$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft File: lQfxHRNjrFs5Lzb17zgixc_NaPk.mft (raw, json) Hash identifier: KCjChCsNg4gvzwHf6x7IV8l3oJDraQTJOF4vtfUQFxQ= Subject key identifier: E3:56:55:B5:39:01:E0:12:0E:FB:1B:A5:9B:DA:51:9A:27:08:D1:F0 Authority key identifier: 95:07:F1:1D:13:63:AC:5B:39:2F:36:F5:EF:38:22:C5:CF:CD:68:F9 Certificate issuer: /CN=A91EE8AC/serialNumber=9507F11D1363AC5B392F36F5EF3822C5CFCD68F9 Certificate serial: 01BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQfxHRNjrFs5Lzb17zgixc_NaPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft Manifest number: 027C Signing time: Fri 11 Apr 2025 02:30:10 +0000 Manifest this update: Fri 11 Apr 2025 02:30:09 +0000 Manifest next update: Fri 18 Apr 2025 02:30:09 +0000 Files and hashes: 1: lQfxHRNjrFs5Lzb17zgixc_NaPk.crl (hash: ahSwyXJ/Q65vRtec7cNTMfN6Bzmz4x839XavR9Em2mM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.crl rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQfxHRNjrFs5Lzb17zgixc_NaPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 02:30:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 442 (0x1ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE8AC, serialNumber=9507F11D1363AC5B392F36F5EF3822C5CFCD68F9 Validity Not Before: Apr 11 02:30:09 2025 GMT Not After : Apr 18 02:30:09 2025 GMT Subject: CN=67f87eb1-6665 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:47:db:0f:05:72:e3:8b:ac:6b:26:19:70:07: 99:b6:ca:7a:c2:45:00:5f:3b:aa:0b:69:94:f9:2c: 44:6f:36:55:8d:79:e4:15:89:41:e5:a8:af:3b:16: b9:ab:55:59:38:e1:ae:d7:c3:29:eb:58:ed:e6:28: 2e:4e:fb:dd:03:fa:9e:3b:82:93:1e:b0:ec:60:e8: f5:e5:3c:41:59:8a:2f:91:67:74:5f:5a:e1:38:ea: bb:7f:91:3a:20:5b:89:c4:45:b0:f2:06:24:dd:cc: be:27:55:c6:96:96:9f:ea:c2:6f:93:35:6d:64:9d: b2:73:39:57:69:62:f3:26:eb:d5:de:9e:0b:02:12: 3d:a2:88:a3:fc:ed:63:b4:11:df:9f:b8:8a:f3:c3: 61:da:61:02:24:72:29:bd:38:13:06:3c:c5:45:4b: 44:8e:ba:7a:fc:dd:c7:06:de:ae:bd:9b:a2:59:e8: 47:7c:65:98:b0:7e:91:7a:ac:79:42:f2:30:60:15: c8:50:b2:58:c4:d8:30:3e:84:24:e0:47:3f:47:86: 84:e4:be:04:b9:69:72:a3:b9:d8:a6:f4:e4:92:94: 61:f8:4d:f2:cb:97:91:fa:06:79:8b:6d:2f:a7:f3: 24:1c:8c:a4:0d:00:e8:23:c4:43:7b:aa:fe:7a:22: c4:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:56:55:B5:39:01:E0:12:0E:FB:1B:A5:9B:DA:51:9A:27:08:D1:F0 X509v3 Authority Key Identifier: keyid:95:07:F1:1D:13:63:AC:5B:39:2F:36:F5:EF:38:22:C5:CF:CD:68:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQfxHRNjrFs5Lzb17zgixc_NaPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:6c:ab:11:36:41:b8:f8:fb:49:cb:20:b5:d1:5c:75:5c:60: f8:5f:7f:b9:84:d6:9e:dd:d6:a2:19:69:88:57:56:a7:44:4e: b1:60:a7:38:4d:05:c7:7d:ac:f6:a6:f1:d7:02:86:21:ee:b4: 79:e6:3d:cd:82:55:ff:da:ed:8b:27:87:ec:a4:14:8e:be:b9: 83:22:3e:4d:bf:bd:a6:5f:bf:45:ce:6e:01:32:61:b0:7b:0c: 33:bd:a8:e6:4a:04:b5:10:f3:9e:ec:67:aa:aa:c3:fb:1e:59: 61:e1:ac:4c:72:82:b5:95:8f:08:54:4e:30:07:32:f1:7f:0e: 4a:4d:ff:1c:bf:e9:4d:e1:57:fc:ff:63:c4:2e:e9:0f:64:72: 27:41:32:1b:59:2e:b7:e1:54:fd:e5:0b:c5:2e:89:2b:fb:7e: 8b:60:27:13:f2:2e:b3:03:aa:4e:ba:fe:6f:0d:e6:ce:4d:7f: 5b:f4:31:d7:e4:05:4a:13:6d:0b:b1:13:8f:af:35:8c:70:4a: 9f:ba:5f:1d:6c:ea:49:17:51:56:b0:a7:0e:2f:62:9b:5b:ff: 96:81:19:9c:6a:aa:3c:04:90:4e:58:b7:ee:e2:8e:50:4c:ee: 84:42:84:39:19:3a:9d:aa:03:2a:ad:92:59:e7:09:1a:5a:85: f5:2e:4b:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU4QUMxMTAvBgNVBAUTKDk1MDdGMTFEMTM2M0FDNUIzOTJGMzZGNUVGMzgyMkM1 Q0ZDRDY4RjkwHhcNMjUwNDExMDIzMDA5WhcNMjUwNDE4MDIzMDA5WjAYMRYwFAYD VQQDEw02N2Y4N2ViMS02NjY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtUfbDwVy44usayYZcAeZtsp6wkUAXzuqC2mU+SxEbzZVjXnkFYlB5aivOxa5 q1VZOOGu18Mp61jt5iguTvvdA/qeO4KTHrDsYOj15TxBWYovkWd0X1rhOOq7f5E6 IFuJxEWw8gYk3cy+J1XGlpaf6sJvkzVtZJ2yczlXaWLzJuvV3p4LAhI9ooij/O1j tBHfn7iK88Nh2mECJHIpvTgTBjzFRUtEjrp6/N3HBt6uvZuiWehHfGWYsH6Reqx5 QvIwYBXIULJYxNgwPoQk4Ec/R4aE5L4EuWlyo7nYpvTkkpRh+E3yy5eR+gZ5i20v p/MkHIykDQDoI8RDe6r+eiLEbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFONWVbU5 AeASDvsbpZvaUZonCNHwMB8GA1UdIwQYMBaAFJUH8R0TY6xbOS829e84IsXPzWj5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRThBQy81MDM4RUM4QzdE RUIxMUVEQTdDQTRBN0VDNEY5QUUwMi9sUWZ4SFJOanJGczVMemIxN3pnaXhjX05h UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xRZnhIUk5qckZzNUx6YjE3emdpeGNfTmFQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RThBQy81MDM4RUM4QzdERUIxMUVEQTdDQTRBN0VDNEY5QUUwMi9sUWZ4SFJOanJG czVMemIxN3pnaXhjX05hUGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIbKsRNkG4+PtJyyC10Vx1XGD4X3+5hNae3daiGWmIV1anRE6xYKc4 TQXHfaz2pvHXAoYh7rR55j3NglX/2u2LJ4fspBSOvrmDIj5Nv72mX79Fzm4BMmGw ewwzvajmSgS1EPOe7GeqqsP7Hllh4axMcoK1lY8IVE4wBzLxfw5KTf8cv+lN4Vf8 /2PELukPZHInQTIbWS634VT95QvFLokr+36LYCcT8i6zA6pOuv5vDebOTX9b9DHX 5AVKE20LsROPrzWMcEqful8dbOpJF1FWsKcOL2KbW/+WgRmcaqo8BJBOWLfu4o5Q TO6EQoQ5GTqdqgMqrZJZ5wkaWoX1LkvB -----END CERTIFICATE-----Generated at Sat Apr 12 20:03:37 2025 by rpki-client