$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft File: lHy2dKhYzZGupVJro2aKEeSey5M.mft (raw, json) Hash identifier: CkZq6+oJ8BzVUZ6cmeSDwHTlXxFufg0YlIJign3xDaI= Subject key identifier: 61:05:C9:C5:3A:2A:9C:27:7D:E5:AF:7C:26:88:4E:67:03:1B:BE:E7 Authority key identifier: 94:7C:B6:74:A8:58:CD:91:AE:A5:52:6B:A3:66:8A:11:E4:9E:CB:93 Certificate issuer: /CN=A91DFC30/serialNumber=947CB674A858CD91AEA5526BA3668A11E49ECB93 Certificate serial: 03E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft Manifest number: 03D8 Signing time: Sat 31 May 2025 00:48:14 +0000 Manifest this update: Sat 31 May 2025 00:48:13 +0000 Manifest next update: Sat 07 Jun 2025 00:48:13 +0000 Files and hashes: 1: lHy2dKhYzZGupVJro2aKEeSey5M.crl (hash: 6NpIYJbcyfCdXAdy2j3RhNFgw3rz5qSR6nlezR7Lmu4=) 2: 13F5D28685B111ECB675B552C4F9AE02.roa (hash: wg979tEV/edC9z/60lEEUA1wH6+Atveb0Z20mtMK9/g=) 3: 147D51CA85B111ECB675B552C4F9AE02.roa (hash: e9cwg8d7bC8r2DHgx/kL7/A4+KHztZ7rWF6Yv+XqYD8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.crl rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:48:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 993 (0x3e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFC30, serialNumber=947CB674A858CD91AEA5526BA3668A11E49ECB93 Validity Not Before: May 31 00:48:13 2025 GMT Not After : Jun 7 00:48:13 2025 GMT Subject: CN=683a51ce-6e7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:b5:6b:e8:24:b0:c0:3a:37:41:19:27:a6:67: e0:cc:a3:f3:98:d7:a2:3d:cb:9a:e9:3e:0b:98:fb: 57:26:c4:c3:a2:e7:cb:7c:02:e4:6d:e4:24:9b:da: 20:40:3d:e3:70:13:d8:3c:0e:57:a3:8e:60:c1:db: d0:53:e8:5f:57:aa:a1:56:5e:2a:ce:04:ac:e7:87: 2c:89:8c:ad:62:4f:3a:49:78:29:61:8e:1a:75:6f: 0f:fb:f3:61:9d:08:27:e8:57:47:1a:ab:35:f2:06: 07:0f:c0:15:3c:aa:23:1a:28:67:a3:c7:c1:2d:4e: cd:49:3a:bb:73:b7:b5:5d:68:77:41:39:5c:49:71: 81:bc:43:e5:ba:30:e6:9c:10:e4:29:49:9c:19:5f: d4:e9:d0:91:be:77:de:b0:97:b8:b0:15:63:06:fb: c0:d1:d6:68:fc:63:26:d9:3d:c8:8e:9b:18:ff:e5: c8:be:74:b4:c1:8c:40:12:56:7e:76:af:7f:cc:ef: 21:3a:7d:16:f7:1e:06:6a:ab:68:86:b5:99:c0:c3: 22:3b:e2:be:61:13:06:bd:2b:89:49:a5:7b:26:a8: 0b:ae:ab:eb:6a:f8:4f:3b:0f:b6:5d:02:05:9e:70: 0a:d9:6c:ae:aa:f6:a9:7d:b5:af:14:e8:28:68:69: 0f:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:05:C9:C5:3A:2A:9C:27:7D:E5:AF:7C:26:88:4E:67:03:1B:BE:E7 X509v3 Authority Key Identifier: keyid:94:7C:B6:74:A8:58:CD:91:AE:A5:52:6B:A3:66:8A:11:E4:9E:CB:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:b7:8d:e5:4f:74:b8:38:b4:87:1e:a8:23:27:f1:6c:14:21: 19:dc:21:7f:42:1e:55:75:34:98:2b:22:4e:63:7c:00:f5:57: b4:0b:9a:84:19:fc:4c:95:46:87:a0:69:ff:4a:88:67:85:d9: e8:99:8a:1c:39:9c:5b:fa:85:1e:4d:48:8f:93:74:58:87:b0: 68:f5:eb:e8:34:2b:4d:09:f9:b7:b5:e1:74:24:16:f2:34:e3: 29:4e:cb:0e:a6:d5:5e:4e:87:5b:df:1c:0b:26:b8:c7:e3:8c: 6d:e1:f0:1f:d7:10:03:d2:60:85:fb:5c:66:d5:ef:82:b1:53: 77:2e:6a:11:5e:5d:a3:16:6f:ad:97:ec:94:24:a6:74:a9:41: bd:dc:6f:f1:10:db:e0:07:79:0e:1a:07:2e:7f:f6:25:65:93: e9:93:ae:92:f1:70:6b:cc:cc:17:a4:6a:7e:2d:81:d0:af:79: 45:e5:30:88:7b:ef:35:2d:4f:ac:20:6c:52:98:e7:84:90:c6: 93:8f:22:46:3d:21:ca:c8:05:b9:38:b4:9c:5a:80:45:36:76: 0b:3f:1b:88:ef:12:98:be:de:e3:58:60:1b:80:9c:17:9b:aa: 2b:65:bd:d7:87:71:df:17:73:d0:65:f5:1c:d8:f7:47:03:ac: 58:2a:a2:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZDMzAxMTAvBgNVBAUTKDk0N0NCNjc0QTg1OENEOTFBRUE1NTI2QkEzNjY4QTEx RTQ5RUNCOTMwHhcNMjUwNTMxMDA0ODEzWhcNMjUwNjA3MDA0ODEzWjAYMRYwFAYD VQQDEw02ODNhNTFjZS02ZTdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo7Vr6CSwwDo3QRknpmfgzKPzmNeiPcua6T4LmPtXJsTDoufLfALkbeQkm9og QD3jcBPYPA5Xo45gwdvQU+hfV6qhVl4qzgSs54csiYytYk86SXgpYY4adW8P+/Nh nQgn6FdHGqs18gYHD8AVPKojGihno8fBLU7NSTq7c7e1XWh3QTlcSXGBvEPlujDm nBDkKUmcGV/U6dCRvnfesJe4sBVjBvvA0dZo/GMm2T3IjpsY/+XIvnS0wYxAElZ+ dq9/zO8hOn0W9x4GaqtohrWZwMMiO+K+YRMGvSuJSaV7JqgLrqvravhPOw+2XQIF nnAK2WyuqvapfbWvFOgoaGkPUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGEFycU6 KpwnfeWvfCaITmcDG77nMB8GA1UdIwQYMBaAFJR8tnSoWM2RrqVSa6NmihHknsuT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkMzMC8xMTJBRjFBQzg1 QUQxMUVDQjM2RjQxNERDNEY5QUUwMi9sSHkyZEtoWXpaR3VwVkpybzJhS0VlU2V5 NU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xIeTJkS2hZelpHdXBWSnJvMmFLRWVTZXk1TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RkMzMC8xMTJBRjFBQzg1QUQxMUVDQjM2RjQxNERDNEY5QUUwMi9sSHkyZEtoWXpa R3VwVkpybzJhS0VlU2V5NU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCst43lT3S4OLSHHqgjJ/FsFCEZ3CF/Qh5VdTSYKyJOY3wA9Ve0C5qE GfxMlUaHoGn/SohnhdnomYocOZxb+oUeTUiPk3RYh7Bo9evoNCtNCfm3teF0JBby NOMpTssOptVeTodb3xwLJrjH44xt4fAf1xAD0mCF+1xm1e+CsVN3LmoRXl2jFm+t l+yUJKZ0qUG93G/xENvgB3kOGgcuf/YlZZPpk66S8XBrzMwXpGp+LYHQr3lF5TCI e+81LU+sIGxSmOeEkMaTjyJGPSHKyAW5OLScWoBFNnYLPxuI7xKYvt7jWGAbgJwX m6orZb3Xh3HfF3PQZfUc2PdHA6xYKqJ3 -----END CERTIFICATE-----Generated at Sat May 31 16:33:08 2025 by rpki-client