$ rpki-client -vvf rpki.apnic.net/member_repository/A915D55E/62A5EB6A1D5B11EB83AC871AC4F9AE02/L1yb73Dl0CO3HEbLZs_iof20g1s.mft File: L1yb73Dl0CO3HEbLZs_iof20g1s.mft (raw, json) Hash identifier: V/bY8cW8n/4ahvxZd1lPGz532GxJvsKD5PHfa0ln1v4= Subject key identifier: 0E:42:55:24:97:74:87:EA:5E:8A:0D:0E:AA:AA:84:34:F9:E2:F2:CC Authority key identifier: 2F:5C:9B:EF:70:E5:D0:23:B7:1C:46:CB:66:CF:E2:A1:FD:B4:83:5B Certificate issuer: /CN=A915D55E/serialNumber=2F5C9BEF70E5D023B71C46CB66CFE2A1FDB4835B Certificate serial: 0766 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L1yb73Dl0CO3HEbLZs_iof20g1s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D55E/62A5EB6A1D5B11EB83AC871AC4F9AE02/L1yb73Dl0CO3HEbLZs_iof20g1s.mft Manifest number: 0761 Signing time: Fri 30 May 2025 21:48:36 +0000 Manifest this update: Fri 30 May 2025 21:48:36 +0000 Manifest next update: Fri 06 Jun 2025 21:48:36 +0000 Files and hashes: 1: L1yb73Dl0CO3HEbLZs_iof20g1s.crl (hash: UPBP1DsKMyJ/LsfT1CoFCTQPS/hkmjZ6dv687JOwK4w=) 2: 2323F9621D5D11EBA3A7E71CC4F9AE02.roa (hash: 7aqFTC0pvymz2qNJgMgOiSvmjJnWEvFpbf7HqEGVxms=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D55E/62A5EB6A1D5B11EB83AC871AC4F9AE02/L1yb73Dl0CO3HEbLZs_iof20g1s.crl rsync://rpki.apnic.net/member_repository/A915D55E/62A5EB6A1D5B11EB83AC871AC4F9AE02/L1yb73Dl0CO3HEbLZs_iof20g1s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L1yb73Dl0CO3HEbLZs_iof20g1s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:48:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1894 (0x766) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D55E, serialNumber=2F5C9BEF70E5D023B71C46CB66CFE2A1FDB4835B Validity Not Before: May 30 21:48:36 2025 GMT Not After : Jun 6 21:48:36 2025 GMT Subject: CN=683a27b4-4206 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:e7:77:16:69:55:a4:14:a1:bd:33:b0:b5:d6: a6:9d:91:45:ee:92:c6:4d:96:d7:e1:18:dd:aa:28: 1d:6a:c1:5a:17:de:1c:e7:c5:90:3d:f7:0b:19:d7: 77:c4:35:cf:8a:fa:6e:40:b1:5f:8d:86:dc:10:64: a0:3b:36:a6:21:95:f2:40:88:2a:02:94:49:23:a6: 9d:70:4c:d7:da:09:c7:c6:e5:77:92:1c:1d:b4:64: e0:ad:1d:bd:02:92:b2:d0:c3:87:01:c5:33:73:d8: 37:33:49:8b:a2:71:a5:e3:6d:86:aa:94:dd:f6:02: da:05:e1:e2:b4:e6:aa:ac:c1:cf:ba:d6:e6:37:47: 5b:db:76:1c:2e:3d:46:44:ce:2e:95:5e:d2:00:4e: 8b:f6:38:9c:c9:bb:97:18:da:21:ba:ea:68:89:ec: 26:39:c5:73:ec:bb:7f:e5:6d:10:37:f9:79:d7:37: d4:49:7a:fb:b6:1a:20:ae:d7:4e:e1:5b:d4:d0:9b: c4:f7:23:34:a4:d7:27:8a:d2:12:fe:2f:a0:07:f2: 3b:39:99:4b:c0:8d:35:59:b3:1f:31:16:96:39:f5: c6:d2:86:18:25:70:26:d5:f9:85:8c:5c:40:38:65: 37:2e:a6:f5:e7:23:2c:de:ec:28:ed:6b:b9:50:70: 81:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:42:55:24:97:74:87:EA:5E:8A:0D:0E:AA:AA:84:34:F9:E2:F2:CC X509v3 Authority Key Identifier: keyid:2F:5C:9B:EF:70:E5:D0:23:B7:1C:46:CB:66:CF:E2:A1:FD:B4:83:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D55E/62A5EB6A1D5B11EB83AC871AC4F9AE02/L1yb73Dl0CO3HEbLZs_iof20g1s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L1yb73Dl0CO3HEbLZs_iof20g1s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D55E/62A5EB6A1D5B11EB83AC871AC4F9AE02/L1yb73Dl0CO3HEbLZs_iof20g1s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:bf:68:3a:d8:2d:17:12:3a:d9:f1:df:17:51:ee:a2:fd:8e: 07:d4:ea:6f:f9:5f:70:f6:2d:4d:a1:04:32:88:42:87:81:a4: c8:14:8d:b2:ed:cd:86:d6:3b:28:c8:a5:3a:eb:6f:92:cf:63: 61:93:1f:c4:b4:49:e0:bf:f0:21:b7:85:8c:bc:44:dd:7d:03: aa:7a:7c:1b:bb:75:65:e8:32:4d:0f:5d:9f:ed:5f:4d:f8:dd: 74:25:e3:1f:03:59:f6:5a:21:3c:18:e6:22:49:11:d2:04:40: 8d:28:fd:04:5c:cc:9b:1d:00:69:a4:82:a4:6c:17:a2:24:64: 94:6d:e6:9c:52:c6:18:d2:50:95:41:90:cf:b0:ec:1d:69:b6: d7:01:ba:c6:bf:77:b2:d0:11:11:80:a9:ea:b6:a6:da:48:2b: dd:f9:e1:05:1e:26:24:6c:74:24:ae:9f:43:c5:14:a1:20:43: cd:7e:40:36:5f:00:06:de:30:e3:9d:31:af:15:ed:5d:94:1a: d2:3c:94:a1:97:e5:d1:37:46:3b:2f:18:d7:13:5a:74:0e:78: 68:3b:4e:37:29:29:88:93:14:3a:2f:80:e6:44:34:a7:5c:c9: f2:a8:12:ed:9b:01:17:e5:57:ab:62:d3:e8:1c:0e:f8:2d:e6: d7:31:ab:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB2YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQ1NUUxMTAvBgNVBAUTKDJGNUM5QkVGNzBFNUQwMjNCNzFDNDZDQjY2Q0ZFMkEx RkRCNDgzNUIwHhcNMjUwNTMwMjE0ODM2WhcNMjUwNjA2MjE0ODM2WjAYMRYwFAYD VQQDEw02ODNhMjdiNC00MjA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ed3FmlVpBShvTOwtdamnZFF7pLGTZbX4RjdqigdasFaF94c58WQPfcLGdd3 xDXPivpuQLFfjYbcEGSgOzamIZXyQIgqApRJI6adcEzX2gnHxuV3khwdtGTgrR29 ApKy0MOHAcUzc9g3M0mLonGl422GqpTd9gLaBeHitOaqrMHPutbmN0db23YcLj1G RM4ulV7SAE6L9jicybuXGNohuupoiewmOcVz7Lt/5W0QN/l51zfUSXr7thogrtdO 4VvU0JvE9yM0pNcnitIS/i+gB/I7OZlLwI01WbMfMRaWOfXG0oYYJXAm1fmFjFxA OGU3Lqb15yMs3uwo7Wu5UHCBsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA5CVSSX dIfqXooNDqqqhDT54vLMMB8GA1UdIwQYMBaAFC9cm+9w5dAjtxxGy2bP4qH9tINb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDU1RS82MkE1RUI2QTFE NUIxMUVCODNBQzg3MUFDNEY5QUUwMi9MMXliNzNEbDBDTzNIRWJMWnNfaW9mMjBn MXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0wxeWI3M0RsMENPM0hFYkxac19pb2YyMGcxcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RDU1RS82MkE1RUI2QTFENUIxMUVCODNBQzg3MUFDNEY5QUUwMi9MMXliNzNEbDBD TzNIRWJMWnNfaW9mMjBnMXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPv2g62C0XEjrZ8d8XUe6i/Y4H1Opv+V9w9i1NoQQyiEKHgaTIFI2y 7c2G1jsoyKU662+Sz2Nhkx/EtEngv/Aht4WMvETdfQOqenwbu3Vl6DJND12f7V9N +N10JeMfA1n2WiE8GOYiSRHSBECNKP0EXMybHQBppIKkbBeiJGSUbeacUsYY0lCV QZDPsOwdabbXAbrGv3ey0BERgKnqtqbaSCvd+eEFHiYkbHQkrp9DxRShIEPNfkA2 XwAG3jDjnTGvFe1dlBrSPJShl+XRN0Y7LxjXE1p0DnhoO043KSmIkxQ6L4DmRDSn XMnyqBLtmwEX5VerYtPoHA74LebXMas7 -----END CERTIFICATE-----Generated at Sat May 31 16:45:40 2025 by rpki-client