$ rpki-client -vvf rpki.apnic.net/member_repository/A91B334D/27E861D885F711EB92081711C4F9AE02/lRaRgJV2AETnT6qlSX0GcwraXzI.mft File: lRaRgJV2AETnT6qlSX0GcwraXzI.mft (raw, json) Hash identifier: y7tdU6NeNM+SsFhXozHmmtLmsVGc4OXjNUSVMQd+Mwk= Subject key identifier: 97:23:C6:59:82:19:31:B6:59:95:E7:9C:7A:09:82:B7:73:27:8D:25 Authority key identifier: 95:16:91:80:95:76:00:44:E7:4F:AA:A5:49:7D:06:73:0A:DA:5F:32 Certificate issuer: /CN=A91B334D/serialNumber=9516918095760044E74FAAA5497D06730ADA5F32 Certificate serial: 065C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRaRgJV2AETnT6qlSX0GcwraXzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B334D/27E861D885F711EB92081711C4F9AE02/lRaRgJV2AETnT6qlSX0GcwraXzI.mft Manifest number: 0656 Signing time: Fri 30 May 2025 22:42:42 +0000 Manifest this update: Fri 30 May 2025 22:42:42 +0000 Manifest next update: Fri 06 Jun 2025 22:42:42 +0000 Files and hashes: 1: lRaRgJV2AETnT6qlSX0GcwraXzI.crl (hash: /TNKi/OquISIMBtrqshYcU+FAlcumFtzuFGbDb+zAw0=) 2: 589FBEDC860311EBAFE18309C4F9AE02.roa (hash: 60iJClNHfCYL5vJ0EICnhz/EaXVeffgn8z0vbfJvk+4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B334D/27E861D885F711EB92081711C4F9AE02/lRaRgJV2AETnT6qlSX0GcwraXzI.crl rsync://rpki.apnic.net/member_repository/A91B334D/27E861D885F711EB92081711C4F9AE02/lRaRgJV2AETnT6qlSX0GcwraXzI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRaRgJV2AETnT6qlSX0GcwraXzI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:42:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1628 (0x65c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B334D, serialNumber=9516918095760044E74FAAA5497D06730ADA5F32 Validity Not Before: May 30 22:42:42 2025 GMT Not After : Jun 6 22:42:42 2025 GMT Subject: CN=683a3462-f972 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:5e:01:7f:5f:b8:3e:f2:af:27:e6:19:cf:31: 90:0f:d1:66:ba:7c:2e:08:dd:0d:76:65:ad:9c:01: fa:ba:12:40:9c:0d:70:8b:92:cd:1c:12:cc:f6:8e: fe:32:a9:b5:ee:45:b6:98:a1:1d:c8:3d:a9:8f:94: 98:48:7c:03:e0:4c:40:36:a6:f5:1d:2f:01:d9:56: db:de:c9:d6:5f:ac:dd:05:34:dd:e7:79:74:cd:44: 28:13:f7:c4:5b:e6:5e:dc:9b:2d:e1:d6:f4:d7:f8: c3:0a:f7:23:c5:10:cd:b2:9e:d9:4d:7e:be:a8:8f: fd:c1:76:b0:1d:79:e1:ca:c3:6e:f8:6f:22:e3:36: 23:46:4a:92:ab:81:7c:ec:17:18:5e:3f:62:c9:34: a2:bf:90:46:77:3b:66:96:dc:13:08:81:19:b5:07: d5:13:07:34:cf:c5:53:f6:6b:bb:e4:b3:98:bd:e7: ea:07:f5:05:fc:e5:3e:27:ef:06:cb:1a:bd:f8:af: 93:94:c5:05:af:a2:2b:91:c5:0a:22:09:76:ee:b9: 46:35:9e:3a:cf:7c:78:3c:e4:33:02:ea:56:a5:e8: ba:ca:9a:d8:a5:08:b7:65:32:86:9e:c6:47:ee:16: 32:1c:69:60:11:b0:17:30:7d:1d:14:76:2a:b4:1e: 52:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:23:C6:59:82:19:31:B6:59:95:E7:9C:7A:09:82:B7:73:27:8D:25 X509v3 Authority Key Identifier: keyid:95:16:91:80:95:76:00:44:E7:4F:AA:A5:49:7D:06:73:0A:DA:5F:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B334D/27E861D885F711EB92081711C4F9AE02/lRaRgJV2AETnT6qlSX0GcwraXzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRaRgJV2AETnT6qlSX0GcwraXzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B334D/27E861D885F711EB92081711C4F9AE02/lRaRgJV2AETnT6qlSX0GcwraXzI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:a8:6d:dc:be:18:0a:c5:aa:77:c2:1e:dd:ae:3e:78:ae:51: 6d:d7:db:da:11:c4:92:41:21:1b:88:5b:d4:ec:a5:65:8d:03: e7:8d:42:2d:a5:6b:e1:28:d8:07:09:25:7b:8e:34:1c:fd:c4: 22:3c:9c:0f:a7:6d:1c:e3:34:d7:0c:29:1a:25:ea:f0:db:e2: 76:3e:12:8c:3c:1f:00:fb:2d:ad:78:72:99:6b:4c:e6:08:05: 0d:23:0b:a2:0d:7f:0e:82:89:cd:9e:0e:fe:11:ef:aa:43:9a: 49:55:9d:c1:8a:54:51:2c:ca:d5:60:5d:b0:40:d5:45:bf:ff: 3e:b2:e3:bf:e7:94:a7:37:41:18:73:6b:0b:de:47:f4:e8:6f: e6:ea:43:d2:73:83:d1:fd:88:f3:8a:9f:b2:ad:42:7a:f6:42: 2e:60:26:f9:f4:b0:9d:55:2f:47:bb:31:de:ae:88:f1:de:39: 07:a9:e5:15:eb:48:65:8b:38:6b:27:18:f8:42:6a:83:36:48: 58:70:75:32:4c:17:58:66:49:02:97:e2:53:f6:81:2e:63:6a: b1:14:5e:af:4b:b5:c5:5d:63:57:62:53:07:c2:73:1c:6d:10: 25:e9:ef:0f:db:77:dd:5b:bf:2a:f6:7d:d5:5e:10:17:89:25: 4c:bc:9c:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjMzNEQxMTAvBgNVBAUTKDk1MTY5MTgwOTU3NjAwNDRFNzRGQUFBNTQ5N0QwNjcz MEFEQTVGMzIwHhcNMjUwNTMwMjI0MjQyWhcNMjUwNjA2MjI0MjQyWjAYMRYwFAYD VQQDEw02ODNhMzQ2Mi1mOTcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnl4Bf1+4PvKvJ+YZzzGQD9FmunwuCN0NdmWtnAH6uhJAnA1wi5LNHBLM9o7+ Mqm17kW2mKEdyD2pj5SYSHwD4ExANqb1HS8B2Vbb3snWX6zdBTTd53l0zUQoE/fE W+Ze3Jst4db01/jDCvcjxRDNsp7ZTX6+qI/9wXawHXnhysNu+G8i4zYjRkqSq4F8 7BcYXj9iyTSiv5BGdztmltwTCIEZtQfVEwc0z8VT9mu75LOYvefqB/UF/OU+J+8G yxq9+K+TlMUFr6IrkcUKIgl27rlGNZ46z3x4POQzAupWpei6yprYpQi3ZTKGnsZH 7hYyHGlgEbAXMH0dFHYqtB5S1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJcjxlmC GTG2WZXnnHoJgrdzJ40lMB8GA1UdIwQYMBaAFJUWkYCVdgBE50+qpUl9BnMK2l8y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzM0RC8yN0U4NjFEODg1 RjcxMUVCOTIwODE3MTFDNEY5QUUwMi9sUmFSZ0pWMkFFVG5UNnFsU1gwR2N3cmFY ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xSYVJnSlYyQUVUblQ2cWxTWDBHY3dyYVh6SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzM0RC8yN0U4NjFEODg1RjcxMUVCOTIwODE3MTFDNEY5QUUwMi9sUmFSZ0pWMkFF VG5UNnFsU1gwR2N3cmFYekkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUqG3cvhgKxap3wh7drj54rlFt19vaEcSSQSEbiFvU7KVljQPnjUIt pWvhKNgHCSV7jjQc/cQiPJwPp20c4zTXDCkaJerw2+J2PhKMPB8A+y2teHKZa0zm CAUNIwuiDX8OgonNng7+Ee+qQ5pJVZ3BilRRLMrVYF2wQNVFv/8+suO/55SnN0EY c2sL3kf06G/m6kPSc4PR/Yjzip+yrUJ69kIuYCb59LCdVS9HuzHerojx3jkHqeUV 60hlizhrJxj4QmqDNkhYcHUyTBdYZkkCl+JT9oEuY2qxFF6vS7XFXWNXYlMHwnMc bRAl6e8P23fdW78q9n3VXhAXiSVMvJwX -----END CERTIFICATE-----Generated at Sat May 31 17:18:49 2025 by rpki-client