$ rpki-client -vvf rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft File: lMnUO1O12FDZjg2i1e88ThwxIEU.mft (raw, json) Hash identifier: dbiSkS2F+TUX755prrBofOg/6w/llgsTOKFVT1kKGD8= Subject key identifier: F3:27:AD:44:DC:22:C4:C1:48:7B:33:AE:DC:10:8E:40:D0:7C:4C:04 Authority key identifier: 94:C9:D4:3B:53:B5:D8:50:D9:8E:0D:A2:D5:EF:3C:4E:1C:31:20:45 Certificate issuer: /CN=A9120E21/serialNumber=94C9D43B53B5D850D98E0DA2D5EF3C4E1C312045 Certificate serial: 101E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMnUO1O12FDZjg2i1e88ThwxIEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft Manifest number: 101D Signing time: Fri 30 May 2025 17:36:16 +0000 Manifest this update: Fri 30 May 2025 17:36:15 +0000 Manifest next update: Fri 06 Jun 2025 17:36:15 +0000 Files and hashes: 1: lMnUO1O12FDZjg2i1e88ThwxIEU.crl (hash: 8k4r5yOPzuOaCYZFYlNTWX5JdN1kH8IQqo9lCj0w87A=) 2: 90FBBCBEB3F311EFA5A0C630C4F9AE02.roa (hash: fjbjZHBA/FnAxnWN8e7Z/ROBTRwA1nOrCoj5zv4PAPA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.crl rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMnUO1O12FDZjg2i1e88ThwxIEU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:36:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4126 (0x101e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120E21, serialNumber=94C9D43B53B5D850D98E0DA2D5EF3C4E1C312045 Validity Not Before: May 30 17:36:15 2025 GMT Not After : Jun 6 17:36:15 2025 GMT Subject: CN=6839ec8f-b056 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:de:6b:b5:6b:08:a8:13:10:0e:6f:d1:4d:f8: fd:96:a5:06:15:49:fb:fb:c3:66:ba:d2:ab:dd:6f: c0:2b:6a:c3:1b:88:47:02:72:76:56:f6:d1:ae:1d: fa:3d:16:b4:b4:08:86:f3:66:00:62:a8:20:3f:d2: 3f:45:4d:ac:f5:ee:51:35:e0:cb:08:89:e5:cd:27: b8:dd:c8:ba:f9:85:e9:0a:88:84:54:2d:47:f6:41: a1:32:6e:72:de:09:a9:01:f6:53:9b:75:47:ee:b3: 1d:5d:b2:60:21:1b:a0:c3:cd:e8:f1:ae:c0:7e:54: a3:16:c2:a8:cb:ec:c1:91:39:7a:39:cf:e0:d9:cc: b3:a5:06:61:d2:a6:53:38:f1:63:ec:30:2f:19:e8: 20:1a:74:78:e2:f6:5c:57:f1:07:6b:3a:e4:e6:f4: b3:66:dc:c5:82:e4:db:d7:a9:8e:2d:b8:50:c9:ba: 11:8f:56:52:a8:ab:a4:a5:d0:44:93:42:c6:3a:d8: 7f:fa:10:cd:ae:98:36:6d:aa:47:27:0b:e9:71:c1: e0:8a:28:b2:bc:5a:22:6a:a0:aa:ea:3f:9e:a2:15: 8c:7c:eb:65:77:12:10:ad:8c:e2:03:93:ec:e4:1f: aa:83:04:2d:83:dd:6b:3d:0e:43:98:6b:d1:f9:1b: a6:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:27:AD:44:DC:22:C4:C1:48:7B:33:AE:DC:10:8E:40:D0:7C:4C:04 X509v3 Authority Key Identifier: keyid:94:C9:D4:3B:53:B5:D8:50:D9:8E:0D:A2:D5:EF:3C:4E:1C:31:20:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMnUO1O12FDZjg2i1e88ThwxIEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:f9:da:c0:58:98:17:75:4b:e6:33:44:70:d4:4e:e5:59:e5: 7b:46:07:06:80:2f:59:f6:45:e2:74:28:12:55:8e:23:20:fe: df:4d:78:b9:d1:ab:bf:3a:32:2d:3f:e8:70:cd:8a:61:85:30: ab:54:17:db:eb:f3:0b:4a:92:31:76:80:17:78:77:76:20:ac: 8a:1f:b0:ef:2f:96:ee:65:f6:dd:53:03:b5:73:bc:93:5c:75: b5:8d:5d:39:27:d5:8f:01:a7:c3:b4:b5:82:32:7c:1c:7e:8c: fa:8a:2a:b2:3e:17:01:05:c7:4c:98:e7:f5:fc:b7:df:7c:db: 48:4c:dd:18:4c:45:51:49:79:2b:86:77:8e:49:24:f5:46:a0: 40:72:89:8d:26:0b:16:34:78:e9:95:11:5c:66:72:74:1b:69: f4:60:84:7c:64:fa:00:cd:aa:68:ea:c1:ec:bd:f3:be:67:7e: 92:c4:08:68:c4:02:18:92:e1:cb:bd:c5:1c:97:63:18:af:99: dd:ca:7e:0b:23:cf:3f:34:38:ae:bb:57:31:37:1c:35:1c:fe: 7f:7a:b1:be:4f:6b:da:5f:75:4c:48:0c:fc:6b:70:c4:4d:b2: f8:0b:89:f6:5e:ce:d3:e0:f6:12:aa:e9:4b:aa:5c:73:a4:90: 3a:f3:b0:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEB4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBFMjExMTAvBgNVBAUTKDk0QzlENDNCNTNCNUQ4NTBEOThFMERBMkQ1RUYzQzRF MUMzMTIwNDUwHhcNMjUwNTMwMTczNjE1WhcNMjUwNjA2MTczNjE1WjAYMRYwFAYD VQQDEw02ODM5ZWM4Zi1iMDU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9d5rtWsIqBMQDm/RTfj9lqUGFUn7+8NmutKr3W/AK2rDG4hHAnJ2VvbRrh36 PRa0tAiG82YAYqggP9I/RU2s9e5RNeDLCInlzSe43ci6+YXpCoiEVC1H9kGhMm5y 3gmpAfZTm3VH7rMdXbJgIRugw83o8a7AflSjFsKoy+zBkTl6Oc/g2cyzpQZh0qZT OPFj7DAvGeggGnR44vZcV/EHazrk5vSzZtzFguTb16mOLbhQyboRj1ZSqKukpdBE k0LGOth/+hDNrpg2bapHJwvpccHgiiiyvFoiaqCq6j+eohWMfOtldxIQrYziA5Ps 5B+qgwQtg91rPQ5DmGvR+Rum3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPMnrUTc IsTBSHszrtwQjkDQfEwEMB8GA1UdIwQYMBaAFJTJ1DtTtdhQ2Y4NotXvPE4cMSBF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEUyMS9BNUU5NTBENDQy NzMxMUU5QkFDMDAwNjVDNEY5QUUwMi9sTW5VTzFPMTJGRFpqZzJpMWU4OFRod3hJ RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xNblVPMU8xMkZEWmpnMmkxZTg4VGh3eElFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEUyMS9BNUU5NTBENDQyNzMxMUU5QkFDMDAwNjVDNEY5QUUwMi9sTW5VTzFPMTJG RFpqZzJpMWU4OFRod3hJRVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCF+drAWJgXdUvmM0Rw1E7lWeV7RgcGgC9Z9kXidCgSVY4jIP7fTXi5 0au/OjItP+hwzYphhTCrVBfb6/MLSpIxdoAXeHd2IKyKH7DvL5buZfbdUwO1c7yT XHW1jV05J9WPAafDtLWCMnwcfoz6iiqyPhcBBcdMmOf1/LfffNtITN0YTEVRSXkr hneOSST1RqBAcomNJgsWNHjplRFcZnJ0G2n0YIR8ZPoAzapo6sHsvfO+Z36SxAho xAIYkuHLvcUcl2MYr5ndyn4LI88/NDiuu1cxNxw1HP5/erG+T2vaX3VMSAz8a3DE TbL4C4n2Xs7T4PYSqulLqlxzpJA687BW -----END CERTIFICATE-----Generated at Sat May 31 17:32:00 2025 by rpki-client