$ rpki-client -vvf rpki.apnic.net/member_repository/A913BC05/47339566208C11EA9435E63BC4F9AE02/LVqV8tpLHxxwxkYlGfxvWJRfyrk.mft File: LVqV8tpLHxxwxkYlGfxvWJRfyrk.mft (raw, json) Hash identifier: IH3s9KnYXYV56j7unMmYKmIZvtCyAp06iTfxL+2UHFU= Subject key identifier: 7D:47:7D:F6:D1:03:A3:EA:CD:02:BB:F9:63:E4:81:DB:76:BA:55:AD Authority key identifier: 2D:5A:95:F2:DA:4B:1F:1C:70:C6:46:25:19:FC:6F:58:94:5F:CA:B9 Certificate issuer: /CN=A913BC05/serialNumber=2D5A95F2DA4B1F1C70C6462519FC6F58945FCAB9 Certificate serial: 0BA8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LVqV8tpLHxxwxkYlGfxvWJRfyrk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913BC05/47339566208C11EA9435E63BC4F9AE02/LVqV8tpLHxxwxkYlGfxvWJRfyrk.mft Manifest number: 0BA2 Signing time: Thu 24 Apr 2025 18:52:15 +0000 Manifest this update: Thu 24 Apr 2025 18:52:15 +0000 Manifest next update: Thu 01 May 2025 18:52:15 +0000 Files and hashes: 1: LVqV8tpLHxxwxkYlGfxvWJRfyrk.crl (hash: IgeuV7vFhPaIXZx819Kfcw4bCl8o0HXkPDgzQluK034=) 2: 4ABAD810208D11EAA05C7C3DC4F9AE02.roa (hash: IjPsFFHCvUaMlnUaOFvCNKSeXcsnIqpFaL3Dn7jwLDU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913BC05/47339566208C11EA9435E63BC4F9AE02/LVqV8tpLHxxwxkYlGfxvWJRfyrk.crl rsync://rpki.apnic.net/member_repository/A913BC05/47339566208C11EA9435E63BC4F9AE02/LVqV8tpLHxxwxkYlGfxvWJRfyrk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LVqV8tpLHxxwxkYlGfxvWJRfyrk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:52:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2984 (0xba8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913BC05, serialNumber=2D5A95F2DA4B1F1C70C6462519FC6F58945FCAB9 Validity Not Before: Apr 24 18:52:15 2025 GMT Not After : May 1 18:52:15 2025 GMT Subject: CN=680a885f-9bc6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:b0:bc:f8:66:3b:28:8a:c1:c9:13:22:ba:26: 40:c1:d4:98:70:7d:a3:82:63:ff:70:22:fd:57:d9: 9c:13:55:62:03:ac:e0:82:36:c9:20:51:cc:24:b5: 45:0b:a6:3d:00:52:2d:f5:85:18:1a:d6:c9:00:02: 90:45:dd:0d:29:b9:2a:61:0b:dc:f3:64:4c:0d:3c: b9:2c:d6:0f:04:de:b4:6a:58:49:19:28:43:0d:36: 50:46:56:a5:4b:ba:2a:bf:ba:c3:c4:cc:7e:ac:70: d7:a7:ef:61:64:c0:1d:ea:3e:7b:c7:1c:6d:d7:88: f4:57:2f:6a:b5:d8:9d:87:0d:db:0a:4d:0e:47:35: 34:6b:0f:64:16:52:cc:09:e8:2d:8a:47:31:b7:dd: f8:e5:dd:a9:0c:8d:2c:b0:39:1b:97:cc:d3:93:13: 50:1f:e8:9e:b8:20:fd:91:16:16:a0:6a:3b:3b:ef: 23:e0:2c:d8:c0:00:7d:13:fc:5d:42:da:5f:83:70: 02:85:15:a2:7d:0c:e8:7c:9a:38:1d:41:a2:6a:25: 01:a3:76:2b:1f:e3:99:f7:9b:02:7b:f6:81:d6:2a: 51:94:5e:c1:52:63:fc:a1:02:46:a7:32:a9:2d:db: b2:1f:5c:dc:4a:88:f2:4b:f4:77:41:ec:31:4c:1e: b5:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:47:7D:F6:D1:03:A3:EA:CD:02:BB:F9:63:E4:81:DB:76:BA:55:AD X509v3 Authority Key Identifier: keyid:2D:5A:95:F2:DA:4B:1F:1C:70:C6:46:25:19:FC:6F:58:94:5F:CA:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913BC05/47339566208C11EA9435E63BC4F9AE02/LVqV8tpLHxxwxkYlGfxvWJRfyrk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LVqV8tpLHxxwxkYlGfxvWJRfyrk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913BC05/47339566208C11EA9435E63BC4F9AE02/LVqV8tpLHxxwxkYlGfxvWJRfyrk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:b7:f9:98:39:e7:12:65:1c:68:b1:d5:af:10:b4:04:ad:eb: e6:aa:ac:5c:0c:16:f1:b8:62:67:82:da:61:27:24:ab:1a:91: 51:49:35:e1:53:90:b6:37:30:89:2f:ac:c6:0e:bb:ac:5d:dd: d2:1b:9d:bf:ca:08:35:1f:ac:0d:22:8b:c0:28:04:3a:7f:c2: 2d:6a:11:c8:93:7f:c3:5b:ca:ea:02:6e:f9:64:67:c2:38:07: f7:70:50:16:1a:79:23:2b:b0:cd:3e:26:bd:53:e9:d3:5d:30: 94:c5:52:09:35:a4:81:32:e4:96:4b:e5:fa:4a:fe:96:bb:f0: e4:ce:4a:bd:bf:d3:8a:5f:ba:c4:f0:cd:52:93:88:b3:26:64: 60:f2:d2:b1:23:aa:f7:27:71:d9:4b:6c:cb:0e:74:4e:35:7a: a7:aa:84:a7:ea:1d:ab:0b:3f:20:04:1d:b9:5b:98:07:b4:4b: 78:d2:7b:29:68:4c:c3:9b:cf:65:cb:eb:81:fe:ee:cf:cb:37: 68:1b:c6:d2:2b:c0:5c:a0:77:fb:fe:fa:d4:84:f8:ab:7b:88: c9:17:a2:0c:75:7a:54:c7:af:39:32:a5:96:1c:09:55:33:fc: 9d:4c:08:d3:ea:80:68:86:6f:a4:8c:7e:9d:7b:05:65:c1:4f: f4:e6:c2:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC6gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0JDMDUxMTAvBgNVBAUTKDJENUE5NUYyREE0QjFGMUM3MEM2NDYyNTE5RkM2RjU4 OTQ1RkNBQjkwHhcNMjUwNDI0MTg1MjE1WhcNMjUwNTAxMTg1MjE1WjAYMRYwFAYD VQQDEw02ODBhODg1Zi05YmM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuLC8+GY7KIrByRMiuiZAwdSYcH2jgmP/cCL9V9mcE1ViA6zggjbJIFHMJLVF C6Y9AFIt9YUYGtbJAAKQRd0NKbkqYQvc82RMDTy5LNYPBN60alhJGShDDTZQRlal S7oqv7rDxMx+rHDXp+9hZMAd6j57xxxt14j0Vy9qtdidhw3bCk0ORzU0aw9kFlLM Cegtikcxt9345d2pDI0ssDkbl8zTkxNQH+ieuCD9kRYWoGo7O+8j4CzYwAB9E/xd Qtpfg3AChRWifQzofJo4HUGiaiUBo3YrH+OZ95sCe/aB1ipRlF7BUmP8oQJGpzKp LduyH1zcSojyS/R3QewxTB61AwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH1HffbR A6PqzQK7+WPkgdt2ulWtMB8GA1UdIwQYMBaAFC1alfLaSx8ccMZGJRn8b1iUX8q5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQkMwNS80NzMzOTU2NjIw OEMxMUVBOTQzNUU2M0JDNEY5QUUwMi9MVnFWOHRwTEh4eHd4a1lsR2Z4dldKUmZ5 cmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xWcVY4dHBMSHh4d3hrWWxHZnh2V0pSZnlyay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QkMwNS80NzMzOTU2NjIwOEMxMUVBOTQzNUU2M0JDNEY5QUUwMi9MVnFWOHRwTEh4 eHd4a1lsR2Z4dldKUmZ5cmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwt/mYOecSZRxosdWvELQErevmqqxcDBbxuGJngtphJySrGpFRSTXh U5C2NzCJL6zGDrusXd3SG52/ygg1H6wNIovAKAQ6f8ItahHIk3/DW8rqAm75ZGfC OAf3cFAWGnkjK7DNPia9U+nTXTCUxVIJNaSBMuSWS+X6Sv6Wu/Dkzkq9v9OKX7rE 8M1Sk4izJmRg8tKxI6r3J3HZS2zLDnRONXqnqoSn6h2rCz8gBB25W5gHtEt40nsp aEzDm89ly+uB/u7PyzdoG8bSK8BcoHf7/vrUhPire4jJF6IMdXpUx685MqWWHAlV M/ydTAjT6oBohm+kjH6dewVlwU/05sJJ -----END CERTIFICATE-----Generated at Sat Apr 26 15:26:10 2025 by rpki-client