$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft File: lX5Qp1--UC844-2_P0qq5mWuFIs.mft (raw, json) Hash identifier: 50Iwm2sNY48HYpZIUg14SS5+N6nvBV0FQhDzNwGeXkQ= Subject key identifier: 14:8D:E0:EB:F8:FA:74:1F:13:5B:77:59:46:3B:C1:FF:7C:CA:02:8D Authority key identifier: 95:7E:50:A7:5F:BE:50:2F:38:E3:ED:BF:3F:4A:AA:E6:65:AE:14:8B Certificate issuer: /CN=A91D0B0E/serialNumber=957E50A75FBE502F38E3EDBF3F4AAAE665AE148B Certificate serial: 7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lX5Qp1--UC844-2_P0qq5mWuFIs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft Manifest number: 7D Signing time: Sat 31 May 2025 06:14:53 +0000 Manifest this update: Sat 31 May 2025 06:14:52 +0000 Manifest next update: Sat 07 Jun 2025 06:14:52 +0000 Files and hashes: 1: lX5Qp1--UC844-2_P0qq5mWuFIs.crl (hash: +ZlNzFm37cb/FZ4ilLD82yHRAE6Ic5ZpH7/pP0I0Nqo=) 2: A0A9D60C807511EFAD8C4257C4F9AE02.roa (hash: QmeMLe3zHSz7gk9gq16CkmBIAgYCod6kVBmzDpdZxiM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.crl rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lX5Qp1--UC844-2_P0qq5mWuFIs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:14:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 126 (0x7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0B0E, serialNumber=957E50A75FBE502F38E3EDBF3F4AAAE665AE148B Validity Not Before: May 31 06:14:52 2025 GMT Not After : Jun 7 06:14:52 2025 GMT Subject: CN=683a9e5d-a242 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:7e:8a:b4:58:41:ac:c0:fe:ef:6d:3a:d4:e6: 19:39:90:41:ad:c1:2c:33:b4:74:86:7e:8b:83:48: 29:c9:b4:52:28:a6:64:70:21:4e:9c:d3:b2:81:8e: 21:59:32:20:9c:72:f3:e0:ce:90:57:2a:1a:70:7e: cf:66:90:8e:2f:a2:7a:29:90:fa:b3:a4:6b:cd:b6: 6b:0a:b8:8a:3b:63:59:86:f8:6b:ef:21:b2:eb:1f: e6:a4:b4:4f:e1:2d:10:cf:ab:9c:fd:04:ca:af:48: 85:70:08:dc:1a:71:3e:71:13:ff:41:ee:9b:a1:a8: b4:ef:21:b3:3b:26:fb:ea:21:a5:0b:e3:7f:aa:33: 72:a5:19:58:5b:cf:17:98:28:4a:f9:eb:d3:2b:13: cb:c1:75:ee:e3:f4:fc:80:8c:51:a0:3e:a1:7a:27: 77:27:f7:01:1c:de:a2:c8:8b:f5:6b:30:44:06:21: 53:88:fa:51:07:6d:ac:a7:2f:6f:59:ea:b2:8a:ce: 14:84:a4:d3:31:e9:6e:34:89:bb:8e:75:70:12:8a: 04:36:6f:58:8e:dd:7d:ce:5f:1f:56:e5:47:a9:d9: 4d:8e:1d:05:bb:1c:4b:66:37:e9:c8:f1:e2:32:6b: 39:27:36:de:66:12:fa:83:a1:74:26:69:c2:b9:d7: 31:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:8D:E0:EB:F8:FA:74:1F:13:5B:77:59:46:3B:C1:FF:7C:CA:02:8D X509v3 Authority Key Identifier: keyid:95:7E:50:A7:5F:BE:50:2F:38:E3:ED:BF:3F:4A:AA:E6:65:AE:14:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lX5Qp1--UC844-2_P0qq5mWuFIs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:b1:5e:d2:fa:bb:78:1c:4d:19:f0:c6:a7:d8:4c:bd:95:3a: ca:69:70:76:7c:a2:5e:c1:59:29:8f:30:f7:e9:1c:49:a2:b3: 2b:cd:c4:e7:41:fb:63:86:34:be:db:e1:f0:c1:60:6d:cd:c1: 71:0f:9c:49:ca:18:01:a3:e0:7a:5b:29:c2:7a:0b:ec:4d:dc: 28:fc:75:25:e0:14:14:b0:d0:99:25:39:47:f4:fe:7b:ab:e6: 36:99:90:5f:ac:ba:11:2f:71:d0:fc:5c:7d:c3:90:b6:42:42: 4c:98:99:1d:b7:b8:7d:fa:97:e9:f1:90:7e:44:bf:3b:e1:34: 23:69:e7:2a:41:23:37:28:f6:4b:cd:10:a9:c2:d2:f5:fd:41: 9e:73:df:7e:58:e5:8b:41:7b:ec:a8:0e:6d:c7:ff:28:7c:fa: 98:4f:ac:a3:5f:5f:cc:c3:cc:87:c7:54:5d:8e:9a:c3:b3:d4: a2:83:f6:03:ff:51:0f:60:d6:22:96:52:5e:8f:48:a7:d8:76: ec:78:c1:38:c1:4d:71:97:fc:03:3e:ba:f6:e3:08:2d:9c:ba: 22:da:48:67:44:3c:fb:0e:6b:37:05:5f:21:81:aa:b2:26:1f: 7f:21:bf:46:5b:ad:c9:e6:d3:ec:75:25:6e:46:f4:e1:1d:8f: 14:d2:33:ac -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MEIwRTExMC8GA1UEBRMoOTU3RTUwQTc1RkJFNTAyRjM4RTNFREJGM0Y0QUFBRTY2 NUFFMTQ4QjAeFw0yNTA1MzEwNjE0NTJaFw0yNTA2MDcwNjE0NTJaMBgxFjAUBgNV BAMTDTY4M2E5ZTVkLWEyNDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDTfoq0WEGswP7vbTrU5hk5kEGtwSwztHSGfouDSCnJtFIopmRwIU6c07KBjiFZ MiCccvPgzpBXKhpwfs9mkI4vonopkPqzpGvNtmsKuIo7Y1mG+GvvIbLrH+aktE/h LRDPq5z9BMqvSIVwCNwacT5xE/9B7puhqLTvIbM7JvvqIaUL43+qM3KlGVhbzxeY KEr569MrE8vBde7j9PyAjFGgPqF6J3cn9wEc3qLIi/VrMEQGIVOI+lEHbaynL29Z 6rKKzhSEpNMx6W40ibuOdXASigQ2b1iO3X3OXx9W5Uep2U2OHQW7HEtmN+nI8eIy azknNt5mEvqDoXQmacK51zGLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUFI3g6/j6 dB8TW3dZRjvB/3zKAo0wHwYDVR0jBBgwFoAUlX5Qp1++UC844+2/P0qq5mWuFIsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQwQjBFLzRFNkNCNEY2ODA2 OTExRUY4ODdCNzAzQ0M0RjlBRTAyL2xYNVFwMS0tVUM4NDQtMl9QMHFxNW1XdUZJ cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbFg1UXAxLS1VQzg0NC0yX1AwcXE1bVd1RklzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQw QjBFLzRFNkNCNEY2ODA2OTExRUY4ODdCNzAzQ0M0RjlBRTAyL2xYNVFwMS0tVUM4 NDQtMl9QMHFxNW1XdUZJcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAICxXtL6u3gcTRnwxqfYTL2VOsppcHZ8ol7BWSmPMPfpHEmisyvNxOdB +2OGNL7b4fDBYG3NwXEPnEnKGAGj4HpbKcJ6C+xN3Cj8dSXgFBSw0JklOUf0/nur 5jaZkF+suhEvcdD8XH3DkLZCQkyYmR23uH36l+nxkH5EvzvhNCNp5ypBIzco9kvN EKnC0vX9QZ5z335Y5YtBe+yoDm3H/yh8+phPrKNfX8zDzIfHVF2OmsOz1KKD9gP/ UQ9g1iKWUl6PSKfYdux4wTjBTXGX/AM+uvbjCC2cuiLaSGdEPPsOazcFXyGBqrIm H38hv0Zbrcnm0+x1JW5G9OEdjxTSM6w= -----END CERTIFICATE-----Generated at Sat May 31 16:49:12 2025 by rpki-client