$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft File: LD0jWhshn0FmEJALADuKv9wXAqI.mft (raw, json) Hash identifier: ubKQFGFX3FmYSA/CHVJvzrT3/MFmL0pRcDBgklkiKsk= Subject key identifier: AE:C1:33:84:91:D1:12:CD:10:84:26:61:3F:CB:36:AE:B0:8C:D0:CD Authority key identifier: 2C:3D:23:5A:1B:21:9F:41:66:10:90:0B:00:3B:8A:BF:DC:17:02:A2 Certificate issuer: /CN=A91CEA40/serialNumber=2C3D235A1B219F416610900B003B8ABFDC1702A2 Certificate serial: 0611 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft Manifest number: 0604 Signing time: Fri 30 May 2025 23:08:27 +0000 Manifest this update: Fri 30 May 2025 23:08:26 +0000 Manifest next update: Fri 06 Jun 2025 23:08:26 +0000 Files and hashes: 1: LD0jWhshn0FmEJALADuKv9wXAqI.crl (hash: xK+l0BjXdS5nh0IQ/kQbblZ/SiPeeosqbUXJxsuzrRs=) 2: 96F093D4BEA011EB8CAD965FC4F9AE02.roa (hash: NpLkQ/NypmNX/0X8ZR0aPK3YWZwmOShkZdvPXd4fivY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.crl rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 23:08:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1553 (0x611) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEA40, serialNumber=2C3D235A1B219F416610900B003B8ABFDC1702A2 Validity Not Before: May 30 23:08:26 2025 GMT Not After : Jun 6 23:08:26 2025 GMT Subject: CN=683a3a6a-fa7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f9:d5:d0:46:cd:91:04:d6:9f:59:ce:ca:6c: a0:72:da:16:ec:04:5a:4b:d6:ff:02:2e:e1:36:d3: e7:4e:75:74:7c:bf:60:48:49:88:3d:4d:96:cd:d1: 5c:fe:d6:0c:fb:63:b7:b9:ba:ab:aa:b0:fb:05:f5: ce:e0:ce:e5:13:7c:11:45:66:f1:aa:e6:a1:3d:66: e2:72:3f:f8:48:f4:15:30:3c:ea:4a:57:a0:48:85: 8c:3b:77:94:5d:6e:e6:1c:92:47:fc:4b:36:87:61: 47:97:b7:d4:89:17:2d:1f:07:13:89:b6:fb:b6:ae: b8:5c:d4:2e:ed:92:6e:8a:ab:f9:2d:00:ba:55:7e: 9d:27:e4:cc:a1:d2:11:72:e3:9d:29:eb:d8:45:35: 94:9b:bf:d5:71:10:90:f4:85:7b:4e:af:d6:cf:7e: 2a:0c:f5:6a:24:a3:42:9e:07:08:aa:64:9c:36:fe: d6:84:fe:90:e1:77:d5:81:ab:85:90:71:53:ca:80: e3:ad:a0:c3:a8:f4:77:69:24:7e:cf:c5:60:95:93: 00:5e:e1:38:0e:14:f9:d1:86:ef:c9:2d:c3:ba:43: 3e:bd:67:8f:42:31:a5:e2:54:94:d9:44:51:95:0c: 7c:ce:bd:b0:33:be:ad:47:d2:65:e9:f4:08:ed:c9: 9e:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:C1:33:84:91:D1:12:CD:10:84:26:61:3F:CB:36:AE:B0:8C:D0:CD X509v3 Authority Key Identifier: keyid:2C:3D:23:5A:1B:21:9F:41:66:10:90:0B:00:3B:8A:BF:DC:17:02:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:69:f8:d1:70:d0:88:6e:e9:01:db:13:c4:1c:59:e7:2f:25: 65:5a:0f:cf:c1:2f:6d:89:5b:e5:3d:3f:78:f5:eb:7b:14:45: 4b:09:4d:7e:04:ce:3c:a7:74:cb:28:0f:8b:e3:92:79:62:2f: ec:3a:99:53:e9:23:c4:c3:bc:96:67:19:4c:62:04:b5:4d:49: 8e:3a:30:f4:86:a0:1f:09:75:0e:3d:24:53:bb:db:9e:d5:be: 6c:7a:e0:d3:55:54:1d:1f:4a:bf:30:d5:54:7b:35:9c:2e:2e: ac:37:43:f7:d0:dd:56:43:b8:12:e9:72:99:88:fe:e2:2f:3a: 73:55:99:97:b8:a1:bc:24:a2:bd:de:c7:0a:65:1b:7d:06:03: 6f:58:94:16:ae:18:36:7e:c7:b6:a6:31:f3:02:1d:ee:11:30: f0:a4:30:fa:c4:3a:9e:ea:60:d6:34:2e:57:c4:3d:d7:89:88: 89:6e:d1:88:7d:db:42:27:c5:f8:dc:e2:4e:0d:d4:f8:95:e3: 15:4d:fb:7f:ca:78:88:95:ac:5a:b4:1c:3b:31:aa:06:0d:a2: 2a:e7:c6:f9:bc:bc:23:e6:b1:91:81:fe:b7:4f:8a:93:46:7a: 45:94:cd:51:75:f2:86:5d:d3:ea:39:99:57:14:61:b3:cd:03: bc:cb:ee:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VBNDAxMTAvBgNVBAUTKDJDM0QyMzVBMUIyMTlGNDE2NjEwOTAwQjAwM0I4QUJG REMxNzAyQTIwHhcNMjUwNTMwMjMwODI2WhcNMjUwNjA2MjMwODI2WjAYMRYwFAYD VQQDEw02ODNhM2E2YS1mYTdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAufnV0EbNkQTWn1nOymygctoW7ARaS9b/Ai7hNtPnTnV0fL9gSEmIPU2WzdFc /tYM+2O3ubqrqrD7BfXO4M7lE3wRRWbxquahPWbicj/4SPQVMDzqSlegSIWMO3eU XW7mHJJH/Es2h2FHl7fUiRctHwcTibb7tq64XNQu7ZJuiqv5LQC6VX6dJ+TModIR cuOdKevYRTWUm7/VcRCQ9IV7Tq/Wz34qDPVqJKNCngcIqmScNv7WhP6Q4XfVgauF kHFTyoDjraDDqPR3aSR+z8VglZMAXuE4DhT50YbvyS3DukM+vWePQjGl4lSU2URR lQx8zr2wM76tR9Jl6fQI7cmeLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK7BM4SR 0RLNEIQmYT/LNq6wjNDNMB8GA1UdIwQYMBaAFCw9I1obIZ9BZhCQCwA7ir/cFwKi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUE0MC84RTk2NEJDRUFG NzkxMUVCODQyMTdBNThDNEY5QUUwMi9MRDBqV2hzaG4wRm1FSkFMQUR1S3Y5d1hB cUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xEMGpXaHNobjBGbUVKQUxBRHVLdjl3WEFxSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUE0MC84RTk2NEJDRUFGNzkxMUVCODQyMTdBNThDNEY5QUUwMi9MRDBqV2hzaG4w Rm1FSkFMQUR1S3Y5d1hBcUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0afjRcNCIbukB2xPEHFnnLyVlWg/PwS9tiVvlPT949et7FEVLCU1+ BM48p3TLKA+L45J5Yi/sOplT6SPEw7yWZxlMYgS1TUmOOjD0hqAfCXUOPSRTu9ue 1b5seuDTVVQdH0q/MNVUezWcLi6sN0P30N1WQ7gS6XKZiP7iLzpzVZmXuKG8JKK9 3scKZRt9BgNvWJQWrhg2fse2pjHzAh3uETDwpDD6xDqe6mDWNC5XxD3XiYiJbtGI fdtCJ8X43OJODdT4leMVTft/yniIlaxatBw7MaoGDaIq58b5vLwj5rGRgf63T4qT RnpFlM1RdfKGXdPqOZlXFGGzzQO8y+53 -----END CERTIFICATE-----Generated at Sat May 31 17:48:40 2025 by rpki-client