$ rpki-client -vvf rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft File: lCJM-heqoN5UOrYQifwdOdGZDj4.mft (raw, json) Hash identifier: ot2d+PbXZFfkGx1FpQDAueGWOk3ijXseGyZ5hHBdV6w= Subject key identifier: B3:F2:38:19:CD:6C:3C:B6:9E:02:9E:15:97:C0:52:27:5B:DA:83:EA Authority key identifier: 94:22:4C:FA:17:AA:A0:DE:54:3A:B6:10:89:FC:1D:39:D1:99:0E:3E Certificate issuer: /CN=A918B936/serialNumber=94224CFA17AAA0DE543AB61089FC1D39D1990E3E Certificate serial: 2106 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lCJM-heqoN5UOrYQifwdOdGZDj4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft Manifest number: 2106 Signing time: Fri 30 May 2025 16:07:23 +0000 Manifest this update: Fri 30 May 2025 16:07:22 +0000 Manifest next update: Fri 06 Jun 2025 16:07:22 +0000 Files and hashes: 1: lCJM-heqoN5UOrYQifwdOdGZDj4.crl (hash: CCk6r15sijXmEZqeJOmmcbjy23MKdllTZgTiYE+dtlk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.crl rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lCJM-heqoN5UOrYQifwdOdGZDj4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 16:07:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8454 (0x2106) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B936, serialNumber=94224CFA17AAA0DE543AB61089FC1D39D1990E3E Validity Not Before: May 30 16:07:22 2025 GMT Not After : Jun 6 16:07:22 2025 GMT Subject: CN=6839d7bb-1d95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:48:85:1e:4b:59:41:e1:e5:a6:9f:e3:b6:02: 9c:d6:54:05:a9:8e:8a:6e:f5:28:8d:5a:8e:4b:7b: b3:aa:84:b8:85:8f:e8:67:5b:78:ed:a3:d6:f3:ff: 20:69:e3:81:d4:83:a0:b2:ba:dc:73:f8:10:a4:52: 7f:6c:92:97:8e:37:b5:81:27:51:1c:a6:40:45:4a: 94:e5:5b:76:d8:f9:31:fc:02:90:c8:ff:4a:11:80: 0e:06:47:28:be:3e:8b:3e:1d:0a:0d:67:9d:09:90: 7d:a2:a4:17:07:e1:07:16:ac:4e:3d:e1:1a:48:ce: 54:7f:a2:3f:e1:de:6a:62:f0:89:66:ad:66:e6:67: c8:10:c6:19:37:ac:3e:f3:f0:e1:e5:97:d3:c5:04: e3:cf:bf:15:a3:23:69:aa:db:cb:50:a4:33:58:57: b3:15:1c:a3:34:14:43:26:b3:3a:4c:b1:b8:8a:b7: 8c:27:df:43:69:31:ee:38:ca:bf:51:00:34:9d:ff: cb:b1:44:f4:b5:78:fe:78:4f:f7:2d:02:73:29:fa: ad:47:9b:9f:e4:86:18:3e:7e:56:21:cf:e9:36:b0: 7f:2c:b2:60:e6:b8:4c:44:5d:a6:5a:f4:96:4d:6e: 21:0e:a9:53:1f:33:cb:31:26:00:5f:18:c0:4e:bb: b6:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:F2:38:19:CD:6C:3C:B6:9E:02:9E:15:97:C0:52:27:5B:DA:83:EA X509v3 Authority Key Identifier: keyid:94:22:4C:FA:17:AA:A0:DE:54:3A:B6:10:89:FC:1D:39:D1:99:0E:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lCJM-heqoN5UOrYQifwdOdGZDj4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:97:ed:06:b0:f0:07:3a:9a:ee:de:a9:bc:5d:44:3a:13:c6: 97:1c:78:72:84:d3:b5:b4:5d:19:e7:03:a2:48:cb:dc:3e:70: 72:e5:43:0d:21:96:a5:c6:03:00:17:87:c0:8f:20:94:38:c1: d2:c6:35:ab:d4:c4:36:54:b7:84:c9:bd:90:fb:a8:5a:c4:a7: 25:2e:a2:f0:96:41:af:64:22:ba:bc:3e:64:1a:e0:a2:3f:74: 66:7d:35:a3:68:f0:67:a9:69:84:0a:15:33:4f:61:83:9a:77: 76:d5:0f:ed:6a:24:c2:60:66:90:86:b4:85:cc:7f:90:b4:a8: 55:6b:ee:b0:5f:05:64:fd:e4:3e:fd:cc:e2:0b:7f:58:96:20: 3d:a5:0d:b5:fd:d9:86:9b:f7:63:b7:06:e9:99:6c:c7:46:4d: b8:0f:b4:64:85:5e:4d:03:cc:06:ef:06:fc:cd:2c:44:12:c2: da:f6:ea:de:fb:c9:4b:a1:38:af:31:b8:8f:18:34:7d:e7:8f: 1e:08:f9:0e:74:71:11:7e:3a:f9:d3:72:ce:91:e3:14:36:3c: d0:b8:d3:c2:62:ee:c7:84:30:1d:08:2a:52:5c:14:30:13:ae: 00:ac:0f:46:89:c8:78:2f:db:35:55:a1:6c:a4:20:a9:80:6c: de:cf:e9:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEI5MzYxMTAvBgNVBAUTKDk0MjI0Q0ZBMTdBQUEwREU1NDNBQjYxMDg5RkMxRDM5 RDE5OTBFM0UwHhcNMjUwNTMwMTYwNzIyWhcNMjUwNjA2MTYwNzIyWjAYMRYwFAYD VQQDEw02ODM5ZDdiYi0xZDk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0UiFHktZQeHlpp/jtgKc1lQFqY6KbvUojVqOS3uzqoS4hY/oZ1t47aPW8/8g aeOB1IOgsrrcc/gQpFJ/bJKXjje1gSdRHKZARUqU5Vt22Pkx/AKQyP9KEYAOBkco vj6LPh0KDWedCZB9oqQXB+EHFqxOPeEaSM5Uf6I/4d5qYvCJZq1m5mfIEMYZN6w+ 8/Dh5ZfTxQTjz78VoyNpqtvLUKQzWFezFRyjNBRDJrM6TLG4ireMJ99DaTHuOMq/ UQA0nf/LsUT0tXj+eE/3LQJzKfqtR5uf5IYYPn5WIc/pNrB/LLJg5rhMRF2mWvSW TW4hDqlTHzPLMSYAXxjATru28QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLPyOBnN bDy2ngKeFZfAUidb2oPqMB8GA1UdIwQYMBaAFJQiTPoXqqDeVDq2EIn8HTnRmQ4+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjkzNi80RUQyMkZEMkYw Q0QxMUU1QTQ0MzJFNzRDNEY5QUUwMi9sQ0pNLWhlcW9ONVVPcllRaWZ3ZE9kR1pE ajQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xDSk0taGVxb041VU9yWVFpZndkT2RHWkRqNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjkzNi80RUQyMkZEMkYwQ0QxMUU1QTQ0MzJFNzRDNEY5QUUwMi9sQ0pNLWhlcW9O NVVPcllRaWZ3ZE9kR1pEajQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOl+0GsPAHOpru3qm8XUQ6E8aXHHhyhNO1tF0Z5wOiSMvcPnBy5UMN IZalxgMAF4fAjyCUOMHSxjWr1MQ2VLeEyb2Q+6haxKclLqLwlkGvZCK6vD5kGuCi P3RmfTWjaPBnqWmEChUzT2GDmnd21Q/taiTCYGaQhrSFzH+QtKhVa+6wXwVk/eQ+ /cziC39YliA9pQ21/dmGm/djtwbpmWzHRk24D7RkhV5NA8wG7wb8zSxEEsLa9ure +8lLoTivMbiPGDR9548eCPkOdHERfjr503LOkeMUNjzQuNPCYu7HhDAdCCpSXBQw E64ArA9Gich4L9s1VaFspCCpgGzez+mc -----END CERTIFICATE-----Generated at Sat May 31 14:43:10 2025 by rpki-client