$ rpki-client -vvf rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.mft File: LMoTVA8BO5OyPJ3xTZYX2kDLJnc.mft (raw, json) Hash identifier: O17PLuhK5Ug+Mh84VHBjjjFaZ1Rp6i51AhsdgWQJ/6s= Subject key identifier: B8:95:09:D8:AB:30:17:65:8D:06:DD:39:98:3A:DA:97:B2:76:A9:AE Authority key identifier: 2C:CA:13:54:0F:01:3B:93:B2:3C:9D:F1:4D:96:17:DA:40:CB:26:77 Certificate issuer: /CN=A91356BB/serialNumber=2CCA13540F013B93B23C9DF14D9617DA40CB2677 Certificate serial: 0502 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.mft Manifest number: 04EB Signing time: Thu 24 Apr 2025 23:33:47 +0000 Manifest this update: Thu 24 Apr 2025 23:33:46 +0000 Manifest next update: Thu 01 May 2025 23:33:46 +0000 Files and hashes: 1: LMoTVA8BO5OyPJ3xTZYX2kDLJnc.crl (hash: E1Q1iXmGSGDFk+zA6SewcfKLKs6KtZWOqfogR2r2ftI=) 2: D8CA5BF0D91811EFA4F02F4EC4F9AE02.roa (hash: 8hrfhcSqxa/4SRCjVtFAn+SSuJB9rQ+nvWhtPYLut4w=) 3: F0F715D8D91811EFAD9B2462C4F9AE02.roa (hash: P8342pKESmTLlOz4zbjEmsVcszsTgF58beclyhfeqcU=) 4: 1347AA9019FE11ECB459B141C4F9AE02.roa (hash: Ttn15R/2S0g9Iwpzx7uYzM1uyUX8bVHv0/bnifX+j4M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.crl rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:33:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1282 (0x502) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91356BB, serialNumber=2CCA13540F013B93B23C9DF14D9617DA40CB2677 Validity Not Before: Apr 24 23:33:46 2025 GMT Not After : May 1 23:33:46 2025 GMT Subject: CN=680aca5a-3ebc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:62:6f:a8:ac:6f:01:47:2c:6f:ac:62:af:8d: 28:68:77:f5:f6:0d:66:f6:3d:7b:9a:e5:a9:eb:ba: e8:ec:78:e7:63:11:e2:e4:6d:3a:a4:c9:89:00:71: ca:13:ad:3e:25:eb:7d:a9:5c:ff:f3:20:a1:69:29: aa:9f:fa:5d:48:f5:65:31:fe:14:01:fc:21:7f:ee: 72:ea:14:3c:68:27:a6:a5:ce:16:5e:61:f1:03:d7: 7b:0b:26:c1:42:9c:dc:da:a1:e9:36:18:9c:f7:48: ef:cd:d0:da:06:f9:1d:5f:ac:d7:63:d8:91:83:84: d7:3b:cc:88:82:20:48:4e:6a:b7:05:87:04:7c:c7: c7:b8:d1:24:38:6f:d7:61:4a:5c:30:85:94:f2:15: 23:02:57:8d:ce:5a:98:ec:0d:37:f9:9d:60:95:c3: ee:66:29:24:03:fa:27:43:e7:4e:91:25:dc:c2:d3: a2:8c:53:aa:30:e0:de:b1:d8:f1:58:e5:b7:4c:13: 16:11:b6:85:d9:2d:76:b7:2e:56:70:ab:1e:72:3c: fc:5d:e3:ec:12:ac:a3:67:a6:01:7c:b9:45:56:aa: 29:07:38:5e:59:50:25:19:41:13:68:00:f6:1b:44: 6e:b4:03:61:ae:9a:13:2a:e8:fc:11:73:e3:f7:45: fa:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:95:09:D8:AB:30:17:65:8D:06:DD:39:98:3A:DA:97:B2:76:A9:AE X509v3 Authority Key Identifier: keyid:2C:CA:13:54:0F:01:3B:93:B2:3C:9D:F1:4D:96:17:DA:40:CB:26:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cf:4f:28:b4:30:24:34:83:d3:44:ef:dc:17:4c:0d:05:59:f8: 19:6b:cb:71:ca:c0:32:f3:57:dd:0a:53:62:41:d4:26:8e:fb: 6c:cf:46:71:9d:2a:73:d0:32:fa:67:d3:e8:51:71:90:03:1e: 71:24:b7:0e:c7:03:50:2f:ab:bc:bb:cc:3a:48:82:e1:9f:d6: 08:97:6e:0c:8f:89:38:64:6d:86:44:a4:3f:2b:fc:17:45:e2: ac:c3:5f:0a:98:33:f7:25:e1:88:f6:29:48:31:3d:a8:60:39: 83:76:96:63:f9:65:e5:c6:bd:70:16:39:d5:ba:c7:84:68:50: 2f:a9:f2:ff:81:08:41:ea:f7:f4:fd:f8:fa:5d:bd:df:e6:01: bd:60:77:8c:c4:0c:fe:00:37:6b:ef:40:70:61:f6:e6:51:d4: 02:98:ae:fe:23:ee:26:d4:aa:6f:ea:dd:fd:77:bc:f9:ff:d7: 24:03:f4:a0:49:52:cf:67:39:fc:8c:87:48:c5:65:7b:65:df: 08:af:cf:60:30:3c:dd:75:e2:6e:ad:2e:3f:5c:00:0d:0d:6e: 0a:94:69:6b:13:bd:a4:44:8e:bc:a5:c0:5b:e7:eb:59:94:db: 65:37:9f:fc:ae:de:7b:25:c4:dd:ce:43:48:58:74:d0:5a:88: b7:b6:9b:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzU2QkIxMTAvBgNVBAUTKDJDQ0ExMzU0MEYwMTNCOTNCMjNDOURGMTREOTYxN0RB NDBDQjI2NzcwHhcNMjUwNDI0MjMzMzQ2WhcNMjUwNTAxMjMzMzQ2WjAYMRYwFAYD VQQDEw02ODBhY2E1YS0zZWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2mJvqKxvAUcsb6xir40oaHf19g1m9j17muWp67ro7HjnYxHi5G06pMmJAHHK E60+Jet9qVz/8yChaSmqn/pdSPVlMf4UAfwhf+5y6hQ8aCempc4WXmHxA9d7CybB Qpzc2qHpNhic90jvzdDaBvkdX6zXY9iRg4TXO8yIgiBITmq3BYcEfMfHuNEkOG/X YUpcMIWU8hUjAleNzlqY7A03+Z1glcPuZikkA/onQ+dOkSXcwtOijFOqMODesdjx WOW3TBMWEbaF2S12ty5WcKsecjz8XePsEqyjZ6YBfLlFVqopBzheWVAlGUETaAD2 G0RutANhrpoTKuj8EXPj90X6DwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLiVCdir MBdljQbdOZg62peydqmuMB8GA1UdIwQYMBaAFCzKE1QPATuTsjyd8U2WF9pAyyZ3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTZCQi81Q0VBNTQ5NDE2 RDUxMUVDQTdGM0Y0NkFDNEY5QUUwMi9MTW9UVkE4Qk81T3lQSjN4VFpZWDJrRExK bmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xNb1RWQThCTzVPeVBKM3hUWllYMmtETEpuYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTZCQi81Q0VBNTQ5NDE2RDUxMUVDQTdGM0Y0NkFDNEY5QUUwMi9MTW9UVkE4Qk81 T3lQSjN4VFpZWDJrRExKbmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDPTyi0MCQ0g9NE79wXTA0FWfgZa8txysAy81fdClNiQdQmjvtsz0Zx nSpz0DL6Z9PoUXGQAx5xJLcOxwNQL6u8u8w6SILhn9YIl24Mj4k4ZG2GRKQ/K/wX ReKsw18KmDP3JeGI9ilIMT2oYDmDdpZj+WXlxr1wFjnVuseEaFAvqfL/gQhB6vf0 /fj6Xb3f5gG9YHeMxAz+ADdr70BwYfbmUdQCmK7+I+4m1Kpv6t39d7z5/9ckA/Sg SVLPZzn8jIdIxWV7Zd8Ir89gMDzddeJurS4/XAANDW4KlGlrE72kRI68pcBb5+tZ lNtlN5/8rt57JcTdzkNIWHTQWoi3tptC -----END CERTIFICATE-----Generated at Sat Apr 26 05:13:01 2025 by rpki-client