$ rpki-client -vvf rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.mft File: LMoTVA8BO5OyPJ3xTZYX2kDLJnc.mft (raw, json) Hash identifier: ulZ63kCm0yG+rG+h47EJ3HM49VMjWpoItt7TBQw66oQ= Subject key identifier: 75:73:D9:56:4E:1A:AB:77:A8:A1:90:98:73:5E:DE:5F:57:12:ED:BC Authority key identifier: 2C:CA:13:54:0F:01:3B:93:B2:3C:9D:F1:4D:96:17:DA:40:CB:26:77 Certificate issuer: /CN=A91356BB/serialNumber=2CCA13540F013B93B23C9DF14D9617DA40CB2677 Certificate serial: 051F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.mft Manifest number: 0505 Signing time: Thu 12 Jun 2025 23:18:11 +0000 Manifest this update: Thu 12 Jun 2025 23:18:10 +0000 Manifest next update: Thu 19 Jun 2025 23:18:10 +0000 Files and hashes: 1: LMoTVA8BO5OyPJ3xTZYX2kDLJnc.crl (hash: 7Jwmr9PQlPkLDulgeMZY1BfAuerQqQ2l6LMoUxZCv4M=) 2: D8CA5BF0D91811EFA4F02F4EC4F9AE02.roa (hash: DvLUGxpnlD+w7CjAnjLD3ciQNtC4SJP+lB2sIfV00Es=) 3: F0F715D8D91811EFAD9B2462C4F9AE02.roa (hash: Ny12vEBqpwaRq5+I0g6PLZP16p/vMcEe0/tRUqpINSs=) 4: 1347AA9019FE11ECB459B141C4F9AE02.roa (hash: h9GZsXJu26LTuTfI8PKJuMKvzk1POlvfCmlntQi2k6Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.crl rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 23:18:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1311 (0x51f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91356BB, serialNumber=2CCA13540F013B93B23C9DF14D9617DA40CB2677 Validity Not Before: Jun 12 23:18:10 2025 GMT Not After : Jun 19 23:18:10 2025 GMT Subject: CN=684b6032-3bb8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:f2:0a:00:83:c2:e2:36:7f:c0:51:90:74:16: 92:4d:0e:56:cc:a9:64:ee:f5:85:69:d5:82:8e:a9: 5a:3c:60:af:09:21:43:6a:b4:63:97:79:98:ef:6d: ad:43:db:aa:9a:bc:be:0f:18:ce:0d:b4:df:b5:e5: 7f:ac:69:8e:6e:f2:88:de:6e:f9:e6:54:fa:c8:39: f7:7f:75:57:06:39:22:5e:c4:23:66:8c:2d:49:51: 8f:fa:d5:6e:53:c4:d8:30:99:f7:10:4d:7c:e9:51: e4:87:f4:15:38:3b:5d:c5:f4:f8:68:0c:a6:e8:d1: ee:7c:f0:45:59:ca:99:1f:07:55:72:a6:47:6a:3a: ec:7c:68:2c:80:58:b2:b3:3b:00:85:a7:40:c2:c5: 3b:61:31:f0:29:37:a8:f3:27:61:e8:83:65:8d:26: 8a:ed:b2:dd:3f:52:92:75:9d:ce:56:b2:4b:23:d1: 42:57:90:fd:08:85:52:01:37:1a:1c:1a:af:36:6b: b9:bc:20:70:76:2a:5b:1f:15:d3:12:cf:49:2c:75: 86:e5:dc:7d:6a:34:a6:36:df:28:22:44:96:85:ec: ba:31:19:8a:f7:04:0e:4f:24:33:7e:ad:ed:c9:41: f8:f0:0a:1b:6f:1d:25:0e:76:b4:cf:52:07:de:f3: c2:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:73:D9:56:4E:1A:AB:77:A8:A1:90:98:73:5E:DE:5F:57:12:ED:BC X509v3 Authority Key Identifier: keyid:2C:CA:13:54:0F:01:3B:93:B2:3C:9D:F1:4D:96:17:DA:40:CB:26:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:52:18:b3:63:89:5f:13:f8:c3:56:74:1c:c8:2c:8a:af:62: d9:21:36:64:7d:6e:d4:52:d1:48:c7:4a:83:dd:94:a0:82:48: df:26:b5:83:c7:f2:ef:23:6e:4b:6d:c5:2a:93:9f:0c:14:e2: 64:64:b5:73:07:85:e9:d8:4b:05:3c:5e:e4:57:21:91:c9:2c: 85:76:92:83:a6:d7:09:62:3c:37:ea:f9:0f:27:4c:b0:c6:6f: 7b:da:7a:69:d0:af:13:39:80:53:8c:c7:b6:6e:fd:4d:87:6a: 24:a9:7f:f7:05:80:72:64:c3:fd:c0:9e:92:80:68:55:64:d0: 83:be:bf:27:37:a6:9f:c7:fe:98:38:2e:b7:40:d4:9a:87:e5: f2:5f:a4:f7:0d:a4:f3:d4:a3:80:9b:94:e7:6d:2e:1c:cb:3d: 46:a8:4f:87:43:e7:8c:ed:19:9a:9f:54:38:15:d2:df:b5:f7: 77:9a:10:cb:d3:6b:30:8e:e3:5b:71:ba:07:18:32:6d:56:ec: 0c:64:2b:84:ae:76:fd:fe:9f:12:75:2e:9d:4b:8a:d3:2d:77: 20:4e:34:92:f4:b5:62:2d:a0:be:77:6f:be:2a:4c:47:58:ad: 36:8e:f0:09:7c:89:b1:7b:3c:15:a1:33:64:8d:35:8d:8b:5c: 66:1e:58:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBR8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzU2QkIxMTAvBgNVBAUTKDJDQ0ExMzU0MEYwMTNCOTNCMjNDOURGMTREOTYxN0RB NDBDQjI2NzcwHhcNMjUwNjEyMjMxODEwWhcNMjUwNjE5MjMxODEwWjAYMRYwFAYD VQQDEw02ODRiNjAzMi0zYmI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyfIKAIPC4jZ/wFGQdBaSTQ5WzKlk7vWFadWCjqlaPGCvCSFDarRjl3mY722t Q9uqmry+DxjODbTfteV/rGmObvKI3m755lT6yDn3f3VXBjkiXsQjZowtSVGP+tVu U8TYMJn3EE186VHkh/QVODtdxfT4aAym6NHufPBFWcqZHwdVcqZHajrsfGgsgFiy szsAhadAwsU7YTHwKTeo8ydh6INljSaK7bLdP1KSdZ3OVrJLI9FCV5D9CIVSATca HBqvNmu5vCBwdipbHxXTEs9JLHWG5dx9ajSmNt8oIkSWhey6MRmK9wQOTyQzfq3t yUH48Aobbx0lDna0z1IH3vPCvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHVz2VZO Gqt3qKGQmHNe3l9XEu28MB8GA1UdIwQYMBaAFCzKE1QPATuTsjyd8U2WF9pAyyZ3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTZCQi81Q0VBNTQ5NDE2 RDUxMUVDQTdGM0Y0NkFDNEY5QUUwMi9MTW9UVkE4Qk81T3lQSjN4VFpZWDJrRExK bmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xNb1RWQThCTzVPeVBKM3hUWllYMmtETEpuYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTZCQi81Q0VBNTQ5NDE2RDUxMUVDQTdGM0Y0NkFDNEY5QUUwMi9MTW9UVkE4Qk81 T3lQSjN4VFpZWDJrRExKbmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCUhizY4lfE/jDVnQcyCyKr2LZITZkfW7UUtFIx0qD3ZSggkjfJrWD x/LvI25LbcUqk58MFOJkZLVzB4Xp2EsFPF7kVyGRySyFdpKDptcJYjw36vkPJ0yw xm972npp0K8TOYBTjMe2bv1Nh2okqX/3BYByZMP9wJ6SgGhVZNCDvr8nN6afx/6Y OC63QNSah+XyX6T3DaTz1KOAm5TnbS4cyz1GqE+HQ+eM7Rman1Q4FdLftfd3mhDL 02swjuNbcboHGDJtVuwMZCuErnb9/p8SdS6dS4rTLXcgTjSS9LViLaC+d2++KkxH WK02jvAJfImxezwVoTNkjTWNi1xmHlgq -----END CERTIFICATE-----Generated at Sat Jun 14 17:39:33 2025 by rpki-client