$ rpki-client -vvf rpki.apnic.net/member_repository/A91203EB/F3622E74976911EBABC77486C4F9AE02/LyZbDIAkcwlJJokKhRJOIbEJ2jw.mft File: LyZbDIAkcwlJJokKhRJOIbEJ2jw.mft (raw, json) Hash identifier: 2ZcAouxoaMBRG8PEkMUok2ObHqrB1lzdEWRCmLRXXgw= Subject key identifier: AF:83:DA:99:1A:27:A9:7E:42:F8:53:C9:FB:F6:A8:97:A2:5B:3F:03 Authority key identifier: 2F:26:5B:0C:80:24:73:09:49:26:89:0A:85:12:4E:21:B1:09:DA:3C Certificate issuer: /CN=A91203EB/serialNumber=2F265B0C802473094926890A85124E21B109DA3C Certificate serial: 0646 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LyZbDIAkcwlJJokKhRJOIbEJ2jw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91203EB/F3622E74976911EBABC77486C4F9AE02/LyZbDIAkcwlJJokKhRJOIbEJ2jw.mft Manifest number: 0637 Signing time: Fri 30 May 2025 22:55:24 +0000 Manifest this update: Fri 30 May 2025 22:55:23 +0000 Manifest next update: Fri 06 Jun 2025 22:55:23 +0000 Files and hashes: 1: LyZbDIAkcwlJJokKhRJOIbEJ2jw.crl (hash: S8RDiGStMFObzb3eQFe7PbUeD5fCn40JwYMKfWNjypY=) 2: 579FE34A0BF211EF8B0F9C81C4F9AE02.roa (hash: vh0GgYCDzl5MpyGfL9qB9BZe6rjSGvbzU8V9PATHokg=) 3: 8CBE17540BCF11EF80BE8E0CC4F9AE02.roa (hash: GBfQ8G2LgiRk7mNMod65ctHAM+9Xqf2dlYgMPWmItHk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91203EB/F3622E74976911EBABC77486C4F9AE02/LyZbDIAkcwlJJokKhRJOIbEJ2jw.crl rsync://rpki.apnic.net/member_repository/A91203EB/F3622E74976911EBABC77486C4F9AE02/LyZbDIAkcwlJJokKhRJOIbEJ2jw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LyZbDIAkcwlJJokKhRJOIbEJ2jw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:55:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1606 (0x646) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91203EB, serialNumber=2F265B0C802473094926890A85124E21B109DA3C Validity Not Before: May 30 22:55:23 2025 GMT Not After : Jun 6 22:55:23 2025 GMT Subject: CN=683a375c-eece Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c1:56:8d:c1:f0:31:a3:70:f4:56:7f:2b:ab: 3b:6d:d4:38:1a:13:0a:cc:19:d3:ae:1a:b0:ce:b1: e5:73:39:7d:fa:bd:3d:c7:aa:84:ff:d5:85:6c:fe: f2:0c:16:2e:83:ec:de:a1:46:7e:8d:a4:8c:a7:58: b7:48:7e:ac:37:d1:ea:0a:b8:ee:ff:68:66:ff:63: 20:a0:89:40:ba:d5:9d:65:2c:99:4d:1d:45:12:60: 9e:81:da:82:32:f2:33:1a:fd:d1:5c:48:e6:ef:23: 2e:72:76:f7:d5:35:da:98:0d:b3:23:48:48:d8:70: d3:51:10:45:ed:c7:99:79:d4:cd:e7:3f:a0:77:d6: 99:72:6c:fe:ef:c6:56:2f:8d:0a:09:5d:3e:c2:07: 6d:ae:27:84:a5:a1:13:c0:e6:73:85:ed:d9:8d:0e: 25:0c:ed:ae:ef:68:f8:52:3b:37:d3:f2:bb:46:d4: 64:c3:ce:76:f5:be:4e:40:a8:68:4b:9c:5e:5b:b6: 80:11:99:39:8e:a0:38:b6:a8:28:41:56:37:b4:c7: 14:dc:6a:2c:54:34:a1:3f:19:e9:87:ab:a8:43:33: a3:6f:e3:75:ae:c9:5f:d7:cb:9d:52:61:29:1c:0d: 5c:77:18:ba:54:ce:89:99:ec:45:b4:0e:21:fb:1c: 80:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:83:DA:99:1A:27:A9:7E:42:F8:53:C9:FB:F6:A8:97:A2:5B:3F:03 X509v3 Authority Key Identifier: keyid:2F:26:5B:0C:80:24:73:09:49:26:89:0A:85:12:4E:21:B1:09:DA:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91203EB/F3622E74976911EBABC77486C4F9AE02/LyZbDIAkcwlJJokKhRJOIbEJ2jw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LyZbDIAkcwlJJokKhRJOIbEJ2jw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91203EB/F3622E74976911EBABC77486C4F9AE02/LyZbDIAkcwlJJokKhRJOIbEJ2jw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:92:46:7d:8e:b6:0d:03:22:c2:f8:22:97:56:c0:dc:96:7b: b1:fc:c6:67:75:b0:44:a2:2a:c2:c6:4c:db:30:83:ad:91:e8: f5:0d:34:4a:ba:82:90:9f:9a:15:d0:b7:c0:ed:31:d1:d9:36: 4e:30:2e:69:c2:b8:ec:14:bd:3d:b7:30:70:57:0f:c5:dc:a9: 6a:7a:5e:83:6f:c0:65:08:8e:93:3b:82:b9:be:b3:76:81:f3: 18:1f:02:46:ba:7b:69:e6:4e:5e:9e:9f:16:eb:9b:a0:53:ae: 88:21:57:9e:6e:02:f8:33:8e:d1:50:78:34:3a:28:04:43:3f: 10:03:83:1e:d3:85:8e:37:7c:7b:7d:1d:9b:89:90:65:0a:2c: 5c:36:82:74:b3:e3:4f:cc:6c:1a:58:9c:e3:31:98:f1:a9:29: 13:ab:ae:f6:4e:25:31:3b:b9:a0:9d:52:53:62:36:ce:3d:15: f0:42:4e:09:cf:64:b1:f2:47:86:af:be:93:6f:83:85:32:d2: 64:5f:29:49:a3:f1:d5:46:c2:95:f2:81:1a:c0:38:a2:02:c2: a7:a3:e5:7c:2c:a2:f1:32:b0:24:5f:39:4e:c2:24:28:30:b9: 57:42:9f:bd:42:11:e5:1e:c1:e3:db:14:22:39:87:e9:36:83: 87:d5:06:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjAzRUIxMTAvBgNVBAUTKDJGMjY1QjBDODAyNDczMDk0OTI2ODkwQTg1MTI0RTIx QjEwOURBM0MwHhcNMjUwNTMwMjI1NTIzWhcNMjUwNjA2MjI1NTIzWjAYMRYwFAYD VQQDEw02ODNhMzc1Yy1lZWNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAssFWjcHwMaNw9FZ/K6s7bdQ4GhMKzBnTrhqwzrHlczl9+r09x6qE/9WFbP7y DBYug+zeoUZ+jaSMp1i3SH6sN9HqCrju/2hm/2MgoIlAutWdZSyZTR1FEmCegdqC MvIzGv3RXEjm7yMucnb31TXamA2zI0hI2HDTURBF7ceZedTN5z+gd9aZcmz+78ZW L40KCV0+wgdtrieEpaETwOZzhe3ZjQ4lDO2u72j4Ujs30/K7RtRkw8529b5OQKho S5xeW7aAEZk5jqA4tqgoQVY3tMcU3GosVDShPxnph6uoQzOjb+N1rslf18udUmEp HA1cdxi6VM6JmexFtA4h+xyArQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK+D2pka J6l+QvhTyfv2qJeiWz8DMB8GA1UdIwQYMBaAFC8mWwyAJHMJSSaJCoUSTiGxCdo8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDNFQi9GMzYyMkU3NDk3 NjkxMUVCQUJDNzc0ODZDNEY5QUUwMi9MeVpiRElBa2N3bEpKb2tLaFJKT0liRUoy ancuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0x5WmJESUFrY3dsSkpva0toUkpPSWJFSjJqdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MDNFQi9GMzYyMkU3NDk3NjkxMUVCQUJDNzc0ODZDNEY5QUUwMi9MeVpiRElBa2N3 bEpKb2tLaFJKT0liRUoyancubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbkkZ9jrYNAyLC+CKXVsDclnux/MZndbBEoirCxkzbMIOtkej1DTRK uoKQn5oV0LfA7THR2TZOMC5pwrjsFL09tzBwVw/F3Klqel6Db8BlCI6TO4K5vrN2 gfMYHwJGuntp5k5enp8W65ugU66IIVeebgL4M47RUHg0OigEQz8QA4Me04WON3x7 fR2biZBlCixcNoJ0s+NPzGwaWJzjMZjxqSkTq672TiUxO7mgnVJTYjbOPRXwQk4J z2Sx8keGr76Tb4OFMtJkXylJo/HVRsKV8oEawDiiAsKno+V8LKLxMrAkXzlOwiQo MLlXQp+9QhHlHsHj2xQiOYfpNoOH1QZV -----END CERTIFICATE-----Generated at Sat May 31 17:11:20 2025 by rpki-client