$ rpki-client -vvf rpki.apnic.net/member_repository/A911D340/0468397A3C4E11EA94725C28C4F9AE02/LnNTksaGuNjciMDM1Zvyrvun6LA.mft File: LnNTksaGuNjciMDM1Zvyrvun6LA.mft (raw, json) Hash identifier: ljPSXrSSJW+TlU+StTA8AO2N887P+/cFAKaf9YEzzKc= Subject key identifier: B4:EF:92:B6:EB:70:22:E3:9E:E8:9C:88:AB:48:0D:7F:D8:A0:D9:D7 Authority key identifier: 2E:73:53:92:C6:86:B8:D8:DC:88:C0:CC:D5:9B:F2:AE:FB:A7:E8:B0 Certificate issuer: /CN=A911D340/serialNumber=2E735392C686B8D8DC88C0CCD59BF2AEFBA7E8B0 Certificate serial: 0B2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnNTksaGuNjciMDM1Zvyrvun6LA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D340/0468397A3C4E11EA94725C28C4F9AE02/LnNTksaGuNjciMDM1Zvyrvun6LA.mft Manifest number: 0B27 Signing time: Fri 30 May 2025 19:23:36 +0000 Manifest this update: Fri 30 May 2025 19:23:35 +0000 Manifest next update: Fri 06 Jun 2025 19:23:35 +0000 Files and hashes: 1: LnNTksaGuNjciMDM1Zvyrvun6LA.crl (hash: PA6kk4d/fYnaIj8vm9PZglPOZRXzhuOnvg989jAhT1E=) 2: 14B2A85C3DA611EAAD093F5EC4F9AE02.roa (hash: YBDDFTyuQNBpFqBokEWPqRZhpMARMTl/5hq7JGaNUzU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D340/0468397A3C4E11EA94725C28C4F9AE02/LnNTksaGuNjciMDM1Zvyrvun6LA.crl rsync://rpki.apnic.net/member_repository/A911D340/0468397A3C4E11EA94725C28C4F9AE02/LnNTksaGuNjciMDM1Zvyrvun6LA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnNTksaGuNjciMDM1Zvyrvun6LA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:23:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2863 (0xb2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D340, serialNumber=2E735392C686B8D8DC88C0CCD59BF2AEFBA7E8B0 Validity Not Before: May 30 19:23:35 2025 GMT Not After : Jun 6 19:23:35 2025 GMT Subject: CN=683a05b8-1b43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:1a:66:60:ec:db:f0:f0:e6:20:4d:51:6f:73: cb:25:93:75:d6:0a:08:fc:12:eb:f4:9e:99:a9:de: 82:77:c3:7a:a0:60:7e:18:4b:4f:ce:87:c4:3a:20: f4:be:e6:09:b0:68:38:b2:d3:eb:51:3a:f4:d1:31: 9f:2f:a2:e9:cd:68:a0:28:86:f2:f1:15:c9:37:97: 15:eb:f2:e9:11:ec:02:51:dc:bb:7f:87:c0:d2:56: 2c:89:7d:29:66:bb:38:4c:0e:9c:53:47:33:9c:21: a9:13:16:77:9a:96:4e:c6:fb:f6:0c:ef:49:b7:9e: 86:b4:5b:fc:63:d0:ee:77:5f:c5:9e:09:08:4a:67: f5:f8:4b:f6:07:5b:3a:fb:1e:f4:8f:9a:2c:67:ba: c5:ed:6a:25:8c:64:b4:e1:14:47:f2:1f:fb:9f:c9: e6:62:a1:51:09:e3:56:41:75:6a:14:35:02:ca:0e: 18:9c:93:14:67:d5:08:18:71:b6:77:8c:a5:43:30: 2b:73:a6:c8:f8:13:3d:d8:d3:58:cb:22:9d:13:7f: 01:87:b8:d5:9a:e4:b0:1c:76:ab:eb:bb:f5:df:48: e3:17:f0:73:e2:42:18:2e:7f:d6:5c:43:e0:45:f8: bb:d2:0d:ca:c6:7f:8c:e1:ae:1a:d7:43:80:76:d5: 5a:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:EF:92:B6:EB:70:22:E3:9E:E8:9C:88:AB:48:0D:7F:D8:A0:D9:D7 X509v3 Authority Key Identifier: keyid:2E:73:53:92:C6:86:B8:D8:DC:88:C0:CC:D5:9B:F2:AE:FB:A7:E8:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D340/0468397A3C4E11EA94725C28C4F9AE02/LnNTksaGuNjciMDM1Zvyrvun6LA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnNTksaGuNjciMDM1Zvyrvun6LA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D340/0468397A3C4E11EA94725C28C4F9AE02/LnNTksaGuNjciMDM1Zvyrvun6LA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:19:2f:be:a3:6d:13:a0:b0:3d:c8:2a:c2:16:45:72:f5:17: a7:a4:cb:b9:2c:a5:06:78:d7:ef:bd:c5:2a:51:cf:e9:52:4b: fc:ff:ba:b0:ce:4b:43:09:36:6b:42:f4:bd:9d:f1:df:97:cd: 5a:4a:ac:9a:f2:6b:c4:80:c8:e7:98:cc:55:28:bb:e9:84:a8: dd:d0:f6:40:4e:ef:c3:ba:f5:6d:8d:d4:0c:b8:0e:d9:a2:e5: 10:86:8a:77:f5:9d:f3:c7:80:5c:f5:a0:c7:dd:a0:c4:34:4c: 64:0a:21:f9:31:91:9d:be:04:68:4c:4e:1c:43:24:ea:68:64: 8a:f0:c4:97:7a:04:b8:f5:b5:ec:a4:3d:7d:7f:73:b9:55:43: d3:3e:52:21:ef:79:e9:e6:2d:90:c6:17:ae:58:07:4b:6f:68: 60:66:2e:63:08:08:57:4f:02:f2:ca:10:d1:13:e3:78:71:92: e4:f8:da:43:4c:19:39:85:73:5c:d0:46:2c:58:78:fa:48:0c: 12:e0:ec:1e:9c:f1:78:a1:43:8d:bb:3d:c9:a5:7b:36:9b:20: 9e:da:0f:a7:02:84:b6:c0:ef:de:01:97:4b:db:f9:14:92:50: 3e:ff:5c:bd:17:2c:be:69:0b:4e:ba:1d:0d:ec:56:b1:1e:2c: e4:0b:0d:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCy8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQzNDAxMTAvBgNVBAUTKDJFNzM1MzkyQzY4NkI4RDhEQzg4QzBDQ0Q1OUJGMkFF RkJBN0U4QjAwHhcNMjUwNTMwMTkyMzM1WhcNMjUwNjA2MTkyMzM1WjAYMRYwFAYD VQQDEw02ODNhMDViOC0xYjQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnxpmYOzb8PDmIE1Rb3PLJZN11goI/BLr9J6Zqd6Cd8N6oGB+GEtPzofEOiD0 vuYJsGg4stPrUTr00TGfL6LpzWigKIby8RXJN5cV6/LpEewCUdy7f4fA0lYsiX0p Zrs4TA6cU0cznCGpExZ3mpZOxvv2DO9Jt56GtFv8Y9Dud1/FngkISmf1+Ev2B1s6 +x70j5osZ7rF7WoljGS04RRH8h/7n8nmYqFRCeNWQXVqFDUCyg4YnJMUZ9UIGHG2 d4ylQzArc6bI+BM92NNYyyKdE38Bh7jVmuSwHHar67v130jjF/Bz4kIYLn/WXEPg Rfi70g3Kxn+M4a4a10OAdtVabwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLTvkrbr cCLjnuiciKtIDX/YoNnXMB8GA1UdIwQYMBaAFC5zU5LGhrjY3IjAzNWb8q77p+iw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDM0MC8wNDY4Mzk3QTND NEUxMUVBOTQ3MjVDMjhDNEY5QUUwMi9Mbk5Ua3NhR3VOamNpTURNMVp2eXJ2dW42 TEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xuTlRrc2FHdU5qY2lNRE0xWnZ5cnZ1bjZMQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDM0MC8wNDY4Mzk3QTNDNEUxMUVBOTQ3MjVDMjhDNEY5QUUwMi9Mbk5Ua3NhR3VO amNpTURNMVp2eXJ2dW42TEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWGS++o20ToLA9yCrCFkVy9RenpMu5LKUGeNfvvcUqUc/pUkv8/7qw zktDCTZrQvS9nfHfl81aSqya8mvEgMjnmMxVKLvphKjd0PZATu/DuvVtjdQMuA7Z ouUQhop39Z3zx4Bc9aDH3aDENExkCiH5MZGdvgRoTE4cQyTqaGSK8MSXegS49bXs pD19f3O5VUPTPlIh73np5i2QxheuWAdLb2hgZi5jCAhXTwLyyhDRE+N4cZLk+NpD TBk5hXNc0EYsWHj6SAwS4OwenPF4oUONuz3JpXs2myCe2g+nAoS2wO/eAZdL2/kU klA+/1y9Fyy+aQtOuh0N7FaxHizkCw2B -----END CERTIFICATE-----Generated at Sat May 31 16:45:43 2025 by rpki-client