$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft File: lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft (raw, json) Hash identifier: pGxmACpJMkErjESeGvlxSenYLbW8Zz2nXFr9Lt7M94I= Subject key identifier: 85:60:C2:1D:1A:5A:A8:A1:81:AC:18:CB:BF:41:70:D7:90:30:2E:57 Authority key identifier: 95:06:8B:B3:0A:BC:7E:00:7F:D8:38:7E:4D:E0:A8:3E:FA:AD:D4:72 Certificate issuer: /CN=A91E9DF8/serialNumber=95068BB30ABC7E007FD8387E4DE0A83EFAADD472 Certificate serial: 05C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQaLswq8fgB_2Dh-TeCoPvqt1HI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft Manifest number: 05C3 Signing time: Fri 04 Apr 2025 23:10:29 +0000 Manifest this update: Fri 04 Apr 2025 23:10:28 +0000 Manifest next update: Fri 11 Apr 2025 23:10:28 +0000 Files and hashes: 1: lQaLswq8fgB_2Dh-TeCoPvqt1HI.crl (hash: 0NFrb196yy4a6F8o7aMPruUEwjufjQtfa0m2GgESZOA=) 2: A8086732B6DA11EBB7B67954C4F9AE02.roa (hash: ldWjzJ4l8BsIeHREFrvU51ElQcTYEq5MkB9HbZsC/bI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.crl rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQaLswq8fgB_2Dh-TeCoPvqt1HI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 23:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1481 (0x5c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9DF8 Validity Not Before: Apr 4 23:10:28 2025 GMT Not After : Apr 11 23:10:28 2025 GMT Subject: CN=67f066e5-3865 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:5c:ed:f7:e8:89:d7:2d:15:a6:32:6e:50:9e: aa:5c:4b:09:8a:d7:fd:90:3a:a5:85:92:40:4c:62: 07:b7:29:74:83:61:58:2a:d0:7d:fd:e7:1d:a8:b2: 0f:79:06:12:34:a8:79:b1:08:e4:11:05:81:cd:55: 5a:6e:ce:0a:2e:a4:17:a9:75:dc:e2:47:1c:d7:80: ba:d1:d3:7e:ed:7e:68:77:72:15:72:62:e2:ea:0a: dc:e1:94:de:16:72:87:39:29:c8:8d:13:95:b4:f0: b9:79:cc:cf:ef:1c:20:c3:f9:b0:2c:0c:d1:1f:88: 84:b2:ed:a8:05:fb:0a:8e:a3:6f:a1:b8:aa:ae:12: 3b:af:36:ac:3c:07:17:99:25:ca:44:1b:b6:34:95: 8b:b5:52:cb:37:85:00:83:3c:e7:eb:ad:7d:4d:d3: 03:16:3f:7c:c5:e0:16:c0:5d:33:16:65:b6:09:0d: c4:10:fa:b4:c5:7d:db:dd:d8:45:e9:07:00:ca:32: 0e:1d:06:b1:64:67:67:82:0a:ce:06:86:2f:f1:19: b8:5b:24:a3:d0:f8:98:dc:44:a6:00:73:5a:c5:dc: 6d:7e:7b:d2:42:ad:c0:8f:5e:f9:c5:9e:51:5a:1e: 01:3b:3d:c9:d6:d7:af:28:a1:32:4f:31:f8:31:73: 1b:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:60:C2:1D:1A:5A:A8:A1:81:AC:18:CB:BF:41:70:D7:90:30:2E:57 X509v3 Authority Key Identifier: keyid:95:06:8B:B3:0A:BC:7E:00:7F:D8:38:7E:4D:E0:A8:3E:FA:AD:D4:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQaLswq8fgB_2Dh-TeCoPvqt1HI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:de:26:33:37:79:1d:ba:0c:83:6b:2a:30:55:be:68:52:24: 50:f7:58:87:40:ee:d9:c0:7e:ad:d8:58:6b:aa:50:1f:aa:f7: 0e:b0:b9:74:ab:9e:0c:f0:30:3d:df:4a:d6:b5:94:34:49:34: 4a:f6:92:3b:f1:51:df:9d:94:cc:57:56:91:7f:1f:7c:a4:aa: 9c:7c:73:52:73:1e:65:4a:c8:00:17:f1:b5:67:ff:1f:47:d5: 1c:01:8a:85:12:47:c9:4b:42:f2:2a:46:44:43:e8:d9:6d:15: 9b:d0:25:4b:60:c4:c2:d3:bc:40:98:36:f7:1d:19:2a:3b:25: 30:c7:58:04:c8:b7:f8:96:66:3f:84:2d:b3:ec:e8:d0:11:28: 65:1f:07:6d:d9:b7:cc:02:4d:03:09:2f:38:0e:3b:82:3e:09: 1c:f2:8d:e7:79:21:0d:be:20:56:a9:45:35:8e:b8:a8:db:e9: d2:88:07:de:ec:05:3f:eb:26:c3:80:10:7a:39:7b:5a:b6:f5: c5:be:15:e9:a7:90:2c:71:74:53:bf:26:04:27:ce:7a:f5:43: 50:48:a4:ea:b9:9b:76:29:96:0b:96:18:28:68:c5:bf:4d:73: 9a:f0:ec:70:06:f6:73:50:78:15:fd:9e:57:93:2f:a9:7b:33: 47:6e:a8:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBckwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlERjgxMTAvBgNVBAUTKDk1MDY4QkIzMEFCQzdFMDA3RkQ4Mzg3RTRERTBBODNF RkFBREQ0NzIwHhcNMjUwNDA0MjMxMDI4WhcNMjUwNDExMjMxMDI4WjAYMRYwFAYD VQQDEw02N2YwNjZlNS0zODY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvFzt9+iJ1y0VpjJuUJ6qXEsJitf9kDqlhZJATGIHtyl0g2FYKtB9/ecdqLIP eQYSNKh5sQjkEQWBzVVabs4KLqQXqXXc4kcc14C60dN+7X5od3IVcmLi6grc4ZTe FnKHOSnIjROVtPC5eczP7xwgw/mwLAzRH4iEsu2oBfsKjqNvobiqrhI7rzasPAcX mSXKRBu2NJWLtVLLN4UAgzzn6619TdMDFj98xeAWwF0zFmW2CQ3EEPq0xX3b3dhF 6QcAyjIOHQaxZGdnggrOBoYv8Rm4WySj0PiY3ESmAHNaxdxtfnvSQq3Aj175xZ5R Wh4BOz3J1tevKKEyTzH4MXMbWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIVgwh0a WqihgawYy79BcNeQMC5XMB8GA1UdIwQYMBaAFJUGi7MKvH4Af9g4fk3gqD76rdRy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOURGOC80QjNCODgxRUI2 RDkxMUVCOEY4NjU1NTRDNEY5QUUwMi9sUWFMc3dxOGZnQl8yRGgtVGVDb1B2cXQx SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xRYUxzd3E4ZmdCXzJEaC1UZUNvUHZxdDFISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OURGOC80QjNCODgxRUI2RDkxMUVCOEY4NjU1NTRDNEY5QUUwMi9sUWFMc3dxOGZn Ql8yRGgtVGVDb1B2cXQxSEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBI3iYzN3kdugyDayowVb5oUiRQ91iHQO7ZwH6t2FhrqlAfqvcOsLl0 q54M8DA930rWtZQ0STRK9pI78VHfnZTMV1aRfx98pKqcfHNScx5lSsgAF/G1Z/8f R9UcAYqFEkfJS0LyKkZEQ+jZbRWb0CVLYMTC07xAmDb3HRkqOyUwx1gEyLf4lmY/ hC2z7OjQEShlHwdt2bfMAk0DCS84DjuCPgkc8o3neSENviBWqUU1jrio2+nSiAfe 7AU/6ybDgBB6OXtatvXFvhXpp5AscXRTvyYEJ8569UNQSKTquZt2KZYLlhgoaMW/ TXOa8OxwBvZzUHgV/Z5Xky+pezNHbqim -----END CERTIFICATE-----Generated at Sun Apr 6 19:38:02 2025 by rpki-client