$ rpki-client -vvf rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft File: l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft (raw, json) Hash identifier: iVSDzvtrCbwI3mGlPCXMlKAF0mp49C4GQX6j+eTztaU= Subject key identifier: D2:62:5E:4A:45:EC:4B:1D:21:54:EE:17:CA:35:6B:BD:6F:AE:F2:BE Authority key identifier: 97:B3:DD:2A:B3:C8:9B:C8:A2:BB:C1:DB:80:3B:CE:68:EA:A5:AA:12 Certificate issuer: /CN=A91E39B4/serialNumber=97B3DD2AB3C89BC8A2BBC1DB803BCE68EAA5AA12 Certificate serial: 0B3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7PdKrPIm8iiu8HbgDvOaOqlqhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft Manifest number: 0B2B Signing time: Fri 30 May 2025 19:24:35 +0000 Manifest this update: Fri 30 May 2025 19:24:34 +0000 Manifest next update: Fri 06 Jun 2025 19:24:34 +0000 Files and hashes: 1: l7PdKrPIm8iiu8HbgDvOaOqlqhI.crl (hash: S1v+zEJ7TWZ66BTtMVtoxJEsAGoVf63jRPaenmyAdlk=) 2: 46F57CF8137B11EBA3B47E37C4F9AE02.roa (hash: 2qnnF6MVOAPWKTwVx6xcANvt7+ipRsuxDi1zcVsoM90=) 3: D968823E3DA111EA9A3FD550C4F9AE02.roa (hash: LHN9DyWzlGRcwkpXqFqZ90XaKLujDGwCFAysXhBXguc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.crl rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7PdKrPIm8iiu8HbgDvOaOqlqhI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:24:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2879 (0xb3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E39B4, serialNumber=97B3DD2AB3C89BC8A2BBC1DB803BCE68EAA5AA12 Validity Not Before: May 30 19:24:34 2025 GMT Not After : Jun 6 19:24:34 2025 GMT Subject: CN=683a05f2-9012 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d1:16:b2:1d:ed:69:5a:7c:b5:a4:18:cd:c9: c0:a2:d5:66:81:84:91:02:69:ab:2e:bd:a3:4e:7b: 00:2f:90:e4:88:40:1b:1d:4c:0c:85:95:cc:18:83: fe:01:f3:15:47:90:ef:d1:94:0b:1a:ba:80:3b:78: 1e:3a:b2:d9:3e:ff:7a:29:37:46:85:3d:25:03:46: bd:47:28:34:01:83:d5:ad:a0:02:49:45:b7:6f:87: d3:a4:1b:a8:af:64:bc:5e:37:22:62:9c:60:f9:d3: fb:40:52:34:2e:48:22:7f:16:2a:2a:a3:6e:6b:bc: 07:1e:68:5a:85:42:3d:d0:93:6e:00:53:62:09:13: 2f:d8:a7:86:31:20:3f:f6:b7:c8:9b:71:e8:ee:d9: 4b:e5:f0:3c:15:c3:f4:41:8f:2d:0a:61:7d:91:e7: 9c:11:d5:50:e5:09:95:32:6c:4b:bc:fb:be:6d:da: fb:f1:9d:02:3b:8c:30:b8:7d:70:90:10:dc:cc:c4: b2:58:e3:d0:85:3e:e9:9d:66:80:b7:06:a1:70:62: ca:9f:ed:24:2f:d5:8b:f5:ad:0f:78:32:ba:c2:0f: 33:ef:a4:61:17:e0:97:d3:dc:3c:a9:7e:e1:26:96: cf:93:76:d2:9a:de:87:03:be:7d:fe:b6:91:12:4a: 9d:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:62:5E:4A:45:EC:4B:1D:21:54:EE:17:CA:35:6B:BD:6F:AE:F2:BE X509v3 Authority Key Identifier: keyid:97:B3:DD:2A:B3:C8:9B:C8:A2:BB:C1:DB:80:3B:CE:68:EA:A5:AA:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7PdKrPIm8iiu8HbgDvOaOqlqhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:9c:d5:54:81:dc:d4:02:11:d8:a2:52:a7:43:49:c3:d7:b5: d7:16:f6:dc:d2:ed:3d:f6:fe:e7:e9:ce:51:ff:3f:79:b3:8b: d9:61:13:0e:21:53:e9:a0:51:ef:37:2b:42:e5:0a:7c:e8:14: b5:80:c6:65:3b:e3:e7:4b:ee:51:9f:81:f5:f4:06:ad:7a:1b: 0c:e1:fb:af:f5:a6:36:98:06:cd:66:37:75:6d:4a:40:18:0b: f8:b8:4c:4a:7d:78:79:e1:c7:01:05:43:12:22:ec:e1:f7:bc: fe:52:d7:82:31:77:67:a0:63:5d:26:b9:5d:54:ff:67:3a:2e: 40:7d:bf:72:24:72:54:46:d0:9f:4f:4a:95:4d:de:89:57:79: d5:77:db:f2:53:c4:64:59:43:75:e0:ea:e1:d9:fb:e0:09:fa: 68:4d:3f:5e:f9:61:65:df:eb:c0:d2:3c:5f:bc:ed:b9:7a:e2: ef:79:78:77:7a:5f:10:4c:cf:44:6a:3e:08:12:6f:3c:a1:94: d2:e4:86:10:05:02:26:b4:92:54:57:c9:41:fc:41:36:09:f5: 23:3c:79:3a:46:f1:43:62:67:83:4b:41:45:66:e5:1f:6f:f0: 11:13:0c:b2:45:a5:ca:1e:7c:08:91:50:6b:44:26:8a:6f:a8: 00:e1:a2:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCz8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM5QjQxMTAvBgNVBAUTKDk3QjNERDJBQjNDODlCQzhBMkJCQzFEQjgwM0JDRTY4 RUFBNUFBMTIwHhcNMjUwNTMwMTkyNDM0WhcNMjUwNjA2MTkyNDM0WjAYMRYwFAYD VQQDEw02ODNhMDVmMi05MDEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu9EWsh3taVp8taQYzcnAotVmgYSRAmmrLr2jTnsAL5DkiEAbHUwMhZXMGIP+ AfMVR5Dv0ZQLGrqAO3geOrLZPv96KTdGhT0lA0a9Ryg0AYPVraACSUW3b4fTpBuo r2S8XjciYpxg+dP7QFI0LkgifxYqKqNua7wHHmhahUI90JNuAFNiCRMv2KeGMSA/ 9rfIm3Ho7tlL5fA8FcP0QY8tCmF9keecEdVQ5QmVMmxLvPu+bdr78Z0CO4wwuH1w kBDczMSyWOPQhT7pnWaAtwahcGLKn+0kL9WL9a0PeDK6wg8z76RhF+CX09w8qX7h JpbPk3bSmt6HA759/raREkqdewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNJiXkpF 7EsdIVTuF8o1a71vrvK+MB8GA1UdIwQYMBaAFJez3SqzyJvIorvB24A7zmjqpaoS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzlCNC8xRUUxODI5RTNE QTExMUVBOEI2N0U5NEZDNEY5QUUwMi9sN1BkS3JQSW04aWl1OEhiZ0R2T2FPcWxx aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w3UGRLclBJbThpaXU4SGJnRHZPYU9xbHFoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzlCNC8xRUUxODI5RTNEQTExMUVBOEI2N0U5NEZDNEY5QUUwMi9sN1BkS3JQSW04 aWl1OEhiZ0R2T2FPcWxxaEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcnNVUgdzUAhHYolKnQ0nD17XXFvbc0u099v7n6c5R/z95s4vZYRMO IVPpoFHvNytC5Qp86BS1gMZlO+PnS+5Rn4H19AatehsM4fuv9aY2mAbNZjd1bUpA GAv4uExKfXh54ccBBUMSIuzh97z+UteCMXdnoGNdJrldVP9nOi5Afb9yJHJURtCf T0qVTd6JV3nVd9vyU8RkWUN14Orh2fvgCfpoTT9e+WFl3+vA0jxfvO25euLveXh3 el8QTM9Eaj4IEm88oZTS5IYQBQImtJJUV8lB/EE2CfUjPHk6RvFDYmeDS0FFZuUf b/AREwyyRaXKHnwIkVBrRCaKb6gA4aI9 -----END CERTIFICATE-----Generated at Sat May 31 17:23:41 2025 by rpki-client