$ rpki-client -vvf rpki.apnic.net/member_repository/A9167278/2AE0AD603B3711EBA75B4D77C4F9AE02/LT7zlg0opT_PYOmNAXAy6Sjqezk.mft File: LT7zlg0opT_PYOmNAXAy6Sjqezk.mft (raw, json) Hash identifier: p0DkzSMkyWr1eGd6cPiNYAP6hz1buNFJSjgMFo89W9M= Subject key identifier: 8C:1E:0C:EC:9C:38:0F:D2:82:5C:33:D8:F6:32:5E:DC:1F:5B:DF:64 Authority key identifier: 2D:3E:F3:96:0D:28:A5:3F:CF:60:E9:8D:01:70:32:E9:28:EA:7B:39 Certificate issuer: /CN=A9167278/serialNumber=2D3EF3960D28A53FCF60E98D017032E928EA7B39 Certificate serial: 0721 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LT7zlg0opT_PYOmNAXAy6Sjqezk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167278/2AE0AD603B3711EBA75B4D77C4F9AE02/LT7zlg0opT_PYOmNAXAy6Sjqezk.mft Manifest number: 071A Signing time: Fri 30 May 2025 22:04:50 +0000 Manifest this update: Fri 30 May 2025 22:04:49 +0000 Manifest next update: Fri 06 Jun 2025 22:04:49 +0000 Files and hashes: 1: LT7zlg0opT_PYOmNAXAy6Sjqezk.crl (hash: KjdLgIHiu8n0rPS3+/pWZo+IHgx8mpsGI9I5xHZKlOc=) 2: 1C017B163B3811EBB3FC7A77C4F9AE02.roa (hash: if2Ty+xI9lsixRtkfYJ2DrsSLWOZeEaMUkbkKLpKeBo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167278/2AE0AD603B3711EBA75B4D77C4F9AE02/LT7zlg0opT_PYOmNAXAy6Sjqezk.crl rsync://rpki.apnic.net/member_repository/A9167278/2AE0AD603B3711EBA75B4D77C4F9AE02/LT7zlg0opT_PYOmNAXAy6Sjqezk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LT7zlg0opT_PYOmNAXAy6Sjqezk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:04:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1825 (0x721) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167278, serialNumber=2D3EF3960D28A53FCF60E98D017032E928EA7B39 Validity Not Before: May 30 22:04:49 2025 GMT Not After : Jun 6 22:04:49 2025 GMT Subject: CN=683a2b81-bbae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:07:86:7d:e5:d1:9d:57:99:51:5f:85:9d:3b: 0c:84:e7:be:38:5b:94:0a:f2:e1:78:30:f9:79:c5: 7a:39:e8:5c:e3:3f:94:e7:cf:3e:cf:8c:0d:44:19: 53:fa:08:85:49:5e:c6:7e:d1:7a:c6:69:f3:34:7e: ac:c0:7f:0c:cf:42:61:ab:b5:82:36:ec:8d:65:05: fe:7a:c7:10:68:58:e3:e3:29:af:7d:2a:80:90:72: 45:c6:5a:5e:64:d0:f4:1c:7b:07:af:93:a6:f7:c8: 1b:a0:d7:4a:c6:f7:f0:e2:05:0e:5e:a3:6e:84:0f: 8b:99:b9:da:cb:06:23:c9:4f:29:df:dd:2d:ff:d7: bb:d4:69:f7:42:c4:c1:16:3d:2b:fc:0f:da:a6:d0: 31:ea:1a:a5:b0:fd:4d:37:75:e5:0a:73:03:b6:15: 4b:e7:fd:4f:cb:f5:49:e5:18:c1:38:74:e7:8a:a3: 24:79:5b:ed:90:e2:d2:f0:53:f2:b2:40:9f:71:62: b2:c2:b2:b5:b1:f2:6f:7c:4e:93:26:73:64:91:d1: 21:26:21:0b:6f:01:d0:f4:a9:03:d6:18:17:b1:cf: 2f:39:e9:d8:9a:ec:99:32:10:9d:0d:5b:3e:b0:57: b2:b0:3d:3e:53:f2:60:8b:dc:2c:9f:84:41:a6:f5: a8:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:1E:0C:EC:9C:38:0F:D2:82:5C:33:D8:F6:32:5E:DC:1F:5B:DF:64 X509v3 Authority Key Identifier: keyid:2D:3E:F3:96:0D:28:A5:3F:CF:60:E9:8D:01:70:32:E9:28:EA:7B:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167278/2AE0AD603B3711EBA75B4D77C4F9AE02/LT7zlg0opT_PYOmNAXAy6Sjqezk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LT7zlg0opT_PYOmNAXAy6Sjqezk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167278/2AE0AD603B3711EBA75B4D77C4F9AE02/LT7zlg0opT_PYOmNAXAy6Sjqezk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:df:2e:70:fa:81:9d:78:e1:b5:e9:82:65:a6:ac:73:02:08: 3c:7d:af:d0:e1:be:6f:d6:18:66:24:8e:8c:ab:bf:8f:f7:53: 59:e5:f3:6a:01:57:ae:d8:64:f8:6a:ef:e7:83:3d:7d:17:78: 85:31:5e:e2:38:00:bb:2a:3c:92:13:44:38:cd:4f:e0:94:fd: b9:c7:25:6c:59:a5:76:82:c1:9a:71:e3:66:02:68:27:b8:ff: 0f:b8:00:c8:b5:70:03:4d:f7:c4:af:f7:da:d8:54:1b:aa:3d: cd:24:f4:d6:2c:af:dc:a7:6b:2a:d3:dd:fa:a0:29:ab:bf:20: f4:d0:71:e4:71:61:72:cc:5b:6d:21:b6:d8:63:da:75:11:a7: 3d:a5:28:bb:ee:10:e9:65:8e:2f:23:f8:57:be:1c:0b:d0:b1: 92:20:32:b6:92:4d:48:53:75:a4:22:f1:20:4f:3c:aa:21:e1: d5:1e:2e:6e:13:b8:74:d0:27:9a:03:ee:0f:58:fc:d2:fe:29: 57:64:c5:ef:0d:f7:7f:8a:a0:f9:73:90:a6:d1:79:0b:39:24: 55:dd:53:cf:9b:75:5e:eb:dd:85:10:c2:5f:42:b4:02:a6:ac: 4f:81:b3:32:e7:a9:12:c5:6c:39:ff:b9:ea:4b:2d:e3:5c:2f: 7a:df:58:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICByEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjcyNzgxMTAvBgNVBAUTKDJEM0VGMzk2MEQyOEE1M0ZDRjYwRTk4RDAxNzAzMkU5 MjhFQTdCMzkwHhcNMjUwNTMwMjIwNDQ5WhcNMjUwNjA2MjIwNDQ5WjAYMRYwFAYD VQQDEw02ODNhMmI4MS1iYmFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtgeGfeXRnVeZUV+FnTsMhOe+OFuUCvLheDD5ecV6Oehc4z+U588+z4wNRBlT +giFSV7GftF6xmnzNH6swH8Mz0Jhq7WCNuyNZQX+escQaFjj4ymvfSqAkHJFxlpe ZND0HHsHr5Om98gboNdKxvfw4gUOXqNuhA+LmbnaywYjyU8p390t/9e71Gn3QsTB Fj0r/A/aptAx6hqlsP1NN3XlCnMDthVL5/1Py/VJ5RjBOHTniqMkeVvtkOLS8FPy skCfcWKywrK1sfJvfE6TJnNkkdEhJiELbwHQ9KkD1hgXsc8vOenYmuyZMhCdDVs+ sFeysD0+U/Jgi9wsn4RBpvWo4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIweDOyc OA/Sglwz2PYyXtwfW99kMB8GA1UdIwQYMBaAFC0+85YNKKU/z2DpjQFwMuko6ns5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NzI3OC8yQUUwQUQ2MDNC MzcxMUVCQTc1QjRENzdDNEY5QUUwMi9MVDd6bGcwb3BUX1BZT21OQVhBeTZTanFl emsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xUN3psZzBvcFRfUFlPbU5BWEF5NlNqcWV6ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NzI3OC8yQUUwQUQ2MDNCMzcxMUVCQTc1QjRENzdDNEY5QUUwMi9MVDd6bGcwb3BU X1BZT21OQVhBeTZTanFlemsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAd3y5w+oGdeOG16YJlpqxzAgg8fa/Q4b5v1hhmJI6Mq7+P91NZ5fNq AVeu2GT4au/ngz19F3iFMV7iOAC7KjySE0Q4zU/glP25xyVsWaV2gsGaceNmAmgn uP8PuADItXADTffEr/fa2FQbqj3NJPTWLK/cp2sq0936oCmrvyD00HHkcWFyzFtt IbbYY9p1Eac9pSi77hDpZY4vI/hXvhwL0LGSIDK2kk1IU3WkIvEgTzyqIeHVHi5u E7h00CeaA+4PWPzS/ilXZMXvDfd/iqD5c5Cm0XkLOSRV3VPPm3Ve692FEMJfQrQC pqxPgbMy56kSxWw5/7nqSy3jXC9631i8 -----END CERTIFICATE-----Generated at Sat May 31 17:42:39 2025 by rpki-client