$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB96C/4D2BA8A013A211F091EB636DC4F9AE02/lbEEDPO_7AXOhB2vqalQi3CZfxw.mft File: lbEEDPO_7AXOhB2vqalQi3CZfxw.mft (raw, json) Hash identifier: 3Ad6a8xS8+zIxYXw4klhzZLaGB4R8algWlhAE2NQwC0= Subject key identifier: 8E:DF:10:94:62:5E:45:C0:63:98:1E:91:E8:E6:B2:29:67:8C:16:B0 Authority key identifier: 95:B1:04:0C:F3:BF:EC:05:CE:84:1D:AF:A9:A9:50:8B:70:99:7F:1C Certificate issuer: /CN=A91EB96C/serialNumber=95B1040CF3BFEC05CE841DAFA9A9508B70997F1C Certificate serial: 1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lbEEDPO_7AXOhB2vqalQi3CZfxw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB96C/4D2BA8A013A211F091EB636DC4F9AE02/lbEEDPO_7AXOhB2vqalQi3CZfxw.mft Manifest number: 1B Signing time: Sat 31 May 2025 07:29:07 +0000 Manifest this update: Sat 31 May 2025 07:29:06 +0000 Manifest next update: Sat 07 Jun 2025 07:29:06 +0000 Files and hashes: 1: lbEEDPO_7AXOhB2vqalQi3CZfxw.crl (hash: SPWXj7EzOTP3Y4oMKTntvsysqqclAfAYthcB26jy7Io=) 2: 9EDE26C813A211F095A2D46DC4F9AE02.roa (hash: 9+x+gO7VZZ27bFoPVKXDoWm28PjRwAiv38lgAILmn1U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB96C/4D2BA8A013A211F091EB636DC4F9AE02/lbEEDPO_7AXOhB2vqalQi3CZfxw.crl rsync://rpki.apnic.net/member_repository/A91EB96C/4D2BA8A013A211F091EB636DC4F9AE02/lbEEDPO_7AXOhB2vqalQi3CZfxw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lbEEDPO_7AXOhB2vqalQi3CZfxw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:29:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28 (0x1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB96C, serialNumber=95B1040CF3BFEC05CE841DAFA9A9508B70997F1C Validity Not Before: May 31 07:29:06 2025 GMT Not After : Jun 7 07:29:06 2025 GMT Subject: CN=683aafc2-ea80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:f9:a9:0f:07:34:2c:82:4e:80:44:d9:5f:47: 8e:26:73:4e:05:b9:ca:f8:01:bd:17:1b:3d:f2:6d: a5:7a:1e:24:94:94:58:9c:cc:83:ac:04:72:c0:07: 65:a3:eb:72:7d:62:dc:3a:03:57:95:6f:22:27:dd: 5f:67:30:73:9d:9d:1f:8e:00:6f:43:43:41:df:c1: 42:a7:c1:5c:63:dc:2f:15:4c:65:f0:1c:0e:0e:64: ab:e7:25:7c:46:98:65:59:14:8d:5a:28:bd:d3:b6: d2:60:a3:06:b8:3f:c3:29:72:01:10:b4:52:7c:c8: a8:5b:9f:af:56:1c:73:47:03:61:96:12:b0:f6:cf: 36:29:fb:dc:2a:55:40:48:f6:14:9c:1f:18:e8:76: e8:e7:0c:60:86:ba:ad:af:4a:7e:9f:bc:58:df:70: a6:46:a9:ea:d3:27:aa:57:e7:87:10:9d:6e:c3:b8: 82:03:34:8f:1c:bc:3e:5b:da:cf:36:4a:41:4b:7f: f8:ce:2e:91:4f:99:e9:ed:5f:06:e8:a3:87:af:ec: c7:5b:1b:fd:f9:2b:7f:61:0a:60:c8:72:80:25:93: c9:f9:ca:a4:e2:23:f8:b8:e7:3f:21:10:fc:9c:77: d2:a0:0a:cb:ef:13:1d:7b:66:e6:57:43:c1:df:8b: 11:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:DF:10:94:62:5E:45:C0:63:98:1E:91:E8:E6:B2:29:67:8C:16:B0 X509v3 Authority Key Identifier: keyid:95:B1:04:0C:F3:BF:EC:05:CE:84:1D:AF:A9:A9:50:8B:70:99:7F:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB96C/4D2BA8A013A211F091EB636DC4F9AE02/lbEEDPO_7AXOhB2vqalQi3CZfxw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lbEEDPO_7AXOhB2vqalQi3CZfxw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB96C/4D2BA8A013A211F091EB636DC4F9AE02/lbEEDPO_7AXOhB2vqalQi3CZfxw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:58:2d:69:74:5d:62:ba:06:92:42:9a:fd:1f:38:0d:7a:48: ab:a3:a5:2c:f4:97:19:e6:58:ef:c5:69:e7:db:80:da:bb:b7: 23:01:07:b8:81:d9:7b:4d:94:12:5d:31:a7:16:05:3f:8e:98: 41:8c:07:85:b1:35:d9:73:56:61:8a:b3:ca:f0:8f:09:6f:d7: d9:66:4f:72:cf:48:fd:37:fb:55:5d:0b:70:40:ed:82:39:b5: d1:d4:dd:c2:4e:7e:1f:3f:7d:23:82:45:4e:76:8f:ea:c0:8a: a6:b1:e1:6d:d2:19:e0:a3:6e:f7:db:4f:e0:c7:1d:52:02:b8: 9c:11:b9:02:4a:68:e6:90:88:34:36:39:c0:1c:ac:bb:b3:3f: 32:6c:b3:5a:4e:20:20:91:b3:e7:5a:40:68:39:4a:23:2d:48: a7:2c:69:da:0f:bb:dc:e4:96:fa:ce:ec:bb:e5:bb:43:a6:e5: 8a:99:bf:e8:c0:87:25:d0:4a:39:5a:7e:65:f3:0a:12:18:56: 58:97:07:32:79:84:45:12:4f:91:c0:c7:58:1b:47:2b:71:6a: bc:d8:b1:ff:61:2e:4f:75:d7:b1:1a:70:de:6b:18:0a:73:43: 58:05:e6:78:c3:da:e6:fc:64:a9:af:85:d8:ab:0b:4f:4f:69: 1c:b0:60:1e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF Qjk2QzExMC8GA1UEBRMoOTVCMTA0MENGM0JGRUMwNUNFODQxREFGQTlBOTUwOEI3 MDk5N0YxQzAeFw0yNTA1MzEwNzI5MDZaFw0yNTA2MDcwNzI5MDZaMBgxFjAUBgNV BAMTDTY4M2FhZmMyLWVhODAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDf+akPBzQsgk6ARNlfR44mc04Fucr4Ab0XGz3ybaV6HiSUlFiczIOsBHLAB2Wj 63J9Ytw6A1eVbyIn3V9nMHOdnR+OAG9DQ0HfwUKnwVxj3C8VTGXwHA4OZKvnJXxG mGVZFI1aKL3TttJgowa4P8MpcgEQtFJ8yKhbn69WHHNHA2GWErD2zzYp+9wqVUBI 9hScHxjodujnDGCGuq2vSn6fvFjfcKZGqerTJ6pX54cQnW7DuIIDNI8cvD5b2s82 SkFLf/jOLpFPmentXwboo4ev7MdbG/35K39hCmDIcoAlk8n5yqTiI/i45z8hEPyc d9KgCsvvEx17ZuZXQ8HfixEXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUjt8QlGJe RcBjmB6R6OayKWeMFrAwHwYDVR0jBBgwFoAUlbEEDPO/7AXOhB2vqalQi3CZfxww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVCOTZDLzREMkJBOEEwMTNB MjExRjA5MUVCNjM2REM0RjlBRTAyL2xiRUVEUE9fN0FYT2hCMnZxYWxRaTNDWmZ4 dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbGJFRURQT183QVhPaEIydnFhbFFpM0NaZnh3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVC OTZDLzREMkJBOEEwMTNBMjExRjA5MUVCNjM2REM0RjlBRTAyL2xiRUVEUE9fN0FY T2hCMnZxYWxRaTNDWmZ4dy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHNYLWl0XWK6BpJCmv0fOA16SKujpSz0lxnmWO/FaefbgNq7tyMBB7iB 2XtNlBJdMacWBT+OmEGMB4WxNdlzVmGKs8rwjwlv19lmT3LPSP03+1VdC3BA7YI5 tdHU3cJOfh8/fSOCRU52j+rAiqax4W3SGeCjbvfbT+DHHVICuJwRuQJKaOaQiDQ2 OcAcrLuzPzJss1pOICCRs+daQGg5SiMtSKcsadoPu9zklvrO7Lvlu0Om5YqZv+jA hyXQSjlafmXzChIYVliXBzJ5hEUST5HAx1gbRytxarzYsf9hLk9117EacN5rGApz Q1gF5njD2ub8ZKmvhdirC09PaRywYB4= -----END CERTIFICATE-----Generated at Sat May 31 16:25:55 2025 by rpki-client