkZa412Zwx4u4R2voODQVpYgqXK+0u2 RwFMlBFy4ThNj7hON8hVfqLb14ofZbzLUcOILDQ/g0G2nMRReuo41hbxmsE8ZHi+ olQxHMFB869UaKDY0Z4NuzQH9rSnj7gV -----END CERTIFICATE-----Generated at Sat Apr 5 05:20:06 2025 by rpki-client