$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3FD3/21DE5B9AD49511E9A27DC92FC4F9AE02/LHMz280_ygeHgDg3tsuuMawMS2U.mft File: LHMz280_ygeHgDg3tsuuMawMS2U.mft (raw, json) Hash identifier: NEGTG4T0006SrR+OJoO9aumeyowTbZy3r9WigPXzH3Q= Subject key identifier: F3:06:60:59:DD:28:56:BD:4A:3D:B0:C0:22:C5:61:33:1B:6C:CC:EF Authority key identifier: 2C:73:33:DB:CD:3F:CA:07:87:80:38:37:B6:CB:AE:31:AC:0C:4B:65 Certificate issuer: /CN=A91E3FD3/serialNumber=2C7333DBCD3FCA0787803837B6CBAE31AC0C4B65 Certificate serial: 0D38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LHMz280_ygeHgDg3tsuuMawMS2U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3FD3/21DE5B9AD49511E9A27DC92FC4F9AE02/LHMz280_ygeHgDg3tsuuMawMS2U.mft Manifest number: 0D29 Signing time: Fri 04 Apr 2025 18:09:06 +0000 Manifest this update: Fri 04 Apr 2025 18:09:05 +0000 Manifest next update: Fri 11 Apr 2025 18:09:05 +0000 Files and hashes: 1: LHMz280_ygeHgDg3tsuuMawMS2U.crl (hash: 0IRQa0x5tyoQMTP2BiqiHLS3m0R9EOxhrAlHO5DTPUo=) 2: 62BA539C48ED11EDBC251337C4F9AE02.roa (hash: 2//beVUEUtWDd/tf9scv/4G9JclsWxR4JDywFndSmnQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3FD3/21DE5B9AD49511E9A27DC92FC4F9AE02/LHMz280_ygeHgDg3tsuuMawMS2U.crl rsync://rpki.apnic.net/member_repository/A91E3FD3/21DE5B9AD49511E9A27DC92FC4F9AE02/LHMz280_ygeHgDg3tsuuMawMS2U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LHMz280_ygeHgDg3tsuuMawMS2U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:09:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3384 (0xd38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3FD3 Validity Not Before: Apr 4 18:09:05 2025 GMT Not After : Apr 11 18:09:05 2025 GMT Subject: CN=67f02042-b5c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:28:06:c8:14:87:db:3d:25:44:e3:23:e2:90: 13:e4:43:14:dc:aa:3c:bd:37:65:49:80:20:af:8d: 15:a9:98:67:bb:d8:aa:4a:20:04:f2:c1:45:0b:57: 4f:93:f2:cf:39:a2:66:12:f5:a1:9a:11:a0:88:3b: 09:19:73:04:b4:a7:9e:46:67:81:8a:d3:75:42:ab: ed:f3:07:46:5f:5f:27:48:24:52:2b:ac:91:9b:f2: d8:5e:27:09:75:a5:1d:88:83:71:a8:3a:16:90:af: 52:3d:3b:09:72:8d:4a:7a:fd:65:17:06:55:ef:fc: 3b:ec:97:6f:10:21:27:d6:cf:a3:38:d0:b6:10:da: ed:22:da:05:eb:02:b4:60:4d:cc:f4:db:da:68:3f: 91:15:86:c7:58:d2:26:82:fd:2d:07:66:87:37:c8: 28:ee:df:81:3f:a3:38:a3:f1:c1:de:02:00:55:ae: 1a:76:e9:60:c4:2c:c5:4e:7d:48:32:72:ce:53:9a: d5:74:02:41:d7:d0:38:57:5f:89:f0:86:b7:52:b7: 7d:83:f9:7b:30:63:e5:c3:66:24:4b:a8:69:38:75: db:05:e9:6b:da:98:26:fa:80:7a:88:8d:2f:4e:1a: 86:4a:3f:5b:77:b3:7c:ad:f2:89:94:25:eb:30:ab: 45:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:06:60:59:DD:28:56:BD:4A:3D:B0:C0:22:C5:61:33:1B:6C:CC:EF X509v3 Authority Key Identifier: keyid:2C:73:33:DB:CD:3F:CA:07:87:80:38:37:B6:CB:AE:31:AC:0C:4B:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3FD3/21DE5B9AD49511E9A27DC92FC4F9AE02/LHMz280_ygeHgDg3tsuuMawMS2U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LHMz280_ygeHgDg3tsuuMawMS2U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3FD3/21DE5B9AD49511E9A27DC92FC4F9AE02/LHMz280_ygeHgDg3tsuuMawMS2U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:14:e0:ca:3e:14:9d:c4:1e:44:cc:11:bd:fb:9e:d6:8c:03: 4a:14:3d:1f:6c:d6:23:31:87:85:aa:c0:63:50:99:40:00:f6: 48:e3:4b:98:8e:10:f2:0a:61:62:7c:25:c8:5e:f4:e9:71:f3: 9c:26:9f:90:56:f2:81:be:f3:9c:ca:7f:fd:ad:74:7a:3d:04: ff:de:59:84:c7:64:0c:b2:2c:e3:f5:55:1f:34:ac:e3:fc:6a: 15:a5:b3:96:5b:a5:dc:ee:87:59:84:86:5f:0f:a2:2b:7c:36: 1c:0c:4a:75:2e:52:31:16:34:f8:ac:aa:c7:07:7d:c6:ce:66: 01:66:27:8d:b6:3b:3d:26:2e:bd:94:5c:a7:14:00:13:4a:27: c8:ee:ad:86:a8:3e:d3:6b:63:7c:fd:0f:d1:af:b8:59:22:22: c8:ce:12:9c:6d:fd:70:4b:48:97:e4:01:bb:4b:dd:29:c9:dc: 20:00:76:43:5d:b1:87:25:37:d7:34:fa:dc:f1:bb:01:32:28: 13:b4:3a:a5:91:7d:25:fb:a0:00:6a:fb:94:50:58:f5:9d:d9: 0f:ca:b7:a8:30:d9:56:48:45:18:54:72:93:aa:95:7e:74:ce: 1c:bc:02:db:41:bb:3c:8c:2f:b6:f1:80:98:ef:f6:63:c1:0b: ac:c4:67:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDTgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNGRDMxMTAvBgNVBAUTKDJDNzMzM0RCQ0QzRkNBMDc4NzgwMzgzN0I2Q0JBRTMx QUMwQzRCNjUwHhcNMjUwNDA0MTgwOTA1WhcNMjUwNDExMTgwOTA1WjAYMRYwFAYD VQQDEw02N2YwMjA0Mi1iNWM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2CgGyBSH2z0lROMj4pAT5EMU3Ko8vTdlSYAgr40VqZhnu9iqSiAE8sFFC1dP k/LPOaJmEvWhmhGgiDsJGXMEtKeeRmeBitN1Qqvt8wdGX18nSCRSK6yRm/LYXicJ daUdiINxqDoWkK9SPTsJco1Kev1lFwZV7/w77JdvECEn1s+jONC2ENrtItoF6wK0 YE3M9NvaaD+RFYbHWNImgv0tB2aHN8go7t+BP6M4o/HB3gIAVa4adulgxCzFTn1I MnLOU5rVdAJB19A4V1+J8Ia3Urd9g/l7MGPlw2YkS6hpOHXbBelr2pgm+oB6iI0v ThqGSj9bd7N8rfKJlCXrMKtFUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPMGYFnd KFa9Sj2wwCLFYTMbbMzvMB8GA1UdIwQYMBaAFCxzM9vNP8oHh4A4N7bLrjGsDEtl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0ZEMy8yMURFNUI5QUQ0 OTUxMUU5QTI3REM5MkZDNEY5QUUwMi9MSE16MjgwX3lnZUhnRGczdHN1dU1hd01T MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xITXoyODBfeWdlSGdEZzN0c3V1TWF3TVMyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0ZEMy8yMURFNUI5QUQ0OTUxMUU5QTI3REM5MkZDNEY5QUUwMi9MSE16MjgwX3ln ZUhnRGczdHN1dU1hd01TMlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaFODKPhSdxB5EzBG9+57WjANKFD0fbNYjMYeFqsBjUJlAAPZI40uY jhDyCmFifCXIXvTpcfOcJp+QVvKBvvOcyn/9rXR6PQT/3lmEx2QMsizj9VUfNKzj /GoVpbOWW6Xc7odZhIZfD6IrfDYcDEp1LlIxFjT4rKrHB33GzmYBZieNtjs9Ji69 lFynFAATSifI7q2GqD7Ta2N8/Q/Rr7hZIiLIzhKcbf1wS0iX5AG7S90pydwgAHZD XbGHJTfXNPrc8bsBMigTtDqlkX0l+6AAavuUUFj1ndkPyreoMNlWSEUYVHKTqpV+ dM4cvALbQbs8jC+28YCY7/ZjwQusxGc4 -----END CERTIFICATE-----Generated at Fri Apr 4 22:00:37 2025 by rpki-client