$ rpki-client -vvf rpki.apnic.net/member_repository/A9130128/91BC37526AE811ECA448465BC4F9AE02/L0yMSsxFXG1aSQxAkLOjUqivHLU.mft File: L0yMSsxFXG1aSQxAkLOjUqivHLU.mft (raw, json) Hash identifier: zaGRS561lR4AfJUlzScwo8+mQWPAYQrpLqI27jvDWHQ= Subject key identifier: 45:0B:A4:6A:40:02:78:C3:74:57:23:85:F0:67:BE:DF:3B:5E:F7:BB Authority key identifier: 2F:4C:8C:4A:CC:45:5C:6D:5A:49:0C:40:90:B3:A3:52:A8:AF:1C:B5 Certificate issuer: /CN=A9130128/serialNumber=2F4C8C4ACC455C6D5A490C4090B3A352A8AF1CB5 Certificate serial: 0430 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L0yMSsxFXG1aSQxAkLOjUqivHLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130128/91BC37526AE811ECA448465BC4F9AE02/L0yMSsxFXG1aSQxAkLOjUqivHLU.mft Manifest number: 0425 Signing time: Sun 15 Jun 2025 00:06:37 +0000 Manifest this update: Sun 15 Jun 2025 00:06:37 +0000 Manifest next update: Sun 22 Jun 2025 00:06:36 +0000 Files and hashes: 1: L0yMSsxFXG1aSQxAkLOjUqivHLU.crl (hash: TfM/8ws57rSOPYq8pvnR6DIDZL5Yoq10VF8G8UyA9JU=) 2: BD6C86326AEC11ECB61ECF30C4F9AE02.roa (hash: ycvRnCz+W4ba8DDROuCngyAKLqsVfBGFpl90bOtHXMA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130128/91BC37526AE811ECA448465BC4F9AE02/L0yMSsxFXG1aSQxAkLOjUqivHLU.crl rsync://rpki.apnic.net/member_repository/A9130128/91BC37526AE811ECA448465BC4F9AE02/L0yMSsxFXG1aSQxAkLOjUqivHLU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L0yMSsxFXG1aSQxAkLOjUqivHLU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 00:06:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1072 (0x430) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130128, serialNumber=2F4C8C4ACC455C6D5A490C4090B3A352A8AF1CB5 Validity Not Before: Jun 15 00:06:37 2025 GMT Not After : Jun 22 00:06:36 2025 GMT Subject: CN=684e0e8d-7fa5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:19:af:fb:cf:f7:62:79:d0:1a:ee:b1:c1:5b: d6:88:a1:83:d7:3f:bc:15:ff:1f:ae:27:49:ac:2b: 19:ae:c6:36:a2:80:f3:c8:30:4c:9f:83:cc:4c:f9: 76:aa:07:39:fd:19:4f:66:6f:47:95:f9:d0:8e:54: 86:73:ac:7c:cb:81:65:42:e1:a0:2c:e6:54:72:d0: e3:a7:b9:ef:9e:3e:22:73:38:68:e1:ca:94:15:a3: 4b:33:b0:f2:a5:ae:17:e7:cf:a5:d0:b3:62:42:b5: 6b:83:81:4c:72:fa:d2:81:d9:57:aa:de:3e:62:4c: f2:dc:ed:8d:b4:fd:89:55:b6:36:2d:ee:25:ee:1b: 4e:64:f3:7e:e9:ed:12:4a:6a:8c:08:30:a3:2c:37: 75:55:08:fb:76:dc:e8:04:db:c7:5d:b3:13:45:09: ba:e7:a6:e5:e9:20:e4:88:58:42:2e:69:f1:e4:65: 9d:37:a7:9d:7c:ce:82:69:75:75:f7:af:50:63:87: f0:ec:5f:79:47:5e:68:88:15:91:ef:5e:34:2a:f8: 39:3f:b7:ef:79:fa:f2:9f:8e:3d:61:c5:30:db:0f: 9d:c2:c1:e1:5d:2f:d8:53:cb:09:6d:4c:69:1c:29: b0:cf:5d:51:9a:d7:2d:f4:78:74:28:c8:fa:86:2f: d3:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:0B:A4:6A:40:02:78:C3:74:57:23:85:F0:67:BE:DF:3B:5E:F7:BB X509v3 Authority Key Identifier: keyid:2F:4C:8C:4A:CC:45:5C:6D:5A:49:0C:40:90:B3:A3:52:A8:AF:1C:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130128/91BC37526AE811ECA448465BC4F9AE02/L0yMSsxFXG1aSQxAkLOjUqivHLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L0yMSsxFXG1aSQxAkLOjUqivHLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130128/91BC37526AE811ECA448465BC4F9AE02/L0yMSsxFXG1aSQxAkLOjUqivHLU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:d4:a2:99:e1:d3:20:46:55:dc:81:0b:df:0d:af:94:8f:09: 45:59:0f:e0:53:52:12:2f:fc:9a:c1:31:7a:c4:a8:78:e2:2e: 4b:df:d6:39:cd:95:ee:9f:a1:d4:2e:2f:7d:89:c4:00:5b:6a: ed:3e:23:24:e6:80:6e:5b:9c:19:6a:19:5b:50:f8:e1:d1:ba: c0:14:a6:0a:ff:76:36:1e:30:64:1d:aa:a4:02:dd:55:af:a6: f4:d3:2f:f7:ae:f4:f8:7a:7c:6b:86:2e:1b:ed:03:58:f2:a9: 36:a9:5a:22:9e:86:e1:05:24:7b:cc:4f:5b:13:98:e3:5d:f6: d6:ac:29:d3:05:d6:89:3e:fc:82:74:7d:c1:e9:1f:fb:16:63: 9a:78:3a:02:d5:a7:36:e4:25:62:d6:d3:38:30:ae:0b:9c:35: 3a:c3:0b:01:88:11:b4:a0:18:33:bc:d8:c0:dd:c8:05:4c:f7: ec:68:cf:df:d0:e3:07:29:0b:bb:05:d4:bf:66:58:f2:9b:d4: 3a:98:ed:e6:6b:7e:f6:b3:8e:c0:0b:60:3a:b2:69:d9:a4:75: db:f2:79:79:82:43:24:c3:54:63:c2:de:62:5c:7f:75:a0:28: 84:2e:93:0e:46:a9:30:6c:b6:df:55:ea:58:e0:30:76:6f:2d: 2c:e3:42:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzAxMjgxMTAvBgNVBAUTKDJGNEM4QzRBQ0M0NTVDNkQ1QTQ5MEM0MDkwQjNBMzUy QThBRjFDQjUwHhcNMjUwNjE1MDAwNjM3WhcNMjUwNjIyMDAwNjM2WjAYMRYwFAYD VQQDEw02ODRlMGU4ZC03ZmE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8Rmv+8/3YnnQGu6xwVvWiKGD1z+8Ff8fridJrCsZrsY2ooDzyDBMn4PMTPl2 qgc5/RlPZm9HlfnQjlSGc6x8y4FlQuGgLOZUctDjp7nvnj4iczho4cqUFaNLM7Dy pa4X58+l0LNiQrVrg4FMcvrSgdlXqt4+Ykzy3O2NtP2JVbY2Le4l7htOZPN+6e0S SmqMCDCjLDd1VQj7dtzoBNvHXbMTRQm656bl6SDkiFhCLmnx5GWdN6edfM6CaXV1 969QY4fw7F95R15oiBWR7140Kvg5P7fvefryn449YcUw2w+dwsHhXS/YU8sJbUxp HCmwz11Rmtct9Hh0KMj6hi/T8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEULpGpA AnjDdFcjhfBnvt87Xve7MB8GA1UdIwQYMBaAFC9MjErMRVxtWkkMQJCzo1Korxy1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDEyOC85MUJDMzc1MjZB RTgxMUVDQTQ0ODQ2NUJDNEY5QUUwMi9MMHlNU3N4RlhHMWFTUXhBa0xPalVxaXZI TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0wweU1Tc3hGWEcxYVNReEFrTE9qVXFpdkhMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDEyOC85MUJDMzc1MjZBRTgxMUVDQTQ0ODQ2NUJDNEY5QUUwMi9MMHlNU3N4RlhH MWFTUXhBa0xPalVxaXZITFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBw1KKZ4dMgRlXcgQvfDa+UjwlFWQ/gU1ISL/yawTF6xKh44i5L39Y5 zZXun6HULi99icQAW2rtPiMk5oBuW5wZahlbUPjh0brAFKYK/3Y2HjBkHaqkAt1V r6b00y/3rvT4enxrhi4b7QNY8qk2qVoinobhBSR7zE9bE5jjXfbWrCnTBdaJPvyC dH3B6R/7FmOaeDoC1ac25CVi1tM4MK4LnDU6wwsBiBG0oBgzvNjA3cgFTPfsaM/f 0OMHKQu7BdS/Zljym9Q6mO3ma372s47AC2A6smnZpHXb8nl5gkMkw1Rjwt5iXH91 oCiELpMORqkwbLbfVepY4DB2by0s40Kd -----END CERTIFICATE-----Generated at Sun Jun 15 09:53:52 2025 by rpki-client