$ rpki-client -vvf rpki.apnic.net/member_repository/A912EE4D/523FDA808A0211EEB289032CC4F9AE02/lFmgev60b3mSRf7CNW08usm-2Ig.mft File: lFmgev60b3mSRf7CNW08usm-2Ig.mft (raw, json) Hash identifier: 5fijzSI+qbOf23IqGm5vmQy2RvVvDl2rnSsIx0yEX+0= Subject key identifier: 9F:A5:84:57:2D:FE:3A:83:67:F1:4D:A0:0B:05:BF:A0:E4:7D:5C:69 Authority key identifier: 94:59:A0:7A:FE:B4:6F:79:92:45:FE:C2:35:6D:3C:BA:C9:BE:D8:88 Certificate issuer: /CN=A912EE4D/serialNumber=9459A07AFEB46F799245FEC2356D3CBAC9BED888 Certificate serial: 0129 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFmgev60b3mSRf7CNW08usm-2Ig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912EE4D/523FDA808A0211EEB289032CC4F9AE02/lFmgev60b3mSRf7CNW08usm-2Ig.mft Manifest number: 0125 Signing time: Wed 11 Jun 2025 04:07:15 +0000 Manifest this update: Wed 11 Jun 2025 04:07:14 +0000 Manifest next update: Wed 18 Jun 2025 04:07:14 +0000 Files and hashes: 1: lFmgev60b3mSRf7CNW08usm-2Ig.crl (hash: /AVkleO6hdU4GeT/7kNf2S0I7DvxqEzpyLY8CEBXI0U=) 2: 81A901FA8A0411EEA251F746C4F9AE02.roa (hash: JHvhSwDOyCbk05zvE3c35/2oeXE8ikJi+kxwUoPeaf4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912EE4D/523FDA808A0211EEB289032CC4F9AE02/lFmgev60b3mSRf7CNW08usm-2Ig.crl rsync://rpki.apnic.net/member_repository/A912EE4D/523FDA808A0211EEB289032CC4F9AE02/lFmgev60b3mSRf7CNW08usm-2Ig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFmgev60b3mSRf7CNW08usm-2Ig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 04:07:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 297 (0x129) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912EE4D, serialNumber=9459A07AFEB46F799245FEC2356D3CBAC9BED888 Validity Not Before: Jun 11 04:07:14 2025 GMT Not After : Jun 18 04:07:14 2025 GMT Subject: CN=684900f3-b024 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:50:9f:63:4e:cf:3b:fb:e1:b0:1f:db:c4:52: 8f:1f:36:4b:ff:06:aa:63:5f:44:aa:8b:8c:03:25: c2:3c:52:70:bf:c2:47:ab:47:36:d2:eb:91:2d:06: ec:97:22:1f:61:e4:73:d9:d4:80:58:ae:d6:01:93: 74:24:a4:9d:06:5b:63:18:26:b9:a8:96:ab:ec:c8: e6:6e:f0:c6:4a:cb:e3:8c:2a:0c:b6:92:dd:34:75: e6:5b:39:a2:7d:0e:6b:b0:84:4e:b8:78:21:d6:43: 90:cc:db:b4:4e:1c:8d:cb:5e:ff:f8:c6:4e:f7:55: 25:05:d5:3a:39:e6:cc:94:05:96:e8:ad:f3:37:9c: 63:80:de:33:cb:42:d2:43:bc:fb:64:01:c8:48:13: ce:61:4c:76:a7:78:01:cc:59:76:61:34:ed:92:1d: fa:b6:24:9d:ce:70:59:b9:48:23:0e:25:64:b1:36: 71:43:da:6b:36:17:a8:71:c8:7e:2d:81:af:b4:50: ed:db:3b:7b:1d:11:89:8d:fe:14:43:10:c4:d9:99: 97:cd:13:c9:95:61:ac:48:14:55:04:2b:27:e4:fc: 34:73:d2:01:84:2d:1e:37:56:3b:e4:8f:b5:63:99: 15:63:83:04:ac:b1:7e:77:ac:fc:c8:1b:e8:7f:a5: 1e:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:A5:84:57:2D:FE:3A:83:67:F1:4D:A0:0B:05:BF:A0:E4:7D:5C:69 X509v3 Authority Key Identifier: keyid:94:59:A0:7A:FE:B4:6F:79:92:45:FE:C2:35:6D:3C:BA:C9:BE:D8:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912EE4D/523FDA808A0211EEB289032CC4F9AE02/lFmgev60b3mSRf7CNW08usm-2Ig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFmgev60b3mSRf7CNW08usm-2Ig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912EE4D/523FDA808A0211EEB289032CC4F9AE02/lFmgev60b3mSRf7CNW08usm-2Ig.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:e2:cc:42:90:53:65:5d:58:6c:01:2a:3a:d0:ea:82:93:42: e6:2d:67:77:0e:7c:3d:e3:fe:41:1b:76:1c:d7:02:9e:76:26: 32:66:a0:17:7a:29:11:83:c2:61:73:f9:80:d9:4d:b0:e2:e7: cb:d5:f1:00:c8:ea:15:08:b4:32:cd:93:6c:a7:c1:e9:03:40: 42:1e:1e:2f:f5:7c:bd:bf:fd:b8:38:6d:54:8e:c1:6b:08:2d: 17:7c:ff:00:18:69:9e:74:6e:e2:0f:a0:bf:21:e5:43:58:f6: 6e:d6:ae:ab:ce:59:c5:c1:53:46:fe:e5:7f:79:3f:11:03:7e: 02:72:03:ea:b0:5e:7e:cf:41:2d:65:b0:20:2e:5e:ba:39:85: 21:34:8b:85:f6:c3:79:68:9b:58:6f:66:e6:dd:f7:ea:b7:db: 94:ee:36:3b:84:cf:b2:e9:ba:25:20:68:71:03:28:74:1d:18: 5d:13:19:bf:11:66:1b:78:32:be:c0:82:51:8a:83:14:6f:00: 19:b8:78:e1:57:29:73:d3:f6:9c:81:be:c0:cc:c8:a5:8f:8e: 9c:3a:aa:c7:fd:e9:26:21:8d:88:ea:79:6d:38:7c:15:cd:c6: ac:bb:87:3f:5d:8e:7d:b0:b0:57:57:10:54:ba:bd:a7:0f:41: 54:86:d2:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkVFNEQxMTAvBgNVBAUTKDk0NTlBMDdBRkVCNDZGNzk5MjQ1RkVDMjM1NkQzQ0JB QzlCRUQ4ODgwHhcNMjUwNjExMDQwNzE0WhcNMjUwNjE4MDQwNzE0WjAYMRYwFAYD VQQDEw02ODQ5MDBmMy1iMDI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo1CfY07PO/vhsB/bxFKPHzZL/waqY19EqouMAyXCPFJwv8JHq0c20uuRLQbs lyIfYeRz2dSAWK7WAZN0JKSdBltjGCa5qJar7MjmbvDGSsvjjCoMtpLdNHXmWzmi fQ5rsIROuHgh1kOQzNu0ThyNy17/+MZO91UlBdU6OebMlAWW6K3zN5xjgN4zy0LS Q7z7ZAHISBPOYUx2p3gBzFl2YTTtkh36tiSdznBZuUgjDiVksTZxQ9prNheocch+ LYGvtFDt2zt7HRGJjf4UQxDE2ZmXzRPJlWGsSBRVBCsn5Pw0c9IBhC0eN1Y75I+1 Y5kVY4MErLF+d6z8yBvof6UeqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ+lhFct /jqDZ/FNoAsFv6DkfVxpMB8GA1UdIwQYMBaAFJRZoHr+tG95kkX+wjVtPLrJvtiI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRUU0RC81MjNGREE4MDhB MDIxMUVFQjI4OTAzMkNDNEY5QUUwMi9sRm1nZXY2MGIzbVNSZjdDTlcwOHVzbS0y SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xGbWdldjYwYjNtU1JmN0NOVzA4dXNtLTJJZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RUU0RC81MjNGREE4MDhBMDIxMUVFQjI4OTAzMkNDNEY5QUUwMi9sRm1nZXY2MGIz bVNSZjdDTlcwOHVzbS0ySWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBh4sxCkFNlXVhsASo60OqCk0LmLWd3Dnw94/5BG3Yc1wKediYyZqAX eikRg8Jhc/mA2U2w4ufL1fEAyOoVCLQyzZNsp8HpA0BCHh4v9Xy9v/24OG1UjsFr CC0XfP8AGGmedG7iD6C/IeVDWPZu1q6rzlnFwVNG/uV/eT8RA34CcgPqsF5+z0Et ZbAgLl66OYUhNIuF9sN5aJtYb2bm3ffqt9uU7jY7hM+y6bolIGhxAyh0HRhdExm/ EWYbeDK+wIJRioMUbwAZuHjhVylz0/acgb7AzMilj46cOqrH/ekmIY2I6nltOHwV zcasu4c/XY59sLBXVxBUur2nD0FUhtK1 -----END CERTIFICATE-----Generated at Thu Jun 12 04:04:04 2025 by rpki-client