$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft File: lpDF1gn85ELDW5kW1WP58Ye2itQ.mft (raw, json) Hash identifier: hqqtRAAEIt0gf5kgWPkyKoSPsDYorHhqYtZIBY/Pr3E= Subject key identifier: 85:E8:73:E9:FE:8B:73:48:EF:25:21:B2:1A:E3:35:36:42:78:20:6D Authority key identifier: 96:90:C5:D6:09:FC:E4:42:C3:5B:99:16:D5:63:F9:F1:87:B6:8A:D4 Certificate issuer: /CN=A91D8E2C/serialNumber=9690C5D609FCE442C35B9916D563F9F187B68AD4 Certificate serial: 0E3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft Manifest number: 0E33 Signing time: Fri 30 May 2025 17:57:33 +0000 Manifest this update: Fri 30 May 2025 17:57:32 +0000 Manifest next update: Fri 06 Jun 2025 17:57:32 +0000 Files and hashes: 1: lpDF1gn85ELDW5kW1WP58Ye2itQ.crl (hash: PE6FhO+R11ltwN/1+HHDGIRq1PrRZRDEuYQTHdifcC4=) 2: 6C153768CE5511EB9DD80C30C4F9AE02.roa (hash: 8FSx/7pmWfnqq5buFAKmXuNtb84bNl4hKWrDWfIfWSE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.crl rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:57:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3643 (0xe3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8E2C, serialNumber=9690C5D609FCE442C35B9916D563F9F187B68AD4 Validity Not Before: May 30 17:57:32 2025 GMT Not After : Jun 6 17:57:32 2025 GMT Subject: CN=6839f18d-d61f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:93:2a:72:f8:27:24:c8:6c:b2:4a:85:01:67: 83:e6:1c:89:ff:a8:e5:df:db:81:5d:12:8b:7b:ca: 3f:c5:a7:b4:0c:aa:3d:8a:3d:3a:37:40:ad:4b:7b: 34:e6:68:1d:40:e3:9a:02:ce:ea:9b:67:cc:10:bc: 56:f4:ca:62:bc:cf:ab:02:df:52:b9:ee:b5:f8:1e: 53:df:c9:70:ab:8f:be:17:62:f6:52:53:3f:a8:ab: 93:8e:57:6c:4f:32:e9:80:ba:37:7f:10:c0:67:9e: 67:e1:c2:30:03:9b:cd:6d:8f:df:7a:5f:a5:29:07: c0:4d:45:af:5b:2b:6d:2c:b6:0b:b4:25:81:2b:23: b9:59:cf:f2:d6:ff:9b:8c:e7:ce:14:9d:d5:fb:cd: 8f:1b:33:f5:56:f4:a4:8f:1a:ca:18:14:eb:9c:c1: 2b:29:19:0f:63:c2:22:f3:9d:ab:75:0c:71:bd:81: c7:f3:a7:83:5f:3f:4b:bd:91:23:fe:b7:96:1f:eb: 1f:3b:94:63:8d:84:87:1c:cf:42:85:0f:69:4a:5c: 01:dd:ed:2d:98:90:8b:b3:7d:14:00:c9:17:52:6e: 94:62:2c:3f:68:fd:65:64:ca:9e:92:4d:ed:ca:63: 64:8f:c5:b9:c3:29:8e:65:ee:6b:f1:9d:b1:9f:b8: 2f:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:E8:73:E9:FE:8B:73:48:EF:25:21:B2:1A:E3:35:36:42:78:20:6D X509v3 Authority Key Identifier: keyid:96:90:C5:D6:09:FC:E4:42:C3:5B:99:16:D5:63:F9:F1:87:B6:8A:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:47:6e:c2:a8:0a:76:51:4e:77:c0:60:99:77:21:19:14:fe: 8b:09:8b:2a:32:61:e8:64:1a:f5:a1:d8:ec:f6:b6:46:56:1a: be:31:19:53:24:f4:fc:db:28:f7:c5:ed:a2:2c:ec:33:f4:a0: bd:80:37:e4:9b:92:39:0d:b8:03:21:69:a7:1a:ee:27:c7:50: 28:05:00:e9:c4:cc:db:73:19:11:85:76:a3:f9:cc:71:0a:d7: 8d:4d:b0:81:da:69:d0:1e:f9:88:58:62:6e:0a:79:dc:c7:c9: f4:fd:a1:26:01:30:40:59:20:fb:b9:94:22:ab:0e:ed:5d:53: bd:ba:f2:b7:bd:cb:71:82:67:7d:72:22:ee:f1:cb:5a:0a:55: 73:6c:42:15:0d:3b:68:cd:d5:0c:fd:76:96:de:3e:7f:03:db: 07:66:c5:10:a3:42:1a:fd:cf:ef:a1:c8:e5:ea:8f:2f:7a:66: 90:a9:a3:ca:f7:c2:25:66:c2:70:cb:80:07:b1:80:0d:1c:cd: 40:4c:fc:89:82:d6:48:04:1b:89:5f:1c:c5:c6:53:db:94:8f: 61:2f:6a:34:c8:bb:9a:97:65:f4:9e:f4:e5:a6:69:a5:f4:94: 14:9d:e6:9c:e5:5d:28:f9:70:e2:a6:74:87:93:00:71:9b:27: 58:08:2f:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDjswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhFMkMxMTAvBgNVBAUTKDk2OTBDNUQ2MDlGQ0U0NDJDMzVCOTkxNkQ1NjNGOUYx ODdCNjhBRDQwHhcNMjUwNTMwMTc1NzMyWhcNMjUwNjA2MTc1NzMyWjAYMRYwFAYD VQQDEw02ODM5ZjE4ZC1kNjFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA45MqcvgnJMhsskqFAWeD5hyJ/6jl39uBXRKLe8o/xae0DKo9ij06N0CtS3s0 5mgdQOOaAs7qm2fMELxW9MpivM+rAt9Sue61+B5T38lwq4++F2L2UlM/qKuTjlds TzLpgLo3fxDAZ55n4cIwA5vNbY/fel+lKQfATUWvWyttLLYLtCWBKyO5Wc/y1v+b jOfOFJ3V+82PGzP1VvSkjxrKGBTrnMErKRkPY8Ii852rdQxxvYHH86eDXz9LvZEj /reWH+sfO5RjjYSHHM9ChQ9pSlwB3e0tmJCLs30UAMkXUm6UYiw/aP1lZMqekk3t ymNkj8W5wymOZe5r8Z2xn7gvUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIXoc+n+ i3NI7yUhshrjNTZCeCBtMB8GA1UdIwQYMBaAFJaQxdYJ/ORCw1uZFtVj+fGHtorU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEUyQy8wRkUxRUQwNkEy RkIxMUU5QTUyNkE1N0VDNEY5QUUwMi9scERGMWduODVFTERXNWtXMVdQNThZZTJp dFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xwREYxZ244NUVMRFc1a1cxV1A1OFllMml0US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEUyQy8wRkUxRUQwNkEyRkIxMUU5QTUyNkE1N0VDNEY5QUUwMi9scERGMWduODVF TERXNWtXMVdQNThZZTJpdFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtR27CqAp2UU53wGCZdyEZFP6LCYsqMmHoZBr1odjs9rZGVhq+MRlT JPT82yj3xe2iLOwz9KC9gDfkm5I5DbgDIWmnGu4nx1AoBQDpxMzbcxkRhXaj+cxx CteNTbCB2mnQHvmIWGJuCnncx8n0/aEmATBAWSD7uZQiqw7tXVO9uvK3vctxgmd9 ciLu8ctaClVzbEIVDTtozdUM/XaW3j5/A9sHZsUQo0Ia/c/vocjl6o8vemaQqaPK 98IlZsJwy4AHsYANHM1ATPyJgtZIBBuJXxzFxlPblI9hL2o0yLual2X0nvTlpmml 9JQUneac5V0o+XDipnSHkwBxmydYCC+P -----END CERTIFICATE-----Generated at Sat May 31 16:44:57 2025 by rpki-client