$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD38B/A1AB2ABCBA8911EF9B338512C4F9AE02/L2sefhQB3gCsju23qFkNA9xUD3g.mft File: L2sefhQB3gCsju23qFkNA9xUD3g.mft (raw, json) Hash identifier: FRboVLjMc6AhuTtVK6AG63erCozbu5KSz7+AwoO0yOw= Subject key identifier: A5:62:59:A4:E2:5A:5E:F8:14:14:65:2E:98:B7:C4:4F:D0:7D:83:86 Authority key identifier: 2F:6B:1E:7E:14:01:DE:00:AC:8E:ED:B7:A8:59:0D:03:DC:54:0F:78 Certificate issuer: /CN=A91DD38B/serialNumber=2F6B1E7E1401DE00AC8EEDB7A8590D03DC540F78 Certificate serial: 37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2sefhQB3gCsju23qFkNA9xUD3g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD38B/A1AB2ABCBA8911EF9B338512C4F9AE02/L2sefhQB3gCsju23qFkNA9xUD3g.mft Manifest number: 37 Signing time: Sat 29 Mar 2025 06:55:19 +0000 Manifest this update: Sat 29 Mar 2025 06:55:19 +0000 Manifest next update: Sat 05 Apr 2025 06:55:19 +0000 Files and hashes: 1: L2sefhQB3gCsju23qFkNA9xUD3g.crl (hash: y5Uc7AWTs6LVj/qukEUczYemddH7MdFReYtihUCT7xk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD38B/A1AB2ABCBA8911EF9B338512C4F9AE02/L2sefhQB3gCsju23qFkNA9xUD3g.crl rsync://rpki.apnic.net/member_repository/A91DD38B/A1AB2ABCBA8911EF9B338512C4F9AE02/L2sefhQB3gCsju23qFkNA9xUD3g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2sefhQB3gCsju23qFkNA9xUD3g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55 (0x37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD38B Validity Not Before: Mar 29 06:55:19 2025 GMT Not After : Apr 5 06:55:19 2025 GMT Subject: CN=67e79957-24ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:7d:5c:be:cd:63:c8:ce:4a:91:40:ee:fa:28: 7e:0f:03:d7:0e:08:52:b0:61:7d:26:39:e2:8e:1f: cf:3e:e9:db:90:cf:c1:8f:81:1d:09:0c:df:06:0d: d9:14:db:d0:2d:d0:bf:51:2d:6b:55:41:d8:88:49: dc:a4:d3:db:93:ac:27:15:5e:96:4e:57:8a:69:d1: 3f:60:2a:33:71:e0:82:5d:b9:d3:39:e7:8e:5c:62: 0f:84:3c:97:36:ed:d1:d4:6e:d9:80:82:ee:d1:d3: e8:f0:bf:eb:35:17:bf:e7:42:e4:f6:2e:ee:4a:d2: 5a:78:a1:04:79:5b:89:f6:98:9f:51:e9:3d:67:17: d7:5c:49:c0:38:b3:92:31:bf:11:f3:89:db:e6:cf: 98:0f:92:59:d5:39:dc:e3:e8:5d:4e:8c:88:37:be: 10:e1:0c:a8:aa:99:93:98:d8:99:38:72:7c:a4:e1: 85:7a:4b:ff:cc:d3:38:ef:4f:ff:20:6e:c9:ca:f8: 40:f6:25:2b:ff:9b:42:f9:fe:dd:eb:61:be:ce:f6: da:4d:10:a5:c7:74:59:b5:4d:4d:f0:91:b9:53:c9: 8d:05:84:a4:38:49:c1:94:4c:c4:46:b7:d5:15:10: a2:19:17:76:1c:95:14:38:a5:19:b1:3e:ef:24:da: 3c:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:62:59:A4:E2:5A:5E:F8:14:14:65:2E:98:B7:C4:4F:D0:7D:83:86 X509v3 Authority Key Identifier: keyid:2F:6B:1E:7E:14:01:DE:00:AC:8E:ED:B7:A8:59:0D:03:DC:54:0F:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD38B/A1AB2ABCBA8911EF9B338512C4F9AE02/L2sefhQB3gCsju23qFkNA9xUD3g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2sefhQB3gCsju23qFkNA9xUD3g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD38B/A1AB2ABCBA8911EF9B338512C4F9AE02/L2sefhQB3gCsju23qFkNA9xUD3g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:be:b9:29:0d:30:75:4c:92:82:53:99:47:87:fc:a7:30:b1: f6:3a:6d:31:a1:88:36:80:a5:a9:c3:5a:7f:6e:b5:b3:7d:ce: e2:49:5e:4e:18:05:be:82:f2:33:f9:a2:d8:d1:ef:c2:75:6d: 40:b7:9d:26:96:94:c2:01:2b:6c:48:4f:68:20:8f:05:2e:74: 60:88:b6:72:3a:41:ab:57:a2:f7:fa:a7:ca:ae:96:ae:50:ca: 0d:df:c9:f9:86:78:6c:00:f8:3b:0f:4b:e0:49:00:e3:4d:d9: 6b:42:a2:07:10:d4:86:88:53:d4:91:70:5e:ad:93:7f:db:90: 7d:8b:30:3b:af:4b:a9:56:a0:fc:40:76:7e:ec:4d:3a:e8:f5: d8:a8:82:0b:c0:e5:7e:19:b0:8b:72:3d:78:91:af:0b:96:12: f3:80:ce:81:5b:97:97:9b:13:3b:b4:e1:d4:26:1e:3a:8b:8d: e4:29:5e:2c:8f:de:46:f2:60:b7:dc:85:36:51:3f:46:6b:51: 92:bc:38:e9:e0:69:f2:3e:e5:02:84:3c:0d:50:f0:6f:21:6f: b9:07:ee:d9:6b:24:c8:05:07:c2:79:c4:5b:60:98:06:08:e5: 59:1d:c7:f4:b6:41:3c:bd:2b:36:18:4c:da:55:54:73:6f:ef: 91:19:69:ad -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RDM4QjExMC8GA1UEBRMoMkY2QjFFN0UxNDAxREUwMEFDOEVFREI3QTg1OTBEMDNE QzU0MEY3ODAeFw0yNTAzMjkwNjU1MTlaFw0yNTA0MDUwNjU1MTlaMBgxFjAUBgNV BAMTDTY3ZTc5OTU3LTI0ZWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDZfVy+zWPIzkqRQO76KH4PA9cOCFKwYX0mOeKOH88+6duQz8GPgR0JDN8GDdkU 29At0L9RLWtVQdiISdyk09uTrCcVXpZOV4pp0T9gKjNx4IJdudM5545cYg+EPJc2 7dHUbtmAgu7R0+jwv+s1F7/nQuT2Lu5K0lp4oQR5W4n2mJ9R6T1nF9dcScA4s5Ix vxHzidvmz5gPklnVOdzj6F1OjIg3vhDhDKiqmZOY2Jk4cnyk4YV6S//M0zjvT/8g bsnK+ED2JSv/m0L5/t3rYb7O9tpNEKXHdFm1TU3wkblTyY0FhKQ4ScGUTMRGt9UV EKIZF3YclRQ4pRmxPu8k2jyDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUpWJZpOJa XvgUFGUumLfET9B9g4YwHwYDVR0jBBgwFoAUL2sefhQB3gCsju23qFkNA9xUD3gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUREMzhCL0ExQUIyQUJDQkE4 OTExRUY5QjMzODUxMkM0RjlBRTAyL0wyc2VmaFFCM2dDc2p1MjNxRmtOQTl4VUQz Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTDJzZWZoUUIzZ0NzanUyM3FGa05BOXhVRDNnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURE MzhCL0ExQUIyQUJDQkE4OTExRUY5QjMzODUxMkM0RjlBRTAyL0wyc2VmaFFCM2dD c2p1MjNxRmtOQTl4VUQzZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAA6+uSkNMHVMkoJTmUeH/KcwsfY6bTGhiDaApanDWn9utbN9zuJJXk4Y Bb6C8jP5otjR78J1bUC3nSaWlMIBK2xIT2ggjwUudGCItnI6QatXovf6p8qulq5Q yg3fyfmGeGwA+DsPS+BJAONN2WtCogcQ1IaIU9SRcF6tk3/bkH2LMDuvS6lWoPxA dn7sTTro9dioggvA5X4ZsItyPXiRrwuWEvOAzoFbl5ebEzu04dQmHjqLjeQpXiyP 3kbyYLfchTZRP0ZrUZK8OOngafI+5QKEPA1Q8G8hb7kH7tlrJMgFB8J5xFtgmAYI 5Vkdx/S2QTy9KzYYTNpVVHNv75EZaa0= -----END CERTIFICATE-----Generated at Fri Apr 4 22:22:19 2025 by rpki-client