$ rpki-client -vvf rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.mft File: L4vvSDpBiuHAMSMIGG70zXskZuU.mft (raw, json) Hash identifier: jJNCDj4450/uhSxOK9YgE38NeWAtl0A8QPBWf5W9dd4= Subject key identifier: 7F:72:EA:07:B4:BC:3A:3D:E8:21:07:35:4A:77:91:45:4B:AD:89:7B Authority key identifier: 2F:8B:EF:48:3A:41:8A:E1:C0:31:23:08:18:6E:F4:CD:7B:24:66:E5 Certificate issuer: /CN=A9125758/serialNumber=2F8BEF483A418AE1C0312308186EF4CD7B2466E5 Certificate serial: 0234 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4vvSDpBiuHAMSMIGG70zXskZuU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.mft Manifest number: 0230 Signing time: Fri 13 Jun 2025 01:24:40 +0000 Manifest this update: Fri 13 Jun 2025 01:24:39 +0000 Manifest next update: Fri 20 Jun 2025 01:24:39 +0000 Files and hashes: 1: L4vvSDpBiuHAMSMIGG70zXskZuU.crl (hash: DFTtCVyzTeCxkvvQcI1z7R8X278njWMjMDi+ZmJecj0=) 2: 117300B62CDB11EDB2E1DD0DC4F9AE02.roa (hash: SvlTkdhfP2Vy/Mu+17rsFwHULfYPp5POSAbZ7IEAOKw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.crl rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4vvSDpBiuHAMSMIGG70zXskZuU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 01:24:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 564 (0x234) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125758, serialNumber=2F8BEF483A418AE1C0312308186EF4CD7B2466E5 Validity Not Before: Jun 13 01:24:39 2025 GMT Not After : Jun 20 01:24:39 2025 GMT Subject: CN=684b7dd8-d474 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:9a:64:51:c4:24:78:d6:15:9d:27:f5:7e:e6: a3:15:0c:2f:5c:9d:11:a1:31:e1:2f:b9:23:34:19: 7c:cf:c1:4a:05:c9:00:8e:a2:17:b7:2c:e0:00:ca: 80:38:e0:5c:9a:f8:9f:1c:88:e1:1f:e3:b5:e5:7b: bd:25:95:de:4a:d9:55:f6:e8:db:0d:e3:0f:d3:91: 32:cb:87:54:83:a8:e9:75:f6:07:da:6a:6c:ad:27: d3:82:ec:da:6f:2a:15:29:f9:b7:30:d4:fd:82:53: d7:5b:c4:e8:4d:5f:d3:cb:33:0a:f8:e5:7f:3b:6a: 50:10:18:d6:cc:71:bc:04:de:8a:84:41:fa:df:80: 3d:c5:4b:41:51:2d:2c:3a:0d:e3:d8:95:51:a6:3d: db:3e:1a:c7:29:95:46:46:f6:72:df:b4:53:ba:a7: dd:7f:74:de:b4:5a:e7:bb:b1:c5:63:f1:08:06:ca: 15:da:0f:8c:42:b1:79:86:5f:4d:0f:0d:fc:63:c0: fc:db:8a:62:25:02:38:03:79:29:64:e5:2c:1c:47: f8:58:ea:19:87:b6:f2:b5:02:ec:24:a4:f7:9a:bc: 90:a0:f2:f6:f0:7b:ae:a5:97:75:66:4c:61:7b:e9: e4:32:80:e4:9d:88:52:7f:8c:39:da:14:21:83:37: da:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:72:EA:07:B4:BC:3A:3D:E8:21:07:35:4A:77:91:45:4B:AD:89:7B X509v3 Authority Key Identifier: keyid:2F:8B:EF:48:3A:41:8A:E1:C0:31:23:08:18:6E:F4:CD:7B:24:66:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4vvSDpBiuHAMSMIGG70zXskZuU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:52:fb:1f:45:8e:db:8b:e0:0c:34:7c:c3:11:81:60:40:d0: b5:88:24:48:fe:70:df:33:dc:ce:79:e4:38:28:4c:92:d9:6f: b3:2b:69:05:d3:84:e2:e2:de:cb:5b:8a:10:eb:28:1c:33:37: b7:5d:bf:f8:40:55:fc:4d:b3:5b:a2:6a:49:03:db:60:fa:ae: 3a:b7:9d:ce:7b:d5:2e:79:9c:3b:4c:44:b8:1c:6f:91:5e:1b: 75:08:35:11:dc:ef:da:5a:48:29:05:06:7f:5a:c3:12:23:88: 44:80:4a:2d:83:3d:a7:d3:fd:32:f7:2d:2e:28:46:c5:e8:04: 4d:6e:68:64:09:03:bb:b4:8a:a6:81:8e:b9:89:5d:18:7e:11: 31:e0:f4:90:bf:95:e8:ba:7f:45:9a:4d:12:73:8c:0e:9c:1b: ab:73:f3:ae:3a:cd:bc:5e:4a:e3:a2:6c:d6:d7:f8:c4:0f:71: d2:90:98:54:8f:41:f3:96:5a:32:f0:17:bb:46:82:1c:92:d3: a6:9a:d9:76:96:33:fe:94:24:33:63:23:16:61:27:26:c7:0e: 97:05:c2:58:d1:fa:ab:7a:24:9b:37:20:08:d8:c2:de:b8:1f: 41:81:d8:75:3f:6c:3c:b9:d7:a1:64:1c:13:d7:f2:cb:d3:fa: 5e:f3:10:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU3NTgxMTAvBgNVBAUTKDJGOEJFRjQ4M0E0MThBRTFDMDMxMjMwODE4NkVGNENE N0IyNDY2RTUwHhcNMjUwNjEzMDEyNDM5WhcNMjUwNjIwMDEyNDM5WjAYMRYwFAYD VQQDEw02ODRiN2RkOC1kNDc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApZpkUcQkeNYVnSf1fuajFQwvXJ0RoTHhL7kjNBl8z8FKBckAjqIXtyzgAMqA OOBcmvifHIjhH+O15Xu9JZXeStlV9ujbDeMP05Eyy4dUg6jpdfYH2mpsrSfTguza byoVKfm3MNT9glPXW8ToTV/TyzMK+OV/O2pQEBjWzHG8BN6KhEH634A9xUtBUS0s Og3j2JVRpj3bPhrHKZVGRvZy37RTuqfdf3TetFrnu7HFY/EIBsoV2g+MQrF5hl9N Dw38Y8D824piJQI4A3kpZOUsHEf4WOoZh7bytQLsJKT3mryQoPL28HuupZd1Zkxh e+nkMoDknYhSf4w52hQhgzfaxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH9y6ge0 vDo96CEHNUp3kUVLrYl7MB8GA1UdIwQYMBaAFC+L70g6QYrhwDEjCBhu9M17JGbl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTc1OC83MUVCRTdDMjJD RDcxMUVEQjAyQjFEMTlDNEY5QUUwMi9MNHZ2U0RwQml1SEFNU01JR0c3MHpYc2ta dVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0w0dnZTRHBCaXVIQU1TTUlHRzcwelhza1p1VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NTc1OC83MUVCRTdDMjJDRDcxMUVEQjAyQjFEMTlDNEY5QUUwMi9MNHZ2U0RwQml1 SEFNU01JR0c3MHpYc2tadVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiUvsfRY7bi+AMNHzDEYFgQNC1iCRI/nDfM9zOeeQ4KEyS2W+zK2kF 04Ti4t7LW4oQ6ygcMze3Xb/4QFX8TbNbompJA9tg+q46t53Oe9UueZw7TES4HG+R Xht1CDUR3O/aWkgpBQZ/WsMSI4hEgEotgz2n0/0y9y0uKEbF6ARNbmhkCQO7tIqm gY65iV0YfhEx4PSQv5Xoun9Fmk0Sc4wOnBurc/OuOs28XkrjomzW1/jED3HSkJhU j0Hzlloy8Be7RoIcktOmmtl2ljP+lCQzYyMWYScmxw6XBcJY0fqreiSbNyAI2MLe uB9Bgdh1P2w8udehZBwT1/LL0/pe8xDE -----END CERTIFICATE-----Generated at Sat Jun 14 19:39:56 2025 by rpki-client