$ rpki-client -vvf rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/lAmAjIoyxYSU2uV00F1rsiJyw1o.mft File: lAmAjIoyxYSU2uV00F1rsiJyw1o.mft (raw, json) Hash identifier: osd+tDXBkKw+WCUlc7WzClIEc8BJ6fvPe28cGaNf+ZU= Subject key identifier: FE:23:F2:6D:B4:B2:ED:21:DD:22:C0:75:E5:ED:9D:10:ED:F8:B9:FF Authority key identifier: 94:09:80:8C:8A:32:C5:84:94:DA:E5:74:D0:5D:6B:B2:22:72:C3:5A Certificate issuer: /CN=A919C77D/serialNumber=9409808C8A32C58494DAE574D05D6BB22272C35A Certificate serial: 1E83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lAmAjIoyxYSU2uV00F1rsiJyw1o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/lAmAjIoyxYSU2uV00F1rsiJyw1o.mft Manifest number: 1E73 Signing time: Sat 31 May 2025 16:02:05 +0000 Manifest this update: Sat 31 May 2025 16:02:05 +0000 Manifest next update: Sat 07 Jun 2025 16:02:05 +0000 Files and hashes: 1: lAmAjIoyxYSU2uV00F1rsiJyw1o.crl (hash: IHnyIy6m82VZErBS+jKX9t6IEmGtjavfRuVXdVHo/yI=) 2: 45865ED62B7411EF9E28ED19C4F9AE02.roa (hash: G8JFHwSz1ocsPfiu5EdB881TguSYEm9QZ2Yz9AovjhA=) 3: C7D60D34CC0611EC93451840C4F9AE02.roa (hash: 0mgkLjgKwKqnZvyXs7R0/CM7YveV0fnq5l57+ocSN+k=) 4: 4664F7042B7411EF9E28ED19C4F9AE02.roa (hash: mcsOJ/PSjF+pyGpbfB/eXtIe/0dKHqcd9NaSWEDdEYo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/lAmAjIoyxYSU2uV00F1rsiJyw1o.crl rsync://rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/lAmAjIoyxYSU2uV00F1rsiJyw1o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lAmAjIoyxYSU2uV00F1rsiJyw1o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 16:02:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7811 (0x1e83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C77D, serialNumber=9409808C8A32C58494DAE574D05D6BB22272C35A Validity Not Before: May 31 16:02:05 2025 GMT Not After : Jun 7 16:02:05 2025 GMT Subject: CN=683b27fd-26f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:10:f6:b4:5d:dd:69:66:24:be:3b:a6:7c:69: 7b:55:fb:f3:38:22:92:a6:a5:25:1c:19:a9:10:1c: 50:79:1c:30:89:f6:0c:c0:18:63:11:b6:97:67:db: ec:b2:bb:e0:d0:74:0c:51:80:cf:71:e5:52:0d:26: 2b:ad:64:9b:ff:9b:6f:c9:c9:b7:2c:a4:bf:5e:6d: 6b:ea:47:d5:29:a6:82:05:70:32:64:44:5c:54:1a: c0:9a:71:6e:6c:86:5a:81:16:e8:a9:81:b6:96:94: 60:1a:b7:8f:5c:f5:e0:67:f0:31:be:9a:17:1f:e2: b1:e1:65:66:b5:4c:fe:d6:b1:48:cc:b9:d4:7b:3f: 34:5a:be:e9:33:3a:66:d0:cf:c1:a6:99:0b:6e:8f: 01:67:86:21:3e:53:d0:9c:98:e6:d2:f1:18:50:66: 13:f4:cc:0b:b7:c1:18:5f:3d:3b:86:86:1d:74:fd: 46:d7:e0:90:3b:f6:1d:82:02:57:a6:c6:8d:b0:ef: 67:15:18:68:1a:40:85:bf:5d:34:46:90:40:4d:19: 4c:52:93:4b:18:a9:55:b1:91:96:44:51:16:a7:50: fd:15:78:b0:4a:58:c1:72:62:a5:70:59:64:6e:7e: 00:28:3f:ec:c1:06:7c:d7:bf:f8:44:a1:77:18:f1: 61:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:23:F2:6D:B4:B2:ED:21:DD:22:C0:75:E5:ED:9D:10:ED:F8:B9:FF X509v3 Authority Key Identifier: keyid:94:09:80:8C:8A:32:C5:84:94:DA:E5:74:D0:5D:6B:B2:22:72:C3:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/lAmAjIoyxYSU2uV00F1rsiJyw1o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lAmAjIoyxYSU2uV00F1rsiJyw1o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/lAmAjIoyxYSU2uV00F1rsiJyw1o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:6a:67:fa:c6:66:bb:0b:e2:4b:bf:82:f3:cd:40:cd:68:70: a5:94:b1:ce:a8:5d:61:4f:58:78:7e:21:b5:58:61:1d:4b:87: ce:50:5f:c4:1e:f0:e0:dc:86:d3:ef:d4:24:4e:dc:c4:d5:89: 66:e3:9c:34:4e:10:75:19:77:be:a0:46:ec:ec:66:aa:31:8c: d6:0e:ed:19:47:b8:90:b0:9d:97:ab:52:de:92:51:11:6a:f1: 59:bf:b5:ba:49:91:eb:3c:bc:16:9d:82:80:03:52:66:51:4f: 18:c6:d6:5d:a4:17:d6:d0:ef:51:5e:35:71:e6:b4:22:d4:c4: a3:4e:0d:52:aa:4f:82:4f:65:a6:49:dd:ea:4d:cb:4e:79:02: d3:b9:49:dd:4f:0d:ac:56:2a:02:86:3b:94:a3:82:53:aa:cd: 8d:86:3a:32:b7:07:6c:81:e3:13:3d:51:3d:2c:6d:56:a8:db: 9e:e3:d8:a3:39:66:d9:ee:fb:36:68:24:2c:d1:59:51:a2:66: ef:f2:0d:a7:6c:d2:06:86:18:e0:1b:36:51:3f:ab:9d:b0:c7: 84:bf:4a:21:54:86:23:79:35:b7:e6:eb:a7:48:ed:d3:35:fa: d7:32:01:a6:e9:e3:1b:95:4b:ce:dc:95:97:ff:8d:53:39:b9: 02:6d:52:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHoMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM3N0QxMTAvBgNVBAUTKDk0MDk4MDhDOEEzMkM1ODQ5NERBRTU3NEQwNUQ2QkIy MjI3MkMzNUEwHhcNMjUwNTMxMTYwMjA1WhcNMjUwNjA3MTYwMjA1WjAYMRYwFAYD VQQDEw02ODNiMjdmZC0yNmY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuRD2tF3daWYkvjumfGl7VfvzOCKSpqUlHBmpEBxQeRwwifYMwBhjEbaXZ9vs srvg0HQMUYDPceVSDSYrrWSb/5tvycm3LKS/Xm1r6kfVKaaCBXAyZERcVBrAmnFu bIZagRboqYG2lpRgGrePXPXgZ/AxvpoXH+Kx4WVmtUz+1rFIzLnUez80Wr7pMzpm 0M/BppkLbo8BZ4YhPlPQnJjm0vEYUGYT9MwLt8EYXz07hoYddP1G1+CQO/YdggJX psaNsO9nFRhoGkCFv100RpBATRlMUpNLGKlVsZGWRFEWp1D9FXiwSljBcmKlcFlk bn4AKD/swQZ817/4RKF3GPFh3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP4j8m20 su0h3SLAdeXtnRDt+Ln/MB8GA1UdIwQYMBaAFJQJgIyKMsWElNrldNBda7IicsNa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Qzc3RC83RDRCRkUwNjc0 OTkxMUU2QjAyNTJCODRDNEY5QUUwMi9sQW1BaklveXhZU1UydVYwMEYxcnNpSnl3 MW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xBbUFqSW95eFlTVTJ1VjAwRjFyc2lKeXcxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 Qzc3RC83RDRCRkUwNjc0OTkxMUU2QjAyNTJCODRDNEY5QUUwMi9sQW1BaklveXhZ U1UydVYwMEYxcnNpSnl3MW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwamf6xma7C+JLv4LzzUDNaHCllLHOqF1hT1h4fiG1WGEdS4fOUF/E HvDg3IbT79QkTtzE1Ylm45w0ThB1GXe+oEbs7GaqMYzWDu0ZR7iQsJ2Xq1LeklER avFZv7W6SZHrPLwWnYKAA1JmUU8YxtZdpBfW0O9RXjVx5rQi1MSjTg1Sqk+CT2Wm Sd3qTctOeQLTuUndTw2sVioChjuUo4JTqs2NhjoytwdsgeMTPVE9LG1WqNue49ij OWbZ7vs2aCQs0VlRombv8g2nbNIGhhjgGzZRP6udsMeEv0ohVIYjeTW35uunSO3T NfrXMgGm6eMblUvO3JWX/41TObkCbVI3 -----END CERTIFICATE-----Generated at Sat May 31 17:48:40 2025 by rpki-client