$ rpki-client -vvf rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.mft File: 2lA_lyy8k6jIHflfVKLLKjjxPHc.mft (raw, json) Hash identifier: MSyHbii9FMoSJBikUzjVDE04Kvoln73V7EFWfrTCJAU= Subject key identifier: 77:13:33:A3:25:A5:9D:2E:5A:EA:88:BB:1D:18:FC:7C:D8:F1:0E:42 Authority key identifier: DA:50:3F:97:2C:BC:93:A8:C8:1D:F9:5F:54:A2:CB:2A:38:F1:3C:77 Certificate issuer: /CN=A9144717/serialNumber=DA503F972CBC93A8C81DF95F54A2CB2A38F13C77 Certificate serial: 09C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lA_lyy8k6jIHflfVKLLKjjxPHc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.mft Manifest number: 09B8 Signing time: Fri 30 May 2025 20:56:45 +0000 Manifest this update: Fri 30 May 2025 20:56:44 +0000 Manifest next update: Fri 06 Jun 2025 20:56:44 +0000 Files and hashes: 1: 2lA_lyy8k6jIHflfVKLLKjjxPHc.crl (hash: 0igWAR8WwxNZQ0JaX1jpkEDiON9QagGypxQLLnOkJ9g=) 2: F38DEBFC83E911EA993D9515C4F9AE02.roa (hash: qAQSazWUf2FePmcHd1Qj+eRlLm7Ky5QuPvw10+7M0lo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.crl rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lA_lyy8k6jIHflfVKLLKjjxPHc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:56:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2496 (0x9c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144717, serialNumber=DA503F972CBC93A8C81DF95F54A2CB2A38F13C77 Validity Not Before: May 30 20:56:44 2025 GMT Not After : Jun 6 20:56:44 2025 GMT Subject: CN=683a1b8c-7ac8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ca:fc:98:5e:9c:e0:5d:db:47:18:29:85:77: ef:78:25:cc:38:b3:5e:0c:53:a3:5c:59:a7:26:eb: fe:a3:62:83:31:27:b8:f6:62:60:7d:02:39:49:15: c5:81:0a:69:69:43:53:07:3b:74:b6:a0:26:91:97: c0:ad:7e:7f:ee:32:bf:75:77:70:c8:01:46:7b:44: 66:a1:b9:e7:b3:5d:f5:86:08:34:72:7a:c7:e7:ac: 57:46:7a:0b:b6:3d:93:02:5b:71:9a:fb:52:79:d2: e4:6f:eb:ef:44:db:e0:50:97:f1:3e:a9:3c:ed:71: 67:b8:2c:dc:5c:47:1f:13:70:82:3a:48:bd:c5:c7: a6:f9:13:89:24:7c:29:fc:0f:52:c7:b8:e5:0c:3f: 18:93:de:70:bf:34:e4:0f:96:49:d0:5e:c7:1d:7a: cb:b2:23:4d:fd:99:f8:53:de:8b:f6:12:9a:a0:0c: b0:b6:16:06:ee:0a:e0:65:cd:75:46:3a:f4:ee:7a: f0:1a:79:6c:b2:d8:e6:bf:fb:bc:07:e1:c4:e9:d5: 55:9d:27:4c:8e:12:e5:80:a0:21:67:f7:75:4a:86: 38:96:30:92:e0:23:a2:09:aa:8c:07:77:2e:b0:db: 88:6f:36:cb:9e:95:ce:ae:c1:d3:fa:48:3f:40:df: c7:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:13:33:A3:25:A5:9D:2E:5A:EA:88:BB:1D:18:FC:7C:D8:F1:0E:42 X509v3 Authority Key Identifier: keyid:DA:50:3F:97:2C:BC:93:A8:C8:1D:F9:5F:54:A2:CB:2A:38:F1:3C:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lA_lyy8k6jIHflfVKLLKjjxPHc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:e9:2b:88:ba:e4:22:dd:f1:cb:19:95:51:35:a9:7a:df:a3: a0:97:37:31:a3:8f:3f:b3:50:fd:c1:c8:94:3b:75:65:d0:35: 9c:5d:2f:42:ba:bf:40:05:f8:99:a4:53:2f:f1:5d:1b:61:15: 54:69:d3:e4:cc:82:14:fa:25:ec:9b:6f:f2:bf:7b:76:f7:6e: 6b:6f:20:93:bf:92:a8:19:eb:a6:6c:6d:a9:ac:45:5f:8e:51: 72:fe:e4:a9:ad:17:e8:21:3e:47:be:c6:dd:af:12:00:3a:0a: f9:95:3f:c5:b7:66:a9:ac:8e:0a:63:17:d1:7d:3d:f3:e7:e9: 16:a0:c7:df:84:52:06:5c:27:2e:b7:4f:49:05:f2:37:68:b8: f5:88:5b:98:46:3a:4d:b9:41:01:b2:5a:9c:5b:41:b4:66:71: 78:ec:be:60:7b:51:cd:d1:f8:a1:64:f5:87:b1:27:d0:54:3b: 74:cb:20:b4:96:b1:9d:b1:b8:8e:59:30:42:bf:5b:2a:ee:d0: cf:7a:e8:8f:b0:34:fc:a7:73:ea:0c:e1:8b:68:c7:d9:08:be: c9:49:8c:8a:f9:4d:b5:4b:0e:93:b4:7a:0b:e7:c8:a3:40:1b: 58:ba:f8:c8:32:2c:82:30:25:39:5a:51:06:6e:1a:42:d3:95: 2a:06:4b:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCcAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQ3MTcxMTAvBgNVBAUTKERBNTAzRjk3MkNCQzkzQThDODFERjk1RjU0QTJDQjJB MzhGMTNDNzcwHhcNMjUwNTMwMjA1NjQ0WhcNMjUwNjA2MjA1NjQ0WjAYMRYwFAYD VQQDEw02ODNhMWI4Yy03YWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApsr8mF6c4F3bRxgphXfveCXMOLNeDFOjXFmnJuv+o2KDMSe49mJgfQI5SRXF gQppaUNTBzt0tqAmkZfArX5/7jK/dXdwyAFGe0Rmobnns131hgg0cnrH56xXRnoL tj2TAltxmvtSedLkb+vvRNvgUJfxPqk87XFnuCzcXEcfE3CCOki9xcem+ROJJHwp /A9Sx7jlDD8Yk95wvzTkD5ZJ0F7HHXrLsiNN/Zn4U96L9hKaoAywthYG7grgZc11 Rjr07nrwGnlsstjmv/u8B+HE6dVVnSdMjhLlgKAhZ/d1SoY4ljCS4COiCaqMB3cu sNuIbzbLnpXOrsHT+kg/QN/H3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHcTM6Ml pZ0uWuqIux0Y/HzY8Q5CMB8GA1UdIwQYMBaAFNpQP5csvJOoyB35X1Siyyo48Tx3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDcxNy8zOTg4OTAwMDgz RTgxMUVBQjc3MDA1MTNDNEY5QUUwMi8ybEFfbHl5OGs2aklIZmxmVktMTEtqanhQ SGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsQV9seXk4azZqSUhmbGZWS0xMS2pqeFBIYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDcxNy8zOTg4OTAwMDgzRTgxMUVBQjc3MDA1MTNDNEY5QUUwMi8ybEFfbHl5OGs2 aklIZmxmVktMTEtqanhQSGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCX6SuIuuQi3fHLGZVRNal636Oglzcxo48/s1D9wciUO3Vl0DWcXS9C ur9ABfiZpFMv8V0bYRVUadPkzIIU+iXsm2/yv3t2925rbyCTv5KoGeumbG2prEVf jlFy/uSprRfoIT5HvsbdrxIAOgr5lT/Ft2aprI4KYxfRfT3z5+kWoMffhFIGXCcu t09JBfI3aLj1iFuYRjpNuUEBslqcW0G0ZnF47L5ge1HN0fihZPWHsSfQVDt0yyC0 lrGdsbiOWTBCv1sq7tDPeuiPsDT8p3PqDOGLaMfZCL7JSYyK+U21Sw6TtHoL58ij QBtYuvjIMiyCMCU5WlEGbhpC05UqBkuA -----END CERTIFICATE-----Generated at Sat May 31 17:54:49 2025 by rpki-client