$ rpki-client -vvf rpki.apnic.net/member_repository/A911D340/0468397A3C4E11EA94725C28C4F9AE02/LnNTksaGuNjciMDM1Zvyrvun6LA.mft File: LnNTksaGuNjciMDM1Zvyrvun6LA.mft (raw, json) Hash identifier: JeczT6PM807g9LTzoqz+ERy2TnXDruWisw0Rbyzt5Ko= Subject key identifier: A8:61:C1:97:81:C0:66:51:89:B6:FE:93:F9:2E:81:CF:ED:CF:6B:BD Authority key identifier: 2E:73:53:92:C6:86:B8:D8:DC:88:C0:CC:D5:9B:F2:AE:FB:A7:E8:B0 Certificate issuer: /CN=A911D340/serialNumber=2E735392C686B8D8DC88C0CCD59BF2AEFBA7E8B0 Certificate serial: 0B3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnNTksaGuNjciMDM1Zvyrvun6LA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D340/0468397A3C4E11EA94725C28C4F9AE02/LnNTksaGuNjciMDM1Zvyrvun6LA.mft Manifest number: 0B32 Signing time: Mon 16 Jun 2025 19:03:51 +0000 Manifest this update: Mon 16 Jun 2025 19:03:51 +0000 Manifest next update: Mon 23 Jun 2025 19:03:51 +0000 Files and hashes: 1: LnNTksaGuNjciMDM1Zvyrvun6LA.crl (hash: ehFJhlfs+bp5rsnL+1JFqlNm9Ja1CCBssN5g14Y3POE=) 2: 14B2A85C3DA611EAAD093F5EC4F9AE02.roa (hash: U5r4SWMbZzX6cEmOkEoVm3P+a9O6vlGibQIW9uT8u/Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D340/0468397A3C4E11EA94725C28C4F9AE02/LnNTksaGuNjciMDM1Zvyrvun6LA.crl rsync://rpki.apnic.net/member_repository/A911D340/0468397A3C4E11EA94725C28C4F9AE02/LnNTksaGuNjciMDM1Zvyrvun6LA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnNTksaGuNjciMDM1Zvyrvun6LA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 19:03:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2875 (0xb3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D340, serialNumber=2E735392C686B8D8DC88C0CCD59BF2AEFBA7E8B0 Validity Not Before: Jun 16 19:03:51 2025 GMT Not After : Jun 23 19:03:51 2025 GMT Subject: CN=68506a97-94e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:66:23:8b:47:70:ae:50:24:7a:39:5c:8d:dc: fb:d6:42:e8:01:64:18:b8:6f:62:94:09:f3:45:10: b3:1b:4d:f7:9c:ea:d8:a8:29:28:51:f2:e5:ce:61: cd:70:cf:2e:6c:df:cf:fc:4c:ac:f0:8e:51:48:c0: 0d:cc:64:0e:a6:06:b7:c1:8d:ca:29:13:57:51:c5: 4c:95:11:7e:08:9e:f8:1f:7d:b0:bd:0c:92:97:39: ad:f4:2a:c0:5c:23:ff:59:bb:3c:9a:0e:af:bd:bd: 3c:c5:7c:70:d4:65:52:c5:77:68:37:94:2e:17:80: 48:53:4e:cf:45:cd:de:75:34:ef:f6:ee:89:9f:63: 73:e6:b0:ff:0b:22:dc:07:35:c4:0f:a4:5e:79:c0: 3e:b2:79:39:56:36:60:89:ed:3f:d1:95:58:45:25: f6:09:9f:52:68:a3:b6:6b:87:d5:ab:79:f2:77:9b: f7:49:6b:07:cd:40:1e:9e:56:ab:da:87:76:69:f5: a0:9b:ec:c7:ef:d6:15:01:cc:3b:cd:e2:9d:0d:aa: de:f4:a9:38:93:3e:88:03:8e:a4:46:d5:e1:71:84: 8c:4b:b0:8d:95:bb:64:ca:36:0d:9f:65:49:5f:8a: ef:df:47:ca:7d:00:7f:02:4f:25:38:8a:9a:d3:91: 1a:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:61:C1:97:81:C0:66:51:89:B6:FE:93:F9:2E:81:CF:ED:CF:6B:BD X509v3 Authority Key Identifier: keyid:2E:73:53:92:C6:86:B8:D8:DC:88:C0:CC:D5:9B:F2:AE:FB:A7:E8:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D340/0468397A3C4E11EA94725C28C4F9AE02/LnNTksaGuNjciMDM1Zvyrvun6LA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnNTksaGuNjciMDM1Zvyrvun6LA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D340/0468397A3C4E11EA94725C28C4F9AE02/LnNTksaGuNjciMDM1Zvyrvun6LA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:7f:29:b9:4e:2e:39:2b:a8:d9:3f:ae:f6:d0:4d:c1:7d:85: df:15:65:97:d7:22:f5:af:ca:7c:f2:53:99:16:52:0c:85:22: d1:5d:80:98:ab:47:5b:1e:2c:4b:1e:5d:a3:73:1d:bc:b3:3c: d5:52:82:d7:8e:e0:3c:a6:cf:a3:3d:1e:fb:27:5b:2a:28:62: 94:57:05:53:b9:39:ed:f4:54:ad:48:f8:ab:38:15:a1:c3:29: 90:54:0a:83:d4:4b:67:d0:15:10:c7:ae:2f:39:70:b0:07:4f: fa:27:a3:ae:fb:e6:34:98:c1:e9:a9:14:89:90:a8:ae:a0:59: 4b:60:e1:14:a1:92:89:58:5a:f3:10:b4:40:b6:21:0a:51:7b: e6:3b:e8:05:6b:b6:15:ae:ab:6d:7e:12:48:3a:ff:82:20:8e: 36:8f:ec:bb:c3:02:23:ef:e7:dc:ca:d0:0e:46:f3:f1:17:c4: c6:04:a5:29:6c:03:d1:d9:d0:21:a0:30:46:35:97:81:b4:93: d4:18:2c:db:85:19:85:6e:a4:21:61:f7:1b:51:73:4e:14:da: 6d:2e:16:6b:18:23:52:1c:6d:ce:85:81:5f:0e:77:c4:42:ef: 84:ec:82:98:68:75:e1:3e:93:fb:93:01:17:5a:ba:a0:63:79: 75:51:db:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCzswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQzNDAxMTAvBgNVBAUTKDJFNzM1MzkyQzY4NkI4RDhEQzg4QzBDQ0Q1OUJGMkFF RkJBN0U4QjAwHhcNMjUwNjE2MTkwMzUxWhcNMjUwNjIzMTkwMzUxWjAYMRYwFAYD VQQDEw02ODUwNmE5Ny05NGU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArmYji0dwrlAkejlcjdz71kLoAWQYuG9ilAnzRRCzG033nOrYqCkoUfLlzmHN cM8ubN/P/Eys8I5RSMANzGQOpga3wY3KKRNXUcVMlRF+CJ74H32wvQySlzmt9CrA XCP/Wbs8mg6vvb08xXxw1GVSxXdoN5QuF4BIU07PRc3edTTv9u6Jn2Nz5rD/CyLc BzXED6ReecA+snk5VjZgie0/0ZVYRSX2CZ9SaKO2a4fVq3nyd5v3SWsHzUAenlar 2od2afWgm+zH79YVAcw7zeKdDare9Kk4kz6IA46kRtXhcYSMS7CNlbtkyjYNn2VJ X4rv30fKfQB/Ak8lOIqa05EacwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKhhwZeB wGZRibb+k/kugc/tz2u9MB8GA1UdIwQYMBaAFC5zU5LGhrjY3IjAzNWb8q77p+iw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDM0MC8wNDY4Mzk3QTND NEUxMUVBOTQ3MjVDMjhDNEY5QUUwMi9Mbk5Ua3NhR3VOamNpTURNMVp2eXJ2dW42 TEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xuTlRrc2FHdU5qY2lNRE0xWnZ5cnZ1bjZMQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDM0MC8wNDY4Mzk3QTNDNEUxMUVBOTQ3MjVDMjhDNEY5QUUwMi9Mbk5Ua3NhR3VO amNpTURNMVp2eXJ2dW42TEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZfym5Ti45K6jZP6720E3BfYXfFWWX1yL1r8p88lOZFlIMhSLRXYCY q0dbHixLHl2jcx28szzVUoLXjuA8ps+jPR77J1sqKGKUVwVTuTnt9FStSPirOBWh wymQVAqD1Etn0BUQx64vOXCwB0/6J6Ou++Y0mMHpqRSJkKiuoFlLYOEUoZKJWFrz ELRAtiEKUXvmO+gFa7YVrqttfhJIOv+CII42j+y7wwIj7+fcytAORvPxF8TGBKUp bAPR2dAhoDBGNZeBtJPUGCzbhRmFbqQhYfcbUXNOFNptLhZrGCNSHG3OhYFfDnfE Qu+E7IKYaHXhPpP7kwEXWrqgY3l1Udva -----END CERTIFICATE-----Generated at Tue Jun 17 17:01:50 2025 by rpki-client