$ rpki-client -vvf rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.mft File: LzabRI0hcVlrosk82-JY6vMxdZQ.mft (raw, json) Hash identifier: zZIj6AbEw23Yld5ooSSYZV8aYAhnD5QpjsSvQxrnyrk= Subject key identifier: 98:CF:73:42:EA:70:A9:EA:2D:55:61:8A:2B:F4:43:D0:D7:4F:90:3D Authority key identifier: 2F:36:9B:44:8D:21:71:59:6B:A2:C9:3C:DB:E2:58:EA:F3:31:75:94 Certificate issuer: /CN=A9161A5A/serialNumber=2F369B448D2171596BA2C93CDBE258EAF3317594 Certificate serial: 06B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LzabRI0hcVlrosk82-JY6vMxdZQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.mft Manifest number: 06AF Signing time: Fri 30 May 2025 22:23:34 +0000 Manifest this update: Fri 30 May 2025 22:23:33 +0000 Manifest next update: Fri 06 Jun 2025 22:23:33 +0000 Files and hashes: 1: LzabRI0hcVlrosk82-JY6vMxdZQ.crl (hash: qHax2qpMeQ1U+BCGhka2FPP+XEsabcr+8qjzZ5W24Tg=) 2: 79D611D265E711EBB6FD8A0DC4F9AE02.roa (hash: 8jITrnqODr3hbw+6QboJeBK8U7SJ4xuwPGHj3X5tTD4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.crl rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LzabRI0hcVlrosk82-JY6vMxdZQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:23:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1719 (0x6b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161A5A, serialNumber=2F369B448D2171596BA2C93CDBE258EAF3317594 Validity Not Before: May 30 22:23:33 2025 GMT Not After : Jun 6 22:23:33 2025 GMT Subject: CN=683a2fe5-7e32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:06:70:e8:83:ac:fc:22:06:c4:c5:c6:05:56: 69:47:9f:d0:aa:0e:36:0b:bf:aa:86:f3:a7:ff:a9: 59:00:ee:6c:00:34:67:a7:c1:af:77:26:58:cb:65: 05:01:e4:e8:cd:3e:30:01:f2:fb:0f:dc:cc:76:24: 7f:15:bf:dd:9e:18:b2:53:65:41:88:bd:95:64:90: 27:c6:8b:d2:8e:b8:cd:f2:15:54:fe:dc:51:7e:16: 1e:5b:a1:b3:14:3f:22:e7:77:e1:fa:82:b5:da:a1: 81:bc:44:92:64:7a:1c:8b:21:79:7f:46:f3:9c:7a: 3e:38:18:81:a6:aa:ed:c6:0a:9c:a5:9c:e8:11:43: 4b:c9:2d:98:e0:57:fe:17:e7:6c:93:a4:a4:b6:dd: ce:1b:f8:df:0d:2c:3d:dc:d0:22:9b:e2:cd:b6:d8: f0:71:46:7d:5a:21:5c:bd:4b:29:ef:2d:fc:52:e0: 8d:1e:02:c2:1f:1a:35:9f:18:ce:4a:06:1d:ec:f8: 47:b5:da:b9:f6:f7:a8:5f:ab:58:27:24:e0:2b:ff: 75:57:ba:7d:2b:0f:7e:57:6a:b8:c0:3e:af:1f:06: ac:e6:89:59:41:f1:2a:93:0b:f2:fc:2a:b1:59:6e: 5c:f8:04:45:a7:48:3d:95:83:9c:ec:ce:a3:ef:85: 07:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:CF:73:42:EA:70:A9:EA:2D:55:61:8A:2B:F4:43:D0:D7:4F:90:3D X509v3 Authority Key Identifier: keyid:2F:36:9B:44:8D:21:71:59:6B:A2:C9:3C:DB:E2:58:EA:F3:31:75:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LzabRI0hcVlrosk82-JY6vMxdZQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:39:f0:6c:30:b8:5f:98:81:37:b7:1a:7e:62:ea:5e:92:31: 29:3e:9b:23:bf:0f:54:4b:24:6f:47:6a:e7:77:64:56:8c:13: 8c:13:3f:d4:23:cc:ae:bd:86:d9:43:6c:4f:b5:91:8d:f4:13: 94:de:a9:e9:a2:37:8b:d7:26:81:88:0a:23:df:f0:2a:7d:ef: 01:d8:69:42:35:09:63:96:5b:b7:80:34:3d:76:2f:b8:71:38: ba:e1:81:63:e3:b9:74:7a:5c:83:b1:7f:8e:16:5a:be:d5:2f: 09:f6:00:d2:43:7b:fc:e1:44:f2:a9:32:74:5e:74:6c:92:24: bb:0f:72:68:a8:f5:aa:c1:53:38:8b:f6:26:71:7b:01:28:ce: fc:50:03:10:8d:02:7e:02:1e:fc:26:a3:02:d9:bd:49:6f:11: 60:7e:8f:92:a6:9d:ea:ab:f0:92:83:ee:22:c2:e1:04:ec:18: bc:1b:26:a0:6b:61:29:9e:5f:88:f3:90:3f:98:65:bd:57:dc: 77:24:4f:77:be:d1:77:e0:b5:23:3f:96:b4:a7:43:c2:9b:4d: 8f:0c:03:ce:9c:83:c4:09:9d:1c:5b:fa:a4:ed:63:47:63:c2: 91:82:8f:e0:36:a6:4f:d1:72:ce:f8:da:74:f6:8f:15:91:7a: 44:28:9f:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjFBNUExMTAvBgNVBAUTKDJGMzY5QjQ0OEQyMTcxNTk2QkEyQzkzQ0RCRTI1OEVB RjMzMTc1OTQwHhcNMjUwNTMwMjIyMzMzWhcNMjUwNjA2MjIyMzMzWjAYMRYwFAYD VQQDEw02ODNhMmZlNS03ZTMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqQZw6IOs/CIGxMXGBVZpR5/Qqg42C7+qhvOn/6lZAO5sADRnp8GvdyZYy2UF AeTozT4wAfL7D9zMdiR/Fb/dnhiyU2VBiL2VZJAnxovSjrjN8hVU/txRfhYeW6Gz FD8i53fh+oK12qGBvESSZHociyF5f0bznHo+OBiBpqrtxgqcpZzoEUNLyS2Y4Ff+ F+dsk6Sktt3OG/jfDSw93NAim+LNttjwcUZ9WiFcvUsp7y38UuCNHgLCHxo1nxjO SgYd7PhHtdq59veoX6tYJyTgK/91V7p9Kw9+V2q4wD6vHwas5olZQfEqkwvy/Cqx WW5c+ARFp0g9lYOc7M6j74UHLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJjPc0Lq cKnqLVVhiiv0Q9DXT5A9MB8GA1UdIwQYMBaAFC82m0SNIXFZa6LJPNviWOrzMXWU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MUE1QS9COEJCNTY4RTY1 RTUxMUVCQTI1RjkyMEJDNEY5QUUwMi9MemFiUkkwaGNWbHJvc2s4Mi1KWTZ2TXhk WlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0x6YWJSSTBoY1Zscm9zazgyLUpZNnZNeGRaUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MUE1QS9COEJCNTY4RTY1RTUxMUVCQTI1RjkyMEJDNEY5QUUwMi9MemFiUkkwaGNW bHJvc2s4Mi1KWTZ2TXhkWlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4OfBsMLhfmIE3txp+YupekjEpPpsjvw9USyRvR2rnd2RWjBOMEz/U I8yuvYbZQ2xPtZGN9BOU3qnpojeL1yaBiAoj3/Aqfe8B2GlCNQljllu3gDQ9di+4 cTi64YFj47l0elyDsX+OFlq+1S8J9gDSQ3v84UTyqTJ0XnRskiS7D3JoqPWqwVM4 i/YmcXsBKM78UAMQjQJ+Ah78JqMC2b1JbxFgfo+Spp3qq/CSg+4iwuEE7Bi8Gyag a2Epnl+I85A/mGW9V9x3JE93vtF34LUjP5a0p0PCm02PDAPOnIPECZ0cW/qk7WNH Y8KRgo/gNqZP0XLO+Np09o8VkXpEKJ+x -----END CERTIFICATE-----Generated at Sat May 31 17:47:16 2025 by rpki-client