$ rpki-client -vvf rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft File: lC8l1zULID6onvLRzBULBbF7K4c.mft (raw, json) Hash identifier: TKhpkoGduNc2tJN6Smc+h2aT0PAptbKSa/dO4Prx5fs= Subject key identifier: 7A:29:98:42:1E:2B:9C:09:41:94:EF:A7:E7:40:B3:47:DE:AA:9A:97 Authority key identifier: 94:2F:25:D7:35:0B:20:3E:A8:9E:F2:D1:CC:15:0B:05:B1:7B:2B:87 Certificate issuer: /CN=A912FB1D/serialNumber=942F25D7350B203EA89EF2D1CC150B05B17B2B87 Certificate serial: 3499 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC8l1zULID6onvLRzBULBbF7K4c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft Manifest number: 3484 Signing time: Thu 24 Apr 2025 15:19:39 +0000 Manifest this update: Thu 24 Apr 2025 15:19:39 +0000 Manifest next update: Thu 01 May 2025 15:19:39 +0000 Files and hashes: 1: lC8l1zULID6onvLRzBULBbF7K4c.crl (hash: lz/uSvigBf7Vx6Sd5tt+fR5q65Dh4g8N2X1E6U+mihw=) 2: C098D762675111E9A0C4BB36C4F9AE02.roa (hash: INyUubVzyzPFDA6zTyRhkIRyBY0HoCb9vhAv2oVdZVY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.crl rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC8l1zULID6onvLRzBULBbF7K4c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:19:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13465 (0x3499) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FB1D, serialNumber=942F25D7350B203EA89EF2D1CC150B05B17B2B87 Validity Not Before: Apr 24 15:19:39 2025 GMT Not After : May 1 15:19:39 2025 GMT Subject: CN=680a568b-2701 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:d6:97:f6:82:ad:0b:46:ac:3d:f6:45:d5:20: 40:86:f1:18:9d:fd:04:2d:d6:5a:d2:9a:16:5d:19: 38:9b:91:39:5f:ec:aa:59:e9:95:18:89:5f:0a:9d: b8:02:60:bc:dd:58:36:fe:cc:71:64:65:3b:36:dd: 22:b4:a7:92:dd:83:5d:89:d0:33:dc:e5:59:fc:ff: 60:63:b9:11:b7:96:2c:3e:8b:1d:ca:af:82:4c:5c: 02:3b:17:88:86:b3:3b:78:8f:ce:0c:15:f0:f5:48: 69:cd:e6:e8:87:de:80:33:45:df:29:7b:ad:e7:a1: 89:19:d0:3c:6c:70:dd:d4:99:89:f1:bd:77:24:28: 1c:cc:29:2d:41:3e:31:89:ec:f8:35:1f:60:96:86: d0:3f:26:b9:80:9c:fd:00:79:3c:9e:c5:a7:d4:8e: ea:b1:84:1a:b2:54:da:3a:1e:9f:3b:c7:f4:93:4b: 80:2d:5b:b9:bb:8d:7c:e3:97:67:d0:20:07:71:9f: af:88:8f:93:5a:f8:0e:5d:b7:63:ee:cb:38:0e:d7: 2c:3b:ca:8f:59:60:b2:f5:f9:67:9b:3d:9a:37:a1: 02:f7:a6:b4:53:2b:54:b6:1b:1e:52:7a:e1:86:28: a7:e4:da:ee:21:bf:22:36:fb:0a:6a:2c:22:ee:b5: fe:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:29:98:42:1E:2B:9C:09:41:94:EF:A7:E7:40:B3:47:DE:AA:9A:97 X509v3 Authority Key Identifier: keyid:94:2F:25:D7:35:0B:20:3E:A8:9E:F2:D1:CC:15:0B:05:B1:7B:2B:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC8l1zULID6onvLRzBULBbF7K4c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:0e:37:c8:9f:1f:c4:c3:22:ee:3f:5e:99:28:e3:8b:fe:7d: da:d4:89:ae:4d:93:1a:36:51:96:49:84:f6:97:db:f4:8a:43: 42:e9:7f:8a:73:c6:04:1a:6f:aa:04:05:ff:2b:89:43:49:9f: 15:fc:a3:26:4b:5c:0a:cd:c3:d6:73:de:e5:46:da:c7:71:86: ba:31:5c:fb:0b:65:b4:cf:28:44:9d:88:28:54:87:39:c3:05: 2d:e2:5b:7b:b0:00:67:68:d7:44:44:50:e2:bc:52:df:cb:33: c6:c6:2e:67:18:93:89:62:a7:7f:c8:47:fe:7e:dd:79:c0:e2: 52:23:75:5e:70:17:b3:1b:45:ff:91:03:2d:94:8e:9c:d8:fe: f6:98:b2:da:03:86:3e:11:75:f4:2f:33:0f:aa:94:33:18:93: 0b:77:a4:2e:d4:3d:97:e5:22:71:b4:a9:de:43:44:90:b7:d0: 2f:e2:29:f8:78:dc:7c:f1:92:64:1a:06:d7:d4:60:f8:4f:87: b6:82:bf:0c:16:e0:ac:d9:75:9d:a3:00:68:f8:57:79:6b:d2: e8:e1:5c:3e:68:38:fc:9b:14:0f:0e:f7:cd:94:d4:9c:22:20: b0:bf:bd:07:65:0c:c4:7a:d7:6d:99:19:48:7d:41:3d:60:fa: b1:e4:4f:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZCMUQxMTAvBgNVBAUTKDk0MkYyNUQ3MzUwQjIwM0VBODlFRjJEMUNDMTUwQjA1 QjE3QjJCODcwHhcNMjUwNDI0MTUxOTM5WhcNMjUwNTAxMTUxOTM5WjAYMRYwFAYD VQQDEw02ODBhNTY4Yi0yNzAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAotaX9oKtC0asPfZF1SBAhvEYnf0ELdZa0poWXRk4m5E5X+yqWemVGIlfCp24 AmC83Vg2/sxxZGU7Nt0itKeS3YNdidAz3OVZ/P9gY7kRt5YsPosdyq+CTFwCOxeI hrM7eI/ODBXw9Uhpzeboh96AM0XfKXut56GJGdA8bHDd1JmJ8b13JCgczCktQT4x iez4NR9globQPya5gJz9AHk8nsWn1I7qsYQaslTaOh6fO8f0k0uALVu5u41845dn 0CAHcZ+viI+TWvgOXbdj7ss4DtcsO8qPWWCy9flnmz2aN6EC96a0UytUthseUnrh hiin5NruIb8iNvsKaiwi7rX+wwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHopmEIe K5wJQZTvp+dAs0feqpqXMB8GA1UdIwQYMBaAFJQvJdc1CyA+qJ7y0cwVCwWxeyuH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkIxRC9DNjg0Q0E5QzFE QUIxMUUyQTIxRTM1QUEwOEIwMkNEMi9sQzhsMXpVTElENm9udkxSekJVTEJiRjdL NGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xDOGwxelVMSUQ2b252TFJ6QlVMQmJGN0s0Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RkIxRC9DNjg0Q0E5QzFEQUIxMUUyQTIxRTM1QUEwOEIwMkNEMi9sQzhsMXpVTElE Nm9udkxSekJVTEJiRjdLNGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgDjfInx/EwyLuP16ZKOOL/n3a1ImuTZMaNlGWSYT2l9v0ikNC6X+K c8YEGm+qBAX/K4lDSZ8V/KMmS1wKzcPWc97lRtrHcYa6MVz7C2W0zyhEnYgoVIc5 wwUt4lt7sABnaNdERFDivFLfyzPGxi5nGJOJYqd/yEf+ft15wOJSI3VecBezG0X/ kQMtlI6c2P72mLLaA4Y+EXX0LzMPqpQzGJMLd6Qu1D2X5SJxtKneQ0SQt9Av4in4 eNx88ZJkGgbX1GD4T4e2gr8MFuCs2XWdowBo+Fd5a9Lo4Vw+aDj8mxQPDvfNlNSc IiCwv70HZQzEetdtmRlIfUE9YPqx5E+g -----END CERTIFICATE-----Generated at Sat Apr 26 15:19:57 2025 by rpki-client