$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft File: lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft (raw, json) Hash identifier: SD42nRrogeokc994Bt5i+TMI9doMn2UUPj27mofM1UM= Subject key identifier: A0:3A:17:79:B5:AB:1A:87:35:7F:36:91:97:7D:50:E0:CE:52:7E:90 Authority key identifier: 95:06:8B:B3:0A:BC:7E:00:7F:D8:38:7E:4D:E0:A8:3E:FA:AD:D4:72 Certificate issuer: /CN=A91E9DF8/serialNumber=95068BB30ABC7E007FD8387E4DE0A83EFAADD472 Certificate serial: 05E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQaLswq8fgB_2Dh-TeCoPvqt1HI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft Manifest number: 05E2 Signing time: Fri 06 Jun 2025 23:00:27 +0000 Manifest this update: Fri 06 Jun 2025 23:00:26 +0000 Manifest next update: Fri 13 Jun 2025 23:00:26 +0000 Files and hashes: 1: lQaLswq8fgB_2Dh-TeCoPvqt1HI.crl (hash: 1CXuUT59IFZ3+KWPf5SPCzqv+Hp1PLd4O5sdNOjpCQY=) 2: A8086732B6DA11EBB7B67954C4F9AE02.roa (hash: ldWjzJ4l8BsIeHREFrvU51ElQcTYEq5MkB9HbZsC/bI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.crl rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQaLswq8fgB_2Dh-TeCoPvqt1HI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 23:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1512 (0x5e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9DF8, serialNumber=95068BB30ABC7E007FD8387E4DE0A83EFAADD472 Validity Not Before: Jun 6 23:00:26 2025 GMT Not After : Jun 13 23:00:26 2025 GMT Subject: CN=6843730a-2dac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:db:ea:23:8d:c4:b6:15:cb:b9:5d:a4:44:65: 76:98:a7:62:ef:26:9f:57:5f:20:3a:dd:f8:08:6f: be:09:b0:1e:cc:f3:a1:76:19:db:f2:3c:11:5f:29: 59:8a:a8:69:70:09:d0:7b:f1:7b:7d:a1:3d:97:ae: 09:6d:a4:0b:ca:69:a0:40:eb:f8:0b:6f:3e:58:38: 01:fd:83:d0:59:3e:79:03:47:4a:68:50:cb:85:1d: f1:35:de:b7:a8:72:df:b0:2e:ac:c7:21:f2:b2:e8: d1:4d:19:a7:58:8b:97:1b:81:92:ec:90:78:5a:c5: f8:82:4f:3e:d9:28:85:70:56:5b:00:93:89:a8:52: 5a:ba:67:5d:9e:52:2b:8c:df:33:d7:38:f9:2f:80: 5b:b3:55:90:84:3d:84:f1:cd:fb:2d:e7:82:b1:41: ed:20:76:3c:9f:29:5b:b8:5a:86:22:d5:04:ae:b9: 19:1f:13:dc:7e:bb:4d:f1:c4:ed:b7:66:6e:ad:62: ca:46:62:fe:00:31:cf:e8:a1:0f:14:a1:14:e3:61: 08:3e:11:11:dd:c4:b9:48:17:0d:6a:50:00:7e:fa: d0:71:4a:df:f5:84:c8:4c:50:4d:3c:a6:eb:80:e0: cc:5e:8f:b5:fe:f6:1c:ac:a6:f1:15:c0:26:95:53: 92:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:3A:17:79:B5:AB:1A:87:35:7F:36:91:97:7D:50:E0:CE:52:7E:90 X509v3 Authority Key Identifier: keyid:95:06:8B:B3:0A:BC:7E:00:7F:D8:38:7E:4D:E0:A8:3E:FA:AD:D4:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQaLswq8fgB_2Dh-TeCoPvqt1HI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:ad:61:9d:6e:c7:44:b7:10:24:59:e4:2f:86:a9:e3:98:bb: 4b:a9:74:71:f0:46:56:61:a6:77:9e:70:cc:57:3a:1a:82:ed: 78:05:f0:fb:e9:70:6f:09:de:6b:6d:81:1c:0f:a3:14:7d:42: 4d:e4:32:54:cf:aa:be:22:a7:c5:c4:b7:9d:ea:3d:52:dc:d0: 1b:99:df:0e:85:2c:ba:77:26:ac:8d:04:ef:3d:03:8e:7c:7a: 49:5d:9e:07:67:7b:18:44:98:ec:6d:7a:4c:3c:9f:5d:4b:e3: 68:48:06:9f:26:e8:1d:90:56:d9:81:e8:a0:e1:99:53:f0:9c: 7e:71:6f:2e:8f:ce:d9:23:1c:8f:c8:1e:3a:2f:7b:54:ba:d7: 8f:55:a1:78:60:4b:44:75:4b:13:12:ba:f3:7f:fe:40:09:a6: f9:77:3d:dd:f5:a0:36:1b:6d:3e:5c:89:78:83:b5:c9:c0:91: 5f:4e:88:10:4d:fd:de:12:91:b6:a5:7b:36:22:cc:c7:a6:0d: 0e:88:55:34:2d:60:4a:d2:21:72:c8:26:c2:c0:c1:a5:84:b3: 14:e5:ab:2e:5e:1c:e8:eb:d0:eb:f8:3d:94:e0:98:44:e9:74: 16:cd:ed:3f:c2:16:8e:ac:23:17:29:6c:39:94:a3:9b:27:f8: e4:23:67:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBegwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlERjgxMTAvBgNVBAUTKDk1MDY4QkIzMEFCQzdFMDA3RkQ4Mzg3RTRERTBBODNF RkFBREQ0NzIwHhcNMjUwNjA2MjMwMDI2WhcNMjUwNjEzMjMwMDI2WjAYMRYwFAYD VQQDEw02ODQzNzMwYS0yZGFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArdvqI43EthXLuV2kRGV2mKdi7yafV18gOt34CG++CbAezPOhdhnb8jwRXylZ iqhpcAnQe/F7faE9l64JbaQLymmgQOv4C28+WDgB/YPQWT55A0dKaFDLhR3xNd63 qHLfsC6sxyHysujRTRmnWIuXG4GS7JB4WsX4gk8+2SiFcFZbAJOJqFJaumddnlIr jN8z1zj5L4Bbs1WQhD2E8c37LeeCsUHtIHY8nylbuFqGItUErrkZHxPcfrtN8cTt t2ZurWLKRmL+ADHP6KEPFKEU42EIPhER3cS5SBcNalAAfvrQcUrf9YTITFBNPKbr gODMXo+1/vYcrKbxFcAmlVOSEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKA6F3m1 qxqHNX82kZd9UODOUn6QMB8GA1UdIwQYMBaAFJUGi7MKvH4Af9g4fk3gqD76rdRy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOURGOC80QjNCODgxRUI2 RDkxMUVCOEY4NjU1NTRDNEY5QUUwMi9sUWFMc3dxOGZnQl8yRGgtVGVDb1B2cXQx SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xRYUxzd3E4ZmdCXzJEaC1UZUNvUHZxdDFISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OURGOC80QjNCODgxRUI2RDkxMUVCOEY4NjU1NTRDNEY5QUUwMi9sUWFMc3dxOGZn Ql8yRGgtVGVDb1B2cXQxSEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4rWGdbsdEtxAkWeQvhqnjmLtLqXRx8EZWYaZ3nnDMVzoagu14BfD7 6XBvCd5rbYEcD6MUfUJN5DJUz6q+IqfFxLed6j1S3NAbmd8OhSy6dyasjQTvPQOO fHpJXZ4HZ3sYRJjsbXpMPJ9dS+NoSAafJugdkFbZgeig4ZlT8Jx+cW8uj87ZIxyP yB46L3tUutePVaF4YEtEdUsTErrzf/5ACab5dz3d9aA2G20+XIl4g7XJwJFfTogQ Tf3eEpG2pXs2IszHpg0OiFU0LWBK0iFyyCbCwMGlhLMU5asuXhzo69Dr+D2U4JhE 6XQWze0/whaOrCMXKWw5lKObJ/jkI2dA -----END CERTIFICATE-----Generated at Sat Jun 7 06:24:45 2025 by rpki-client