$ rpki-client -vvf rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.mft File: lqeZovSzCLIlIrzkXjGNanAmKSs.mft (raw, json) Hash identifier: zYr3fDB797etd89Fdb9fzwjqVi6Sq+XOBo9Bpq2pXec= Subject key identifier: 34:12:1F:61:B1:19:8B:54:37:75:BA:76:E9:97:CD:08:3B:E7:09:5F Authority key identifier: 96:A7:99:A2:F4:B3:08:B2:25:22:BC:E4:5E:31:8D:6A:70:26:29:2B Certificate issuer: /CN=A911BA4B/serialNumber=96A799A2F4B308B22522BCE45E318D6A7026292B Certificate serial: 117F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lqeZovSzCLIlIrzkXjGNanAmKSs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.mft Manifest number: 1172 Signing time: Thu 24 Apr 2025 17:15:09 +0000 Manifest this update: Thu 24 Apr 2025 17:15:08 +0000 Manifest next update: Thu 01 May 2025 17:15:08 +0000 Files and hashes: 1: lqeZovSzCLIlIrzkXjGNanAmKSs.crl (hash: 4nuCdxV36Tz3AD9QkKokIcRowzE/NGCfCVqu5xhtCuU=) 2: 318BC266FEA911E8BF138B59C4F9AE02.roa (hash: 33z1F9RZ3yx55dZ5+rGpqQ7gwX1OExcujk8Oepxi/pw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.crl rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lqeZovSzCLIlIrzkXjGNanAmKSs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:15:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4479 (0x117f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BA4B, serialNumber=96A799A2F4B308B22522BCE45E318D6A7026292B Validity Not Before: Apr 24 17:15:08 2025 GMT Not After : May 1 17:15:08 2025 GMT Subject: CN=680a719c-2176 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:2a:9c:9b:ce:60:46:14:67:f5:37:dd:27:3b: 7c:25:c3:ea:16:8b:9e:44:58:e8:c2:9f:45:2f:41: a3:7c:31:ba:c7:f9:72:c5:4a:53:f1:cb:c9:ef:a1: d8:8d:cd:91:7a:98:57:7e:91:ed:65:75:ce:c2:09: 5e:b7:b5:2d:10:60:cb:90:37:8c:cd:11:22:a0:e9: 5f:59:13:94:1c:03:cd:f5:4b:26:c6:94:43:82:37: b5:31:8f:0a:32:4a:61:3a:70:23:c5:c7:50:55:3a: 66:18:af:e0:e9:fe:f6:5b:6e:05:4b:32:a8:7f:18: 6a:0e:34:0a:31:4a:22:4e:1c:58:74:54:d9:76:b3: 52:a2:f7:a3:31:0d:a6:42:ff:33:09:80:3e:60:ee: 2b:2a:d0:ca:b7:3d:5d:dd:08:84:c9:56:63:7b:53: b1:f0:4a:fb:94:ee:03:1c:ab:1a:08:57:08:5f:3c: e7:ff:6d:35:bc:5b:51:09:cd:73:7a:c1:31:28:00: cf:3f:f8:5c:c7:42:6a:57:a4:db:51:f9:25:73:3e: df:36:93:54:e0:5c:4e:a1:23:51:14:2a:3f:32:cd: 7a:26:75:f0:90:9d:68:eb:10:1c:3b:9c:bc:45:b7: d3:aa:e0:de:1d:65:5f:62:bc:b3:68:8e:4a:ff:8d: 0b:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:12:1F:61:B1:19:8B:54:37:75:BA:76:E9:97:CD:08:3B:E7:09:5F X509v3 Authority Key Identifier: keyid:96:A7:99:A2:F4:B3:08:B2:25:22:BC:E4:5E:31:8D:6A:70:26:29:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lqeZovSzCLIlIrzkXjGNanAmKSs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:5e:10:97:94:da:91:24:db:a6:15:f1:dc:e7:42:10:02:d5: 74:93:80:47:09:82:3b:4f:f6:d5:a7:7b:68:22:d1:d9:3c:fa: 75:71:77:d7:80:35:31:9a:6d:4f:d4:62:52:95:7b:80:bf:a4: 7c:77:c8:7c:f9:a1:b4:8f:2b:d9:f5:60:06:03:bf:56:c1:34: b7:76:1c:59:31:ab:cd:5a:64:82:aa:f6:ec:d0:e2:19:be:85: e7:1e:f5:f7:14:09:10:b8:f0:42:4a:b9:59:84:02:4c:5f:69: b7:65:ab:2e:98:1a:dd:db:f3:41:60:96:29:39:2a:13:d1:19: d9:80:5d:e0:63:c4:3f:b6:a0:67:bc:e6:b4:f6:bc:86:47:b1: a4:08:0f:fa:aa:51:0e:2a:e8:15:2c:21:06:0c:10:73:24:2d: ec:43:16:2a:c9:e2:37:42:4e:f4:86:af:5a:24:f7:fe:33:f7: 2b:67:e9:25:4f:05:f6:25:b9:e1:e8:63:1d:26:8b:52:77:99: 2a:69:63:f0:cd:da:ad:9e:c1:e3:9f:8e:65:12:03:ab:d5:e0: 75:57:ff:b4:9a:19:6d:8c:82:58:af:02:62:d3:0b:8a:46:23: ae:3a:64:f1:b3:ec:b4:1a:73:bf:3b:d0:77:7e:a0:b6:2d:ae: 13:4e:27:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEX8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJBNEIxMTAvBgNVBAUTKDk2QTc5OUEyRjRCMzA4QjIyNTIyQkNFNDVFMzE4RDZB NzAyNjI5MkIwHhcNMjUwNDI0MTcxNTA4WhcNMjUwNTAxMTcxNTA4WjAYMRYwFAYD VQQDEw02ODBhNzE5Yy0yMTc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxSqcm85gRhRn9TfdJzt8JcPqFoueRFjowp9FL0GjfDG6x/lyxUpT8cvJ76HY jc2RephXfpHtZXXOwglet7UtEGDLkDeMzREioOlfWROUHAPN9UsmxpRDgje1MY8K MkphOnAjxcdQVTpmGK/g6f72W24FSzKofxhqDjQKMUoiThxYdFTZdrNSovejMQ2m Qv8zCYA+YO4rKtDKtz1d3QiEyVZje1Ox8Er7lO4DHKsaCFcIXzzn/201vFtRCc1z esExKADPP/hcx0JqV6TbUfklcz7fNpNU4FxOoSNRFCo/Ms16JnXwkJ1o6xAcO5y8 RbfTquDeHWVfYryzaI5K/40L8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDQSH2Gx GYtUN3W6dumXzQg75wlfMB8GA1UdIwQYMBaAFJanmaL0swiyJSK85F4xjWpwJikr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkE0Qi9FMzc3RkQ3QUZF QTcxMUU4QTJFNEI0NTdDNEY5QUUwMi9scWVab3ZTekNMSWxJcnprWGpHTmFuQW1L U3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xxZVpvdlN6Q0xJbElyemtYakdOYW5BbUtTcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QkE0Qi9FMzc3RkQ3QUZFQTcxMUU4QTJFNEI0NTdDNEY5QUUwMi9scWVab3ZTekNM SWxJcnprWGpHTmFuQW1LU3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqXhCXlNqRJNumFfHc50IQAtV0k4BHCYI7T/bVp3toItHZPPp1cXfX gDUxmm1P1GJSlXuAv6R8d8h8+aG0jyvZ9WAGA79WwTS3dhxZMavNWmSCqvbs0OIZ voXnHvX3FAkQuPBCSrlZhAJMX2m3ZasumBrd2/NBYJYpOSoT0RnZgF3gY8Q/tqBn vOa09ryGR7GkCA/6qlEOKugVLCEGDBBzJC3sQxYqyeI3Qk70hq9aJPf+M/crZ+kl TwX2Jbnh6GMdJotSd5kqaWPwzdqtnsHjn45lEgOr1eB1V/+0mhltjIJYrwJi0wuK RiOuOmTxs+y0GnO/O9B3fqC2La4TTieh -----END CERTIFICATE-----Generated at Sat Apr 26 13:38:50 2025 by rpki-client