$ rpki-client -vvf rpki.apnic.net/member_repository/A911D340/0468397A3C4E11EA94725C28C4F9AE02/LnNTksaGuNjciMDM1Zvyrvun6LA.mft File: LnNTksaGuNjciMDM1Zvyrvun6LA.mft (raw, json) Hash identifier: TSOrjr9pdOCsdqHHA9xkUSYgh+LBZVlOG3gtOc+btHM= Subject key identifier: 90:44:78:E0:C3:B3:C5:31:81:29:AB:BA:E6:EA:66:26:56:34:70:05 Authority key identifier: 2E:73:53:92:C6:86:B8:D8:DC:88:C0:CC:D5:9B:F2:AE:FB:A7:E8:B0 Certificate issuer: /CN=A911D340/serialNumber=2E735392C686B8D8DC88C0CCD59BF2AEFBA7E8B0 Certificate serial: 0B1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnNTksaGuNjciMDM1Zvyrvun6LA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D340/0468397A3C4E11EA94725C28C4F9AE02/LnNTksaGuNjciMDM1Zvyrvun6LA.mft Manifest number: 0B16 Signing time: Thu 24 Apr 2025 19:07:51 +0000 Manifest this update: Thu 24 Apr 2025 19:07:51 +0000 Manifest next update: Thu 01 May 2025 19:07:51 +0000 Files and hashes: 1: LnNTksaGuNjciMDM1Zvyrvun6LA.crl (hash: KZ67CYVEh2vArUkJoVf3KlJshSDKoLB/XXENpkEWk8Q=) 2: 14B2A85C3DA611EAAD093F5EC4F9AE02.roa (hash: YBDDFTyuQNBpFqBokEWPqRZhpMARMTl/5hq7JGaNUzU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D340/0468397A3C4E11EA94725C28C4F9AE02/LnNTksaGuNjciMDM1Zvyrvun6LA.crl rsync://rpki.apnic.net/member_repository/A911D340/0468397A3C4E11EA94725C28C4F9AE02/LnNTksaGuNjciMDM1Zvyrvun6LA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnNTksaGuNjciMDM1Zvyrvun6LA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:07:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2846 (0xb1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D340, serialNumber=2E735392C686B8D8DC88C0CCD59BF2AEFBA7E8B0 Validity Not Before: Apr 24 19:07:51 2025 GMT Not After : May 1 19:07:51 2025 GMT Subject: CN=680a8c07-04ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:e2:f5:3f:16:f0:a7:b4:23:45:ca:17:d2:e8: 5b:f1:a2:d3:cf:2b:1d:0f:e9:cb:36:ef:cd:aa:af: 67:b1:08:8f:b8:88:b4:3a:c3:a5:23:d8:d7:29:ef: c0:a1:1f:aa:f8:e7:88:42:c1:53:c4:83:89:96:f7: a9:17:83:2d:92:41:96:45:0f:47:d6:8b:e3:a1:85: 29:93:16:e5:e8:60:89:60:5b:4f:f7:97:5b:82:01: a2:9c:e2:a6:1f:19:47:5d:33:b9:59:21:16:0e:34: 7b:8a:eb:62:26:9f:02:16:ce:7e:e7:b3:ff:4c:0a: e2:0f:f8:8b:d7:70:6f:2a:34:c4:91:1d:03:22:b4: 83:49:8f:bc:bf:59:69:c0:de:91:05:a2:92:0b:eb: 13:cc:12:16:2c:b9:34:5e:17:0e:04:6e:ff:0c:77: c9:1e:37:20:0f:4d:b9:0a:2b:f6:f5:d5:53:af:2e: ab:47:d3:82:b1:ee:46:d9:0a:38:41:57:34:7d:f4: b1:53:18:67:e5:9a:9f:e3:83:cd:d3:f6:a2:46:a6: 2c:1b:24:13:a5:39:cf:6d:e5:05:b7:35:76:fa:84: 8f:23:98:b7:76:95:df:cc:ed:02:25:e2:ef:c1:4c: 82:f2:17:8f:ce:bf:0e:ab:84:1d:0b:b4:f9:ed:f5: f9:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:44:78:E0:C3:B3:C5:31:81:29:AB:BA:E6:EA:66:26:56:34:70:05 X509v3 Authority Key Identifier: keyid:2E:73:53:92:C6:86:B8:D8:DC:88:C0:CC:D5:9B:F2:AE:FB:A7:E8:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D340/0468397A3C4E11EA94725C28C4F9AE02/LnNTksaGuNjciMDM1Zvyrvun6LA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnNTksaGuNjciMDM1Zvyrvun6LA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D340/0468397A3C4E11EA94725C28C4F9AE02/LnNTksaGuNjciMDM1Zvyrvun6LA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:05:f0:62:37:16:55:5f:1b:4c:24:aa:14:1c:53:4f:2d:d6: 02:39:9d:c7:ff:0e:b3:45:bc:df:1c:3d:9e:0f:14:3b:ac:91: 20:38:e2:47:7c:85:71:0d:29:a7:4d:60:1e:40:ab:dd:3f:ea: 2f:17:f4:0a:43:4c:ad:f9:8d:bf:a5:4b:79:b1:58:4b:6a:04: f6:fd:b8:0f:b5:e0:cc:46:00:b9:9e:25:d1:85:21:10:22:b1: 8f:10:5b:18:55:e2:4c:71:b3:9b:c2:d2:3d:5f:df:8a:ac:3a: 2e:33:e1:f1:bf:53:fc:ba:25:10:61:bf:bd:76:73:ae:35:d1: 63:2c:c7:9e:e5:aa:82:fa:78:92:bb:4d:ad:27:c1:0d:6b:70: a8:f0:9c:4c:51:7b:3b:38:c4:48:b6:91:3a:94:92:c2:88:ba: 25:93:97:08:9d:d6:c4:dd:4b:9f:05:03:c4:3e:0e:41:c4:54: 7f:e5:a1:59:60:38:f4:1e:ff:97:e8:9b:ff:02:1b:3d:f2:12: 53:db:fe:0a:4a:13:ea:6a:04:a7:1a:cc:64:1e:0e:dc:2d:c8: 73:93:86:a9:d1:5e:59:8c:4c:3a:8e:4b:c8:25:8b:08:d6:54: a3:3d:94:45:0a:3f:db:aa:4c:30:fa:03:f7:84:a2:17:2c:29: 78:1d:ef:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCx4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQzNDAxMTAvBgNVBAUTKDJFNzM1MzkyQzY4NkI4RDhEQzg4QzBDQ0Q1OUJGMkFF RkJBN0U4QjAwHhcNMjUwNDI0MTkwNzUxWhcNMjUwNTAxMTkwNzUxWjAYMRYwFAYD VQQDEw02ODBhOGMwNy0wNGVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyeL1Pxbwp7QjRcoX0uhb8aLTzysdD+nLNu/Nqq9nsQiPuIi0OsOlI9jXKe/A oR+q+OeIQsFTxIOJlvepF4MtkkGWRQ9H1ovjoYUpkxbl6GCJYFtP95dbggGinOKm HxlHXTO5WSEWDjR7iutiJp8CFs5+57P/TAriD/iL13BvKjTEkR0DIrSDSY+8v1lp wN6RBaKSC+sTzBIWLLk0XhcOBG7/DHfJHjcgD025Civ29dVTry6rR9OCse5G2Qo4 QVc0ffSxUxhn5Zqf44PN0/aiRqYsGyQTpTnPbeUFtzV2+oSPI5i3dpXfzO0CJeLv wUyC8hePzr8Oq4QdC7T57fX5RQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJBEeODD s8UxgSmruubqZiZWNHAFMB8GA1UdIwQYMBaAFC5zU5LGhrjY3IjAzNWb8q77p+iw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDM0MC8wNDY4Mzk3QTND NEUxMUVBOTQ3MjVDMjhDNEY5QUUwMi9Mbk5Ua3NhR3VOamNpTURNMVp2eXJ2dW42 TEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xuTlRrc2FHdU5qY2lNRE0xWnZ5cnZ1bjZMQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDM0MC8wNDY4Mzk3QTNDNEUxMUVBOTQ3MjVDMjhDNEY5QUUwMi9Mbk5Ua3NhR3VO amNpTURNMVp2eXJ2dW42TEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJBfBiNxZVXxtMJKoUHFNPLdYCOZ3H/w6zRbzfHD2eDxQ7rJEgOOJH fIVxDSmnTWAeQKvdP+ovF/QKQ0yt+Y2/pUt5sVhLagT2/bgPteDMRgC5niXRhSEQ IrGPEFsYVeJMcbObwtI9X9+KrDouM+Hxv1P8uiUQYb+9dnOuNdFjLMee5aqC+niS u02tJ8ENa3Co8JxMUXs7OMRItpE6lJLCiLolk5cIndbE3UufBQPEPg5BxFR/5aFZ YDj0Hv+X6Jv/Ahs98hJT2/4KShPqagSnGsxkHg7cLchzk4ap0V5ZjEw6jkvIJYsI 1lSjPZRFCj/bqkww+gP3hKIXLCl4He9V -----END CERTIFICATE-----Generated at Sat Apr 26 05:04:14 2025 by rpki-client