$ rpki-client -vvf rpki.apnic.net/member_repository/A911251C/F8F7E2506BE011ED99196F62C4F9AE02/l9pBnzurP2V6paXATgV8StlhvFs.mft File: l9pBnzurP2V6paXATgV8StlhvFs.mft (raw, json) Hash identifier: JPkHfl78rhgrN5yrui5XlpVMuCYGARsNe1c54VSffxM= Subject key identifier: 10:90:A8:21:2D:41:F4:9E:A9:CF:4E:93:58:C4:E4:03:EA:C1:EA:37 Authority key identifier: 97:DA:41:9F:3B:AB:3F:65:7A:A5:A5:C0:4E:05:7C:4A:D9:61:BC:5B Certificate issuer: /CN=A911251C/serialNumber=97DA419F3BAB3F657AA5A5C04E057C4AD961BC5B Certificate serial: 01DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9pBnzurP2V6paXATgV8StlhvFs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911251C/F8F7E2506BE011ED99196F62C4F9AE02/l9pBnzurP2V6paXATgV8StlhvFs.mft Manifest number: 01DA Signing time: Tue 03 Jun 2025 02:34:32 +0000 Manifest this update: Tue 03 Jun 2025 02:34:31 +0000 Manifest next update: Tue 10 Jun 2025 02:34:31 +0000 Files and hashes: 1: l9pBnzurP2V6paXATgV8StlhvFs.crl (hash: V8Tr0CYsTGGCI7nT+xlQqn/1D7gSF7aXn8Fd/sQqiNk=) 2: B2F017A26BE311ED8B83B484C4F9AE02.roa (hash: 6uCw/qXIdZiC4cEobpHAa9i3YEi9P+DFX8n151x7wcY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911251C/F8F7E2506BE011ED99196F62C4F9AE02/l9pBnzurP2V6paXATgV8StlhvFs.crl rsync://rpki.apnic.net/member_repository/A911251C/F8F7E2506BE011ED99196F62C4F9AE02/l9pBnzurP2V6paXATgV8StlhvFs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9pBnzurP2V6paXATgV8StlhvFs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 02:34:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 478 (0x1de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911251C, serialNumber=97DA419F3BAB3F657AA5A5C04E057C4AD961BC5B Validity Not Before: Jun 3 02:34:31 2025 GMT Not After : Jun 10 02:34:31 2025 GMT Subject: CN=683e5f37-cbe0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:66:a0:02:08:96:a1:39:a9:60:83:30:c0:98: 7b:92:d9:06:99:f0:dc:6b:0c:75:dd:85:f3:5f:fc: 0c:01:7d:70:27:42:db:d1:54:02:2c:d4:1c:8f:ca: 69:93:13:05:77:37:73:a5:4b:98:58:3d:33:87:04: 5a:49:42:2d:69:3d:e2:c4:09:01:b2:b3:33:91:7b: 43:b4:78:b0:c1:10:99:78:6a:a4:31:8c:81:9d:d7: a1:78:47:a3:a0:92:d1:54:39:6d:0e:6e:91:bd:59: 4d:70:48:a3:c2:97:a6:d4:28:51:64:9a:df:a5:ac: be:65:1e:3c:0d:50:a6:84:06:33:db:04:a2:0c:63: 48:f4:f1:d9:ba:0f:db:5a:2a:45:25:2a:47:82:44: 0e:36:0b:7a:d9:25:c9:eb:d2:af:04:1b:31:aa:3c: 23:62:10:e0:2e:88:61:3c:a1:b8:01:cf:17:b6:3c: 5d:45:72:d4:eb:8c:ca:0a:db:0b:4b:50:a5:94:a1: ee:49:e2:04:98:52:61:4e:ca:10:c9:4f:85:ad:91: 9d:c6:2d:2b:42:98:f9:3f:e3:43:59:d0:44:0c:41: 04:62:d9:b5:a7:82:0f:31:97:b6:80:ff:af:f5:54: 8b:95:4e:fa:a2:ce:ac:b8:cf:bd:1d:2b:d1:bc:09: c0:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:90:A8:21:2D:41:F4:9E:A9:CF:4E:93:58:C4:E4:03:EA:C1:EA:37 X509v3 Authority Key Identifier: keyid:97:DA:41:9F:3B:AB:3F:65:7A:A5:A5:C0:4E:05:7C:4A:D9:61:BC:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911251C/F8F7E2506BE011ED99196F62C4F9AE02/l9pBnzurP2V6paXATgV8StlhvFs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9pBnzurP2V6paXATgV8StlhvFs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911251C/F8F7E2506BE011ED99196F62C4F9AE02/l9pBnzurP2V6paXATgV8StlhvFs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:a8:82:65:54:53:83:e9:63:4b:a0:13:13:49:5a:f3:a7:09: 98:61:34:89:cd:6b:24:66:29:c8:df:f5:dd:c0:7e:a7:0f:7b: 0d:3f:1b:42:bd:14:be:35:e4:61:b8:35:9d:9d:65:0e:1f:c3: 36:b4:59:ef:f1:c5:b4:69:ed:eb:a2:a9:ea:03:89:4d:32:e1: b6:49:01:bb:8d:28:10:b9:45:36:a5:f8:ef:c7:6d:52:f0:7d: fd:53:b1:1b:a3:d8:6a:f5:3f:68:cd:db:54:cf:6b:1f:4f:ed: de:f9:e1:82:ce:bb:60:c6:cb:f8:c4:2c:d8:b8:38:89:be:93: 78:a4:ef:ba:a4:80:84:94:d6:28:37:77:cd:90:f6:0e:05:9e: 58:47:41:ef:21:4a:dd:8f:b9:8b:1d:88:b2:8b:06:11:03:0b: 85:91:46:68:a5:49:1a:b3:6f:19:43:dc:48:4c:05:fc:75:8c: 40:fd:76:2c:0a:36:27:31:5c:05:ad:8d:9e:36:bd:c3:62:18: 07:9e:3d:2a:83:bd:33:4d:f0:91:42:87:3a:83:eb:6a:fa:45: 94:a5:ab:b5:70:7c:1f:78:11:c2:72:eb:f9:3c:f5:be:14:03: 34:ad:f4:e2:ff:9c:38:03:e4:10:22:0b:a9:5a:b8:6d:e8:22: 66:f2:ff:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAd4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI1MUMxMTAvBgNVBAUTKDk3REE0MTlGM0JBQjNGNjU3QUE1QTVDMDRFMDU3QzRB RDk2MUJDNUIwHhcNMjUwNjAzMDIzNDMxWhcNMjUwNjEwMDIzNDMxWjAYMRYwFAYD VQQDEw02ODNlNWYzNy1jYmUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzWagAgiWoTmpYIMwwJh7ktkGmfDcawx13YXzX/wMAX1wJ0Lb0VQCLNQcj8pp kxMFdzdzpUuYWD0zhwRaSUItaT3ixAkBsrMzkXtDtHiwwRCZeGqkMYyBndeheEej oJLRVDltDm6RvVlNcEijwpem1ChRZJrfpay+ZR48DVCmhAYz2wSiDGNI9PHZug/b WipFJSpHgkQONgt62SXJ69KvBBsxqjwjYhDgLohhPKG4Ac8XtjxdRXLU64zKCtsL S1CllKHuSeIEmFJhTsoQyU+FrZGdxi0rQpj5P+NDWdBEDEEEYtm1p4IPMZe2gP+v 9VSLlU76os6suM+9HSvRvAnA7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBCQqCEt QfSeqc9Ok1jE5APqweo3MB8GA1UdIwQYMBaAFJfaQZ87qz9leqWlwE4FfErZYbxb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjUxQy9GOEY3RTI1MDZC RTAxMUVEOTkxOTZGNjJDNEY5QUUwMi9sOXBCbnp1clAyVjZwYVhBVGdWOFN0bGh2 RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w5cEJuenVyUDJWNnBhWEFUZ1Y4U3RsaHZGcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjUxQy9GOEY3RTI1MDZCRTAxMUVEOTkxOTZGNjJDNEY5QUUwMi9sOXBCbnp1clAy VjZwYVhBVGdWOFN0bGh2RnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnqIJlVFOD6WNLoBMTSVrzpwmYYTSJzWskZinI3/XdwH6nD3sNPxtC vRS+NeRhuDWdnWUOH8M2tFnv8cW0ae3roqnqA4lNMuG2SQG7jSgQuUU2pfjvx21S 8H39U7Ebo9hq9T9ozdtUz2sfT+3e+eGCzrtgxsv4xCzYuDiJvpN4pO+6pICElNYo N3fNkPYOBZ5YR0HvIUrdj7mLHYiyiwYRAwuFkUZopUkas28ZQ9xITAX8dYxA/XYs CjYnMVwFrY2eNr3DYhgHnj0qg70zTfCRQoc6g+tq+kWUpau1cHwfeBHCcuv5PPW+ FAM0rfTi/5w4A+QQIgupWrht6CJm8v+3 -----END CERTIFICATE-----Generated at Tue Jun 3 23:54:44 2025 by rpki-client