$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.mft File: lAiiAfAOWP6SWY7gOTkHi673d5U.mft (raw, json) Hash identifier: j/859iTkanr4VN8A3WonEy6m6bzxekwxW8HL2KHpgmM= Subject key identifier: 6B:8C:3D:76:8C:D6:F2:89:18:6B:63:DC:83:A4:B7:63:CF:17:DE:E0 Authority key identifier: 94:08:A2:01:F0:0E:58:FE:92:59:8E:E0:39:39:07:8B:AE:F7:77:95 Certificate issuer: /CN=A91A6F68/serialNumber=9408A201F00E58FE92598EE03939078BAEF77795 Certificate serial: 23 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lAiiAfAOWP6SWY7gOTkHi673d5U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.mft Manifest number: 23 Signing time: Thu 03 Apr 2025 07:04:42 +0000 Manifest this update: Thu 03 Apr 2025 07:04:41 +0000 Manifest next update: Thu 10 Apr 2025 07:04:41 +0000 Files and hashes: 1: lAiiAfAOWP6SWY7gOTkHi673d5U.crl (hash: IpYhIVq7ggZMwoNKuxoQMNCSVoqBJd7H9jBeNUtsDFU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.crl rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lAiiAfAOWP6SWY7gOTkHi673d5U.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 07:04:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35 (0x23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6F68 Validity Not Before: Apr 3 07:04:41 2025 GMT Not After : Apr 10 07:04:41 2025 GMT Subject: CN=67ee330a-b73f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:8a:d4:82:48:83:9b:70:ab:0a:da:8d:bf:cc: 31:5d:bc:1f:3e:1a:b7:e8:15:c2:86:4d:63:16:3b: e5:2d:ed:01:23:ba:93:46:20:eb:44:c9:75:c3:a3: 17:d9:70:98:8c:eb:11:c3:71:a8:b0:6c:31:e7:9f: 6a:62:d2:60:3e:dd:0d:98:a1:c2:c6:68:18:a9:6a: 25:9c:81:a4:37:43:6a:5e:fe:6b:62:4b:be:91:f7: 90:93:c1:57:09:c6:b6:23:a2:76:ba:9a:c7:e9:21: 7a:2d:98:2c:fd:1e:f4:56:8e:d9:ab:42:87:13:6d: 89:b0:bd:b9:f5:f1:2a:9e:5b:4e:91:b0:4b:0c:fb: 7b:6f:ff:21:6f:8a:2a:79:e4:0c:1e:dd:40:2c:76: 18:4c:81:0a:46:13:93:4b:39:dd:08:bf:2f:78:fd: a4:a2:d5:75:da:a0:6d:35:1f:f7:5b:3c:90:8a:5d: 67:44:bf:d3:91:7c:4a:cb:e3:80:6e:01:29:22:85: c3:c4:ae:7b:b4:dc:c0:ce:18:86:3c:9b:82:ac:db: 02:3b:7e:f4:85:10:ac:5f:1f:5d:bf:38:ce:83:61: 89:14:cc:fd:5b:43:2e:5b:8c:8b:97:9f:1b:6e:0e: cf:f2:09:cc:d3:a5:88:37:aa:cb:9b:77:21:07:2f: 90:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:8C:3D:76:8C:D6:F2:89:18:6B:63:DC:83:A4:B7:63:CF:17:DE:E0 X509v3 Authority Key Identifier: keyid:94:08:A2:01:F0:0E:58:FE:92:59:8E:E0:39:39:07:8B:AE:F7:77:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lAiiAfAOWP6SWY7gOTkHi673d5U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:28:9a:f1:63:ac:43:d8:3d:51:ed:97:aa:1c:f5:b5:66:bb: 19:68:d3:1e:e7:ef:7f:39:03:e3:92:95:d8:e9:0f:68:91:1d: 6d:79:07:88:12:49:27:90:77:02:87:02:39:c6:4d:15:c6:b8: cb:50:69:d5:8d:df:09:bb:4b:01:ba:4f:31:87:3d:86:82:8d: 45:13:e1:19:b0:fe:64:00:f4:a4:bb:80:c0:3f:48:77:b3:21: 99:56:dc:86:91:7a:c9:f9:04:e3:61:cc:92:f5:2c:15:49:d0: a0:a5:bc:37:9d:9a:97:f2:12:14:c4:a7:ea:3f:51:e3:14:44: cd:50:27:a1:93:e6:59:9c:40:2b:7f:b0:f2:bc:d0:57:ac:64: e0:39:01:fb:f2:3d:85:b3:db:85:68:36:ff:ec:46:11:2c:9a: f7:fe:13:46:de:32:4c:0f:e3:eb:eb:22:38:ed:90:44:e6:2f: a9:d2:c0:6f:12:a8:67:dd:55:c9:ad:e2:57:06:4d:5c:76:cf: a6:17:5a:51:19:53:7b:99:98:45:4a:57:40:dd:13:5e:6e:f2: dd:f4:1d:24:a4:be:6a:ef:9a:96:83:2d:83:c8:83:a1:81:3e: d5:74:5e:0b:0f:c0:31:74:c7:d0:c9:8a:ce:48:6d:fa:9a:53: f4:4a:53:b1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NkY2ODExMC8GA1UEBRMoOTQwOEEyMDFGMDBFNThGRTkyNTk4RUUwMzkzOTA3OEJB RUY3Nzc5NTAeFw0yNTA0MDMwNzA0NDFaFw0yNTA0MTAwNzA0NDFaMBgxFjAUBgNV BAMTDTY3ZWUzMzBhLWI3M2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDbitSCSIObcKsK2o2/zDFdvB8+GrfoFcKGTWMWO+Ut7QEjupNGIOtEyXXDoxfZ cJiM6xHDcaiwbDHnn2pi0mA+3Q2YocLGaBipaiWcgaQ3Q2pe/mtiS76R95CTwVcJ xrYjona6msfpIXotmCz9HvRWjtmrQocTbYmwvbn18SqeW06RsEsM+3tv/yFviip5 5Awe3UAsdhhMgQpGE5NLOd0Ivy94/aSi1XXaoG01H/dbPJCKXWdEv9ORfErL44Bu ASkihcPErnu03MDOGIY8m4Ks2wI7fvSFEKxfH12/OM6DYYkUzP1bQy5bjIuXnxtu Ds/yCczTpYg3qsubdyEHL5BRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUa4w9dozW 8okYa2Pcg6S3Y88X3uAwHwYDVR0jBBgwFoAUlAiiAfAOWP6SWY7gOTkHi673d5Uw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE2RjY4L0JBNTY1RjVDREYy MTExRUY4MzNGNEYyQ0M0RjlBRTAyL2xBaWlBZkFPV1A2U1dZN2dPVGtIaTY3M2Q1 VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvbEFpaUFmQU9XUDZTV1k3Z09Ua0hpNjczZDVVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE2 RjY4L0JBNTY1RjVDREYyMTExRUY4MzNGNEYyQ0M0RjlBRTAyL2xBaWlBZkFPV1A2 U1dZN2dPVGtIaTY3M2Q1VS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGAomvFjrEPYPVHtl6oc9bVmuxlo0x7n7385A+OSldjpD2iRHW15B4gS SSeQdwKHAjnGTRXGuMtQadWN3wm7SwG6TzGHPYaCjUUT4Rmw/mQA9KS7gMA/SHez IZlW3IaResn5BONhzJL1LBVJ0KClvDedmpfyEhTEp+o/UeMURM1QJ6GT5lmcQCt/ sPK80FesZOA5AfvyPYWz24VoNv/sRhEsmvf+E0beMkwP4+vrIjjtkETmL6nSwG8S qGfdVcmt4lcGTVx2z6YXWlEZU3uZmEVKV0DdE15u8t30HSSkvmrvmpaDLYPIg6GB PtV0XgsPwDF0x9DJis5IbfqaU/RKU7E= -----END CERTIFICATE-----Generated at Sat Apr 5 08:15:33 2025 by rpki-client