$ rpki-client -vvf rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft File: lDrZvGF3q4wvjoExwUpUZexClU8.mft (raw, json) Hash identifier: d+mUMDLxBj8M1frgclhC5GQNeW3/0LqQ+/8A9h29w20= Subject key identifier: 0A:BA:A7:65:F8:01:79:19:B5:A5:79:8C:31:02:6A:E9:04:CE:21:92 Authority key identifier: 94:3A:D9:BC:61:77:AB:8C:2F:8E:81:31:C1:4A:54:65:EC:42:95:4F Certificate issuer: /CN=A9158568/serialNumber=943AD9BC6177AB8C2F8E8131C14A5465EC42954F Certificate serial: 0136 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lDrZvGF3q4wvjoExwUpUZexClU8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft Manifest number: 0132 Signing time: Mon 02 Jun 2025 18:56:00 +0000 Manifest this update: Mon 02 Jun 2025 18:55:59 +0000 Manifest next update: Mon 09 Jun 2025 18:55:59 +0000 Files and hashes: 1: lDrZvGF3q4wvjoExwUpUZexClU8.crl (hash: kyj2sIdNuI1SIqUSJdPA8ZXSYRAPS0bVzSeNZsS51Hw=) 2: 203DB338782111EEAFDDBD86C4F9AE02.roa (hash: wX9s/s7jxKKJJyFHtP8kJqChB04GKqVy3xgEjOBVe9Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.crl rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lDrZvGF3q4wvjoExwUpUZexClU8.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 18:55:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 310 (0x136) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158568, serialNumber=943AD9BC6177AB8C2F8E8131C14A5465EC42954F Validity Not Before: Jun 2 18:55:59 2025 GMT Not After : Jun 9 18:55:59 2025 GMT Subject: CN=683df3bf-cff4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:98:cb:fb:52:f5:ac:97:80:f3:40:bd:3a:c4: 6a:30:d7:64:de:5e:95:42:67:62:58:e5:0e:2d:9b: a8:31:55:54:f5:27:40:e0:73:ca:65:cf:6c:23:09: 8d:41:95:6e:63:6f:8d:c1:af:14:99:ba:70:13:73: 81:3c:7d:6a:c8:94:0e:ce:9a:53:b4:aa:61:81:83: 11:b7:7e:16:4c:f7:9a:6d:7d:ec:60:a4:d7:a7:6f: d5:82:ad:ee:ea:69:cc:35:84:76:2a:08:2e:ab:d1: 21:a9:53:d2:30:f3:26:fe:c4:ff:87:7b:59:cf:ee: f2:4d:cf:58:ff:65:5d:f1:ed:c8:76:c6:da:5a:37: 99:80:38:66:16:9e:ab:e0:7b:1f:7a:34:b3:a4:5d: d1:ed:5c:e1:b4:08:24:3b:46:e7:e0:aa:65:b4:05: b4:b4:c4:22:7a:e1:90:51:e1:fe:fb:2b:63:31:1e: b6:93:79:47:bf:98:cf:04:f5:53:db:ef:de:69:39: ab:59:c4:ef:95:ff:b1:76:79:c4:4f:ff:13:9e:e3: 5e:cf:b7:76:9a:7c:3e:9f:67:3b:e0:41:09:f7:7c: a1:6f:8c:cb:ae:49:8c:6c:d0:ab:9c:4a:61:51:40: 09:a7:0b:f2:6b:de:12:5c:f9:d7:95:38:86:02:96: 6a:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:BA:A7:65:F8:01:79:19:B5:A5:79:8C:31:02:6A:E9:04:CE:21:92 X509v3 Authority Key Identifier: keyid:94:3A:D9:BC:61:77:AB:8C:2F:8E:81:31:C1:4A:54:65:EC:42:95:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lDrZvGF3q4wvjoExwUpUZexClU8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:af:0a:e3:a8:f6:1f:8b:54:4c:e3:7f:ba:46:42:a8:b6:7f: 9e:fe:3a:5c:fe:b0:0c:6f:28:01:59:9b:bb:e8:b9:d3:7c:c2: 4c:5b:09:d9:01:a9:eb:36:17:99:12:9a:21:6f:c7:19:67:22: 7c:54:c4:8f:ad:fb:60:1d:33:9f:1a:10:1a:b6:d6:f0:4f:38: 3a:64:13:86:35:3b:96:39:42:12:f1:18:71:9d:03:5b:5e:8d: 09:db:c8:c6:55:b0:1a:e0:b1:6f:af:15:89:7f:ed:ec:82:49: 37:4a:6c:56:ff:b3:9e:eb:1f:43:58:dd:68:2c:a5:ff:4a:63: 15:e4:2c:b2:7a:61:62:66:43:99:bc:a1:fa:9f:e6:ce:0b:a1: 46:0e:ad:60:a3:1e:3a:f3:f3:33:06:ea:d6:d2:8e:18:20:50: d1:e7:74:60:70:48:47:8b:99:a2:ca:cd:33:d5:e4:a9:f6:5e: ee:e4:f0:7d:75:c3:2b:ec:6a:7c:22:7e:60:b9:36:26:b3:44: 85:40:77:8a:99:85:0b:8f:f1:6d:fe:b5:35:a2:b0:4f:ab:c2: f2:1f:69:06:2c:90:a1:ea:a5:bc:d2:43:05:5a:26:a5:4a:09: bf:08:a0:4b:fd:c5:8f:1d:8c:ca:96:48:08:a2:87:d6:59:fb: cf:b3:ca:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg1NjgxMTAvBgNVBAUTKDk0M0FEOUJDNjE3N0FCOEMyRjhFODEzMUMxNEE1NDY1 RUM0Mjk1NEYwHhcNMjUwNjAyMTg1NTU5WhcNMjUwNjA5MTg1NTU5WjAYMRYwFAYD VQQDEw02ODNkZjNiZi1jZmY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyZjL+1L1rJeA80C9OsRqMNdk3l6VQmdiWOUOLZuoMVVU9SdA4HPKZc9sIwmN QZVuY2+Nwa8UmbpwE3OBPH1qyJQOzppTtKphgYMRt34WTPeabX3sYKTXp2/Vgq3u 6mnMNYR2Kgguq9EhqVPSMPMm/sT/h3tZz+7yTc9Y/2Vd8e3IdsbaWjeZgDhmFp6r 4HsfejSzpF3R7VzhtAgkO0bn4KpltAW0tMQieuGQUeH++ytjMR62k3lHv5jPBPVT 2+/eaTmrWcTvlf+xdnnET/8TnuNez7d2mnw+n2c74EEJ93yhb4zLrkmMbNCrnEph UUAJpwvya94SXPnXlTiGApZqSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAq6p2X4 AXkZtaV5jDECaukEziGSMB8GA1UdIwQYMBaAFJQ62bxhd6uML46BMcFKVGXsQpVP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODU2OC8zNjE4QUI2RTcy QTMxMUVFOTQ1NTcyMTFDNEY5QUUwMi9sRHJadkdGM3E0d3Zqb0V4d1VwVVpleENs VTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2xEclp2R0YzcTR3dmpvRXh3VXBVWmV4Q2xVOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODU2OC8zNjE4QUI2RTcyQTMxMUVFOTQ1NTcyMTFDNEY5QUUwMi9sRHJadkdGM3E0 d3Zqb0V4d1VwVVpleENsVTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/rwrjqPYfi1RM43+6RkKotn+e/jpc/rAMbygBWZu76LnTfMJMWwnZ AanrNheZEpohb8cZZyJ8VMSPrftgHTOfGhAattbwTzg6ZBOGNTuWOUIS8RhxnQNb Xo0J28jGVbAa4LFvrxWJf+3sgkk3SmxW/7Oe6x9DWN1oLKX/SmMV5CyyemFiZkOZ vKH6n+bOC6FGDq1gox468/MzBurW0o4YIFDR53RgcEhHi5miys0z1eSp9l7u5PB9 dcMr7Gp8In5guTYms0SFQHeKmYULj/Ft/rU1orBPq8LyH2kGLJCh6qW80kMFWial Sgm/CKBL/cWPHYzKlkgIoofWWfvPs8qf -----END CERTIFICATE-----Generated at Wed Jun 4 00:17:23 2025 by rpki-client