$ rpki-client -vvf rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.mft File: lVqjNNYHfBfALW18rdIVmRIeTvo.mft (raw, json) Hash identifier: 01ws2xgJaWDRhFsXyeTisWumD6UvXY74zFf427bBDqQ= Subject key identifier: A4:30:3B:77:B5:6F:C9:7C:B5:4E:C3:9A:E7:91:C0:ED:9C:42:D9:96 Authority key identifier: 95:5A:A3:34:D6:07:7C:17:C0:2D:6D:7C:AD:D2:15:99:12:1E:4E:FA Certificate issuer: /CN=A91D01AF/serialNumber=955AA334D6077C17C02D6D7CADD21599121E4EFA Certificate serial: 07DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lVqjNNYHfBfALW18rdIVmRIeTvo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.mft Manifest number: 07D3 Signing time: Fri 30 May 2025 21:16:22 +0000 Manifest this update: Fri 30 May 2025 21:16:22 +0000 Manifest next update: Fri 06 Jun 2025 21:16:22 +0000 Files and hashes: 1: lVqjNNYHfBfALW18rdIVmRIeTvo.crl (hash: +jp2E70ebGK2IZRb7zsVKrLh3pV2Gvwk5wHnuvDDrzM=) 2: AD797FA2F17E11EAA3CC597BC4F9AE02.roa (hash: h5ITx5pXE/9NCEhkkWyRU4Y7R0J0MFf0GXuloXcx21g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.crl rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lVqjNNYHfBfALW18rdIVmRIeTvo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:16:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2010 (0x7da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D01AF, serialNumber=955AA334D6077C17C02D6D7CADD21599121E4EFA Validity Not Before: May 30 21:16:22 2025 GMT Not After : Jun 6 21:16:22 2025 GMT Subject: CN=683a2026-baaa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:4a:5a:57:1b:ff:20:23:7d:82:79:1d:c9:fb: b1:30:cf:18:17:05:4d:65:92:46:0a:78:c6:0f:dc: ab:ac:f9:d8:a3:f6:31:62:9c:90:04:bb:2a:a7:74: 31:78:ea:1c:75:3a:c7:13:5a:19:bc:e6:25:12:3c: 15:57:72:48:99:05:54:4a:e0:1b:0f:0d:15:7c:f0: 5c:9b:22:33:08:7a:67:0c:6a:96:b9:5b:07:42:a2: 3f:38:95:7c:cc:d2:e4:be:a1:6f:20:20:1b:7f:67: 5a:2e:01:d2:5c:c2:83:90:37:67:c0:59:2a:f2:1f: d5:79:62:d7:2e:2e:f0:ab:8d:97:3d:89:92:6b:95: 74:33:63:f9:8c:81:48:77:e7:6c:d3:b9:77:77:8f: e0:f5:27:58:97:3b:36:d3:d9:03:85:78:4a:50:8e: df:8c:11:e9:b0:81:de:19:ab:ad:7d:b0:2d:28:c3: 37:81:b8:8d:62:05:f3:52:33:36:9e:a0:fa:3c:15: 3c:3f:f4:27:81:15:f0:af:7a:93:9a:ec:57:b7:c6: a1:24:b1:84:31:67:a7:fa:30:15:4f:35:b3:1e:d3: 98:5e:94:06:ac:fe:97:74:03:9c:38:50:0b:75:f5: f2:0a:c6:c1:7d:cb:f7:11:4c:6e:84:0c:b8:7c:26: d0:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:30:3B:77:B5:6F:C9:7C:B5:4E:C3:9A:E7:91:C0:ED:9C:42:D9:96 X509v3 Authority Key Identifier: keyid:95:5A:A3:34:D6:07:7C:17:C0:2D:6D:7C:AD:D2:15:99:12:1E:4E:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lVqjNNYHfBfALW18rdIVmRIeTvo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:bc:ea:0d:b5:96:8c:3f:51:d8:3b:5f:3a:40:e9:2d:66:e7: 69:8a:62:92:67:53:29:ba:a4:97:14:2c:8e:c6:6a:af:aa:73: 1d:da:e4:17:56:fa:ed:73:09:d6:37:41:8c:60:97:f5:11:75: 56:e8:a3:5a:0d:8a:f1:20:d7:ae:da:fd:de:90:ac:d1:b9:84: 9a:6c:2f:10:b4:75:ba:9e:cf:36:da:91:fb:b5:80:be:50:b1: dc:ed:05:0a:ca:68:b4:c2:d3:0d:46:96:7d:c6:37:91:b7:97: 9a:d9:d3:a3:31:ec:12:0b:3c:cf:19:44:49:dc:72:68:94:11: ac:d7:9b:bc:0a:9d:f8:b4:80:4c:a2:76:f7:5a:04:9b:ee:b3: 9d:06:05:4d:66:75:a6:a1:b2:3a:ed:6f:c8:ee:0d:f9:52:ab: 73:4d:5a:67:1b:bf:6f:cc:27:92:f6:23:8e:0e:56:f6:3b:4f: 58:86:65:01:f0:c1:bb:6c:e3:18:94:08:0d:2f:bb:f3:db:73: d8:e0:68:cc:dc:bd:9f:bf:af:7f:c8:59:0e:e7:2a:c6:4d:72: 5c:84:dd:62:cf:26:1e:1c:9e:98:22:d7:54:28:3b:67:83:0a: ec:aa:b7:05:92:3a:02:4f:29:21:3b:02:bf:c4:89:b2:62:46: 52:01:1e:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDAxQUYxMTAvBgNVBAUTKDk1NUFBMzM0RDYwNzdDMTdDMDJENkQ3Q0FERDIxNTk5 MTIxRTRFRkEwHhcNMjUwNTMwMjExNjIyWhcNMjUwNjA2MjExNjIyWjAYMRYwFAYD VQQDEw02ODNhMjAyNi1iYWFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA60paVxv/ICN9gnkdyfuxMM8YFwVNZZJGCnjGD9yrrPnYo/YxYpyQBLsqp3Qx eOocdTrHE1oZvOYlEjwVV3JImQVUSuAbDw0VfPBcmyIzCHpnDGqWuVsHQqI/OJV8 zNLkvqFvICAbf2daLgHSXMKDkDdnwFkq8h/VeWLXLi7wq42XPYmSa5V0M2P5jIFI d+ds07l3d4/g9SdYlzs209kDhXhKUI7fjBHpsIHeGautfbAtKMM3gbiNYgXzUjM2 nqD6PBU8P/QngRXwr3qTmuxXt8ahJLGEMWen+jAVTzWzHtOYXpQGrP6XdAOcOFAL dfXyCsbBfcv3EUxuhAy4fCbQCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKQwO3e1 b8l8tU7DmueRwO2cQtmWMB8GA1UdIwQYMBaAFJVaozTWB3wXwC1tfK3SFZkSHk76 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDFBRi9DRDdFNzBEOEYx N0QxMUVBQUIzOTI1NzhDNEY5QUUwMi9sVnFqTk5ZSGZCZkFMVzE4cmRJVm1SSWVU dm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xWcWpOTllIZkJmQUxXMThyZElWbVJJZVR2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MDFBRi9DRDdFNzBEOEYxN0QxMUVBQUIzOTI1NzhDNEY5QUUwMi9sVnFqTk5ZSGZC ZkFMVzE4cmRJVm1SSWVUdm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCivOoNtZaMP1HYO186QOktZudpimKSZ1MpuqSXFCyOxmqvqnMd2uQX VvrtcwnWN0GMYJf1EXVW6KNaDYrxINeu2v3ekKzRuYSabC8QtHW6ns822pH7tYC+ ULHc7QUKymi0wtMNRpZ9xjeRt5ea2dOjMewSCzzPGURJ3HJolBGs15u8Cp34tIBM onb3WgSb7rOdBgVNZnWmobI67W/I7g35UqtzTVpnG79vzCeS9iOODlb2O09YhmUB 8MG7bOMYlAgNL7vz23PY4GjM3L2fv69/yFkO5yrGTXJchN1izyYeHJ6YItdUKDtn gwrsqrcFkjoCTykhOwK/xImyYkZSAR63 -----END CERTIFICATE-----Generated at Sat May 31 16:29:42 2025 by rpki-client