$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.mft File: L2rfQq_RZAgOox4PO4M4vtbaHlk.mft (raw, json) Hash identifier: I5ZDOL2stVYG7g2sYYixQq0DKmEElI5WNG1f/lLQt5Q= Subject key identifier: BB:93:A3:3B:B3:D3:FD:47:7D:8B:7D:D0:B1:DA:AF:77:23:FB:7E:07 Authority key identifier: 2F:6A:DF:42:AF:D1:64:08:0E:A3:1E:0F:3B:83:38:BE:D6:DA:1E:59 Certificate issuer: /CN=A91E7164/serialNumber=2F6ADF42AFD164080EA31E0F3B8338BED6DA1E59 Certificate serial: 0988 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2rfQq_RZAgOox4PO4M4vtbaHlk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.mft Manifest number: 0982 Signing time: Mon 14 Apr 2025 19:58:43 +0000 Manifest this update: Mon 14 Apr 2025 19:58:43 +0000 Manifest next update: Mon 21 Apr 2025 19:58:43 +0000 Files and hashes: 1: L2rfQq_RZAgOox4PO4M4vtbaHlk.crl (hash: tCJRvmGHxVXEXWDBsl1n6xwOxveuiuB5xWhDCzMf6iA=) 2: F3173EDC898C11EA97286262C4F9AE02.roa (hash: 1ZtsZNF5jFsKlAT00IrDzQyZHeqFH7iBf+N8uJoqrEE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.crl rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2rfQq_RZAgOox4PO4M4vtbaHlk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 21 Apr 2025 19:58:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2440 (0x988) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7164, serialNumber=2F6ADF42AFD164080EA31E0F3B8338BED6DA1E59 Validity Not Before: Apr 14 19:58:43 2025 GMT Not After : Apr 21 19:58:43 2025 GMT Subject: CN=67fd68f3-72fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:db:31:8f:6a:48:d6:07:ed:c5:47:bc:91:ed: b8:26:b5:19:44:48:de:e4:82:54:1a:be:b2:c2:ce: 61:93:a6:88:7b:88:e6:73:84:38:db:a9:89:e7:73: 8c:43:3e:90:8c:e3:df:72:4d:f3:c7:ce:59:47:80: bb:9a:d3:6a:6e:7e:93:0b:91:0e:d5:6f:3a:e1:6d: 79:56:6a:a6:02:49:8f:63:d5:b5:9b:b4:cd:cb:13: a9:1a:fd:13:fb:45:c3:8b:4f:19:0b:06:5a:8a:35: 42:37:4d:ad:4b:4c:d9:95:fe:81:bb:e3:44:15:bc: 51:10:12:25:e0:29:c6:4b:0c:1b:85:22:d4:0c:f5: ff:e1:c4:16:30:6f:de:19:98:41:38:62:c4:3b:c3: d9:c5:b8:fa:0c:bd:f5:7f:29:80:4d:0f:d8:19:04: e9:cd:d5:48:13:a4:76:1c:b4:8d:58:dc:dd:a9:78: 58:4d:0b:89:3a:4b:35:2d:2d:96:82:76:c6:7e:36: c1:9b:c6:f4:a5:68:a0:b0:9e:83:4a:ad:18:91:14: 03:26:bb:8f:1d:9f:9f:ae:cc:f5:08:30:10:89:86: 29:2f:e7:5c:4c:b6:f8:f4:da:95:ef:2d:88:14:d2: 56:68:42:30:cc:78:76:7d:37:1d:5b:9d:b4:10:5d: d7:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:93:A3:3B:B3:D3:FD:47:7D:8B:7D:D0:B1:DA:AF:77:23:FB:7E:07 X509v3 Authority Key Identifier: keyid:2F:6A:DF:42:AF:D1:64:08:0E:A3:1E:0F:3B:83:38:BE:D6:DA:1E:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2rfQq_RZAgOox4PO4M4vtbaHlk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:5e:4f:35:b4:5d:86:fb:6c:44:cd:39:48:ab:a2:7f:aa:b8: 2a:3f:0d:13:2b:c1:fc:cf:3a:b9:92:d0:75:2a:67:cd:7e:ad: c7:ed:9f:35:dc:62:bc:f7:f4:60:5c:e7:15:5a:63:1c:d4:83: 87:63:24:e3:8f:d3:03:ff:c7:5c:37:b7:6c:ed:54:f9:0c:6c: 1b:78:54:e6:68:27:fa:25:85:38:a2:30:84:62:d2:23:4a:c5: 76:0c:17:fb:fa:8d:15:0c:07:db:4c:a0:a0:98:0e:80:d1:b9: 33:4a:86:fe:54:3b:00:91:51:09:16:29:6f:54:d7:6a:54:fb: 2b:7e:17:99:6e:92:4a:93:37:ad:1a:2d:67:cb:38:a6:e7:d2: 07:55:bb:fa:51:b1:ae:28:65:56:04:1d:03:89:7d:ea:29:68: d1:06:01:f3:c6:08:6f:db:56:43:a9:5c:dc:f2:51:64:87:16: 01:6b:e2:05:ef:7c:57:92:79:0b:c5:a1:26:c2:a9:59:8f:53: 86:fa:ab:d3:fa:85:2c:5f:7d:70:95:8f:0a:f0:52:19:6e:f3: 20:b1:8e:e9:32:f2:fa:6c:66:d9:96:e0:6c:e0:34:21:dd:fc: e7:37:88:01:8a:08:42:ab:95:3d:3a:07:3b:36:ee:67:60:31: 43:80:e5:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCYgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTcxNjQxMTAvBgNVBAUTKDJGNkFERjQyQUZEMTY0MDgwRUEzMUUwRjNCODMzOEJF RDZEQTFFNTkwHhcNMjUwNDE0MTk1ODQzWhcNMjUwNDIxMTk1ODQzWjAYMRYwFAYD VQQDEw02N2ZkNjhmMy03MmZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxtsxj2pI1gftxUe8ke24JrUZREje5IJUGr6yws5hk6aIe4jmc4Q426mJ53OM Qz6QjOPfck3zx85ZR4C7mtNqbn6TC5EO1W864W15VmqmAkmPY9W1m7TNyxOpGv0T +0XDi08ZCwZaijVCN02tS0zZlf6Bu+NEFbxREBIl4CnGSwwbhSLUDPX/4cQWMG/e GZhBOGLEO8PZxbj6DL31fymATQ/YGQTpzdVIE6R2HLSNWNzdqXhYTQuJOks1LS2W gnbGfjbBm8b0pWigsJ6DSq0YkRQDJruPHZ+frsz1CDAQiYYpL+dcTLb49NqV7y2I FNJWaEIwzHh2fTcdW520EF3XQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLuTozuz 0/1HfYt90LHar3cj+34HMB8GA1UdIwQYMBaAFC9q30Kv0WQIDqMeDzuDOL7W2h5Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzE2NC8yMjhBQkY3NDg5 OEIxMUVBOTI3NTlBNUNDNEY5QUUwMi9MMnJmUXFfUlpBZ09veDRQTzRNNHZ0YmFI bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0wycmZRcV9SWkFnT294NFBPNE00dnRiYUhsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzE2NC8yMjhBQkY3NDg5OEIxMUVBOTI3NTlBNUNDNEY5QUUwMi9MMnJmUXFfUlpB Z09veDRQTzRNNHZ0YmFIbGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfXk81tF2G+2xEzTlIq6J/qrgqPw0TK8H8zzq5ktB1KmfNfq3H7Z81 3GK89/RgXOcVWmMc1IOHYyTjj9MD/8dcN7ds7VT5DGwbeFTmaCf6JYU4ojCEYtIj SsV2DBf7+o0VDAfbTKCgmA6A0bkzSob+VDsAkVEJFilvVNdqVPsrfheZbpJKkzet Gi1nyzim59IHVbv6UbGuKGVWBB0DiX3qKWjRBgHzxghv21ZDqVzc8lFkhxYBa+IF 73xXknkLxaEmwqlZj1OG+qvT+oUsX31wlY8K8FIZbvMgsY7pMvL6bGbZluBs4DQh 3fznN4gBighCq5U9Ogc7Nu5nYDFDgOX4 -----END CERTIFICATE-----Generated at Wed Apr 16 22:21:44 2025 by rpki-client