$ rpki-client -vvf rpki.apnic.net/member_repository/A91144C9/842F98940EC911F0A26FF144C4F9AE02/lXRSk8iKJybhClfVj0LMMWm3ySI.mft File: lXRSk8iKJybhClfVj0LMMWm3ySI.mft (raw, json) Hash identifier: 8QZ0NEWnH3LN22iPiBqY5+Py4+cakavis0be3EM36go= Subject key identifier: 21:94:EE:7C:51:83:35:50:CE:DD:C3:0B:9A:5F:40:A1:3C:F0:A7:BC Authority key identifier: 95:74:52:93:C8:8A:27:26:E1:0A:57:D5:8F:42:CC:31:69:B7:C9:22 Certificate issuer: /CN=A91144C9/serialNumber=95745293C88A2726E10A57D58F42CC3169B7C922 Certificate serial: 29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lXRSk8iKJybhClfVj0LMMWm3ySI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91144C9/842F98940EC911F0A26FF144C4F9AE02/lXRSk8iKJybhClfVj0LMMWm3ySI.mft Manifest number: 24 Signing time: Sat 31 May 2025 07:27:12 +0000 Manifest this update: Sat 31 May 2025 07:27:12 +0000 Manifest next update: Sat 07 Jun 2025 07:27:11 +0000 Files and hashes: 1: lXRSk8iKJybhClfVj0LMMWm3ySI.crl (hash: OPILeX1lDHWpnJ8MdvDD3mlsBGP+9FMibbi+UWpwPqE=) 2: 98DD71780ECC11F0B8E48170C4F9AE02.roa (hash: cGPpp/esUi8b0bnRXtMxI2RZ2ubr/NkWyGf+0H8nirE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91144C9/842F98940EC911F0A26FF144C4F9AE02/lXRSk8iKJybhClfVj0LMMWm3ySI.crl rsync://rpki.apnic.net/member_repository/A91144C9/842F98940EC911F0A26FF144C4F9AE02/lXRSk8iKJybhClfVj0LMMWm3ySI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lXRSk8iKJybhClfVj0LMMWm3ySI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:27:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41 (0x29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91144C9, serialNumber=95745293C88A2726E10A57D58F42CC3169B7C922 Validity Not Before: May 31 07:27:12 2025 GMT Not After : Jun 7 07:27:11 2025 GMT Subject: CN=683aaf50-7558 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:71:0d:9f:c1:90:2c:f4:be:e9:74:7e:ba:34: c1:35:79:58:e1:da:a3:42:c8:f2:64:8b:9c:a2:aa: 93:bd:e4:d4:f7:68:73:c4:16:3c:12:7d:63:56:29: 5c:d9:4d:51:f8:32:c5:bd:d3:af:68:65:a7:4a:4e: b9:b8:55:45:8e:89:94:0a:b5:07:32:ba:78:1c:6e: e9:02:49:67:c2:33:25:a0:00:fc:a9:47:bf:7d:0b: 61:03:b1:76:f6:b4:56:5d:05:98:9f:d1:18:e4:60: 86:10:92:a1:ff:84:29:f1:66:27:7d:4c:c4:0f:cd: 0b:b0:86:e3:33:71:e5:c8:30:29:02:6a:15:d4:26: 61:16:81:a4:6a:fc:07:d2:ef:ed:3d:43:bc:d4:31: fb:7e:ba:07:90:d2:0c:50:9d:1c:55:f9:ad:bb:79: 1e:a5:9e:7e:76:6d:b3:3f:3a:0c:25:99:7d:1f:cd: a4:3c:dd:63:4a:84:28:9a:a3:55:05:12:09:87:de: 2e:2f:ef:81:e3:75:5d:0b:b7:31:cc:32:5b:e6:e6: cf:08:e0:ec:73:fe:5e:8c:be:c9:54:ad:ff:d7:f0: e6:03:59:a1:f1:ed:f4:65:3d:64:70:6d:60:83:27: 1b:93:2a:8f:a1:cc:06:0d:44:ed:0d:12:61:6a:1e: 44:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:94:EE:7C:51:83:35:50:CE:DD:C3:0B:9A:5F:40:A1:3C:F0:A7:BC X509v3 Authority Key Identifier: keyid:95:74:52:93:C8:8A:27:26:E1:0A:57:D5:8F:42:CC:31:69:B7:C9:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91144C9/842F98940EC911F0A26FF144C4F9AE02/lXRSk8iKJybhClfVj0LMMWm3ySI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lXRSk8iKJybhClfVj0LMMWm3ySI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91144C9/842F98940EC911F0A26FF144C4F9AE02/lXRSk8iKJybhClfVj0LMMWm3ySI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:fc:c0:66:94:a0:6b:c2:d5:53:3d:1d:43:f7:d9:be:8e:66: a9:1c:44:49:27:0e:e7:ee:ce:6b:0e:43:f1:9e:69:73:7c:30: b4:69:94:06:60:26:ca:bb:3e:80:42:ee:85:50:2e:17:a8:f6: bd:11:f8:3b:e9:ba:96:3b:ad:70:64:ae:fa:6d:4b:fb:0c:5b: 42:68:78:77:ca:a2:7d:4c:ef:0d:70:74:8a:d7:82:ba:4c:eb: 9d:c2:b8:46:c6:38:08:47:c7:8b:50:4e:ad:09:f6:74:11:fd: 49:07:9c:30:3d:fe:7e:e4:9c:f4:91:68:ac:fe:e2:48:3b:96: d3:66:d0:ac:d2:26:17:11:35:da:96:cb:90:38:9c:78:6f:ae: 44:f9:1c:2f:50:1b:89:07:59:58:71:5d:81:e8:c6:ca:8a:8c: 86:d8:3e:8d:66:4e:bb:22:4d:55:77:f8:15:ec:7d:16:cc:c3: 17:06:41:4b:f0:8f:97:2c:9d:7c:ce:69:ae:a7:59:dd:e9:c1: 67:72:b0:9f:e5:73:03:9b:6c:ef:30:10:71:de:8e:fd:8c:3b: 1b:ad:c3:9c:eb:f9:0c:63:9e:6a:1d:f8:8c:4b:61:1e:7e:88: f2:09:a0:1e:50:f5:93:ce:c6:ea:3b:0c:e6:93:ed:dc:6f:f5: 5d:10:86:9f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NDRDOTExMC8GA1UEBRMoOTU3NDUyOTNDODhBMjcyNkUxMEE1N0Q1OEY0MkNDMzE2 OUI3QzkyMjAeFw0yNTA1MzEwNzI3MTJaFw0yNTA2MDcwNzI3MTFaMBgxFjAUBgNV BAMTDTY4M2FhZjUwLTc1NTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDicQ2fwZAs9L7pdH66NME1eVjh2qNCyPJki5yiqpO95NT3aHPEFjwSfWNWKVzZ TVH4MsW9069oZadKTrm4VUWOiZQKtQcyungcbukCSWfCMyWgAPypR799C2EDsXb2 tFZdBZif0RjkYIYQkqH/hCnxZid9TMQPzQuwhuMzceXIMCkCahXUJmEWgaRq/AfS 7+09Q7zUMft+ugeQ0gxQnRxV+a27eR6lnn52bbM/OgwlmX0fzaQ83WNKhCiao1UF EgmH3i4v74HjdV0LtzHMMlvm5s8I4Oxz/l6MvslUrf/X8OYDWaHx7fRlPWRwbWCD JxuTKo+hzAYNRO0NEmFqHkS5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUIZTufFGD NVDO3cMLml9AoTzwp7wwHwYDVR0jBBgwFoAUlXRSk8iKJybhClfVj0LMMWm3ySIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0NEM5Lzg0MkY5ODk0MEVD OTExRjBBMjZGRjE0NEM0RjlBRTAyL2xYUlNrOGlLSnliaENsZlZqMExNTVdtM3lT SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbFhSU2s4aUtKeWJoQ2xmVmowTE1NV20zeVNJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0 NEM5Lzg0MkY5ODk0MEVDOTExRjBBMjZGRjE0NEM0RjlBRTAyL2xYUlNrOGlLSnli aENsZlZqMExNTVdtM3lTSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI78wGaUoGvC1VM9HUP32b6OZqkcREknDufuzmsOQ/GeaXN8MLRplAZg Jsq7PoBC7oVQLheo9r0R+DvpupY7rXBkrvptS/sMW0JoeHfKon1M7w1wdIrXgrpM 653CuEbGOAhHx4tQTq0J9nQR/UkHnDA9/n7knPSRaKz+4kg7ltNm0KzSJhcRNdqW y5A4nHhvrkT5HC9QG4kHWVhxXYHoxsqKjIbYPo1mTrsiTVV3+BXsfRbMwxcGQUvw j5csnXzOaa6nWd3pwWdysJ/lcwObbO8wEHHejv2MOxutw5zr+Qxjnmod+IxLYR5+ iPIJoB5Q9ZPOxuo7DOaT7dxv9V0Qhp8= -----END CERTIFICATE-----Generated at Sat May 31 16:52:09 2025 by rpki-client