$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.mft File: lFlKrsbtZqaAoVv-tc2leC1MLYg.mft (raw, json) Hash identifier: 6PDjS9RuFL1aMHLuY2Ke4OQo9RxrdGT7kWJA9KjC0JM= Subject key identifier: 63:D9:11:C9:B3:14:A8:E8:4D:F7:EA:5D:45:52:35:DF:74:14:72:C4 Authority key identifier: 94:59:4A:AE:C6:ED:66:A6:80:A1:5B:FE:B5:CD:A5:78:2D:4C:2D:88 Certificate issuer: /CN=A91E2EF9/serialNumber=94594AAEC6ED66A680A15BFEB5CDA5782D4C2D88 Certificate serial: 9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFlKrsbtZqaAoVv-tc2leC1MLYg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.mft Manifest number: 99 Signing time: Thu 05 Jun 2025 05:46:29 +0000 Manifest this update: Thu 05 Jun 2025 05:46:28 +0000 Manifest next update: Thu 12 Jun 2025 05:46:28 +0000 Files and hashes: 1: lFlKrsbtZqaAoVv-tc2leC1MLYg.crl (hash: Cj6MAOYyJQN9+q6MWnbklHgMtJGoiArNlNx6MQvCq3Y=) 2: D926DBDA605211EF90C2C621C4F9AE02.roa (hash: Cl2PJo7826qehYKKSG2/VdHV6kV/QSQl5KdRQS87oS0=) 3: E7C7DBF8A0E411EF98A7340EC4F9AE02.roa (hash: 7jEw+cOkWTAknu5PcBj2MNehVkDO0rbITl2EdNIaO7o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.crl rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFlKrsbtZqaAoVv-tc2leC1MLYg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 05:46:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 157 (0x9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2EF9, serialNumber=94594AAEC6ED66A680A15BFEB5CDA5782D4C2D88 Validity Not Before: Jun 5 05:46:28 2025 GMT Not After : Jun 12 05:46:28 2025 GMT Subject: CN=68412f35-7a1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:de:89:d5:1a:59:4d:8c:7e:3c:20:a8:79:f3: b0:ff:d9:a5:10:b6:32:2b:01:bd:28:2b:01:fc:07: 99:83:bb:e9:88:b3:04:2b:2c:15:49:b0:16:7e:77: 55:bd:83:79:95:cf:92:06:7b:0b:c7:1a:ea:e8:18: 08:d3:c9:8c:a9:7a:0b:d8:d5:40:2a:32:3f:01:b1: be:38:d3:fa:a4:a6:e1:82:03:02:a4:72:71:ba:5f: 4d:e9:71:d4:ea:58:cd:11:19:da:21:d9:86:c5:40: e0:c5:48:c8:10:08:ce:71:c0:ea:78:a6:a4:6a:67: 24:66:77:4f:57:09:d4:58:e6:d9:d9:73:df:fb:0a: 40:87:46:f6:b9:b0:0e:a6:8b:12:10:19:1c:f6:14: 70:ee:98:6a:38:e0:c0:6f:32:b2:8a:a9:a8:95:97: ca:b3:07:c3:5a:88:a6:9a:c2:ca:5a:f5:e2:45:a2: 6d:96:16:7e:34:0a:87:4f:70:21:ce:83:d9:8d:71: 09:ee:24:04:d4:07:f5:a9:fe:3a:ff:3d:46:47:19: ae:2a:f4:26:6c:1f:77:0a:6a:73:61:bc:4c:c3:15: d9:f1:fd:da:79:a5:c6:be:4e:b7:d1:1f:d9:97:f2: dd:26:cb:12:7b:90:d5:90:11:c8:15:be:41:21:9d: ae:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:D9:11:C9:B3:14:A8:E8:4D:F7:EA:5D:45:52:35:DF:74:14:72:C4 X509v3 Authority Key Identifier: keyid:94:59:4A:AE:C6:ED:66:A6:80:A1:5B:FE:B5:CD:A5:78:2D:4C:2D:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFlKrsbtZqaAoVv-tc2leC1MLYg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:27:b3:7e:eb:ad:bc:18:4f:1d:50:cf:e2:4d:2e:4d:e8:04: fb:3c:4c:1c:6a:86:14:b2:9c:bf:02:85:ad:a1:0a:95:bc:f7: 86:75:ed:85:9a:89:94:94:cb:91:21:28:63:6a:0d:2f:59:f9: 63:3c:f7:ea:c0:91:78:f8:3b:19:f8:a3:5b:df:2e:33:0e:05: 97:35:d9:34:bb:dc:98:74:43:23:33:75:91:6c:0e:88:c4:92: 55:49:b7:48:c1:22:3b:df:41:fd:0e:c1:24:cd:78:6c:81:28: 93:20:ac:7d:27:03:b9:f6:55:07:ae:68:4a:ec:6e:1b:2f:90: fe:c9:86:81:60:40:25:93:e0:52:32:1c:cd:d5:c7:13:68:78: f8:1c:6f:12:31:ac:1a:63:52:88:78:30:9c:0d:d7:fb:b7:dc: a6:85:1f:15:e1:20:1c:38:c3:e3:b1:e5:38:d7:65:ca:40:74: ae:fd:17:fa:7e:35:e3:e3:3a:23:05:d0:01:1f:1a:03:d7:2b: a5:46:f8:dc:fd:a3:6a:a0:85:45:7e:e7:82:23:6d:4f:60:7f: 8f:84:b9:e3:a7:a1:58:c7:93:7b:b5:35:ce:ac:54:d9:ae:e4: 1c:f8:cd:25:5e:fe:d8:83:6f:e6:8c:98:d0:5d:c1:fd:ec:b3: f0:82:ec:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJFRjkxMTAvBgNVBAUTKDk0NTk0QUFFQzZFRDY2QTY4MEExNUJGRUI1Q0RBNTc4 MkQ0QzJEODgwHhcNMjUwNjA1MDU0NjI4WhcNMjUwNjEyMDU0NjI4WjAYMRYwFAYD VQQDEw02ODQxMmYzNS03YTFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArt6J1RpZTYx+PCCoefOw/9mlELYyKwG9KCsB/AeZg7vpiLMEKywVSbAWfndV vYN5lc+SBnsLxxrq6BgI08mMqXoL2NVAKjI/AbG+ONP6pKbhggMCpHJxul9N6XHU 6ljNERnaIdmGxUDgxUjIEAjOccDqeKakamckZndPVwnUWObZ2XPf+wpAh0b2ubAO posSEBkc9hRw7phqOODAbzKyiqmolZfKswfDWoimmsLKWvXiRaJtlhZ+NAqHT3Ah zoPZjXEJ7iQE1Af1qf46/z1GRxmuKvQmbB93CmpzYbxMwxXZ8f3aeaXGvk630R/Z l/LdJssSe5DVkBHIFb5BIZ2uVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGPZEcmz FKjoTffqXUVSNd90FHLEMB8GA1UdIwQYMBaAFJRZSq7G7WamgKFb/rXNpXgtTC2I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkVGOS84MDRENkJGMDYw NTIxMUVGQjI4NkZEMjBDNEY5QUUwMi9sRmxLcnNidFpxYUFvVnYtdGMybGVDMU1M WWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xGbEtyc2J0WnFhQW9Wdi10YzJsZUMxTUxZZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkVGOS84MDRENkJGMDYwNTIxMUVGQjI4NkZEMjBDNEY5QUUwMi9sRmxLcnNidFpx YUFvVnYtdGMybGVDMU1MWWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5J7N+6628GE8dUM/iTS5N6AT7PEwcaoYUspy/AoWtoQqVvPeGde2F momUlMuRIShjag0vWfljPPfqwJF4+DsZ+KNb3y4zDgWXNdk0u9yYdEMjM3WRbA6I xJJVSbdIwSI730H9DsEkzXhsgSiTIKx9JwO59lUHrmhK7G4bL5D+yYaBYEAlk+BS MhzN1ccTaHj4HG8SMawaY1KIeDCcDdf7t9ymhR8V4SAcOMPjseU412XKQHSu/Rf6 fjXj4zojBdABHxoD1yulRvjc/aNqoIVFfueCI21PYH+PhLnjp6FYx5N7tTXOrFTZ ruQc+M0lXv7Yg2/mjJjQXcH97LPwguw3 -----END CERTIFICATE-----Generated at Sat Jun 7 06:21:33 2025 by rpki-client