$ rpki-client -vvf rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.mft File: Lb7diOsrLcR8tTCQw6OFH8ZSTso.mft (raw, json) Hash identifier: V3mLYJnugSIei4HcrMtWNc2JY4dM3xuTPCHutKv4yfw= Subject key identifier: E8:62:DE:3D:20:36:45:F8:E5:7D:54:C0:F6:7A:AE:BA:DD:5C:5D:97 Authority key identifier: 2D:BE:DD:88:EB:2B:2D:C4:7C:B5:30:90:C3:A3:85:1F:C6:52:4E:CA Certificate issuer: /CN=A9118009/serialNumber=2DBEDD88EB2B2DC47CB53090C3A3851FC6524ECA Certificate serial: 0145 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lb7diOsrLcR8tTCQw6OFH8ZSTso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.mft Manifest number: 0142 Signing time: Sat 31 May 2025 03:58:26 +0000 Manifest this update: Sat 31 May 2025 03:58:25 +0000 Manifest next update: Sat 07 Jun 2025 03:58:25 +0000 Files and hashes: 1: Lb7diOsrLcR8tTCQw6OFH8ZSTso.crl (hash: 8swER3C6QtGYEWxos3DJIsvD0PHTolrNUSNb0Pbtric=) 2: 7AE89AF4513511EE88C64E20C4F9AE02.roa (hash: 5LGDu0CCi6DfJNCRARsLcv5edhJaqrMRVu8YSoKbd1I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.crl rsync://rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lb7diOsrLcR8tTCQw6OFH8ZSTso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:58:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 325 (0x145) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118009, serialNumber=2DBEDD88EB2B2DC47CB53090C3A3851FC6524ECA Validity Not Before: May 31 03:58:25 2025 GMT Not After : Jun 7 03:58:25 2025 GMT Subject: CN=683a7e62-a7a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:b9:63:04:f7:11:8d:ff:a6:d2:e3:15:71:7c: 87:12:9c:7d:ee:e9:f2:d2:f9:e4:92:3c:df:b8:1c: 44:1a:2b:ab:19:e9:cb:40:3f:77:84:4e:40:1d:b8: d9:46:05:a6:01:95:01:ed:47:88:a3:15:79:16:e4: 57:d4:45:64:23:d4:7f:04:81:27:a2:6a:f5:b6:59: 74:de:ca:eb:24:47:ab:0e:dd:c6:83:e3:4d:bd:da: 25:d2:2b:9e:14:86:44:43:86:25:57:bf:06:6f:25: 40:83:f0:cf:08:e9:c0:6c:8b:9c:c5:4c:1c:a2:ac: 1b:2c:14:68:5b:fc:23:43:20:cd:16:4c:8a:4d:b8: c4:03:23:6e:06:4b:fc:e9:d6:15:d7:20:ac:eb:25: af:38:bc:22:ae:82:a2:e6:eb:ff:17:2c:79:c5:c2: b3:8b:5d:b1:6e:76:16:d7:8e:ab:5e:5d:60:5c:ba: fc:2f:13:d8:ef:fe:4e:62:e5:e1:6b:a5:0a:93:76: 14:00:02:c7:80:48:00:0a:74:e1:7f:1e:a2:7c:6f: 71:ae:35:0f:34:ee:c4:fc:29:ab:1b:3f:90:15:1c: aa:e3:75:84:86:ee:4d:ec:cd:56:a2:72:16:7b:52: 73:11:f8:b8:16:16:5c:15:df:cb:08:32:c7:0e:35: b4:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:62:DE:3D:20:36:45:F8:E5:7D:54:C0:F6:7A:AE:BA:DD:5C:5D:97 X509v3 Authority Key Identifier: keyid:2D:BE:DD:88:EB:2B:2D:C4:7C:B5:30:90:C3:A3:85:1F:C6:52:4E:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lb7diOsrLcR8tTCQw6OFH8ZSTso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:c1:60:24:15:cc:c1:2e:a6:8c:fc:68:48:74:c3:f8:17:25: 61:e0:d8:b5:34:03:75:9a:24:1a:fa:29:28:7c:c9:70:05:37: ed:a8:0b:5e:87:a5:7a:0b:d2:f8:02:ed:cf:db:f2:24:83:e3: 89:05:0a:a6:34:1e:e9:ab:e7:23:24:a9:14:e1:51:d9:5b:2b: 6b:e6:60:17:61:9c:5b:d6:57:08:e4:d9:8e:04:f5:83:d4:6f: 13:87:86:18:79:ae:64:bc:a8:b1:86:54:9c:b6:de:b6:68:c0: 53:d0:d2:23:57:aa:e6:5b:5d:28:25:30:c4:2d:d6:e3:8c:36: 7c:0c:b8:cb:fb:a4:6b:7b:be:86:9a:51:40:93:68:d1:7f:31: 05:2e:54:f1:c1:40:39:04:5f:37:58:9a:43:ad:8a:0f:8e:9d: 2c:00:6e:65:ec:52:a5:b6:06:6b:bb:6f:f0:2a:8a:be:38:84: a6:af:41:84:22:33:b8:2e:92:27:d1:9b:cd:1f:1a:41:ee:a4: 0a:7e:41:a2:ed:a9:c1:92:34:ab:85:7c:44:28:4a:21:f4:ee: cc:fa:ec:00:1d:1f:28:d5:5c:90:d5:4a:d8:cb:05:28:58:2d: a5:52:94:06:d0:4f:8e:7e:4c:a8:6c:03:80:d8:44:a8:c4:9d: cb:6e:3a:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTgwMDkxMTAvBgNVBAUTKDJEQkVERDg4RUIyQjJEQzQ3Q0I1MzA5MEMzQTM4NTFG QzY1MjRFQ0EwHhcNMjUwNTMxMDM1ODI1WhcNMjUwNjA3MDM1ODI1WjAYMRYwFAYD VQQDEw02ODNhN2U2Mi1hN2EyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA67ljBPcRjf+m0uMVcXyHEpx97uny0vnkkjzfuBxEGiurGenLQD93hE5AHbjZ RgWmAZUB7UeIoxV5FuRX1EVkI9R/BIEnomr1tll03srrJEerDt3Gg+NNvdol0iue FIZEQ4YlV78GbyVAg/DPCOnAbIucxUwcoqwbLBRoW/wjQyDNFkyKTbjEAyNuBkv8 6dYV1yCs6yWvOLwiroKi5uv/Fyx5xcKzi12xbnYW146rXl1gXLr8LxPY7/5OYuXh a6UKk3YUAALHgEgACnThfx6ifG9xrjUPNO7E/CmrGz+QFRyq43WEhu5N7M1WonIW e1JzEfi4FhZcFd/LCDLHDjW0TQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOhi3j0g NkX45X1UwPZ6rrrdXF2XMB8GA1UdIwQYMBaAFC2+3YjrKy3EfLUwkMOjhR/GUk7K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODAwOS9FMzVBQ0FGNDUx MzQxMUVFQTM5MjRFMUZDNEY5QUUwMi9MYjdkaU9zckxjUjh0VENRdzZPRkg4WlNU c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xiN2RpT3NyTGNSOHRUQ1F3Nk9GSDhaU1Rzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODAwOS9FMzVBQ0FGNDUxMzQxMUVFQTM5MjRFMUZDNEY5QUUwMi9MYjdkaU9zckxj Ujh0VENRdzZPRkg4WlNUc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxwWAkFczBLqaM/GhIdMP4FyVh4Ni1NAN1miQa+ikofMlwBTftqAte h6V6C9L4Au3P2/Ikg+OJBQqmNB7pq+cjJKkU4VHZWytr5mAXYZxb1lcI5NmOBPWD 1G8Th4YYea5kvKixhlSctt62aMBT0NIjV6rmW10oJTDELdbjjDZ8DLjL+6Rre76G mlFAk2jRfzEFLlTxwUA5BF83WJpDrYoPjp0sAG5l7FKltgZru2/wKoq+OISmr0GE IjO4LpIn0ZvNHxpB7qQKfkGi7anBkjSrhXxEKEoh9O7M+uwAHR8o1VyQ1UrYywUo WC2lUpQG0E+OfkyobAOA2ESoxJ3Lbjpm -----END CERTIFICATE-----Generated at Sat May 31 17:14:39 2025 by rpki-client