$ rpki-client -vvf rpki.apnic.net/member_repository/A9197DD5/16D4B0DC81CF11EEBC152F60C4F9AE02/lMPujMByTro8sQMk-e24G6yFAyA.mft File: lMPujMByTro8sQMk-e24G6yFAyA.mft (raw, json) Hash identifier: 0Mh05ZkcuwbEg4NgSOEC3XatdFTZ7obm2may8hVncCs= Subject key identifier: 9E:33:3B:8D:1B:EB:D6:EC:83:D0:55:C3:54:53:8D:08:9E:CF:7F:03 Authority key identifier: 94:C3:EE:8C:C0:72:4E:BA:3C:B1:03:24:F9:ED:B8:1B:AC:85:03:20 Certificate issuer: /CN=A9197DD5/serialNumber=94C3EE8CC0724EBA3CB10324F9EDB81BAC850320 Certificate serial: 0125 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMPujMByTro8sQMk-e24G6yFAyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197DD5/16D4B0DC81CF11EEBC152F60C4F9AE02/lMPujMByTro8sQMk-e24G6yFAyA.mft Manifest number: 0123 Signing time: Thu 05 Jun 2025 04:03:38 +0000 Manifest this update: Thu 05 Jun 2025 04:03:38 +0000 Manifest next update: Thu 12 Jun 2025 04:03:38 +0000 Files and hashes: 1: lMPujMByTro8sQMk-e24G6yFAyA.crl (hash: EWfYJpZzgfhRY8cUITBVNrdin19HxNsER54ryK6I9c4=) 2: 5E3ADA8C81CF11EE9AB1F360C4F9AE02.roa (hash: Mp31Dl4GGrwfX+s1p5DZGdrkWL4P3e5ufUEs+Tl9/MA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197DD5/16D4B0DC81CF11EEBC152F60C4F9AE02/lMPujMByTro8sQMk-e24G6yFAyA.crl rsync://rpki.apnic.net/member_repository/A9197DD5/16D4B0DC81CF11EEBC152F60C4F9AE02/lMPujMByTro8sQMk-e24G6yFAyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMPujMByTro8sQMk-e24G6yFAyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 04:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 293 (0x125) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197DD5, serialNumber=94C3EE8CC0724EBA3CB10324F9EDB81BAC850320 Validity Not Before: Jun 5 04:03:38 2025 GMT Not After : Jun 12 04:03:38 2025 GMT Subject: CN=6841171a-69f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:9a:82:2c:91:af:61:9f:0c:f5:e4:2b:6a:d1: 3b:b3:82:8c:b9:91:70:36:37:42:75:65:94:1e:d7: d4:cc:dd:ca:e9:30:51:17:5a:12:60:b4:c3:8b:36: b8:25:63:3b:91:e7:12:7b:e2:33:37:59:76:d0:2f: 38:20:21:52:46:6b:2d:1a:97:d8:43:fa:31:dc:63: 49:37:27:1f:bd:5c:be:fe:0b:5d:8c:9f:a9:04:80: aa:e7:1b:aa:56:30:39:0c:d6:9e:ed:e0:7c:0c:27: 6b:ca:3b:0d:de:0d:e8:f2:2e:75:7d:de:1e:ff:50: 3b:a8:c5:ee:ed:51:e8:a3:f8:0b:2b:22:de:c1:fb: 61:e7:eb:a6:fb:01:d5:b5:74:75:50:f7:88:d5:af: d9:d6:ff:55:29:25:98:1b:aa:0e:4e:1a:af:8f:75: 5b:b3:44:58:d5:67:db:b2:fd:22:85:2e:2d:97:ef: 31:9a:87:02:db:5a:95:51:dc:db:32:2c:b5:13:da: f4:8c:ea:a5:59:30:3b:d0:7c:a7:e5:04:40:3e:b1: bc:10:a1:63:f3:9c:74:3d:05:fd:5e:fc:9d:84:a7: c2:9b:f7:bc:76:4e:b4:8b:18:15:16:b9:54:1f:f5: e5:ab:ef:ba:e7:40:30:15:b5:e0:5c:c5:0f:01:55: 67:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:33:3B:8D:1B:EB:D6:EC:83:D0:55:C3:54:53:8D:08:9E:CF:7F:03 X509v3 Authority Key Identifier: keyid:94:C3:EE:8C:C0:72:4E:BA:3C:B1:03:24:F9:ED:B8:1B:AC:85:03:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197DD5/16D4B0DC81CF11EEBC152F60C4F9AE02/lMPujMByTro8sQMk-e24G6yFAyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMPujMByTro8sQMk-e24G6yFAyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197DD5/16D4B0DC81CF11EEBC152F60C4F9AE02/lMPujMByTro8sQMk-e24G6yFAyA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c9:bc:ca:eb:89:74:87:b7:1f:2c:77:00:87:32:cc:98:ea:a2: bc:1b:9b:02:9b:69:1b:53:2d:70:c1:60:b5:61:9a:fb:e2:77: b2:9a:88:b4:eb:f5:be:48:00:13:cd:fb:b7:a5:5c:a7:73:17: 44:fa:1a:06:a0:5c:d4:c7:e9:f9:5c:7d:f6:28:6e:81:5f:40: d9:d7:31:e6:62:b6:ea:ce:ba:41:8e:73:ee:71:f8:70:01:7f: 78:57:f9:41:6b:aa:03:04:dd:fd:54:e8:43:d0:0a:e7:b1:2b: 86:97:39:9c:24:da:ce:ee:f3:45:93:7d:a6:15:8b:f8:e9:41: f4:a3:7c:79:51:73:19:ca:11:e2:af:0f:eb:86:c4:01:96:a0: 3c:0e:30:ca:80:14:38:90:19:50:89:59:76:f6:59:0b:6d:c5: a9:b1:95:02:55:73:e9:86:ea:94:82:dd:d3:34:ba:a9:c0:c2: 07:ca:8b:b0:51:be:2a:68:6f:3c:32:5b:f3:f4:7a:24:91:54: 95:96:04:57:6d:c4:10:07:f9:b2:93:69:c9:4e:07:96:ee:7f: 1a:73:da:b9:7a:b8:db:ba:74:9f:ff:70:2c:d7:40:c3:2b:84: c9:6b:59:f2:36:24:4a:05:a5:bf:d9:c6:1f:d8:5d:4d:a3:4a: 5b:a4:d3:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdERDUxMTAvBgNVBAUTKDk0QzNFRThDQzA3MjRFQkEzQ0IxMDMyNEY5RURCODFC QUM4NTAzMjAwHhcNMjUwNjA1MDQwMzM4WhcNMjUwNjEyMDQwMzM4WjAYMRYwFAYD VQQDEw02ODQxMTcxYS02OWYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy5qCLJGvYZ8M9eQratE7s4KMuZFwNjdCdWWUHtfUzN3K6TBRF1oSYLTDiza4 JWM7kecSe+IzN1l20C84ICFSRmstGpfYQ/ox3GNJNycfvVy+/gtdjJ+pBICq5xuq VjA5DNae7eB8DCdryjsN3g3o8i51fd4e/1A7qMXu7VHoo/gLKyLewfth5+um+wHV tXR1UPeI1a/Z1v9VKSWYG6oOThqvj3Vbs0RY1Wfbsv0ihS4tl+8xmocC21qVUdzb Miy1E9r0jOqlWTA70Hyn5QRAPrG8EKFj85x0PQX9XvydhKfCm/e8dk60ixgVFrlU H/Xlq++650AwFbXgXMUPAVVn+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ4zO40b 69bsg9BVw1RTjQiez38DMB8GA1UdIwQYMBaAFJTD7ozAck66PLEDJPntuBushQMg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0RENS8xNkQ0QjBEQzgx Q0YxMUVFQkMxNTJGNjBDNEY5QUUwMi9sTVB1ak1CeVRybzhzUU1rLWUyNEc2eUZB eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xNUHVqTUJ5VHJvOHNRTWstZTI0RzZ5RkF5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0RENS8xNkQ0QjBEQzgxQ0YxMUVFQkMxNTJGNjBDNEY5QUUwMi9sTVB1ak1CeVRy bzhzUU1rLWUyNEc2eUZBeUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDJvMrriXSHtx8sdwCHMsyY6qK8G5sCm2kbUy1wwWC1YZr74neymoi0 6/W+SAATzfu3pVyncxdE+hoGoFzUx+n5XH32KG6BX0DZ1zHmYrbqzrpBjnPucfhw AX94V/lBa6oDBN39VOhD0ArnsSuGlzmcJNrO7vNFk32mFYv46UH0o3x5UXMZyhHi rw/rhsQBlqA8DjDKgBQ4kBlQiVl29lkLbcWpsZUCVXPphuqUgt3TNLqpwMIHyouw Ub4qaG88Mlvz9HokkVSVlgRXbcQQB/myk2nJTgeW7n8ac9q5erjbunSf/3As10DD K4TJa1nyNiRKBaW/2cYf2F1No0pbpNMH -----END CERTIFICATE-----Generated at Thu Jun 5 19:44:27 2025 by rpki-client