$ rpki-client -vvf rpki.apnic.net/member_repository/A9130128/91BC37526AE811ECA448465BC4F9AE02/L0yMSsxFXG1aSQxAkLOjUqivHLU.mft File: L0yMSsxFXG1aSQxAkLOjUqivHLU.mft (raw, json) Hash identifier: 1J15yRfPqNlKCsd+BSnMt53K+XkYjcRd2JtEeMx+vd8= Subject key identifier: 78:67:9B:CD:6A:0F:C2:F6:EE:A5:5C:A1:0F:78:84:D8:93:2E:FC:D7 Authority key identifier: 2F:4C:8C:4A:CC:45:5C:6D:5A:49:0C:40:90:B3:A3:52:A8:AF:1C:B5 Certificate issuer: /CN=A9130128/serialNumber=2F4C8C4ACC455C6D5A490C4090B3A352A8AF1CB5 Certificate serial: 0417 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L0yMSsxFXG1aSQxAkLOjUqivHLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130128/91BC37526AE811ECA448465BC4F9AE02/L0yMSsxFXG1aSQxAkLOjUqivHLU.mft Manifest number: 040C Signing time: Fri 25 Apr 2025 00:14:13 +0000 Manifest this update: Fri 25 Apr 2025 00:14:12 +0000 Manifest next update: Fri 02 May 2025 00:14:12 +0000 Files and hashes: 1: L0yMSsxFXG1aSQxAkLOjUqivHLU.crl (hash: f2dCOEtyCA0KcWH6P7A2vTk08KKsPC+bzvuRHO04x3Q=) 2: BD6C86326AEC11ECB61ECF30C4F9AE02.roa (hash: ycvRnCz+W4ba8DDROuCngyAKLqsVfBGFpl90bOtHXMA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130128/91BC37526AE811ECA448465BC4F9AE02/L0yMSsxFXG1aSQxAkLOjUqivHLU.crl rsync://rpki.apnic.net/member_repository/A9130128/91BC37526AE811ECA448465BC4F9AE02/L0yMSsxFXG1aSQxAkLOjUqivHLU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L0yMSsxFXG1aSQxAkLOjUqivHLU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:14:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1047 (0x417) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130128, serialNumber=2F4C8C4ACC455C6D5A490C4090B3A352A8AF1CB5 Validity Not Before: Apr 25 00:14:12 2025 GMT Not After : May 2 00:14:12 2025 GMT Subject: CN=680ad3d4-a603 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:df:ee:26:41:9d:c0:db:e3:04:2d:e8:e0:e7: 45:16:3c:b1:ed:99:be:58:20:f0:0e:50:4a:41:69: 25:f7:dc:3c:9d:a4:a5:9f:f7:2d:47:b8:b9:b1:38: b1:78:a4:45:9f:f6:b6:03:28:fa:1a:25:ff:d3:5d: 30:54:68:c7:e2:e6:83:72:a1:f6:c7:4a:e6:6b:8e: 94:fb:92:88:91:9e:e5:90:68:84:ec:3d:19:d1:06: be:c8:c9:69:d2:13:23:37:c9:bf:3e:8e:6b:6a:c6: d5:c2:7d:3f:4a:85:16:cd:92:d5:c7:74:76:c9:6e: 17:78:70:db:9d:f8:94:e0:73:5d:2f:1a:6f:aa:75: fe:ae:c0:7e:19:0b:c1:31:93:2c:8b:60:eb:39:cd: 06:b1:1d:ed:e3:68:d9:a1:67:59:d6:5c:ac:71:29: e0:cb:69:73:a9:83:28:8f:b5:1e:52:8f:90:ec:9e: 7e:3e:d0:eb:bc:ff:e4:72:b8:b2:ab:85:24:a9:35: f3:d6:c5:20:a4:ce:e5:b0:c5:c1:52:80:24:6d:8f: 3e:41:89:42:c2:e4:3a:bf:7f:6b:f7:ef:34:64:a7: 06:31:a2:c8:06:50:2b:7c:f2:6f:2d:cd:b8:21:c0: 2c:8e:48:15:ab:9a:e5:2f:a7:dc:aa:59:e8:a0:8a: 9b:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:67:9B:CD:6A:0F:C2:F6:EE:A5:5C:A1:0F:78:84:D8:93:2E:FC:D7 X509v3 Authority Key Identifier: keyid:2F:4C:8C:4A:CC:45:5C:6D:5A:49:0C:40:90:B3:A3:52:A8:AF:1C:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130128/91BC37526AE811ECA448465BC4F9AE02/L0yMSsxFXG1aSQxAkLOjUqivHLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L0yMSsxFXG1aSQxAkLOjUqivHLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130128/91BC37526AE811ECA448465BC4F9AE02/L0yMSsxFXG1aSQxAkLOjUqivHLU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:61:2d:25:72:6d:be:ca:0e:f1:e3:30:b6:8d:c6:43:a9:c9: f9:03:f1:57:ff:69:b1:47:12:cc:7b:8f:cb:c9:88:8f:13:fb: 08:1d:e0:39:73:b9:7b:22:ef:30:8a:c9:b3:01:1a:20:50:e7: 14:0f:c3:39:c9:f2:ab:ee:d0:ec:be:c9:37:0c:b8:99:cc:d0: e0:51:3e:54:94:25:cf:66:94:1c:1f:5d:9b:08:de:83:91:c6: fd:65:6c:4a:cb:12:c7:bc:ca:c8:7a:86:8f:57:54:48:a7:bc: 81:f9:fb:74:6d:6c:26:8a:6f:eb:3c:9c:e5:39:11:fa:c4:34: 8e:6e:d8:73:7a:06:df:d6:aa:5c:a5:55:61:13:f1:61:c1:8c: b1:35:9c:ab:00:57:89:7a:16:d2:bf:8f:e8:8e:fd:a8:8f:1e: 40:f8:d3:86:86:90:b8:0b:e4:92:e8:e4:2a:c6:a7:c1:a9:37: a4:07:4d:cb:32:57:f1:92:dd:ab:d0:3b:c5:6c:bc:c8:20:2f: dd:c2:12:e1:45:1c:ac:8a:58:e1:ca:28:c8:af:3c:a6:ad:92: 7b:7a:69:7d:c5:3e:13:25:f5:bb:0f:7f:d4:ed:33:f7:77:8a: ea:e2:ab:c6:8a:79:0f:6c:51:7e:ac:ac:90:f1:62:bf:56:9a: ac:3a:c0:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzAxMjgxMTAvBgNVBAUTKDJGNEM4QzRBQ0M0NTVDNkQ1QTQ5MEM0MDkwQjNBMzUy QThBRjFDQjUwHhcNMjUwNDI1MDAxNDEyWhcNMjUwNTAyMDAxNDEyWjAYMRYwFAYD VQQDEw02ODBhZDNkNC1hNjAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtt/uJkGdwNvjBC3o4OdFFjyx7Zm+WCDwDlBKQWkl99w8naSln/ctR7i5sTix eKRFn/a2Ayj6GiX/010wVGjH4uaDcqH2x0rma46U+5KIkZ7lkGiE7D0Z0Qa+yMlp 0hMjN8m/Po5rasbVwn0/SoUWzZLVx3R2yW4XeHDbnfiU4HNdLxpvqnX+rsB+GQvB MZMsi2DrOc0GsR3t42jZoWdZ1lyscSngy2lzqYMoj7UeUo+Q7J5+PtDrvP/kcriy q4UkqTXz1sUgpM7lsMXBUoAkbY8+QYlCwuQ6v39r9+80ZKcGMaLIBlArfPJvLc24 IcAsjkgVq5rlL6fcqlnooIqbwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHhnm81q D8L27qVcoQ94hNiTLvzXMB8GA1UdIwQYMBaAFC9MjErMRVxtWkkMQJCzo1Korxy1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDEyOC85MUJDMzc1MjZB RTgxMUVDQTQ0ODQ2NUJDNEY5QUUwMi9MMHlNU3N4RlhHMWFTUXhBa0xPalVxaXZI TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0wweU1Tc3hGWEcxYVNReEFrTE9qVXFpdkhMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDEyOC85MUJDMzc1MjZBRTgxMUVDQTQ0ODQ2NUJDNEY5QUUwMi9MMHlNU3N4RlhH MWFTUXhBa0xPalVxaXZITFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUYS0lcm2+yg7x4zC2jcZDqcn5A/FX/2mxRxLMe4/LyYiPE/sIHeA5 c7l7Iu8wismzARogUOcUD8M5yfKr7tDsvsk3DLiZzNDgUT5UlCXPZpQcH12bCN6D kcb9ZWxKyxLHvMrIeoaPV1RIp7yB+ft0bWwmim/rPJzlORH6xDSObthzegbf1qpc pVVhE/FhwYyxNZyrAFeJehbSv4/ojv2ojx5A+NOGhpC4C+SS6OQqxqfBqTekB03L Mlfxkt2r0DvFbLzIIC/dwhLhRRysiljhyijIrzymrZJ7eml9xT4TJfW7D3/U7TP3 d4rq4qvGinkPbFF+rKyQ8WK/VpqsOsAP -----END CERTIFICATE-----Generated at Sat Apr 26 05:25:34 2025 by rpki-client