$ rpki-client -vvf rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft File: LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft (raw, json) Hash identifier: Albs8QmNktoD9F4wiZy+3JI1jXI+IrUlUdMn9FzUw7I= Subject key identifier: 11:D6:1E:EE:29:8E:4E:8F:79:88:0A:6F:D6:9F:77:31:C4:07:55:C6 Authority key identifier: 2E:06:F3:09:1A:D5:8E:D0:63:3F:F9:89:B1:FD:32:97:73:EC:3A:A7 Certificate issuer: /CN=A9123D28/serialNumber=2E06F3091AD58ED0633FF989B1FD329773EC3AA7 Certificate serial: 023C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgbzCRrVjtBjP_mJsf0yl3PsOqc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft Manifest number: 0238 Signing time: Mon 09 Jun 2025 01:28:50 +0000 Manifest this update: Mon 09 Jun 2025 01:28:49 +0000 Manifest next update: Mon 16 Jun 2025 01:28:49 +0000 Files and hashes: 1: LgbzCRrVjtBjP_mJsf0yl3PsOqc.crl (hash: VCF+m2G7E5tje8Yj6BCL9mCwaOoaof1kkVbVXYeqGnU=) 2: 49CEB44A28D111EDB364C870C4F9AE02.roa (hash: v8A7o/rziUd18ChafwKVVQdaKCqkH9AmkhbIbCG9hCU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.crl rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgbzCRrVjtBjP_mJsf0yl3PsOqc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 16 Jun 2025 01:28:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 572 (0x23c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123D28, serialNumber=2E06F3091AD58ED0633FF989B1FD329773EC3AA7 Validity Not Before: Jun 9 01:28:49 2025 GMT Not After : Jun 16 01:28:49 2025 GMT Subject: CN=684638d1-6cee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:0f:ea:42:2e:a7:42:be:0b:e4:2b:af:e9:bf: 82:7e:78:bf:71:f6:98:f5:36:83:0c:eb:01:d7:07: b9:dc:e7:93:0a:8a:a8:e4:fb:bf:3c:5a:6e:25:aa: 88:19:1d:56:d8:29:c7:b1:5d:b7:96:03:b2:29:ae: 08:c9:04:36:2c:ad:e8:b7:77:ec:e7:3e:a5:27:5b: 0d:c4:7c:da:c3:c6:1b:4c:0b:70:09:fd:88:1f:a6: 6d:f9:49:8a:6b:b9:ae:02:42:c3:ff:61:c2:31:fd: a6:25:19:bb:12:b3:49:80:79:dc:90:50:00:65:37: 46:ff:55:eb:30:23:01:26:7a:d4:10:c5:a1:d5:58: 0b:be:34:c7:10:9c:78:99:fd:83:7d:2e:b0:a2:60: 5d:58:7c:61:d6:af:bd:88:76:c4:4a:c3:2f:6e:73: b0:0a:14:3c:f5:27:66:d3:00:9f:c7:66:1b:bb:68: b9:f1:e8:f9:69:16:b0:81:c0:4e:64:f3:2a:3d:56: 8d:96:8e:a6:98:74:18:56:41:bf:3e:04:d7:b3:d9: ce:9c:fe:95:af:c5:88:54:a3:a5:cc:df:0c:92:b0: 8f:f1:ac:27:00:1e:1a:7b:5d:57:52:5d:41:eb:11: 3a:33:1f:36:d8:f5:44:29:1e:50:74:42:a5:a2:e9: a5:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:D6:1E:EE:29:8E:4E:8F:79:88:0A:6F:D6:9F:77:31:C4:07:55:C6 X509v3 Authority Key Identifier: keyid:2E:06:F3:09:1A:D5:8E:D0:63:3F:F9:89:B1:FD:32:97:73:EC:3A:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgbzCRrVjtBjP_mJsf0yl3PsOqc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:11:bf:0f:08:95:c2:a2:21:c9:39:f9:bb:b8:f3:32:2d:cf: 50:c9:a3:e1:d3:89:d5:61:e2:b8:36:3b:1f:4d:3a:df:4c:b1: ca:09:60:0a:c9:ac:66:0d:d9:ab:18:5c:c5:e2:6d:09:12:bf: ac:ba:a3:76:51:5a:d0:37:3e:82:78:53:57:e2:dd:22:f7:b8: 6e:15:51:e7:dd:88:a1:3e:ad:99:cb:30:a8:c9:c8:55:18:cd: 14:ba:80:09:c0:ac:e6:b3:bd:5c:85:ea:ba:af:2a:08:00:fc: 0b:02:0e:8d:48:11:ad:74:3f:9e:1d:de:44:a6:a1:31:72:97: d8:41:86:78:1d:ac:0c:b4:c7:e9:66:52:b0:a2:47:d1:56:5d: 52:dc:ab:15:d5:96:c4:01:ec:2e:1d:a1:1f:b6:bf:45:fc:44: 60:b8:42:b4:05:53:1c:88:98:ef:bd:69:37:d1:85:06:e0:7e: c4:55:65:c8:a8:90:30:07:f1:5c:f6:b8:4e:09:13:5d:58:b4: f2:45:58:a6:22:80:d0:5f:80:ed:2a:7e:e2:02:39:60:67:40: 58:53:cc:55:98:75:1d:ea:28:3a:aa:93:51:26:1e:25:18:df: 11:dd:1d:62:62:ec:e6:23:f4:46:a5:06:dd:2b:ab:37:8c:78: 81:8f:fd:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNEMjgxMTAvBgNVBAUTKDJFMDZGMzA5MUFENThFRDA2MzNGRjk4OUIxRkQzMjk3 NzNFQzNBQTcwHhcNMjUwNjA5MDEyODQ5WhcNMjUwNjE2MDEyODQ5WjAYMRYwFAYD VQQDEw02ODQ2MzhkMS02Y2VlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Q/qQi6nQr4L5Cuv6b+Cfni/cfaY9TaDDOsB1we53OeTCoqo5Pu/PFpuJaqI GR1W2CnHsV23lgOyKa4IyQQ2LK3ot3fs5z6lJ1sNxHzaw8YbTAtwCf2IH6Zt+UmK a7muAkLD/2HCMf2mJRm7ErNJgHnckFAAZTdG/1XrMCMBJnrUEMWh1VgLvjTHEJx4 mf2DfS6womBdWHxh1q+9iHbESsMvbnOwChQ89Sdm0wCfx2Ybu2i58ej5aRawgcBO ZPMqPVaNlo6mmHQYVkG/PgTXs9nOnP6Vr8WIVKOlzN8MkrCP8awnAB4ae11XUl1B 6xE6Mx822PVEKR5QdEKlouml3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBHWHu4p jk6PeYgKb9afdzHEB1XGMB8GA1UdIwQYMBaAFC4G8wka1Y7QYz/5ibH9Mpdz7Dqn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0QyOC80QkRBRUVEQzI4 Q0UxMUVEQjY4MzM5NkVDNEY5QUUwMi9MZ2J6Q1JyVmp0QmpQX21Kc2YweWwzUHNP cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xnYnpDUnJWanRCalBfbUpzZjB5bDNQc09xYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0QyOC80QkRBRUVEQzI4Q0UxMUVEQjY4MzM5NkVDNEY5QUUwMi9MZ2J6Q1JyVmp0 QmpQX21Kc2YweWwzUHNPcWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwEb8PCJXCoiHJOfm7uPMyLc9QyaPh04nVYeK4NjsfTTrfTLHKCWAK yaxmDdmrGFzF4m0JEr+suqN2UVrQNz6CeFNX4t0i97huFVHn3YihPq2ZyzCoychV GM0UuoAJwKzms71cheq6ryoIAPwLAg6NSBGtdD+eHd5EpqExcpfYQYZ4HawMtMfp ZlKwokfRVl1S3KsV1ZbEAewuHaEftr9F/ERguEK0BVMciJjvvWk30YUG4H7EVWXI qJAwB/Fc9rhOCRNdWLTyRVimIoDQX4DtKn7iAjlgZ0BYU8xVmHUd6ig6qpNRJh4l GN8R3R1iYuzmI/RGpQbdK6s3jHiBj/0/ -----END CERTIFICATE-----Generated at Tue Jun 10 01:51:00 2025 by rpki-client