$ rpki-client -vvf rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/lDuBQuFVPslGJaRyTlaYKhVY_pw.mft File: lDuBQuFVPslGJaRyTlaYKhVY_pw.mft (raw, json) Hash identifier: LhjFxqlkUizTVXqxgq039qK73QAhNjmV89ct2HkH2U8= Subject key identifier: B6:7A:F7:09:F1:D4:AA:68:2A:81:53:64:08:67:4D:53:20:C4:41:25 Authority key identifier: 94:3B:81:42:E1:55:3E:C9:46:25:A4:72:4E:56:98:2A:15:58:FE:9C Certificate issuer: /CN=A91582D9/serialNumber=943B8142E1553EC94625A4724E56982A1558FE9C Certificate serial: 1792 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lDuBQuFVPslGJaRyTlaYKhVY_pw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/lDuBQuFVPslGJaRyTlaYKhVY_pw.mft Manifest number: 1F8D Signing time: Fri 30 May 2025 16:46:17 +0000 Manifest this update: Fri 30 May 2025 16:46:16 +0000 Manifest next update: Fri 06 Jun 2025 16:46:16 +0000 Files and hashes: 1: lDuBQuFVPslGJaRyTlaYKhVY_pw.crl (hash: A5TtFKvs2WTzFdkTIrO+TBaciVnVVD/yu54vGpZREoI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/lDuBQuFVPslGJaRyTlaYKhVY_pw.crl rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/lDuBQuFVPslGJaRyTlaYKhVY_pw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lDuBQuFVPslGJaRyTlaYKhVY_pw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 16:46:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6034 (0x1792) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91582D9, serialNumber=943B8142E1553EC94625A4724E56982A1558FE9C Validity Not Before: May 30 16:46:16 2025 GMT Not After : Jun 6 16:46:16 2025 GMT Subject: CN=6839e0d8-6166 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:3d:9f:be:8f:d5:fd:05:32:90:40:2b:72:af: 9b:31:c3:5b:79:0d:f2:f3:26:5d:3f:35:ed:6e:4b: f7:27:d3:18:3e:97:43:c0:15:14:35:5d:87:75:30: 89:b7:dc:e5:46:09:7e:fa:07:3a:c2:67:00:7e:40: 9d:c9:9c:0c:9e:84:b3:86:e9:35:31:18:61:77:84: cc:9e:8f:6f:90:39:33:9f:ad:df:56:d1:73:06:58: 45:6d:87:bb:df:ff:38:16:55:ca:95:e8:e4:86:80: 95:a3:b8:12:96:6b:e7:ec:0f:a4:4f:d7:94:bd:d5: db:3d:27:57:d3:c1:8c:17:fb:b6:00:86:50:62:6b: eb:d5:06:4a:d5:0e:62:91:ba:df:c6:36:65:47:9f: a2:1e:59:24:41:9d:db:e6:fc:07:9b:6a:9c:19:b7: 51:7f:24:c2:80:31:02:a3:57:f8:e4:ab:e1:c9:1e: 78:9a:8b:ed:ee:99:2d:a5:ef:0e:1e:e9:da:06:d1: fa:b7:89:b7:85:20:30:02:34:dd:25:61:14:84:d2: 4f:c2:52:29:b7:b4:9e:73:e2:75:c3:e9:32:01:02: 6d:80:3a:a4:c9:d7:1f:03:14:a9:03:80:9f:7a:c5: 45:41:49:ea:d9:63:e3:32:3c:f4:80:34:3d:64:fe: 73:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:7A:F7:09:F1:D4:AA:68:2A:81:53:64:08:67:4D:53:20:C4:41:25 X509v3 Authority Key Identifier: keyid:94:3B:81:42:E1:55:3E:C9:46:25:A4:72:4E:56:98:2A:15:58:FE:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/lDuBQuFVPslGJaRyTlaYKhVY_pw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lDuBQuFVPslGJaRyTlaYKhVY_pw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/lDuBQuFVPslGJaRyTlaYKhVY_pw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:14:45:f9:e0:12:2c:81:00:1e:91:ed:97:13:e6:ac:0f:a9: 6b:2c:a5:50:7d:63:0c:f6:c7:9c:d5:71:c8:b4:4e:56:9f:38: a1:41:09:b0:1b:6d:e3:3c:46:1f:1c:61:b9:71:fe:9e:d0:54: 2e:a7:01:d5:6a:8b:7f:94:01:e2:e9:53:93:ea:47:9f:53:2e: b4:06:dc:40:a4:20:9c:ae:ff:e4:f0:1e:2e:ad:35:f4:fc:f6: 00:9f:79:a9:07:b5:cd:58:68:3d:8a:ef:6e:b6:7f:e0:6a:d3: ff:e0:b5:7b:bf:f9:e9:83:16:6c:53:e7:db:cc:7d:70:bb:3a: eb:69:11:d5:ca:3f:18:91:30:06:53:b5:04:4e:0c:6b:d8:c1: 6d:22:c3:e3:74:d3:eb:80:2a:85:ff:05:96:3c:89:77:bb:65: 91:e1:01:0b:04:f1:69:6f:6b:f9:60:7d:68:46:e6:02:13:39: a8:85:b0:2b:17:5f:43:04:61:18:c5:e7:72:da:3d:31:71:e6: 66:9d:81:f2:84:40:93:c0:7b:68:a4:f1:b0:53:ca:02:02:20: af:57:46:e6:ae:22:7e:48:c3:f0:78:ba:03:07:7b:cc:19:02: 60:43:5b:3d:e5:10:af:9f:a6:29:4f:a4:af:93:4e:64:c4:59: 57:7b:65:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF5IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgyRDkxMTAvBgNVBAUTKDk0M0I4MTQyRTE1NTNFQzk0NjI1QTQ3MjRFNTY5ODJB MTU1OEZFOUMwHhcNMjUwNTMwMTY0NjE2WhcNMjUwNjA2MTY0NjE2WjAYMRYwFAYD VQQDEw02ODM5ZTBkOC02MTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqT2fvo/V/QUykEArcq+bMcNbeQ3y8yZdPzXtbkv3J9MYPpdDwBUUNV2HdTCJ t9zlRgl++gc6wmcAfkCdyZwMnoSzhuk1MRhhd4TMno9vkDkzn63fVtFzBlhFbYe7 3/84FlXKlejkhoCVo7gSlmvn7A+kT9eUvdXbPSdX08GMF/u2AIZQYmvr1QZK1Q5i kbrfxjZlR5+iHlkkQZ3b5vwHm2qcGbdRfyTCgDECo1f45KvhyR54movt7pktpe8O HunaBtH6t4m3hSAwAjTdJWEUhNJPwlIpt7Sec+J1w+kyAQJtgDqkydcfAxSpA4Cf esVFQUnq2WPjMjz0gDQ9ZP5z7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLZ69wnx 1KpoKoFTZAhnTVMgxEElMB8GA1UdIwQYMBaAFJQ7gULhVT7JRiWkck5WmCoVWP6c MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODJEOS8wRURBNkQ1RUNE REExMUU3QkRFQThDMkJDNEY5QUUwMi9sRHVCUXVGVlBzbEdKYVJ5VGxhWUtoVllf cHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xEdUJRdUZWUHNsR0phUnlUbGFZS2hWWV9wdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODJEOS8wRURBNkQ1RUNEREExMUU3QkRFQThDMkJDNEY5QUUwMi9sRHVCUXVGVlBz bEdKYVJ5VGxhWUtoVllfcHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4FEX54BIsgQAeke2XE+asD6lrLKVQfWMM9sec1XHItE5WnzihQQmw G23jPEYfHGG5cf6e0FQupwHVaot/lAHi6VOT6kefUy60BtxApCCcrv/k8B4urTX0 /PYAn3mpB7XNWGg9iu9utn/gatP/4LV7v/npgxZsU+fbzH1wuzrraRHVyj8YkTAG U7UETgxr2MFtIsPjdNPrgCqF/wWWPIl3u2WR4QELBPFpb2v5YH1oRuYCEzmohbAr F19DBGEYxedy2j0xceZmnYHyhECTwHtopPGwU8oCAiCvV0bmriJ+SMPweLoDB3vM GQJgQ1s95RCvn6YpT6Svk05kxFlXe2Vc -----END CERTIFICATE-----Generated at Sat May 31 16:26:55 2025 by rpki-client