$ rpki-client -vvf rpki.apnic.net/member_repository/A9155688/9D5629A0814211EBBD8C4284C4F9AE02/luWqcIJLjRPdz-YfzJogytZeYME.mft File: luWqcIJLjRPdz-YfzJogytZeYME.mft (raw, json) Hash identifier: 7lLv1Mby4p4FB8+d2AeZZ/x5+SsvQsrGVdPjBb4Ftno= Subject key identifier: E9:9F:7F:88:A5:56:5B:33:D3:00:30:53:6C:08:C2:81:F3:C6:F4:1C Authority key identifier: 96:E5:AA:70:82:4B:8D:13:DD:CF:E6:1F:CC:9A:20:CA:D6:5E:60:C1 Certificate issuer: /CN=A9155688/serialNumber=96E5AA70824B8D13DDCFE61FCC9A20CAD65E60C1 Certificate serial: 066E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/luWqcIJLjRPdz-YfzJogytZeYME.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155688/9D5629A0814211EBBD8C4284C4F9AE02/luWqcIJLjRPdz-YfzJogytZeYME.mft Manifest number: 0666 Signing time: Fri 30 May 2025 22:39:20 +0000 Manifest this update: Fri 30 May 2025 22:39:20 +0000 Manifest next update: Fri 06 Jun 2025 22:39:20 +0000 Files and hashes: 1: luWqcIJLjRPdz-YfzJogytZeYME.crl (hash: vlScRkxWwspNDFcfmr68vn8GntfEY4maOMNDrlUFNXA=) 2: 6656B366814C11EB913AEC78C4F9AE02.roa (hash: hWmIjVl3wq2WAFI85MCQWSOZgmGgPc2bb2Ktcia7bs0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155688/9D5629A0814211EBBD8C4284C4F9AE02/luWqcIJLjRPdz-YfzJogytZeYME.crl rsync://rpki.apnic.net/member_repository/A9155688/9D5629A0814211EBBD8C4284C4F9AE02/luWqcIJLjRPdz-YfzJogytZeYME.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/luWqcIJLjRPdz-YfzJogytZeYME.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:39:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1646 (0x66e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155688, serialNumber=96E5AA70824B8D13DDCFE61FCC9A20CAD65E60C1 Validity Not Before: May 30 22:39:20 2025 GMT Not After : Jun 6 22:39:20 2025 GMT Subject: CN=683a3398-aaac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:4b:d8:44:18:1e:83:64:f6:6e:04:eb:5d:62: b2:12:39:fc:7d:81:6c:a1:0a:77:8c:53:98:3d:51: 3c:06:63:c6:37:e1:c1:1b:f0:49:0e:c7:fa:bf:79: c5:e7:48:f5:c4:fc:8e:0b:a8:54:ca:2c:d8:2e:37: 08:53:af:e2:6c:9d:3c:fd:42:f9:a7:5f:45:ac:f7: cc:28:cf:78:63:05:c8:4c:dd:86:d3:0b:2c:3a:4e: 6b:64:51:13:4c:11:9d:3e:f3:58:31:b6:2a:34:42: d9:92:4b:a1:c2:13:47:cb:3b:5a:05:eb:5c:eb:5c: 23:43:19:92:9b:56:8e:4e:df:98:1c:cc:50:47:d3: 12:cc:ce:c1:13:01:15:23:dd:59:60:f0:9e:92:c7: d5:2f:30:26:1d:55:de:e3:f9:41:85:50:29:e4:43: 1d:41:07:e2:e3:6a:26:65:c1:35:b1:ed:cb:4a:71: 77:fb:6b:80:61:c2:50:49:24:74:a4:44:ff:db:a6: 1d:37:5d:2d:2d:c2:9f:29:c5:62:b1:3e:7b:d6:32: d0:82:1e:54:17:ac:75:7b:54:58:a2:84:36:e6:d6: f5:8e:db:d1:42:dc:99:42:ce:1a:1e:af:ae:9f:19: 23:77:8b:f8:28:61:02:07:ad:a1:06:b7:c7:f1:df: 6f:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:9F:7F:88:A5:56:5B:33:D3:00:30:53:6C:08:C2:81:F3:C6:F4:1C X509v3 Authority Key Identifier: keyid:96:E5:AA:70:82:4B:8D:13:DD:CF:E6:1F:CC:9A:20:CA:D6:5E:60:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155688/9D5629A0814211EBBD8C4284C4F9AE02/luWqcIJLjRPdz-YfzJogytZeYME.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/luWqcIJLjRPdz-YfzJogytZeYME.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155688/9D5629A0814211EBBD8C4284C4F9AE02/luWqcIJLjRPdz-YfzJogytZeYME.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:92:86:d1:31:1f:da:f4:04:d2:14:18:4f:df:2f:53:ef:aa: 07:73:51:4f:1c:d7:a0:08:c0:f4:81:9f:03:b8:f1:ad:ee:b5: 4b:c1:20:20:a6:5a:13:f6:fc:bc:bc:47:65:e4:67:2f:72:95: 23:5f:1a:6d:88:3d:20:b8:ba:7a:21:fe:21:31:92:47:d4:92: e9:0e:63:99:cc:dc:00:f2:51:8d:da:4c:4b:20:41:91:ab:41: d2:d9:2f:8e:86:96:37:5d:23:38:de:5d:c3:6b:77:56:62:9e: 41:aa:b5:6b:d2:1f:de:83:6c:f5:96:ab:23:b2:6e:3b:09:6b: d0:31:99:b1:95:95:5d:cd:e4:26:6b:f8:20:18:d0:82:bf:46: ca:7a:a5:c2:50:56:a3:26:17:75:10:19:a8:f0:56:0c:3f:f1: da:ed:58:d4:e9:3b:6a:7d:7a:b6:b0:24:23:63:e3:dd:b1:d2: d2:20:ef:90:ec:e8:2d:8e:89:7d:1b:51:35:5c:b5:e4:ce:73: e2:29:f2:2a:f2:a2:18:9f:d5:66:b8:5c:dc:38:59:78:d9:a8: 31:e6:4f:2e:de:04:72:6e:52:ef:99:ab:c8:6d:cf:6f:7e:a7: 41:0d:1e:52:30:6c:80:87:68:14:a9:6c:f5:3b:94:c1:79:3e: c8:cd:2a:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBm4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU2ODgxMTAvBgNVBAUTKDk2RTVBQTcwODI0QjhEMTNERENGRTYxRkNDOUEyMENB RDY1RTYwQzEwHhcNMjUwNTMwMjIzOTIwWhcNMjUwNjA2MjIzOTIwWjAYMRYwFAYD VQQDEw02ODNhMzM5OC1hYWFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvkvYRBgeg2T2bgTrXWKyEjn8fYFsoQp3jFOYPVE8BmPGN+HBG/BJDsf6v3nF 50j1xPyOC6hUyizYLjcIU6/ibJ08/UL5p19FrPfMKM94YwXITN2G0wssOk5rZFET TBGdPvNYMbYqNELZkkuhwhNHyztaBetc61wjQxmSm1aOTt+YHMxQR9MSzM7BEwEV I91ZYPCeksfVLzAmHVXe4/lBhVAp5EMdQQfi42omZcE1se3LSnF3+2uAYcJQSSR0 pET/26YdN10tLcKfKcVisT571jLQgh5UF6x1e1RYooQ25tb1jtvRQtyZQs4aHq+u nxkjd4v4KGECB62hBrfH8d9vpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOmff4il Vlsz0wAwU2wIwoHzxvQcMB8GA1UdIwQYMBaAFJblqnCCS40T3c/mH8yaIMrWXmDB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTY4OC85RDU2MjlBMDgx NDIxMUVCQkQ4QzQyODRDNEY5QUUwMi9sdVdxY0lKTGpSUGR6LVlmekpvZ3l0WmVZ TUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x1V3FjSUpMalJQZHotWWZ6Sm9neXRaZVlNRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTY4OC85RDU2MjlBMDgxNDIxMUVCQkQ4QzQyODRDNEY5QUUwMi9sdVdxY0lKTGpS UGR6LVlmekpvZ3l0WmVZTUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEkobRMR/a9ATSFBhP3y9T76oHc1FPHNegCMD0gZ8DuPGt7rVLwSAg ploT9vy8vEdl5GcvcpUjXxptiD0guLp6If4hMZJH1JLpDmOZzNwA8lGN2kxLIEGR q0HS2S+OhpY3XSM43l3Da3dWYp5BqrVr0h/eg2z1lqsjsm47CWvQMZmxlZVdzeQm a/ggGNCCv0bKeqXCUFajJhd1EBmo8FYMP/Ha7VjU6TtqfXq2sCQjY+PdsdLSIO+Q 7Ogtjol9G1E1XLXkznPiKfIq8qIYn9VmuFzcOFl42agx5k8u3gRyblLvmavIbc9v fqdBDR5SMGyAh2gUqWz1O5TBeT7IzSpM -----END CERTIFICATE-----Generated at Sat May 31 17:41:03 2025 by rpki-client