$ rpki-client -vvf rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft File: LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft (raw, json) Hash identifier: SvfH5ZuKHdeCr1lnESBqCrWwxV9nft7tpbfYX/n54kI= Subject key identifier: 3D:F7:4C:E2:45:A5:E5:8B:27:3A:81:8F:CE:E4:BF:AA:A1:FD:C7:C8 Authority key identifier: 2E:06:F3:09:1A:D5:8E:D0:63:3F:F9:89:B1:FD:32:97:73:EC:3A:A7 Certificate issuer: /CN=A9123D28/serialNumber=2E06F3091AD58ED0633FF989B1FD329773EC3AA7 Certificate serial: 0223 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgbzCRrVjtBjP_mJsf0yl3PsOqc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft Manifest number: 0220 Signing time: Fri 25 Apr 2025 01:44:26 +0000 Manifest this update: Fri 25 Apr 2025 01:44:25 +0000 Manifest next update: Fri 02 May 2025 01:44:25 +0000 Files and hashes: 1: LgbzCRrVjtBjP_mJsf0yl3PsOqc.crl (hash: R8NmtLu0njDGLVQ+xT4Ox8uPLRk4aMpOGNeZx3Sl2gI=) 2: 49CEB44A28D111EDB364C870C4F9AE02.roa (hash: JGGOwQFcpR3ELTy5wFGQ2CrG/qRvA17VfD8zk3vhn0c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.crl rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgbzCRrVjtBjP_mJsf0yl3PsOqc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:44:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 547 (0x223) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123D28, serialNumber=2E06F3091AD58ED0633FF989B1FD329773EC3AA7 Validity Not Before: Apr 25 01:44:25 2025 GMT Not After : May 2 01:44:25 2025 GMT Subject: CN=680ae8f9-83c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:86:f5:94:16:09:41:28:b5:ca:7c:de:40:1a: 46:06:4f:46:50:d6:87:dc:0b:b6:03:43:22:ca:66: e4:a6:b7:65:b4:cf:0b:75:60:27:90:24:60:75:8c: 4b:6e:82:bd:3a:52:c4:6e:3b:a6:5e:8a:98:db:01: e3:5f:f8:17:dd:c5:b3:f8:a5:08:1c:80:1e:7a:ac: 3c:54:98:53:9e:9e:22:1b:f9:af:3f:20:0e:7a:cb: 56:a3:9b:be:71:05:4e:30:a8:25:4c:5b:4c:51:6e: 1b:8e:28:3f:62:f3:f9:d8:05:52:ba:05:81:f7:65: 5f:b0:b7:a2:c2:ce:89:3e:02:94:e6:ca:5c:df:16: aa:5f:ea:97:28:00:29:48:ea:f4:2d:d5:a6:59:34: fb:8e:84:a8:b0:01:7d:dc:63:0c:be:41:b4:86:1b: 41:ef:7d:e9:cb:49:7e:78:52:63:81:2c:5d:bd:a3: 1e:4f:70:f5:39:49:41:e4:c7:2b:43:fa:c0:35:6e: a2:7f:2e:9e:41:82:42:b2:2c:4d:15:f7:38:f2:80: 30:89:39:21:d6:5c:96:14:e7:d0:17:a2:ac:ab:9a: e5:8a:7e:37:7c:66:ff:78:71:c2:7b:8a:6b:90:75: 37:ac:bd:5b:39:f8:22:cb:ec:72:98:28:ab:9b:c7: 42:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:F7:4C:E2:45:A5:E5:8B:27:3A:81:8F:CE:E4:BF:AA:A1:FD:C7:C8 X509v3 Authority Key Identifier: keyid:2E:06:F3:09:1A:D5:8E:D0:63:3F:F9:89:B1:FD:32:97:73:EC:3A:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgbzCRrVjtBjP_mJsf0yl3PsOqc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:cf:c8:ab:3a:dc:ef:1e:03:f6:b5:26:dd:e6:32:eb:e6:55: b0:b0:29:e6:24:a4:48:24:47:fe:8b:bb:36:bb:54:69:74:e5: fc:5d:28:49:1d:03:af:cd:36:6b:cb:aa:ed:a9:73:b1:e9:ef: b9:67:ad:34:d5:d0:ef:f8:5c:0d:f2:e4:c4:e8:20:4f:53:a6: 36:26:73:65:dc:a3:73:59:7b:d7:86:57:be:e0:38:3a:dc:90: 2d:3a:09:3e:8d:f4:0d:a2:ab:0c:de:6c:4b:f2:a1:65:3a:c0: 98:83:2a:60:dd:39:cf:b0:fa:1c:69:1a:72:c8:56:4b:36:90: f7:02:1e:82:38:25:7d:8e:c2:8e:b9:8f:39:04:bf:d8:3a:be: 81:df:66:aa:c7:21:8f:1d:92:10:95:7e:5f:16:df:59:35:26: 43:98:1e:c4:fe:54:f0:28:2e:24:58:3a:f8:97:f7:eb:4b:9e: 21:df:1a:c7:bd:9b:e1:ad:c2:f1:1e:f7:18:b1:c7:b7:f0:b5: 19:de:d5:e7:81:2f:ec:58:a8:ca:45:9b:a6:bf:89:40:72:39: f3:32:f9:0e:60:74:5a:69:0a:08:00:ee:8e:a5:58:3e:4f:88: f8:c0:dd:c9:1c:69:6d:fd:30:2e:c1:89:06:aa:dd:05:ea:30: a1:9d:ff:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNEMjgxMTAvBgNVBAUTKDJFMDZGMzA5MUFENThFRDA2MzNGRjk4OUIxRkQzMjk3 NzNFQzNBQTcwHhcNMjUwNDI1MDE0NDI1WhcNMjUwNTAyMDE0NDI1WjAYMRYwFAYD VQQDEw02ODBhZThmOS04M2MxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Ib1lBYJQSi1ynzeQBpGBk9GUNaH3Au2A0MiymbkprdltM8LdWAnkCRgdYxL boK9OlLEbjumXoqY2wHjX/gX3cWz+KUIHIAeeqw8VJhTnp4iG/mvPyAOestWo5u+ cQVOMKglTFtMUW4bjig/YvP52AVSugWB92VfsLeiws6JPgKU5spc3xaqX+qXKAAp SOr0LdWmWTT7joSosAF93GMMvkG0hhtB733py0l+eFJjgSxdvaMeT3D1OUlB5Mcr Q/rANW6ify6eQYJCsixNFfc48oAwiTkh1lyWFOfQF6Ksq5rlin43fGb/eHHCe4pr kHU3rL1bOfgiy+xymCirm8dCFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD33TOJF peWLJzqBj87kv6qh/cfIMB8GA1UdIwQYMBaAFC4G8wka1Y7QYz/5ibH9Mpdz7Dqn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0QyOC80QkRBRUVEQzI4 Q0UxMUVEQjY4MzM5NkVDNEY5QUUwMi9MZ2J6Q1JyVmp0QmpQX21Kc2YweWwzUHNP cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xnYnpDUnJWanRCalBfbUpzZjB5bDNQc09xYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0QyOC80QkRBRUVEQzI4Q0UxMUVEQjY4MzM5NkVDNEY5QUUwMi9MZ2J6Q1JyVmp0 QmpQX21Kc2YweWwzUHNPcWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHz8irOtzvHgP2tSbd5jLr5lWwsCnmJKRIJEf+i7s2u1RpdOX8XShJ HQOvzTZry6rtqXOx6e+5Z6001dDv+FwN8uTE6CBPU6Y2JnNl3KNzWXvXhle+4Dg6 3JAtOgk+jfQNoqsM3mxL8qFlOsCYgypg3TnPsPocaRpyyFZLNpD3Ah6COCV9jsKO uY85BL/YOr6B32aqxyGPHZIQlX5fFt9ZNSZDmB7E/lTwKC4kWDr4l/frS54h3xrH vZvhrcLxHvcYsce38LUZ3tXngS/sWKjKRZumv4lAcjnzMvkOYHRaaQoIAO6OpVg+ T4j4wN3JHGlt/TAuwYkGqt0F6jChnf9d -----END CERTIFICATE-----Generated at Sat Apr 26 04:32:37 2025 by rpki-client