$ rpki-client -vvf rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.mft File: L4dzyVEFOxQ4vCfsxV45KvteK7I.mft (raw, json) Hash identifier: cMoIR+RLRRxvNm7v5VK5kgi0MVZ0IeIcv0QjsZY36NM= Subject key identifier: A6:B4:41:E9:7E:CE:C2:45:D4:E0:F9:D4:FC:F5:25:E7:51:E4:A8:19 Authority key identifier: 2F:87:73:C9:51:05:3B:14:38:BC:27:EC:C5:5E:39:2A:FB:5E:2B:B2 Certificate issuer: /CN=A91B56F0/serialNumber=2F8773C951053B1438BC27ECC55E392AFB5E2BB2 Certificate serial: 0B55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4dzyVEFOxQ4vCfsxV45KvteK7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.mft Manifest number: 0B41 Signing time: Fri 30 May 2025 19:21:28 +0000 Manifest this update: Fri 30 May 2025 19:21:27 +0000 Manifest next update: Fri 06 Jun 2025 19:21:27 +0000 Files and hashes: 1: L4dzyVEFOxQ4vCfsxV45KvteK7I.crl (hash: MP1gQIKrfL6Yzte1fAQpGEPdAKH13DXEuK8+8I4F5J8=) 2: 84AC17989B0811EDB5FDAF75C4F9AE02.roa (hash: oocbcY3iFDyepn5SUv3wuDXzWJtrjmxt4UkH5Dd68Ak=) 3: 837821AA9B0811EDB5FDAF75C4F9AE02.roa (hash: kTlw3wh1lAf36RxrCeqt67ctmc2qb6ZS1z3/jQIhcLU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.crl rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4dzyVEFOxQ4vCfsxV45KvteK7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:21:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2901 (0xb55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B56F0, serialNumber=2F8773C951053B1438BC27ECC55E392AFB5E2BB2 Validity Not Before: May 30 19:21:27 2025 GMT Not After : Jun 6 19:21:27 2025 GMT Subject: CN=683a0538-a128 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:c7:e8:41:dd:59:c4:0f:45:ae:cc:d0:5d:c4: 0e:6c:31:dd:04:a8:e7:71:40:e6:85:db:db:05:a4: 14:81:36:62:51:2c:eb:c1:2c:23:03:6c:b2:60:a3: c3:c9:23:da:e3:13:a5:a9:10:92:32:62:d1:b4:f9: 53:3c:21:11:46:a1:b9:31:63:5e:7d:ab:ca:c4:02: 11:e2:e7:1c:db:7a:cd:b2:d5:fe:0a:ee:9e:9e:e4: fc:d1:01:1f:ea:fb:04:66:58:3e:3b:c8:26:3a:69: a2:91:eb:a7:68:2b:e1:c7:7b:4b:a4:ac:42:ca:75: 5a:2a:77:3a:6e:71:ee:06:0f:ea:24:7b:6a:74:2d: 89:3a:b7:9a:14:39:83:1d:86:eb:8e:8d:80:75:5b: b0:35:e7:04:01:3f:85:d5:12:2f:f7:8b:ab:10:8e: 80:d3:04:a6:19:2a:5a:ea:0c:b5:0c:7d:fe:88:0c: 47:9e:2d:13:e0:79:69:8a:21:60:8f:5a:b8:be:d3: 7d:9d:2b:93:73:e2:60:f5:c0:6d:2b:e6:e0:15:85: 1e:12:1b:e6:84:25:94:d8:7a:8c:84:ca:86:19:21: 44:e3:5a:8f:86:79:5e:e4:6d:51:a1:ce:24:92:68: 55:8c:b0:de:07:80:be:fb:ed:3e:ce:0a:ec:f2:b8: ce:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:B4:41:E9:7E:CE:C2:45:D4:E0:F9:D4:FC:F5:25:E7:51:E4:A8:19 X509v3 Authority Key Identifier: keyid:2F:87:73:C9:51:05:3B:14:38:BC:27:EC:C5:5E:39:2A:FB:5E:2B:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4dzyVEFOxQ4vCfsxV45KvteK7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:18:4e:2a:e4:47:e4:83:5f:a8:92:bd:32:b2:93:64:c3:d3: f6:b9:e0:32:d0:c9:3d:62:ad:a2:c2:c1:63:27:fb:d2:52:93: 00:c9:83:ef:b6:fc:57:a1:1d:ea:5a:3a:95:cb:cc:bc:37:52: 9a:42:4e:44:2f:92:85:f4:8a:70:48:f3:c9:8b:15:9c:2b:52: 77:77:2d:56:d5:c6:86:ff:26:9b:81:78:1f:22:41:09:da:de: 5f:0e:05:62:5f:8c:85:ef:62:12:4a:18:4a:1d:a8:ed:20:75: b5:59:55:96:bb:8d:b6:6d:ce:8e:b9:e7:89:96:db:2b:29:be: b5:4f:69:dc:6e:a7:68:d6:e2:49:af:6c:86:18:57:d3:01:b0: 7d:88:31:84:fe:0a:44:a3:c2:52:e6:22:c3:e6:7f:a7:c6:f1: 66:2e:28:b9:09:05:0f:76:09:7b:b3:58:e4:49:b9:80:01:e7: a3:37:aa:69:f2:1f:e0:cd:0f:15:a2:b5:ff:3f:cd:20:34:7b: 7c:5e:42:e9:42:db:ff:97:f2:62:22:5d:e7:18:72:3b:87:d0: cc:08:6c:d8:09:d7:f8:21:14:f9:d0:d6:32:b6:2f:ec:93:ed: ee:b6:c9:a8:c5:c4:5a:12:f3:9e:c3:b6:0d:a1:de:77:cb:92: 44:11:de:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC1UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU2RjAxMTAvBgNVBAUTKDJGODc3M0M5NTEwNTNCMTQzOEJDMjdFQ0M1NUUzOTJB RkI1RTJCQjIwHhcNMjUwNTMwMTkyMTI3WhcNMjUwNjA2MTkyMTI3WjAYMRYwFAYD VQQDEw02ODNhMDUzOC1hMTI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxMfoQd1ZxA9FrszQXcQObDHdBKjncUDmhdvbBaQUgTZiUSzrwSwjA2yyYKPD ySPa4xOlqRCSMmLRtPlTPCERRqG5MWNefavKxAIR4ucc23rNstX+Cu6enuT80QEf 6vsEZlg+O8gmOmmikeunaCvhx3tLpKxCynVaKnc6bnHuBg/qJHtqdC2JOreaFDmD HYbrjo2AdVuwNecEAT+F1RIv94urEI6A0wSmGSpa6gy1DH3+iAxHni0T4HlpiiFg j1q4vtN9nSuTc+Jg9cBtK+bgFYUeEhvmhCWU2HqMhMqGGSFE41qPhnle5G1Roc4k kmhVjLDeB4C+++0+zgrs8rjOOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKa0Qel+ zsJF1OD51Pz1JedR5KgZMB8GA1UdIwQYMBaAFC+Hc8lRBTsUOLwn7MVeOSr7Xiuy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTZGMC83RDY3RTRENDM4 NEMxMUVBQkVBMkRCNzFDNEY5QUUwMi9MNGR6eVZFRk94UTR2Q2ZzeFY0NUt2dGVL N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0w0ZHp5VkVGT3hRNHZDZnN4VjQ1S3Z0ZUs3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTZGMC83RDY3RTRENDM4NEMxMUVBQkVBMkRCNzFDNEY5QUUwMi9MNGR6eVZFRk94 UTR2Q2ZzeFY0NUt2dGVLN0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1GE4q5Efkg1+okr0yspNkw9P2ueAy0Mk9Yq2iwsFjJ/vSUpMAyYPv tvxXoR3qWjqVy8y8N1KaQk5EL5KF9IpwSPPJixWcK1J3dy1W1caG/yabgXgfIkEJ 2t5fDgViX4yF72ISShhKHajtIHW1WVWWu422bc6OueeJltsrKb61T2ncbqdo1uJJ r2yGGFfTAbB9iDGE/gpEo8JS5iLD5n+nxvFmLii5CQUPdgl7s1jkSbmAAeejN6pp 8h/gzQ8VorX/P80gNHt8XkLpQtv/l/JiIl3nGHI7h9DMCGzYCdf4IRT50NYyti/s k+3utsmoxcRaEvOew7YNod53y5JEEd74 -----END CERTIFICATE-----Generated at Sat May 31 17:01:22 2025 by rpki-client