$ rpki-client -vvf rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.mft File: Lb7diOsrLcR8tTCQw6OFH8ZSTso.mft (raw, json) Hash identifier: sbe9S90s8VWun/Pr5NgJhw/fi/4fchubuiMKknwKg48= Subject key identifier: 79:FF:3A:47:A2:9A:CA:12:83:F2:6A:7C:6E:00:FB:95:88:F7:95:48 Authority key identifier: 2D:BE:DD:88:EB:2B:2D:C4:7C:B5:30:90:C3:A3:85:1F:C6:52:4E:CA Certificate issuer: /CN=A9118009/serialNumber=2DBEDD88EB2B2DC47CB53090C3A3851FC6524ECA Certificate serial: 0134 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lb7diOsrLcR8tTCQw6OFH8ZSTso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.mft Manifest number: 0131 Signing time: Fri 25 Apr 2025 03:36:48 +0000 Manifest this update: Fri 25 Apr 2025 03:36:47 +0000 Manifest next update: Fri 02 May 2025 03:36:47 +0000 Files and hashes: 1: Lb7diOsrLcR8tTCQw6OFH8ZSTso.crl (hash: G8mOKadDrifxgyqne/yCWrKKGyCjYrlVJLT83YJrljk=) 2: 7AE89AF4513511EE88C64E20C4F9AE02.roa (hash: 5LGDu0CCi6DfJNCRARsLcv5edhJaqrMRVu8YSoKbd1I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.crl rsync://rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lb7diOsrLcR8tTCQw6OFH8ZSTso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:36:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 308 (0x134) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118009, serialNumber=2DBEDD88EB2B2DC47CB53090C3A3851FC6524ECA Validity Not Before: Apr 25 03:36:47 2025 GMT Not After : May 2 03:36:47 2025 GMT Subject: CN=680b0350-5201 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:9a:17:e3:82:17:78:4e:a4:6b:bb:0c:01:fa: 89:81:1a:11:72:ae:cd:d8:4c:99:74:60:b0:c5:14: 7a:d2:b2:ba:c3:9f:cc:e1:7f:37:86:41:4b:c2:36: 3f:ca:6a:1e:f2:a7:a1:53:ff:06:d8:77:f6:b9:8b: a0:a0:b5:00:15:91:e7:7a:44:04:45:37:1a:74:3b: e2:90:97:16:0b:31:c0:2a:87:0f:14:5d:c4:48:95: d1:1e:3b:b0:c5:27:a1:79:67:39:d9:31:34:70:0b: 46:d9:33:7c:50:1a:2a:2b:8c:48:52:17:8b:d2:0b: 36:2b:b8:9d:29:85:00:dc:bf:b8:0d:6a:93:70:b7: fe:52:e8:13:e4:a6:6d:f9:96:01:12:9f:c3:71:1a: b1:9c:2d:a6:c2:99:e0:03:2c:1f:df:23:d6:8b:e4: 3d:b8:07:47:d4:53:ed:7e:ae:70:c8:71:71:72:ab: bd:46:9f:9a:9c:16:ff:af:82:93:7e:de:d3:e3:63: d4:58:3b:02:60:16:66:0a:9a:5e:fc:29:57:49:8a: 44:3d:95:33:f8:92:f9:b3:84:1c:6f:68:35:d5:e4: 89:29:5c:f4:ba:64:4d:05:f4:95:27:f2:f9:64:86: 3b:48:ba:ac:95:c1:49:fd:13:18:bc:94:cd:4d:eb: 90:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:FF:3A:47:A2:9A:CA:12:83:F2:6A:7C:6E:00:FB:95:88:F7:95:48 X509v3 Authority Key Identifier: keyid:2D:BE:DD:88:EB:2B:2D:C4:7C:B5:30:90:C3:A3:85:1F:C6:52:4E:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lb7diOsrLcR8tTCQw6OFH8ZSTso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:ca:fa:66:7d:a4:1f:b4:74:8c:ee:3b:79:b6:7b:5f:85:7b: ba:d7:5d:1b:38:55:a5:44:ad:7c:6e:ed:79:82:99:8a:f7:7e: 50:32:11:22:47:21:9b:59:78:1c:f3:f2:9f:d1:90:d0:3b:5b: 29:23:69:3c:41:90:7f:84:3f:08:6f:c4:14:5d:ab:9c:d8:45: ee:ea:65:0b:1f:cd:70:87:aa:08:21:93:99:48:42:a0:ec:17: 51:50:8b:61:95:c0:2e:3e:4c:df:63:8b:a2:fc:10:f1:ea:9d: 93:d1:3d:80:b7:f8:20:05:b4:0b:ae:65:1f:fb:52:12:80:77: 23:8b:86:d5:83:97:16:69:fb:66:d8:d7:2b:53:0e:1f:3b:da: c4:00:76:3b:22:a4:20:09:98:50:dd:16:33:44:9d:dd:94:d2: f7:12:24:1d:8a:14:7d:7d:26:c9:08:ca:8e:45:be:90:85:b8: 83:aa:b9:3c:f1:c5:da:88:6f:ab:dd:52:14:9c:e4:90:65:49: a1:40:2d:cb:2c:e5:ec:40:a8:74:d8:f5:c5:42:12:41:77:8c: 7e:d6:05:5f:5e:64:28:0e:35:67:9b:7b:dc:0c:c2:22:68:dc: a7:05:05:75:a7:db:fa:cb:4d:66:81:d9:8e:e1:41:c0:8f:30: 8b:1a:15:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTgwMDkxMTAvBgNVBAUTKDJEQkVERDg4RUIyQjJEQzQ3Q0I1MzA5MEMzQTM4NTFG QzY1MjRFQ0EwHhcNMjUwNDI1MDMzNjQ3WhcNMjUwNTAyMDMzNjQ3WjAYMRYwFAYD VQQDEw02ODBiMDM1MC01MjAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy5oX44IXeE6ka7sMAfqJgRoRcq7N2EyZdGCwxRR60rK6w5/M4X83hkFLwjY/ ymoe8qehU/8G2Hf2uYugoLUAFZHnekQERTcadDvikJcWCzHAKocPFF3ESJXRHjuw xSeheWc52TE0cAtG2TN8UBoqK4xIUheL0gs2K7idKYUA3L+4DWqTcLf+UugT5KZt +ZYBEp/DcRqxnC2mwpngAywf3yPWi+Q9uAdH1FPtfq5wyHFxcqu9Rp+anBb/r4KT ft7T42PUWDsCYBZmCppe/ClXSYpEPZUz+JL5s4Qcb2g11eSJKVz0umRNBfSVJ/L5 ZIY7SLqslcFJ/RMYvJTNTeuQ3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHn/Okei msoSg/JqfG4A+5WI95VIMB8GA1UdIwQYMBaAFC2+3YjrKy3EfLUwkMOjhR/GUk7K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODAwOS9FMzVBQ0FGNDUx MzQxMUVFQTM5MjRFMUZDNEY5QUUwMi9MYjdkaU9zckxjUjh0VENRdzZPRkg4WlNU c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xiN2RpT3NyTGNSOHRUQ1F3Nk9GSDhaU1Rzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODAwOS9FMzVBQ0FGNDUxMzQxMUVFQTM5MjRFMUZDNEY5QUUwMi9MYjdkaU9zckxj Ujh0VENRdzZPRkg4WlNUc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuyvpmfaQftHSM7jt5tntfhXu6110bOFWlRK18bu15gpmK935QMhEi RyGbWXgc8/Kf0ZDQO1spI2k8QZB/hD8Ib8QUXauc2EXu6mULH81wh6oIIZOZSEKg 7BdRUIthlcAuPkzfY4ui/BDx6p2T0T2At/ggBbQLrmUf+1ISgHcji4bVg5cWaftm 2NcrUw4fO9rEAHY7IqQgCZhQ3RYzRJ3dlNL3EiQdihR9fSbJCMqORb6QhbiDqrk8 8cXaiG+r3VIUnOSQZUmhQC3LLOXsQKh02PXFQhJBd4x+1gVfXmQoDjVnm3vcDMIi aNynBQV1p9v6y01mgdmO4UHAjzCLGhXY -----END CERTIFICATE-----Generated at Sat Apr 26 05:21:38 2025 by rpki-client