$ rpki-client -vvf rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft File: lfCdXluLzW9LTWm1yTbJEvd9LP0.mft (raw, json) Hash identifier: zKHSKJlAl8IttNuZIZ0rtQ+M3Ar4Xc1nsbaBEkahsjc= Subject key identifier: F5:0C:90:76:9D:AF:97:0F:AB:68:D1:C1:14:D8:0D:A0:FF:4E:5C:29 Authority key identifier: 95:F0:9D:5E:5B:8B:CD:6F:4B:4D:69:B5:C9:36:C9:12:F7:7D:2C:FD Certificate issuer: /CN=A91D44BE/serialNumber=95F09D5E5B8BCD6F4B4D69B5C936C912F77D2CFD Certificate serial: 7A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lfCdXluLzW9LTWm1yTbJEvd9LP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft Manifest number: 77 Signing time: Wed 09 Apr 2025 05:39:49 +0000 Manifest this update: Wed 09 Apr 2025 05:39:48 +0000 Manifest next update: Wed 16 Apr 2025 05:39:48 +0000 Files and hashes: 1: lfCdXluLzW9LTWm1yTbJEvd9LP0.crl (hash: vEoi1wNBNXgHtWm2vbl7qKHewMp8jufZN2iBd6+7u9o=) 2: B23569E2756511EFB018F20DC4F9AE02.roa (hash: r6mTJvt8SukGGtNb+WgynqBgaxV1KBCRpaFxjoCbFH8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.crl rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lfCdXluLzW9LTWm1yTbJEvd9LP0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 05:39:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 122 (0x7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D44BE Validity Not Before: Apr 9 05:39:48 2025 GMT Not After : Apr 16 05:39:48 2025 GMT Subject: CN=67f60824-50da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:dd:cb:9f:09:57:75:43:a8:b2:cf:fa:c2:a4: b5:c7:78:6a:6e:c6:0f:a7:81:69:02:ef:d0:e6:6e: 79:76:ad:f7:aa:ee:77:a0:f4:84:9e:cd:f9:3b:6e: db:a2:68:15:cb:50:b0:15:83:50:00:77:c1:a5:4a: 3d:c6:f9:24:7f:e7:c4:fb:f7:65:0f:ff:e6:7a:31: 8c:0c:76:c2:53:2c:09:83:33:cc:a2:25:3b:ac:20: 3a:07:cc:71:82:f7:04:24:23:7a:a6:30:37:1a:89: fb:78:b7:a8:cf:98:3e:b1:0c:69:51:7b:b5:7e:d6: 8e:30:83:ee:a7:ef:9d:3d:5b:5d:0b:f4:4e:f1:ac: 38:8c:74:d8:6a:fd:65:db:13:8b:ed:f9:bb:a7:b0: 51:31:07:bf:75:dc:29:6b:c0:a0:89:f5:ce:b0:3f: 75:57:56:98:e4:be:9f:38:24:14:dc:0e:ee:ba:5a: 76:45:88:ca:df:17:17:61:3e:e0:10:c0:af:3b:15: a9:08:ab:ea:74:a0:7a:df:38:9d:61:17:11:b5:94: 80:9f:53:f7:84:45:c6:1f:c5:c7:6d:eb:82:02:94: 19:8e:74:01:e4:27:4f:c2:f4:70:99:b2:07:83:27: 2f:8b:0f:79:d9:9c:a4:92:05:27:cd:3d:bd:67:74: e2:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:0C:90:76:9D:AF:97:0F:AB:68:D1:C1:14:D8:0D:A0:FF:4E:5C:29 X509v3 Authority Key Identifier: keyid:95:F0:9D:5E:5B:8B:CD:6F:4B:4D:69:B5:C9:36:C9:12:F7:7D:2C:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lfCdXluLzW9LTWm1yTbJEvd9LP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:70:6e:b4:b6:a8:74:9f:97:99:a5:c2:1a:ae:82:cf:dd:e4: f8:4d:b2:b3:71:6a:5f:46:ed:fe:d0:17:b6:02:b5:04:db:05: a3:82:bf:9c:68:a2:f4:e3:d6:ce:6c:3d:c7:04:7c:6b:54:24: 32:ed:53:0b:86:76:e6:3f:82:7f:a7:b3:ba:d7:d0:24:68:b8: bc:4a:be:df:e6:11:40:8d:3c:16:fc:22:96:a0:ee:74:6c:20: bb:fe:64:18:ba:c1:f4:ed:07:81:34:26:f8:82:82:8f:ea:ab: 88:88:16:7a:e1:99:bd:5d:63:27:8c:32:35:93:a1:a4:9b:34: f3:32:1d:c4:7b:bd:c4:40:b2:15:31:9d:d3:9b:ed:63:00:07: 78:4c:bb:3c:69:71:a4:24:f2:c0:a7:13:01:7c:fe:de:71:0a: 42:5d:26:91:36:8c:76:03:e6:25:a5:7e:df:c0:51:81:93:22: 30:7e:8e:84:4f:b0:55:b6:53:02:93:72:c1:23:f9:ef:9b:bf: a3:51:ef:6d:fa:09:b9:be:3a:c6:5a:7e:24:2e:ec:d4:c7:cb: 45:3e:5f:cd:e9:98:98:90:12:7a:7a:11:d3:8e:2a:f2:29:f9: bb:8d:35:5a:86:bd:fc:47:59:70:f8:3e:62:90:ac:34:fd:a1: 91:17:5e:84 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBejANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NDRCRTExMC8GA1UEBRMoOTVGMDlENUU1QjhCQ0Q2RjRCNEQ2OUI1QzkzNkM5MTJG NzdEMkNGRDAeFw0yNTA0MDkwNTM5NDhaFw0yNTA0MTYwNTM5NDhaMBgxFjAUBgNV BAMTDTY3ZjYwODI0LTUwZGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJ3cufCVd1Q6iyz/rCpLXHeGpuxg+ngWkC79Dmbnl2rfeq7neg9ISezfk7btui aBXLULAVg1AAd8GlSj3G+SR/58T792UP/+Z6MYwMdsJTLAmDM8yiJTusIDoHzHGC 9wQkI3qmMDcaift4t6jPmD6xDGlRe7V+1o4wg+6n7509W10L9E7xrDiMdNhq/WXb E4vt+bunsFExB7913ClrwKCJ9c6wP3VXVpjkvp84JBTcDu66WnZFiMrfFxdhPuAQ wK87FakIq+p0oHrfOJ1hFxG1lICfU/eERcYfxcdt64IClBmOdAHkJ0/C9HCZsgeD Jy+LD3nZnKSSBSfNPb1ndOLHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU9QyQdp2v lw+raNHBFNgNoP9OXCkwHwYDVR0jBBgwFoAUlfCdXluLzW9LTWm1yTbJEvd9LP0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ0NEJFLzAyOEFCRTQyNjky MjExRUZCRjg3QkIwRUM0RjlBRTAyL2xmQ2RYbHVMelc5TFRXbTF5VGJKRXZkOUxQ MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvbGZDZFhsdUx6VzlMVFdtMXlUYkpFdmQ5TFAwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ0 NEJFLzAyOEFCRTQyNjkyMjExRUZCRjg3QkIwRUM0RjlBRTAyL2xmQ2RYbHVMelc5 TFRXbTF5VGJKRXZkOUxQMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAC5wbrS2qHSfl5mlwhqugs/d5PhNsrNxal9G7f7QF7YCtQTbBaOCv5xo ovTj1s5sPccEfGtUJDLtUwuGduY/gn+ns7rX0CRouLxKvt/mEUCNPBb8Ipag7nRs ILv+ZBi6wfTtB4E0JviCgo/qq4iIFnrhmb1dYyeMMjWToaSbNPMyHcR7vcRAshUx ndOb7WMAB3hMuzxpcaQk8sCnEwF8/t5xCkJdJpE2jHYD5iWlft/AUYGTIjB+joRP sFW2UwKTcsEj+e+bv6NR7236Cbm+OsZafiQu7NTHy0U+X83pmJiQEnp6EdOOKvIp +buNNVqGvfxHWXD4PmKQrDT9oZEXXoQ= -----END CERTIFICATE-----Generated at Thu Apr 10 22:12:30 2025 by rpki-client