$ rpki-client -vvf rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.mft File: Lb7diOsrLcR8tTCQw6OFH8ZSTso.mft (raw, json) Hash identifier: khriIPMq5Sk4bvSg2wrjpdvxcfIuaSYVLOVb1/GIc1U= Subject key identifier: A2:3F:DF:8E:05:C2:79:47:EA:43:A0:9A:76:47:B6:C8:BC:D0:72:4B Authority key identifier: 2D:BE:DD:88:EB:2B:2D:C4:7C:B5:30:90:C3:A3:85:1F:C6:52:4E:CA Certificate issuer: /CN=A9118009/serialNumber=2DBEDD88EB2B2DC47CB53090C3A3851FC6524ECA Certificate serial: 014D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lb7diOsrLcR8tTCQw6OFH8ZSTso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.mft Manifest number: 014A Signing time: Sun 15 Jun 2025 03:25:17 +0000 Manifest this update: Sun 15 Jun 2025 03:25:16 +0000 Manifest next update: Sun 22 Jun 2025 03:25:16 +0000 Files and hashes: 1: Lb7diOsrLcR8tTCQw6OFH8ZSTso.crl (hash: AJedXI1rOkTlSlKpttiqDTbh/SbMYP1flFivtQp16cM=) 2: 7AE89AF4513511EE88C64E20C4F9AE02.roa (hash: 5LGDu0CCi6DfJNCRARsLcv5edhJaqrMRVu8YSoKbd1I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.crl rsync://rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lb7diOsrLcR8tTCQw6OFH8ZSTso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 333 (0x14d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118009, serialNumber=2DBEDD88EB2B2DC47CB53090C3A3851FC6524ECA Validity Not Before: Jun 15 03:25:16 2025 GMT Not After : Jun 22 03:25:16 2025 GMT Subject: CN=684e3d1d-4455 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:6b:3c:d7:4c:2f:ed:34:68:78:27:01:79:9e: 35:4f:17:af:1f:ab:3a:86:e7:ac:1e:9e:4f:60:7c: cf:2f:d0:74:11:3b:f0:8d:3f:f0:79:48:ae:0e:b3: 5a:ee:15:4b:75:29:e7:9f:64:23:78:f8:17:16:bb: 4b:8d:c0:29:3c:93:a1:18:ec:26:30:a3:11:c7:f4: 6b:09:63:ed:f2:0b:a8:6f:64:92:3d:2d:18:1a:db: fd:6a:ad:47:ab:f6:6f:0b:2b:99:41:8e:5d:a8:96: b2:0a:b7:75:dc:95:5d:91:58:cd:2d:d0:ea:97:74: cd:f3:ee:80:9d:76:1a:c1:12:be:93:b8:2d:10:9e: ae:1b:28:ef:27:d9:a4:c6:6a:24:de:c9:ef:f7:92: ea:55:76:1e:9b:66:76:e8:61:89:f7:cf:e0:ba:45: 19:c7:5c:1f:61:c5:dd:f7:d2:4b:78:88:57:cc:09: 58:0e:06:30:87:2a:03:f3:c8:e8:8a:37:2f:c0:cf: 16:a1:2d:c4:cd:f8:ab:a7:f1:a3:f7:3b:27:88:4e: e3:92:02:c5:4c:6a:54:a0:b4:e1:36:89:0f:e5:aa: 80:61:eb:97:f9:61:71:2c:e3:5e:3b:b3:d2:60:6e: 67:97:50:3a:11:0e:c3:0b:2a:8b:7d:ba:a0:3d:1e: 92:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:3F:DF:8E:05:C2:79:47:EA:43:A0:9A:76:47:B6:C8:BC:D0:72:4B X509v3 Authority Key Identifier: keyid:2D:BE:DD:88:EB:2B:2D:C4:7C:B5:30:90:C3:A3:85:1F:C6:52:4E:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lb7diOsrLcR8tTCQw6OFH8ZSTso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:8b:c0:27:5c:6e:ec:f8:c1:a9:65:1a:3d:1c:d4:bc:af:8b: 69:36:4a:fd:d5:1d:66:00:86:00:7e:16:72:59:15:aa:7a:8d: f3:c8:74:9b:f9:ca:d5:03:72:e4:5a:da:7d:3b:13:fd:45:3e: 7c:03:a5:01:53:fc:4d:8a:4d:6b:9d:1f:64:14:c9:71:65:0e: 7d:e6:9e:f4:69:ee:87:5e:dc:03:2d:62:5c:7a:42:f3:bd:09: ba:d9:36:b2:7e:d6:e8:8a:34:5b:2e:d6:3e:c5:f3:11:08:25: 41:5c:9e:52:f0:df:07:44:2f:12:6d:7a:ab:ef:ed:c5:1f:e6: 89:fa:94:62:e3:a4:a4:71:ee:dc:32:fe:1b:d2:cf:f8:9f:9b: bc:74:f0:68:a4:70:bd:6b:5d:66:39:84:0a:0d:f6:d1:98:1f: 1b:e3:b8:ca:4c:6b:de:a7:36:20:ba:9b:57:e4:1b:5b:88:3f: 0f:ac:3c:3d:45:d8:13:00:d6:2c:e7:11:d4:4a:bf:df:82:e8: c6:4e:0c:b4:0e:32:50:0c:42:51:0d:bf:e7:ae:b0:7b:54:a5: b6:c5:20:b3:75:a5:45:8a:ef:00:be:5b:57:52:83:57:90:0b: f9:42:d4:50:b9:c7:6b:44:61:c3:ab:47:00:b4:ca:3e:d1:07: dc:b0:76:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAU0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTgwMDkxMTAvBgNVBAUTKDJEQkVERDg4RUIyQjJEQzQ3Q0I1MzA5MEMzQTM4NTFG QzY1MjRFQ0EwHhcNMjUwNjE1MDMyNTE2WhcNMjUwNjIyMDMyNTE2WjAYMRYwFAYD VQQDEw02ODRlM2QxZC00NDU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApWs810wv7TRoeCcBeZ41TxevH6s6huesHp5PYHzPL9B0ETvwjT/weUiuDrNa 7hVLdSnnn2QjePgXFrtLjcApPJOhGOwmMKMRx/RrCWPt8guob2SSPS0YGtv9aq1H q/ZvCyuZQY5dqJayCrd13JVdkVjNLdDql3TN8+6AnXYawRK+k7gtEJ6uGyjvJ9mk xmok3snv95LqVXYem2Z26GGJ98/gukUZx1wfYcXd99JLeIhXzAlYDgYwhyoD88jo ijcvwM8WoS3Ezfirp/Gj9zsniE7jkgLFTGpUoLThNokP5aqAYeuX+WFxLONeO7PS YG5nl1A6EQ7DCyqLfbqgPR6SHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKI/344F wnlH6kOgmnZHtsi80HJLMB8GA1UdIwQYMBaAFC2+3YjrKy3EfLUwkMOjhR/GUk7K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODAwOS9FMzVBQ0FGNDUx MzQxMUVFQTM5MjRFMUZDNEY5QUUwMi9MYjdkaU9zckxjUjh0VENRdzZPRkg4WlNU c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xiN2RpT3NyTGNSOHRUQ1F3Nk9GSDhaU1Rzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODAwOS9FMzVBQ0FGNDUxMzQxMUVFQTM5MjRFMUZDNEY5QUUwMi9MYjdkaU9zckxj Ujh0VENRdzZPRkg4WlNUc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRi8AnXG7s+MGpZRo9HNS8r4tpNkr91R1mAIYAfhZyWRWqeo3zyHSb +crVA3LkWtp9OxP9RT58A6UBU/xNik1rnR9kFMlxZQ595p70ae6HXtwDLWJcekLz vQm62TayftboijRbLtY+xfMRCCVBXJ5S8N8HRC8SbXqr7+3FH+aJ+pRi46Skce7c Mv4b0s/4n5u8dPBopHC9a11mOYQKDfbRmB8b47jKTGvepzYguptX5BtbiD8PrDw9 RdgTANYs5xHUSr/fgujGTgy0DjJQDEJRDb/nrrB7VKW2xSCzdaVFiu8AvltXUoNX kAv5QtRQucdrRGHDq0cAtMo+0QfcsHar -----END CERTIFICATE-----Generated at Sun Jun 15 09:30:37 2025 by rpki-client