$ rpki-client -vvf rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.mft File: lqeZovSzCLIlIrzkXjGNanAmKSs.mft (raw, json) Hash identifier: 1DnrMjlVzuQ5gE6TgC+48r+Sq1S4P5P4HmzqiHrcLm8= Subject key identifier: C3:60:CE:DA:20:22:AB:79:54:4F:BE:54:4D:FC:F7:50:67:87:A8:8F Authority key identifier: 96:A7:99:A2:F4:B3:08:B2:25:22:BC:E4:5E:31:8D:6A:70:26:29:2B Certificate issuer: /CN=A911BA4B/serialNumber=96A799A2F4B308B22522BCE45E318D6A7026292B Certificate serial: 1190 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lqeZovSzCLIlIrzkXjGNanAmKSs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.mft Manifest number: 1183 Signing time: Fri 30 May 2025 17:24:44 +0000 Manifest this update: Fri 30 May 2025 17:24:44 +0000 Manifest next update: Fri 06 Jun 2025 17:24:44 +0000 Files and hashes: 1: lqeZovSzCLIlIrzkXjGNanAmKSs.crl (hash: 5hrDm/s9lRjQ4lMK1uDC+YOBmTa+mYtZy2QbIWm/5Oc=) 2: 318BC266FEA911E8BF138B59C4F9AE02.roa (hash: 33z1F9RZ3yx55dZ5+rGpqQ7gwX1OExcujk8Oepxi/pw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.crl rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lqeZovSzCLIlIrzkXjGNanAmKSs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:24:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4496 (0x1190) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BA4B, serialNumber=96A799A2F4B308B22522BCE45E318D6A7026292B Validity Not Before: May 30 17:24:44 2025 GMT Not After : Jun 6 17:24:44 2025 GMT Subject: CN=6839e9dc-3163 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b4:21:11:fa:9d:6b:ad:e0:f4:24:9c:7d:6a: 3f:62:f8:86:8f:68:11:47:5e:8d:38:a8:f8:da:be: c2:2f:20:af:de:63:43:02:91:1e:4a:d3:cc:d4:16: 43:fe:4e:e9:5a:4b:6a:16:ec:ec:d1:ee:ff:53:05: b7:4b:b1:2a:06:45:08:6a:2a:4b:9f:ec:20:8f:51: fc:72:f3:27:d8:64:00:e8:4f:25:bf:56:27:a3:1f: 72:e1:c3:32:1b:39:ff:d1:60:2c:fa:53:8a:d4:3a: 4f:26:10:ce:d9:dd:10:c1:13:76:ca:e3:21:1d:c8: 48:c7:67:24:76:0f:1a:44:40:fd:0a:a7:b7:8c:02: 0e:bd:6f:dd:fc:33:b6:18:4d:2c:c1:8b:8d:6f:be: 04:28:1a:df:d3:3b:9e:5d:1c:cd:d6:f3:0a:ee:e7: d8:e4:ac:5c:1c:f5:1c:d8:e3:d6:6c:b5:08:ae:ae: d7:b8:52:19:b5:75:60:c4:24:42:3c:e1:2b:2f:a2: b0:2a:ea:ae:1f:49:d9:52:c7:6c:42:ac:13:7c:bc: 43:7c:68:af:8e:ec:09:4e:31:c0:84:2a:12:26:ec: 7a:ec:85:85:e3:1c:ce:16:b7:02:44:4b:e6:74:f0: 6d:69:56:14:23:fc:ba:c4:4b:e8:22:ff:90:e7:92: ce:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:60:CE:DA:20:22:AB:79:54:4F:BE:54:4D:FC:F7:50:67:87:A8:8F X509v3 Authority Key Identifier: keyid:96:A7:99:A2:F4:B3:08:B2:25:22:BC:E4:5E:31:8D:6A:70:26:29:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lqeZovSzCLIlIrzkXjGNanAmKSs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:c5:c8:ab:25:1b:92:f2:60:f9:75:63:b5:84:a8:d9:18:ec: 84:63:a6:45:bb:70:c6:88:4d:5b:f3:52:64:4d:05:da:b3:b5: c0:0a:e7:17:b7:00:da:65:16:8d:d4:17:27:8c:3e:47:67:6e: aa:41:4b:82:5e:f6:ed:b1:38:9e:13:15:33:a1:1b:7b:06:6f: 42:45:e7:38:5f:69:93:c1:27:ff:82:87:8b:71:4a:d6:2d:cd: 0c:8d:39:a5:79:6b:f2:76:49:ca:63:36:95:2a:1e:e2:1a:8f: 2f:95:53:f7:26:97:09:ac:41:c3:a1:62:5d:45:48:70:bc:66: 39:c2:7a:f7:11:11:87:b0:69:a9:be:51:5a:f6:25:ec:ab:9d: 7f:54:19:4f:be:1e:27:50:46:76:67:a4:c8:33:75:08:a3:57: cb:b0:d5:a6:23:0a:4f:ee:c1:81:6c:c6:26:79:11:ac:7f:7a: 7c:9f:f7:a0:43:7f:75:4e:d3:7b:18:e6:05:35:9c:72:a0:ae: e8:94:6b:6e:80:3a:e3:1e:64:53:6c:df:db:0e:be:c5:43:13: f3:77:74:21:6a:84:c2:4c:13:80:39:a6:a9:7a:34:d0:ed:08: cf:07:30:be:7d:8c:fd:5e:5f:58:06:f9:9a:f7:54:ae:0c:2f: c4:9f:ac:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEZAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJBNEIxMTAvBgNVBAUTKDk2QTc5OUEyRjRCMzA4QjIyNTIyQkNFNDVFMzE4RDZB NzAyNjI5MkIwHhcNMjUwNTMwMTcyNDQ0WhcNMjUwNjA2MTcyNDQ0WjAYMRYwFAYD VQQDEw02ODM5ZTlkYy0zMTYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwrQhEfqda63g9CScfWo/YviGj2gRR16NOKj42r7CLyCv3mNDApEeStPM1BZD /k7pWktqFuzs0e7/UwW3S7EqBkUIaipLn+wgj1H8cvMn2GQA6E8lv1Ynox9y4cMy Gzn/0WAs+lOK1DpPJhDO2d0QwRN2yuMhHchIx2ckdg8aRED9Cqe3jAIOvW/d/DO2 GE0swYuNb74EKBrf0zueXRzN1vMK7ufY5KxcHPUc2OPWbLUIrq7XuFIZtXVgxCRC POErL6KwKuquH0nZUsdsQqwTfLxDfGivjuwJTjHAhCoSJux67IWF4xzOFrcCREvm dPBtaVYUI/y6xEvoIv+Q55LO5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMNgztog Iqt5VE++VE3891Bnh6iPMB8GA1UdIwQYMBaAFJanmaL0swiyJSK85F4xjWpwJikr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkE0Qi9FMzc3RkQ3QUZF QTcxMUU4QTJFNEI0NTdDNEY5QUUwMi9scWVab3ZTekNMSWxJcnprWGpHTmFuQW1L U3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xxZVpvdlN6Q0xJbElyemtYakdOYW5BbUtTcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QkE0Qi9FMzc3RkQ3QUZFQTcxMUU4QTJFNEI0NTdDNEY5QUUwMi9scWVab3ZTekNM SWxJcnprWGpHTmFuQW1LU3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuxcirJRuS8mD5dWO1hKjZGOyEY6ZFu3DGiE1b81JkTQXas7XACucX twDaZRaN1BcnjD5HZ26qQUuCXvbtsTieExUzoRt7Bm9CRec4X2mTwSf/goeLcUrW Lc0MjTmleWvydknKYzaVKh7iGo8vlVP3JpcJrEHDoWJdRUhwvGY5wnr3ERGHsGmp vlFa9iXsq51/VBlPvh4nUEZ2Z6TIM3UIo1fLsNWmIwpP7sGBbMYmeRGsf3p8n/eg Q391TtN7GOYFNZxyoK7olGtugDrjHmRTbN/bDr7FQxPzd3QhaoTCTBOAOaapejTQ 7QjPBzC+fYz9Xl9YBvma91SuDC/En6wQ -----END CERTIFICATE-----Generated at Sat May 31 16:56:10 2025 by rpki-client