$ rpki-client -vvf rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.mft File: llSi8IRZeiuRrAAqdgfhPBXQlJE.mft (raw, json) Hash identifier: ppAHm7C5/RBXhjTJfWXXroKy4A+k7XdVod8rOD/b1i8= Subject key identifier: FB:F8:11:6D:F8:5F:9C:67:8F:97:DE:C2:6E:86:65:04:39:7A:94:99 Authority key identifier: 96:54:A2:F0:84:59:7A:2B:91:AC:00:2A:76:07:E1:3C:15:D0:94:91 Certificate issuer: /CN=A9153303/serialNumber=9654A2F084597A2B91AC002A7607E13C15D09491 Certificate serial: AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/llSi8IRZeiuRrAAqdgfhPBXQlJE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.mft Manifest number: AA Signing time: Mon 09 Jun 2025 05:04:19 +0000 Manifest this update: Mon 09 Jun 2025 05:04:19 +0000 Manifest next update: Mon 16 Jun 2025 05:04:19 +0000 Files and hashes: 1: llSi8IRZeiuRrAAqdgfhPBXQlJE.crl (hash: ctsIxU/UD1u4CURheDN8pEY9sTLcJKrqefxkg2m667w=) 2: 29A436623FE111EFB5A50814C4F9AE02.roa (hash: i8BI9IvwuikO1+xMVefOXZH2ufnANITPzuMSdPax+Fg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.crl rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/llSi8IRZeiuRrAAqdgfhPBXQlJE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 16 Jun 2025 05:04:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 171 (0xab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153303, serialNumber=9654A2F084597A2B91AC002A7607E13C15D09491 Validity Not Before: Jun 9 05:04:19 2025 GMT Not After : Jun 16 05:04:19 2025 GMT Subject: CN=68466b53-95fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:38:ab:de:f1:c2:01:70:fa:af:d4:07:ca:df: 02:73:1f:aa:f6:c7:9f:e6:2e:26:a0:9d:49:3b:3d: 79:b7:c8:84:84:a8:58:5f:dd:98:0a:0b:43:b7:21: df:74:d5:3f:db:98:bd:69:c7:ea:9b:31:8b:3c:3b: 9a:91:72:0f:8d:44:56:53:b1:99:69:e2:66:30:59: 75:1e:55:a3:4a:e2:a9:f2:92:6d:72:41:3c:ea:0f: 7e:48:1f:a7:4a:df:ff:cf:2f:da:11:b5:89:1d:97: 32:21:52:72:97:a6:70:74:e6:43:1d:4b:28:90:0b: 3c:d7:46:de:2e:5d:e5:f5:a7:cd:e3:fe:98:08:2c: e9:b7:65:d2:98:7f:bd:55:8a:04:0a:1a:d7:fd:ba: 62:8b:98:87:a9:da:67:b4:c3:59:4d:9c:1f:69:fc: 36:01:1d:d9:79:0f:f3:d2:7a:2c:e5:7e:b1:35:c0: 63:1d:2e:e4:2a:18:fa:ab:1b:51:6f:6d:d1:7e:af: 44:2a:79:f5:6b:b7:49:4e:fb:e3:82:83:b9:b9:73: a3:0b:8a:8f:61:86:11:7a:34:52:86:d5:f1:9a:6b: 5e:3a:e2:8e:40:36:e3:a1:01:c2:ec:5d:7b:ba:2a: d4:17:b9:13:43:a9:f6:fb:ac:04:09:2a:d2:e9:66: 46:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:F8:11:6D:F8:5F:9C:67:8F:97:DE:C2:6E:86:65:04:39:7A:94:99 X509v3 Authority Key Identifier: keyid:96:54:A2:F0:84:59:7A:2B:91:AC:00:2A:76:07:E1:3C:15:D0:94:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/llSi8IRZeiuRrAAqdgfhPBXQlJE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:4d:38:26:64:57:0b:d9:58:0c:8c:35:93:8b:11:cf:b1:21: 74:b8:ea:67:9e:de:e3:24:06:49:87:a8:52:56:e0:bf:c3:bd: b6:65:45:6d:28:37:4c:54:06:1f:d4:fe:40:f0:f7:f7:67:c3: 83:ad:2e:87:83:83:aa:95:4a:38:28:ba:66:d2:dc:49:7a:24: f3:93:33:5d:0e:9a:6c:d1:05:72:a3:fd:e7:9f:93:4c:18:55: ca:e3:05:86:91:4b:e1:cc:c8:96:31:9c:83:fb:d6:58:6f:22: 50:88:13:09:0d:54:1c:61:71:6e:b6:c7:f2:a5:25:54:6b:bf: 24:ae:3e:c4:3c:23:ef:26:69:9d:6f:bc:9b:f2:54:e5:e1:3a: 9c:42:90:56:39:0e:7a:4e:97:30:0d:a8:2f:7f:7b:16:55:55: 68:80:d4:22:1b:1d:4e:4a:23:47:95:2e:52:da:88:ff:84:3c: 5b:f7:e3:4c:b0:48:34:20:fb:1e:95:e6:6d:93:60:72:82:4a: 6d:41:52:be:66:b4:87:f3:c6:f4:4c:07:63:4c:8f:60:7f:f3: 80:d8:0f:51:cc:ef:c8:9b:1b:0a:08:63:c3:f1:c2:2f:42:42: 1c:88:1d:02:82:c8:c2:c0:c4:c3:b0:ec:93:33:da:c6:54:3b: 44:22:42:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTMzMDMxMTAvBgNVBAUTKDk2NTRBMkYwODQ1OTdBMkI5MUFDMDAyQTc2MDdFMTND MTVEMDk0OTEwHhcNMjUwNjA5MDUwNDE5WhcNMjUwNjE2MDUwNDE5WjAYMRYwFAYD VQQDEw02ODQ2NmI1My05NWZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8Dir3vHCAXD6r9QHyt8Ccx+q9sef5i4moJ1JOz15t8iEhKhYX92YCgtDtyHf dNU/25i9acfqmzGLPDuakXIPjURWU7GZaeJmMFl1HlWjSuKp8pJtckE86g9+SB+n St//zy/aEbWJHZcyIVJyl6ZwdOZDHUsokAs810beLl3l9afN4/6YCCzpt2XSmH+9 VYoEChrX/bpii5iHqdpntMNZTZwfafw2AR3ZeQ/z0nos5X6xNcBjHS7kKhj6qxtR b23Rfq9EKnn1a7dJTvvjgoO5uXOjC4qPYYYRejRShtXxmmteOuKOQDbjoQHC7F17 uirUF7kTQ6n2+6wECSrS6WZGPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPv4EW34 X5xnj5fewm6GZQQ5epSZMB8GA1UdIwQYMBaAFJZUovCEWXorkawAKnYH4TwV0JSR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzMwMy84MEJGMUE2MjNG RTAxMUVGODYzNUQ3MTJDNEY5QUUwMi9sbFNpOElSWmVpdVJyQUFxZGdmaFBCWFFs SkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xsU2k4SVJaZWl1UnJBQXFkZ2ZoUEJYUWxKRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzMwMy84MEJGMUE2MjNGRTAxMUVGODYzNUQ3MTJDNEY5QUUwMi9sbFNpOElSWmVp dVJyQUFxZGdmaFBCWFFsSkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUTTgmZFcL2VgMjDWTixHPsSF0uOpnnt7jJAZJh6hSVuC/w722ZUVt KDdMVAYf1P5A8Pf3Z8ODrS6Hg4OqlUo4KLpm0txJeiTzkzNdDpps0QVyo/3nn5NM GFXK4wWGkUvhzMiWMZyD+9ZYbyJQiBMJDVQcYXFutsfypSVUa78krj7EPCPvJmmd b7yb8lTl4TqcQpBWOQ56TpcwDagvf3sWVVVogNQiGx1OSiNHlS5S2oj/hDxb9+NM sEg0IPseleZtk2BygkptQVK+ZrSH88b0TAdjTI9gf/OA2A9RzO/ImxsKCGPD8cIv QkIciB0CgsjCwMTDsOyTM9rGVDtEIkKR -----END CERTIFICATE-----Generated at Tue Jun 10 04:49:22 2025 by rpki-client