$ rpki-client -vvf rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.mft File: L4vvSDpBiuHAMSMIGG70zXskZuU.mft (raw, json) Hash identifier: oRkoeLBGZztRccyOTFEufU/he0vzlK+jgZZMl8ud/DY= Subject key identifier: 73:56:E2:50:12:5D:97:B9:C9:19:5E:86:51:39:4A:E8:F4:C4:20:2D Authority key identifier: 2F:8B:EF:48:3A:41:8A:E1:C0:31:23:08:18:6E:F4:CD:7B:24:66:E5 Certificate issuer: /CN=A9125758/serialNumber=2F8BEF483A418AE1C0312308186EF4CD7B2466E5 Certificate serial: 021C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4vvSDpBiuHAMSMIGG70zXskZuU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.mft Manifest number: 0218 Signing time: Fri 25 Apr 2025 01:45:21 +0000 Manifest this update: Fri 25 Apr 2025 01:45:20 +0000 Manifest next update: Fri 02 May 2025 01:45:20 +0000 Files and hashes: 1: L4vvSDpBiuHAMSMIGG70zXskZuU.crl (hash: hNE3vbLhvYv42fPcVRrS/NLK4BNe4G9nFokc2IhN4IU=) 2: 117300B62CDB11EDB2E1DD0DC4F9AE02.roa (hash: SvlTkdhfP2Vy/Mu+17rsFwHULfYPp5POSAbZ7IEAOKw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.crl rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4vvSDpBiuHAMSMIGG70zXskZuU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:45:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 540 (0x21c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125758, serialNumber=2F8BEF483A418AE1C0312308186EF4CD7B2466E5 Validity Not Before: Apr 25 01:45:20 2025 GMT Not After : May 2 01:45:20 2025 GMT Subject: CN=680ae931-a498 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:28:d7:9e:8a:e1:a4:c8:44:4b:1e:2d:42:7c: bf:b6:06:cd:29:f4:1d:e1:ae:08:c1:c4:a1:d8:40: b1:9d:df:dc:5c:46:e7:e0:53:9c:11:01:33:68:2b: 17:07:3e:23:3c:f6:a7:b4:6f:4f:ef:df:f2:69:33: 45:73:f5:61:9a:6e:1b:9c:0b:33:a2:9d:c8:06:13: 64:7a:f8:fe:2b:c0:47:f2:ec:44:0c:79:af:e4:d2: ef:05:af:f8:c7:28:4d:9f:7b:73:7d:05:f1:5c:7a: 45:54:2f:fd:16:d8:e3:a7:81:70:ba:c8:19:9d:9d: 0b:e6:df:0b:2b:d0:dc:6b:49:9c:49:6a:b1:5d:ad: 9f:9b:07:e3:bd:ed:82:40:d5:80:a4:f6:19:22:a8: df:a9:1e:06:69:91:96:b2:5d:31:10:9e:de:2e:f6: 88:67:e7:bd:dc:80:b1:66:c2:7c:db:cd:b1:e9:19: 86:31:9b:df:1a:e6:20:93:26:23:ac:81:e2:a8:76: 67:ec:8b:8a:e0:95:0d:85:0f:7d:ee:45:53:32:9f: c7:bd:4c:53:26:8f:e4:6d:0c:4e:04:90:f1:99:a0: 0a:6b:71:0a:77:4e:08:9f:63:29:91:1c:33:3a:fc: 0b:cb:56:8d:51:6b:57:ff:9e:d5:f9:81:57:31:a2: 1f:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:56:E2:50:12:5D:97:B9:C9:19:5E:86:51:39:4A:E8:F4:C4:20:2D X509v3 Authority Key Identifier: keyid:2F:8B:EF:48:3A:41:8A:E1:C0:31:23:08:18:6E:F4:CD:7B:24:66:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4vvSDpBiuHAMSMIGG70zXskZuU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:8b:07:a1:13:63:88:af:ae:e3:cc:59:f5:56:ea:a7:8b:72: ce:80:4f:f3:96:54:bf:dc:e0:3d:51:19:90:c2:c4:06:47:d1: 16:d0:69:e8:3a:64:c9:31:3f:50:74:42:09:13:ae:21:aa:92: 7f:fe:97:63:c2:13:15:28:23:4a:48:6f:b7:32:5a:76:7a:12: d3:71:a8:1f:b1:33:c8:64:6f:c5:f6:3e:f8:5c:dd:c8:0d:88: ac:a4:b9:a2:1b:22:d9:1e:28:3d:67:74:78:a7:cc:d0:f8:e2: 0c:28:66:1b:73:19:63:17:86:69:a8:ff:6d:58:61:d7:b9:cf: 7b:a8:dc:9c:42:d9:7a:2a:02:97:83:96:cf:ef:27:1c:be:50: 2e:1a:99:ee:0c:e4:53:9d:10:59:66:b5:c6:65:65:c0:0a:b5: 05:4b:37:ee:7e:14:22:c2:62:b5:be:00:d0:88:a4:e5:97:0f: 3d:f0:c0:8c:a7:3d:16:f0:f3:b2:90:ef:b2:d0:3a:e9:2d:2b: 2c:f9:34:7f:4f:3c:23:cf:da:b8:ba:55:20:e2:7f:7f:5b:96: 67:4d:27:bd:d5:bb:de:35:c5:dd:de:ff:89:82:15:fd:6b:b0: c0:05:05:ee:1f:28:49:71:05:b3:6d:82:3f:cd:69:6d:3f:47: 63:53:45:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU3NTgxMTAvBgNVBAUTKDJGOEJFRjQ4M0E0MThBRTFDMDMxMjMwODE4NkVGNENE N0IyNDY2RTUwHhcNMjUwNDI1MDE0NTIwWhcNMjUwNTAyMDE0NTIwWjAYMRYwFAYD VQQDEw02ODBhZTkzMS1hNDk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvyjXnorhpMhESx4tQny/tgbNKfQd4a4IwcSh2ECxnd/cXEbn4FOcEQEzaCsX Bz4jPPantG9P79/yaTNFc/Vhmm4bnAszop3IBhNkevj+K8BH8uxEDHmv5NLvBa/4 xyhNn3tzfQXxXHpFVC/9Ftjjp4FwusgZnZ0L5t8LK9Dca0mcSWqxXa2fmwfjve2C QNWApPYZIqjfqR4GaZGWsl0xEJ7eLvaIZ+e93ICxZsJ8282x6RmGMZvfGuYgkyYj rIHiqHZn7IuK4JUNhQ997kVTMp/HvUxTJo/kbQxOBJDxmaAKa3EKd04In2MpkRwz OvwLy1aNUWtX/57V+YFXMaIfmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHNW4lAS XZe5yRlehlE5Suj0xCAtMB8GA1UdIwQYMBaAFC+L70g6QYrhwDEjCBhu9M17JGbl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTc1OC83MUVCRTdDMjJD RDcxMUVEQjAyQjFEMTlDNEY5QUUwMi9MNHZ2U0RwQml1SEFNU01JR0c3MHpYc2ta dVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0w0dnZTRHBCaXVIQU1TTUlHRzcwelhza1p1VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NTc1OC83MUVCRTdDMjJDRDcxMUVEQjAyQjFEMTlDNEY5QUUwMi9MNHZ2U0RwQml1 SEFNU01JR0c3MHpYc2tadVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxiwehE2OIr67jzFn1Vuqni3LOgE/zllS/3OA9URmQwsQGR9EW0Gno OmTJMT9QdEIJE64hqpJ//pdjwhMVKCNKSG+3Mlp2ehLTcagfsTPIZG/F9j74XN3I DYispLmiGyLZHig9Z3R4p8zQ+OIMKGYbcxljF4ZpqP9tWGHXuc97qNycQtl6KgKX g5bP7yccvlAuGpnuDORTnRBZZrXGZWXACrUFSzfufhQiwmK1vgDQiKTllw898MCM pz0W8POykO+y0DrpLSss+TR/Tzwjz9q4ulUg4n9/W5ZnTSe91bveNcXd3v+JghX9 a7DABQXuHyhJcQWzbYI/zWltP0djU0Wi -----END CERTIFICATE-----Generated at Sat Apr 26 04:39:48 2025 by rpki-client