$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/lD0-ELi74Ti0dzRVS2kFMRDUW-M.mft File: lD0-ELi74Ti0dzRVS2kFMRDUW-M.mft (raw, json) Hash identifier: YM/WFjP3dzu88BDM2ulYC9vOMIvLM/Z13yDqJ1FORyw= Subject key identifier: 4D:7D:80:80:37:DF:BC:11:E0:39:06:75:82:09:E4:7B:9A:6B:06:B3 Authority key identifier: 94:3D:3E:10:B8:BB:E1:38:B4:77:34:55:4B:69:05:31:10:D4:5B:E3 Certificate issuer: /CN=A91A3E3F/serialNumber=943D3E10B8BBE138B47734554B69053110D45BE3 Certificate serial: 01E7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lD0-ELi74Ti0dzRVS2kFMRDUW-M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/lD0-ELi74Ti0dzRVS2kFMRDUW-M.mft Manifest number: 01D9 Signing time: Tue 03 Jun 2025 02:39:29 +0000 Manifest this update: Tue 03 Jun 2025 02:39:28 +0000 Manifest next update: Tue 10 Jun 2025 02:39:28 +0000 Files and hashes: 1: lD0-ELi74Ti0dzRVS2kFMRDUW-M.crl (hash: JH6re8QF+xkp+m+Ji7VlugEVdyk82FHVIgTUcnEGmJI=) 2: 0DCBAC3863C111EE9A8AA77AC4F9AE02.roa (hash: inCWlFg4eyi3SZb4mhg7QgWhnaX3zI3I9iGqmhoauLc=) 3: 9ADB02A27F4E11EDB22F3582C4F9AE02.roa (hash: 9Oyy54xhiWuTllhGlORwlpgALp6JCiYOJTYLu9JoBj0=) 4: 5420A28C7F5211ED8A16EF81C4F9AE02.roa (hash: 5EKiWHDPeMiKNhe7uJ6GnZoz2bb2Ob3eC5qrY4BOvLk=) 5: 912586FA7F4F11ED96FDE369C4F9AE02.roa (hash: vg/uug9ogWENghuoz8JvK8TWhFT7WTN1jNAJcLX1AUM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/lD0-ELi74Ti0dzRVS2kFMRDUW-M.crl rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/lD0-ELi74Ti0dzRVS2kFMRDUW-M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lD0-ELi74Ti0dzRVS2kFMRDUW-M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 02:39:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 487 (0x1e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3E3F, serialNumber=943D3E10B8BBE138B47734554B69053110D45BE3 Validity Not Before: Jun 3 02:39:28 2025 GMT Not After : Jun 10 02:39:28 2025 GMT Subject: CN=683e6060-3c09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:36:1a:8e:61:a1:21:34:c1:fb:ef:24:18:65: 44:52:97:ce:df:e0:21:36:f7:bc:54:c4:4f:f9:70: e5:6e:0e:68:3a:3c:25:fc:ff:2e:59:6f:ad:2b:c8: 64:f4:e4:cb:fe:7a:1b:6f:97:44:6e:a2:be:ee:b9: aa:6c:2d:39:24:68:fa:71:95:28:91:de:f1:51:15: 11:65:75:f2:18:bd:39:ad:36:2a:30:ad:7e:ab:ee: 9c:3e:6d:2a:13:82:90:da:fc:e2:41:88:ad:fa:a2: 96:0f:97:7d:28:d4:21:0b:ee:50:bb:42:63:a6:d2: 0a:75:bb:2e:09:cd:65:19:69:3f:75:e8:d3:bc:8b: ef:51:86:0d:04:58:46:d4:e4:f3:1f:71:13:71:42: 29:8c:ab:c0:53:70:b4:7b:a6:60:c6:5e:1b:ec:c4: 1b:bf:17:1b:6e:a1:ec:ee:d4:a7:a0:55:a5:7b:2d: e8:e2:8d:bd:1b:79:44:3d:53:22:11:46:fc:4b:23: 9d:1b:82:8d:9b:8a:30:3e:dd:c4:0b:1c:e4:9b:a9: be:61:26:b1:13:90:6c:02:fa:3f:c7:4a:f0:05:74: 78:72:be:9f:65:6f:ef:d2:5a:ee:88:91:39:0b:33: 57:6e:b6:b8:5a:76:50:be:aa:b1:e6:1e:08:9c:e5: e9:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:7D:80:80:37:DF:BC:11:E0:39:06:75:82:09:E4:7B:9A:6B:06:B3 X509v3 Authority Key Identifier: keyid:94:3D:3E:10:B8:BB:E1:38:B4:77:34:55:4B:69:05:31:10:D4:5B:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/lD0-ELi74Ti0dzRVS2kFMRDUW-M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lD0-ELi74Ti0dzRVS2kFMRDUW-M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/lD0-ELi74Ti0dzRVS2kFMRDUW-M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:f3:8c:5c:44:d2:a1:d8:ec:fb:a1:44:25:d4:e9:b2:4c:be: 2b:3f:90:2f:d6:92:3e:ef:cf:92:14:4f:c0:fd:50:1d:d0:6e: c1:da:98:ce:11:ec:c6:5c:70:21:2f:63:c9:43:e7:1b:08:84: d5:53:a6:ba:97:ea:ab:90:1d:3d:5b:16:53:8e:0e:b7:9b:4d: b7:a0:42:1a:80:eb:44:a0:64:d7:99:77:de:65:6d:a7:a3:9c: 58:c3:14:ef:0c:49:4d:a3:0e:90:51:ff:56:b1:ab:05:58:06: 88:03:48:e1:ad:a9:c5:f1:33:28:07:24:d6:ff:30:6f:33:75: 06:48:e3:0f:00:80:b5:e3:5b:06:18:d0:09:a3:88:f4:26:0b: dd:98:f1:56:38:bf:1b:f7:51:b6:ac:55:0f:7c:44:39:ac:26: 21:e8:df:cb:0a:83:79:74:62:df:64:6e:80:c4:70:be:01:64: a2:b3:a4:34:bc:cc:90:1b:eb:41:37:e7:6b:cf:9d:43:e2:18: a6:d2:fd:49:2a:b1:ff:3a:70:f1:37:d7:86:ff:a6:d5:00:c1: fd:fb:4c:32:b8:ff:9f:93:6e:ab:48:3d:cc:ad:ab:10:7d:ce: c6:6e:13:7a:30:97:75:f6:bd:5f:33:b5:6f:4b:31:c3:bb:2f: 3f:ac:d2:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAecwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNFM0YxMTAvBgNVBAUTKDk0M0QzRTEwQjhCQkUxMzhCNDc3MzQ1NTRCNjkwNTMx MTBENDVCRTMwHhcNMjUwNjAzMDIzOTI4WhcNMjUwNjEwMDIzOTI4WjAYMRYwFAYD VQQDEw02ODNlNjA2MC0zYzA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAujYajmGhITTB++8kGGVEUpfO3+AhNve8VMRP+XDlbg5oOjwl/P8uWW+tK8hk 9OTL/nobb5dEbqK+7rmqbC05JGj6cZUokd7xURURZXXyGL05rTYqMK1+q+6cPm0q E4KQ2vziQYit+qKWD5d9KNQhC+5Qu0JjptIKdbsuCc1lGWk/dejTvIvvUYYNBFhG 1OTzH3ETcUIpjKvAU3C0e6Zgxl4b7MQbvxcbbqHs7tSnoFWley3o4o29G3lEPVMi EUb8SyOdG4KNm4owPt3ECxzkm6m+YSaxE5BsAvo/x0rwBXR4cr6fZW/v0lruiJE5 CzNXbra4WnZQvqqx5h4InOXpgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE19gIA3 37wR4DkGdYIJ5HuaawazMB8GA1UdIwQYMBaAFJQ9PhC4u+E4tHc0VUtpBTEQ1Fvj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0UzRi8zMDVFQjg3NjdD REIxMUVEQUI4NDRDMTlDNEY5QUUwMi9sRDAtRUxpNzRUaTBkelJWUzJrRk1SRFVX LU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xEMC1FTGk3NFRpMGR6UlZTMmtGTVJEVVctTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB M0UzRi8zMDVFQjg3NjdDREIxMUVEQUI4NDRDMTlDNEY5QUUwMi9sRDAtRUxpNzRU aTBkelJWUzJrRk1SRFVXLU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCD84xcRNKh2Oz7oUQl1OmyTL4rP5Av1pI+78+SFE/A/VAd0G7B2pjO EezGXHAhL2PJQ+cbCITVU6a6l+qrkB09WxZTjg63m023oEIagOtEoGTXmXfeZW2n o5xYwxTvDElNow6QUf9WsasFWAaIA0jhranF8TMoByTW/zBvM3UGSOMPAIC141sG GNAJo4j0JgvdmPFWOL8b91G2rFUPfEQ5rCYh6N/LCoN5dGLfZG6AxHC+AWSis6Q0 vMyQG+tBN+drz51D4him0v1JKrH/OnDxN9eG/6bVAMH9+0wyuP+fk26rSD3MrasQ fc7GbhN6MJd19r1fM7VvSzHDuy8/rNJ6 -----END CERTIFICATE-----Generated at Tue Jun 3 23:45:04 2025 by rpki-client