$ rpki-client -vvf rpki.apnic.net/member_repository/A916B7B2/0E632194FB7B11ECA87A872EC4F9AE02/lRKEJmSsUb9nhVvG5PRr41UaTaM.mft File: lRKEJmSsUb9nhVvG5PRr41UaTaM.mft (raw, json) Hash identifier: z0q/ridZv8CH5JSBFHHj4sJK+6QmRBS6dg+pLpthY5Y= Subject key identifier: F9:40:0C:BB:DC:63:E2:20:D3:43:E6:00:27:A9:5B:42:6D:5D:08:CE Authority key identifier: 95:12:84:26:64:AC:51:BF:67:85:5B:C6:E4:F4:6B:E3:55:1A:4D:A3 Certificate issuer: /CN=A916B7B2/serialNumber=9512842664AC51BF67855BC6E4F46BE3551A4DA3 Certificate serial: 02B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRKEJmSsUb9nhVvG5PRr41UaTaM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B7B2/0E632194FB7B11ECA87A872EC4F9AE02/lRKEJmSsUb9nhVvG5PRr41UaTaM.mft Manifest number: 02AD Signing time: Sat 31 May 2025 01:41:08 +0000 Manifest this update: Sat 31 May 2025 01:41:07 +0000 Manifest next update: Sat 07 Jun 2025 01:41:07 +0000 Files and hashes: 1: lRKEJmSsUb9nhVvG5PRr41UaTaM.crl (hash: TYs+82ZZ1sGXelra18FR3l5dzZo8hs/AWX91jG5OyOY=) 2: 2A4EA10EFB7F11EC8FB58E4AC4F9AE02.roa (hash: ysruRwci+2YdWcWGjjenGU03TfndDBIRkaEgaw2RJEI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B7B2/0E632194FB7B11ECA87A872EC4F9AE02/lRKEJmSsUb9nhVvG5PRr41UaTaM.crl rsync://rpki.apnic.net/member_repository/A916B7B2/0E632194FB7B11ECA87A872EC4F9AE02/lRKEJmSsUb9nhVvG5PRr41UaTaM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRKEJmSsUb9nhVvG5PRr41UaTaM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:41:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 692 (0x2b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B7B2, serialNumber=9512842664AC51BF67855BC6E4F46BE3551A4DA3 Validity Not Before: May 31 01:41:07 2025 GMT Not After : Jun 7 01:41:07 2025 GMT Subject: CN=683a5e34-6f03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:64:d1:4a:8a:6b:1a:23:07:be:64:85:dc:a0: fd:b3:8f:06:72:ae:2e:0c:80:03:70:1d:59:f0:62: f4:fc:4e:60:23:2d:52:04:a2:ba:13:a2:fe:dc:d1: ad:8a:e3:4b:46:6e:f1:ce:02:5a:29:a7:65:ff:3c: 5c:e6:42:e5:ab:05:55:b6:12:4f:72:c0:3a:8f:eb: 11:2c:a4:2f:19:d8:67:56:da:62:2d:d8:18:e3:cc: 1e:6d:8c:75:78:c0:c8:8d:29:5b:f7:4f:83:e8:66: 53:ff:1f:37:d0:83:f3:c1:1c:36:48:50:c2:d9:90: 19:69:c7:aa:15:a1:5d:8e:52:50:6a:eb:9a:cc:62: bd:79:14:26:0d:d6:c5:de:df:5e:e6:9e:6e:89:4e: 87:93:3d:58:94:26:08:fb:6d:23:be:7b:8e:03:d2: a4:3b:db:a1:9e:4b:25:84:f5:40:52:84:59:f2:c7: e6:1e:a3:ef:42:c7:ca:23:f3:77:3e:32:1b:58:30: d4:2b:0b:b9:36:72:c3:db:b4:3b:62:22:a4:62:99: a2:02:34:6f:10:dd:41:70:06:78:19:ad:9d:00:3f: a8:a3:26:51:bc:b2:34:15:eb:e6:14:33:4f:83:9d: fe:aa:a5:5a:23:2b:2d:97:b5:a4:da:51:de:9e:52: 61:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:40:0C:BB:DC:63:E2:20:D3:43:E6:00:27:A9:5B:42:6D:5D:08:CE X509v3 Authority Key Identifier: keyid:95:12:84:26:64:AC:51:BF:67:85:5B:C6:E4:F4:6B:E3:55:1A:4D:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B7B2/0E632194FB7B11ECA87A872EC4F9AE02/lRKEJmSsUb9nhVvG5PRr41UaTaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRKEJmSsUb9nhVvG5PRr41UaTaM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B7B2/0E632194FB7B11ECA87A872EC4F9AE02/lRKEJmSsUb9nhVvG5PRr41UaTaM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:c9:f9:3b:48:91:1e:d7:6a:01:aa:8f:c4:50:44:77:4d:60: 2e:90:22:cc:74:30:1f:8d:b6:22:3f:f6:b9:09:49:d4:83:46: 44:b6:ff:2d:85:e8:97:b5:14:9e:c6:76:08:74:86:1e:8b:d5: 8b:5c:d7:9e:3d:55:b1:3e:f4:44:80:04:d4:a6:8d:4f:fd:a3: 34:a1:68:fd:a2:c4:5b:6a:32:18:c7:91:4e:c2:68:85:a5:4f: db:d3:5b:21:e3:39:2a:4a:71:f9:0d:94:f2:63:cc:4e:11:fe: 26:b9:76:31:f3:87:8d:65:97:c8:58:3a:46:b5:86:57:15:f1: b2:55:13:40:66:75:cc:36:d7:63:0e:a9:c1:31:b1:64:49:2e: da:cf:9c:66:dd:44:8b:e4:1f:96:2c:74:d8:7c:c0:01:63:21: 3d:b7:17:20:33:74:40:8c:df:d8:89:d4:c9:55:16:c5:cd:6b: e7:28:3e:a7:de:2e:93:7b:42:fa:33:ba:9f:ea:f5:af:bf:39: db:32:0f:dd:5e:31:76:ac:ae:80:2f:2b:f9:20:27:c7:a8:4d: 7e:18:2d:2e:b4:47:f2:20:93:c2:36:87:bf:a5:d3:cf:6e:54: df:69:4f:51:9a:3e:c7:e8:d5:35:fa:b1:0e:cb:a9:25:20:14: ab:98:90:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI3QjIxMTAvBgNVBAUTKDk1MTI4NDI2NjRBQzUxQkY2Nzg1NUJDNkU0RjQ2QkUz NTUxQTREQTMwHhcNMjUwNTMxMDE0MTA3WhcNMjUwNjA3MDE0MTA3WjAYMRYwFAYD VQQDEw02ODNhNWUzNC02ZjAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArmTRSoprGiMHvmSF3KD9s48Gcq4uDIADcB1Z8GL0/E5gIy1SBKK6E6L+3NGt iuNLRm7xzgJaKadl/zxc5kLlqwVVthJPcsA6j+sRLKQvGdhnVtpiLdgY48webYx1 eMDIjSlb90+D6GZT/x830IPzwRw2SFDC2ZAZaceqFaFdjlJQauuazGK9eRQmDdbF 3t9e5p5uiU6Hkz1YlCYI+20jvnuOA9KkO9uhnkslhPVAUoRZ8sfmHqPvQsfKI/N3 PjIbWDDUKwu5NnLD27Q7YiKkYpmiAjRvEN1BcAZ4Ga2dAD+ooyZRvLI0FevmFDNP g53+qqVaIystl7Wk2lHenlJhCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPlADLvc Y+Ig00PmACepW0JtXQjOMB8GA1UdIwQYMBaAFJUShCZkrFG/Z4VbxuT0a+NVGk2j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjdCMi8wRTYzMjE5NEZC N0IxMUVDQTg3QTg3MkVDNEY5QUUwMi9sUktFSm1Tc1ViOW5oVnZHNVBScjQxVWFU YU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xSS0VKbVNzVWI5bmhWdkc1UFJyNDFVYVRhTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjdCMi8wRTYzMjE5NEZCN0IxMUVDQTg3QTg3MkVDNEY5QUUwMi9sUktFSm1Tc1Vi OW5oVnZHNVBScjQxVWFUYU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhyfk7SJEe12oBqo/EUER3TWAukCLMdDAfjbYiP/a5CUnUg0ZEtv8t heiXtRSexnYIdIYei9WLXNeePVWxPvREgATUpo1P/aM0oWj9osRbajIYx5FOwmiF pU/b01sh4zkqSnH5DZTyY8xOEf4muXYx84eNZZfIWDpGtYZXFfGyVRNAZnXMNtdj DqnBMbFkSS7az5xm3USL5B+WLHTYfMABYyE9txcgM3RAjN/YidTJVRbFzWvnKD6n 3i6Te0L6M7qf6vWvvznbMg/dXjF2rK6ALyv5ICfHqE1+GC0utEfyIJPCNoe/pdPP blTfaU9Rmj7H6NU1+rEOy6klIBSrmJB5 -----END CERTIFICATE-----Generated at Sat May 31 16:35:58 2025 by rpki-client