$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE6E8/7BCAFF02091D11EA93BD9E56C4F9AE02/limscQ0-IdWZGSjVmk22VBGpa_8.mft File: limscQ0-IdWZGSjVmk22VBGpa_8.mft (raw, json) Hash identifier: hL/QoN01NTz/p7DMwUQ/SEic3In6ImDP7+8Ui4ugc/U= Subject key identifier: 4D:91:54:E1:33:A7:C4:2B:40:11:4E:4D:79:51:4D:1E:36:5A:4E:DF Authority key identifier: 96:29:AC:71:0D:3E:21:D5:99:19:28:D5:9A:4D:B6:54:11:A9:6B:FF Certificate issuer: /CN=A91EE6E8/serialNumber=9629AC710D3E21D5991928D59A4DB65411A96BFF Certificate serial: 0C37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/limscQ0-IdWZGSjVmk22VBGpa_8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE6E8/7BCAFF02091D11EA93BD9E56C4F9AE02/limscQ0-IdWZGSjVmk22VBGpa_8.mft Manifest number: 0C2E Signing time: Fri 30 May 2025 18:44:31 +0000 Manifest this update: Fri 30 May 2025 18:44:31 +0000 Manifest next update: Fri 06 Jun 2025 18:44:31 +0000 Files and hashes: 1: limscQ0-IdWZGSjVmk22VBGpa_8.crl (hash: hFOKEpM1FpUimMNk4TxCbBpcUPyabupG515+1/qkbHw=) 2: 9CDAADC2091E11EAB375615BC4F9AE02.roa (hash: cTVFkw9EC/7+0AhzRm+1VoJiYeWjlXwK0sbhIidN0dw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE6E8/7BCAFF02091D11EA93BD9E56C4F9AE02/limscQ0-IdWZGSjVmk22VBGpa_8.crl rsync://rpki.apnic.net/member_repository/A91EE6E8/7BCAFF02091D11EA93BD9E56C4F9AE02/limscQ0-IdWZGSjVmk22VBGpa_8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/limscQ0-IdWZGSjVmk22VBGpa_8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 18:44:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3127 (0xc37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE6E8, serialNumber=9629AC710D3E21D5991928D59A4DB65411A96BFF Validity Not Before: May 30 18:44:31 2025 GMT Not After : Jun 6 18:44:31 2025 GMT Subject: CN=6839fc8f-68f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:08:40:10:aa:8d:2b:38:e5:c0:df:ce:eb:d4: 63:c5:6c:93:f9:48:e0:b9:8a:cb:8b:35:71:ae:86: 3e:83:f2:80:57:08:bd:fb:a3:d7:b2:97:9f:59:8d: 61:62:f6:33:54:5d:5d:fe:79:ab:94:d2:c3:af:3b: 16:fa:d7:5d:aa:18:93:ec:8e:14:85:48:08:a4:56: 05:6f:ba:d7:23:30:1f:ad:96:39:ea:cd:6d:c9:58: 87:62:dc:44:6c:10:57:55:11:50:80:a2:7d:00:01: 23:f6:74:d6:a6:6d:2f:2c:b0:3b:1d:d8:34:85:1d: e7:1f:c1:2b:ab:41:7f:2d:b6:7d:eb:63:02:9a:e3: f6:6b:1d:ce:af:01:ca:1b:b7:82:fd:e8:14:2f:6f: fb:d9:eb:6b:7a:b8:04:47:25:e6:44:aa:5b:fc:25: 91:44:79:06:55:d4:6b:29:1d:9f:89:74:49:d9:35: c6:d4:2e:bd:2b:85:4d:1d:57:96:9a:17:e2:e0:77: 86:4e:86:7e:06:d4:03:55:98:1e:1e:e8:f8:45:91: ef:84:c6:c7:7f:6e:76:1d:b0:5e:71:f0:87:c6:30: 67:ee:b5:8e:1d:f0:96:72:3b:67:15:e5:6c:fc:26: 2f:78:d6:aa:a4:f1:bc:d9:25:2e:2f:15:7c:88:98: 8c:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:91:54:E1:33:A7:C4:2B:40:11:4E:4D:79:51:4D:1E:36:5A:4E:DF X509v3 Authority Key Identifier: keyid:96:29:AC:71:0D:3E:21:D5:99:19:28:D5:9A:4D:B6:54:11:A9:6B:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE6E8/7BCAFF02091D11EA93BD9E56C4F9AE02/limscQ0-IdWZGSjVmk22VBGpa_8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/limscQ0-IdWZGSjVmk22VBGpa_8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE6E8/7BCAFF02091D11EA93BD9E56C4F9AE02/limscQ0-IdWZGSjVmk22VBGpa_8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:c3:27:c6:5b:10:de:cb:28:26:da:1a:bc:d6:b1:ae:62:74: 64:b1:1c:70:a6:61:82:98:7a:3b:8a:64:4d:5a:f7:d7:3c:06: fc:18:c4:5c:de:e2:51:6d:0e:34:c8:08:c1:f9:0d:63:de:09: ee:f4:e9:f4:ad:e5:0b:7c:80:d4:a7:37:22:4b:16:8e:db:23: 60:6b:67:eb:88:44:81:91:6e:f5:49:0f:86:63:57:70:08:5b: 72:29:1f:3b:04:bc:30:36:cb:3c:b5:0e:2e:b2:2c:03:11:7e: db:ef:02:76:ee:5b:27:76:29:7b:ef:aa:5a:4f:5e:97:f2:c5: 8d:f3:ab:ff:1d:c1:2e:0d:b3:3f:b0:d2:10:f0:5c:fd:7d:0d: d3:4f:09:77:aa:e4:23:49:21:5e:52:b6:9a:e6:c3:95:e9:ac: 33:f0:86:c2:73:e6:4c:92:6b:63:f8:37:12:7c:3b:f4:37:cf: 29:8e:26:b8:e1:81:25:d9:c2:5a:e3:73:4a:ce:a7:07:03:e5: 20:92:dd:19:4d:5d:90:e2:ad:97:12:ca:13:04:5a:b7:f9:bc: 09:0c:f3:6d:29:be:d6:3b:73:7d:c8:09:07:3a:4f:0f:e7:f9: 6a:0c:80:8b:43:11:70:0d:b3:3f:8c:45:d2:77:18:52:04:72: a7:33:30:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDDcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU2RTgxMTAvBgNVBAUTKDk2MjlBQzcxMEQzRTIxRDU5OTE5MjhENTlBNERCNjU0 MTFBOTZCRkYwHhcNMjUwNTMwMTg0NDMxWhcNMjUwNjA2MTg0NDMxWjAYMRYwFAYD VQQDEw02ODM5ZmM4Zi02OGYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsQhAEKqNKzjlwN/O69RjxWyT+UjguYrLizVxroY+g/KAVwi9+6PXspefWY1h YvYzVF1d/nmrlNLDrzsW+tddqhiT7I4UhUgIpFYFb7rXIzAfrZY56s1tyViHYtxE bBBXVRFQgKJ9AAEj9nTWpm0vLLA7Hdg0hR3nH8Erq0F/LbZ962MCmuP2ax3OrwHK G7eC/egUL2/72etrergERyXmRKpb/CWRRHkGVdRrKR2fiXRJ2TXG1C69K4VNHVeW mhfi4HeGToZ+BtQDVZgeHuj4RZHvhMbHf252HbBecfCHxjBn7rWOHfCWcjtnFeVs /CYveNaqpPG82SUuLxV8iJiMCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE2RVOEz p8QrQBFOTXlRTR42Wk7fMB8GA1UdIwQYMBaAFJYprHENPiHVmRko1ZpNtlQRqWv/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTZFOC83QkNBRkYwMjA5 MUQxMUVBOTNCRDlFNTZDNEY5QUUwMi9saW1zY1EwLUlkV1pHU2pWbWsyMlZCR3Bh XzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xpbXNjUTAtSWRXWkdTalZtazIyVkJHcGFfOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTZFOC83QkNBRkYwMjA5MUQxMUVBOTNCRDlFNTZDNEY5QUUwMi9saW1zY1EwLUlk V1pHU2pWbWsyMlZCR3BhXzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMwyfGWxDeyygm2hq81rGuYnRksRxwpmGCmHo7imRNWvfXPAb8GMRc 3uJRbQ40yAjB+Q1j3gnu9On0reULfIDUpzciSxaO2yNga2friESBkW71SQ+GY1dw CFtyKR87BLwwNss8tQ4usiwDEX7b7wJ27lsndil776paT16X8sWN86v/HcEuDbM/ sNIQ8Fz9fQ3TTwl3quQjSSFeUraa5sOV6awz8IbCc+ZMkmtj+DcSfDv0N88pjia4 4YEl2cJa43NKzqcHA+Ugkt0ZTV2Q4q2XEsoTBFq3+bwJDPNtKb7WO3N9yAkHOk8P 5/lqDICLQxFwDbM/jEXSdxhSBHKnMzDJ -----END CERTIFICATE-----Generated at Sat May 31 17:23:36 2025 by rpki-client