$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF8DB/6579378C993411E8A0373724C4F9AE02/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.mft File: l9KbDTJFW7XG8SV4X0D1vCcJ99Q.mft (raw, json) Hash identifier: o1uzChk1QtHZQJPLfeCAfpE+9EvLSSOaz1dukcZdmv8= Subject key identifier: B2:64:4F:0F:BE:4E:B6:15:EF:EE:FA:7A:6D:21:57:BC:59:3E:19:CE Authority key identifier: 97:D2:9B:0D:32:45:5B:B5:C6:F1:25:78:5F:40:F5:BC:27:09:F7:D4 Certificate issuer: /CN=A91DF8DB/serialNumber=97D29B0D32455BB5C6F125785F40F5BC2709F7D4 Certificate serial: 1373 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF8DB/6579378C993411E8A0373724C4F9AE02/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.mft Manifest number: 136B Signing time: Sun 20 Apr 2025 16:53:45 +0000 Manifest this update: Sun 20 Apr 2025 16:53:45 +0000 Manifest next update: Sun 27 Apr 2025 16:53:45 +0000 Files and hashes: 1: l9KbDTJFW7XG8SV4X0D1vCcJ99Q.crl (hash: MONaDHZucHCgo7ZEnYNQF3lmd5IssCFWv2LUViAhKe4=) 2: A6C9934CA74111E88B3EAB2BC4F9AE02.roa (hash: YR3r/r5s57l7vc1QAVpusxxc4M0J/72ZS6UJiTG3pTc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF8DB/6579378C993411E8A0373724C4F9AE02/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.crl rsync://rpki.apnic.net/member_repository/A91DF8DB/6579378C993411E8A0373724C4F9AE02/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 16:53:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4979 (0x1373) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF8DB, serialNumber=97D29B0D32455BB5C6F125785F40F5BC2709F7D4 Validity Not Before: Apr 20 16:53:45 2025 GMT Not After : Apr 27 16:53:45 2025 GMT Subject: CN=68052699-fded Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f8:bf:4f:59:a3:43:10:62:2b:54:57:b7:78: ee:f9:7a:72:57:f5:d1:d3:71:12:9a:2b:db:df:17: 80:2b:5f:e7:92:06:dc:5b:2e:b6:71:c7:3d:45:e8: 44:32:33:ec:c6:fe:60:1c:0f:63:b0:34:0a:a1:4b: 71:f5:80:21:f5:99:7b:1e:ce:3e:a8:11:bd:f8:b0: 75:fe:f5:a5:68:be:f5:00:2b:d4:05:ba:a2:ff:9f: 2d:25:9f:90:df:7e:56:d1:62:36:45:91:6e:d8:ba: 8c:27:39:b5:9b:61:ad:e8:b1:90:ac:f2:c8:86:da: 36:bc:97:65:41:e2:31:1f:a8:5f:9d:cc:1d:8a:92: 69:df:ad:24:54:27:b9:11:92:26:0d:34:58:d5:fb: 53:1b:5c:1c:42:7b:4a:b5:56:17:5c:d5:ac:17:d9: cf:83:ef:1e:43:53:db:4f:a7:e6:ae:b2:cf:3d:b1: ec:83:8d:33:b3:cf:11:80:95:09:b5:15:56:04:d1: 0c:51:a0:85:d0:a1:b6:61:19:12:f6:86:92:2a:e9: 74:30:d7:ab:3d:73:45:84:a5:c6:35:f8:9d:19:aa: 88:fb:ce:4c:af:58:84:b3:da:62:4a:b9:44:64:02: bd:26:5d:4b:65:40:ff:3d:cb:af:8c:66:39:82:c9: 7f:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:64:4F:0F:BE:4E:B6:15:EF:EE:FA:7A:6D:21:57:BC:59:3E:19:CE X509v3 Authority Key Identifier: keyid:97:D2:9B:0D:32:45:5B:B5:C6:F1:25:78:5F:40:F5:BC:27:09:F7:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF8DB/6579378C993411E8A0373724C4F9AE02/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF8DB/6579378C993411E8A0373724C4F9AE02/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:0a:fe:33:a2:16:41:e7:7b:6a:69:1c:cc:b1:f0:21:f2:fa: cd:16:97:89:58:81:36:98:9c:d1:0c:c2:3d:cf:cb:a5:3d:ac: c0:77:a2:b1:fd:3c:b1:5f:72:1d:6e:0a:e2:a9:e9:d4:24:30: 28:1f:23:15:5b:80:21:65:18:d8:40:64:9b:60:51:a6:c8:1c: 3e:71:a2:28:70:63:e0:8c:b8:5e:23:bd:00:43:0f:09:52:e5: b7:77:bd:fd:f0:92:48:63:ce:a2:0f:f2:d6:1b:9a:03:ab:72: 71:e5:8d:5f:9d:4f:32:12:a0:f5:ad:3b:8d:de:26:c0:86:41: e6:f6:ca:6c:2b:32:d5:7b:43:ac:79:07:9c:c3:34:f7:96:63: 2f:25:55:bc:3a:67:62:95:ea:7c:d2:ad:ed:69:0c:91:c2:42: 3c:fe:56:23:47:53:1f:37:ff:41:53:90:7f:40:c4:d2:ff:ee: 45:bd:d2:eb:dd:59:a4:84:82:a3:14:bc:41:d5:ef:b1:97:51: 2f:c3:8e:94:10:cb:7b:f5:9f:e6:c4:fb:b1:e6:a9:93:be:46: 90:00:de:ba:f0:20:d3:5d:f0:46:ec:2c:63:b3:46:89:fb:36: d4:1c:b3:cc:69:45:e4:28:1a:6e:24:dd:b4:bd:76:dd:28:93: 41:3d:e9:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE3MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY4REIxMTAvBgNVBAUTKDk3RDI5QjBEMzI0NTVCQjVDNkYxMjU3ODVGNDBGNUJD MjcwOUY3RDQwHhcNMjUwNDIwMTY1MzQ1WhcNMjUwNDI3MTY1MzQ1WjAYMRYwFAYD VQQDEw02ODA1MjY5OS1mZGVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtvi/T1mjQxBiK1RXt3ju+XpyV/XR03ESmivb3xeAK1/nkgbcWy62ccc9RehE MjPsxv5gHA9jsDQKoUtx9YAh9Zl7Hs4+qBG9+LB1/vWlaL71ACvUBbqi/58tJZ+Q 335W0WI2RZFu2LqMJzm1m2Gt6LGQrPLIhto2vJdlQeIxH6hfncwdipJp360kVCe5 EZImDTRY1ftTG1wcQntKtVYXXNWsF9nPg+8eQ1PbT6fmrrLPPbHsg40zs88RgJUJ tRVWBNEMUaCF0KG2YRkS9oaSKul0MNerPXNFhKXGNfidGaqI+85Mr1iEs9piSrlE ZAK9Jl1LZUD/PcuvjGY5gsl/qwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLJkTw++ TrYV7+76em0hV7xZPhnOMB8GA1UdIwQYMBaAFJfSmw0yRVu1xvEleF9A9bwnCffU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjhEQi82NTc5Mzc4Qzk5 MzQxMUU4QTAzNzM3MjRDNEY5QUUwMi9sOUtiRFRKRlc3WEc4U1Y0WDBEMXZDY0o5 OVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w5S2JEVEpGVzdYRzhTVjRYMEQxdkNjSjk5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjhEQi82NTc5Mzc4Qzk5MzQxMUU4QTAzNzM3MjRDNEY5QUUwMi9sOUtiRFRKRlc3 WEc4U1Y0WDBEMXZDY0o5OVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOCv4zohZB53tqaRzMsfAh8vrNFpeJWIE2mJzRDMI9z8ulPazAd6Kx /TyxX3IdbgriqenUJDAoHyMVW4AhZRjYQGSbYFGmyBw+caIocGPgjLheI70AQw8J UuW3d7398JJIY86iD/LWG5oDq3Jx5Y1fnU8yEqD1rTuN3ibAhkHm9spsKzLVe0Os eQecwzT3lmMvJVW8Omdilep80q3taQyRwkI8/lYjR1MfN/9BU5B/QMTS/+5FvdLr 3VmkhIKjFLxB1e+xl1Evw46UEMt79Z/mxPux5qmTvkaQAN668CDTXfBG7Cxjs0aJ +zbUHLPMaUXkKBpuJN20vXbdKJNBPeko -----END CERTIFICATE-----Generated at Mon Apr 21 04:48:41 2025 by rpki-client