$ rpki-client -vvf rpki.apnic.net/member_repository/A912B635/5D077D4A91D211EB8B511053C4F9AE02/LNlBunzrUf5uFl4_yYBm1amZ5P4.mft File: LNlBunzrUf5uFl4_yYBm1amZ5P4.mft (raw, json) Hash identifier: uOeW0KufITh6Nz1wEBJSD0zYmdkuG0Czt7l4h85fEnc= Subject key identifier: 77:31:D7:26:64:1E:C9:4D:AE:A5:19:DB:30:FA:A4:96:07:5F:12:DC Authority key identifier: 2C:D9:41:BA:7C:EB:51:FE:6E:16:5E:3F:C9:80:66:D5:A9:99:E4:FE Certificate issuer: /CN=A912B635/serialNumber=2CD941BA7CEB51FE6E165E3FC98066D5A999E4FE Certificate serial: 063D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LNlBunzrUf5uFl4_yYBm1amZ5P4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B635/5D077D4A91D211EB8B511053C4F9AE02/LNlBunzrUf5uFl4_yYBm1amZ5P4.mft Manifest number: 0638 Signing time: Fri 30 May 2025 22:51:57 +0000 Manifest this update: Fri 30 May 2025 22:51:57 +0000 Manifest next update: Fri 06 Jun 2025 22:51:57 +0000 Files and hashes: 1: LNlBunzrUf5uFl4_yYBm1amZ5P4.crl (hash: ySrisEcCpnL4wAJHef2KdxvZN9AdnlMJ0efCLtnTv6E=) 2: D44C47FE91D311EBBE8C7D54C4F9AE02.roa (hash: c2XK07fkTtqrWcB4fZ5IJUYP88fXxA7EytLu8uCG7Fk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B635/5D077D4A91D211EB8B511053C4F9AE02/LNlBunzrUf5uFl4_yYBm1amZ5P4.crl rsync://rpki.apnic.net/member_repository/A912B635/5D077D4A91D211EB8B511053C4F9AE02/LNlBunzrUf5uFl4_yYBm1amZ5P4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LNlBunzrUf5uFl4_yYBm1amZ5P4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:51:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1597 (0x63d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B635, serialNumber=2CD941BA7CEB51FE6E165E3FC98066D5A999E4FE Validity Not Before: May 30 22:51:57 2025 GMT Not After : Jun 6 22:51:57 2025 GMT Subject: CN=683a368d-4cb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:bb:49:60:3c:24:78:b1:84:55:2e:87:61:32: d9:ce:a9:14:64:5b:9a:c8:3a:c4:6c:49:c7:8c:63: d9:1c:e4:cd:bf:52:de:09:35:88:26:a0:18:01:08: 42:6b:1d:78:0c:55:b4:1a:4e:de:26:b8:4d:fe:6e: 81:08:cb:c0:46:1e:64:c8:25:60:38:08:bb:1a:3c: 06:8c:b5:5d:69:b9:bf:71:a7:69:97:a6:f0:bf:e8: 53:2e:0f:f3:08:42:ae:1d:43:d0:74:0b:49:9c:c4: d0:f5:d5:d5:bb:4b:0f:28:10:28:e2:1c:14:49:f7: 4a:ba:6e:16:50:88:26:4c:32:6f:39:47:08:b7:b3: d5:44:0a:c2:a8:2e:ae:56:04:fb:5a:5e:89:90:4f: f7:4c:cf:6f:d4:97:92:8d:97:20:94:59:79:7c:02: c6:a9:2a:21:94:64:62:3e:23:aa:a1:e1:ef:0e:f9: f8:48:db:a6:a0:04:09:f3:79:41:c0:a2:60:fa:fd: d4:39:3a:c0:2a:b2:e8:c0:5a:31:d7:51:15:c7:ac: db:5b:ac:de:64:8b:cc:4e:0c:e8:e9:88:15:da:42: 53:47:e2:dd:66:07:62:a2:4d:da:27:18:6d:6b:97: a6:27:af:7c:91:c2:c6:c5:0d:9d:5b:cf:8b:46:fd: f0:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:31:D7:26:64:1E:C9:4D:AE:A5:19:DB:30:FA:A4:96:07:5F:12:DC X509v3 Authority Key Identifier: keyid:2C:D9:41:BA:7C:EB:51:FE:6E:16:5E:3F:C9:80:66:D5:A9:99:E4:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B635/5D077D4A91D211EB8B511053C4F9AE02/LNlBunzrUf5uFl4_yYBm1amZ5P4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LNlBunzrUf5uFl4_yYBm1amZ5P4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B635/5D077D4A91D211EB8B511053C4F9AE02/LNlBunzrUf5uFl4_yYBm1amZ5P4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:4f:61:62:62:2b:27:69:e0:00:e3:40:b0:83:18:09:2c:8e: 57:64:1b:3a:4d:a5:21:c5:a6:d3:6b:70:43:83:08:a9:76:16: 33:6a:f4:bf:a8:7b:fb:4b:26:be:63:f8:e9:3f:42:d0:c1:bb: 02:26:27:c5:77:0a:c0:38:d0:4c:99:12:cd:a5:39:d1:3a:8e: 6e:4a:ec:66:12:f1:d5:91:68:67:69:49:d6:a2:d4:df:a0:67: ca:d7:45:d3:db:ad:28:c7:17:6f:74:e7:6d:e6:11:3a:28:fe: 13:50:dc:29:88:8e:b3:56:00:53:eb:82:b8:f5:77:f3:7b:64: 07:bc:0b:6a:7b:84:ed:a2:fa:66:37:63:b6:4b:83:58:f0:c1: 14:6f:a1:33:02:8f:5d:71:2a:00:2f:fd:1d:74:24:ff:b4:97: 0f:28:e1:8f:00:89:72:43:ec:80:61:dd:dd:48:ab:71:a8:a0: bd:30:0d:b0:9c:0e:c8:d0:ce:57:a8:4a:b8:d2:04:c1:bc:45: 0a:4c:c1:31:2d:a1:8c:72:b2:aa:ac:3b:71:87:bf:ee:53:07: 5d:12:c1:9d:34:9a:02:d5:bf:52:13:fe:15:bf:12:00:93:11: f8:83:51:7c:41:77:46:4d:43:14:6e:b8:ed:ca:33:8d:6d:6a: 1a:dd:74:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBj0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkI2MzUxMTAvBgNVBAUTKDJDRDk0MUJBN0NFQjUxRkU2RTE2NUUzRkM5ODA2NkQ1 QTk5OUU0RkUwHhcNMjUwNTMwMjI1MTU3WhcNMjUwNjA2MjI1MTU3WjAYMRYwFAYD VQQDEw02ODNhMzY4ZC00Y2I0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA17tJYDwkeLGEVS6HYTLZzqkUZFuayDrEbEnHjGPZHOTNv1LeCTWIJqAYAQhC ax14DFW0Gk7eJrhN/m6BCMvARh5kyCVgOAi7GjwGjLVdabm/cadpl6bwv+hTLg/z CEKuHUPQdAtJnMTQ9dXVu0sPKBAo4hwUSfdKum4WUIgmTDJvOUcIt7PVRArCqC6u VgT7Wl6JkE/3TM9v1JeSjZcglFl5fALGqSohlGRiPiOqoeHvDvn4SNumoAQJ83lB wKJg+v3UOTrAKrLowFox11EVx6zbW6zeZIvMTgzo6YgV2kJTR+LdZgdiok3aJxht a5emJ698kcLGxQ2dW8+LRv3wCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHcx1yZk HslNrqUZ2zD6pJYHXxLcMB8GA1UdIwQYMBaAFCzZQbp861H+bhZeP8mAZtWpmeT+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjYzNS81RDA3N0Q0QTkx RDIxMUVCOEI1MTEwNTNDNEY5QUUwMi9MTmxCdW56clVmNXVGbDRfeVlCbTFhbVo1 UDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xObEJ1bnpyVWY1dUZsNF95WUJtMWFtWjVQNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QjYzNS81RDA3N0Q0QTkxRDIxMUVCOEI1MTEwNTNDNEY5QUUwMi9MTmxCdW56clVm NXVGbDRfeVlCbTFhbVo1UDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5T2FiYisnaeAA40CwgxgJLI5XZBs6TaUhxabTa3BDgwipdhYzavS/ qHv7Sya+Y/jpP0LQwbsCJifFdwrAONBMmRLNpTnROo5uSuxmEvHVkWhnaUnWotTf oGfK10XT260oxxdvdOdt5hE6KP4TUNwpiI6zVgBT64K49Xfze2QHvAtqe4Ttovpm N2O2S4NY8MEUb6EzAo9dcSoAL/0ddCT/tJcPKOGPAIlyQ+yAYd3dSKtxqKC9MA2w nA7I0M5XqEq40gTBvEUKTMExLaGMcrKqrDtxh7/uUwddEsGdNJoC1b9SE/4VvxIA kxH4g1F8QXdGTUMUbrjtyjONbWoa3XSw -----END CERTIFICATE-----Generated at Sat May 31 17:22:02 2025 by rpki-client