$ rpki-client -vvf rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.mft File: llSi8IRZeiuRrAAqdgfhPBXQlJE.mft (raw, json) Hash identifier: TP26B23Cu2QrzD4y/OjRiBjFKoAxiQrn6jxGQmRE864= Subject key identifier: 56:94:C0:BF:EB:7C:B5:57:9F:B2:16:0D:9A:F3:81:B0:B3:45:3A:1A Authority key identifier: 96:54:A2:F0:84:59:7A:2B:91:AC:00:2A:76:07:E1:3C:15:D0:94:91 Certificate issuer: /CN=A9153303/serialNumber=9654A2F084597A2B91AC002A7607E13C15D09491 Certificate serial: AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/llSi8IRZeiuRrAAqdgfhPBXQlJE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.mft Manifest number: AC Signing time: Fri 13 Jun 2025 05:00:26 +0000 Manifest this update: Fri 13 Jun 2025 05:00:26 +0000 Manifest next update: Fri 20 Jun 2025 05:00:26 +0000 Files and hashes: 1: llSi8IRZeiuRrAAqdgfhPBXQlJE.crl (hash: lsHLAWo4o6+q/KLcVcc18oEYcoDuSbNwC318mDOs+yM=) 2: 29A436623FE111EFB5A50814C4F9AE02.roa (hash: i8BI9IvwuikO1+xMVefOXZH2ufnANITPzuMSdPax+Fg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.crl rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/llSi8IRZeiuRrAAqdgfhPBXQlJE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 05:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 173 (0xad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153303, serialNumber=9654A2F084597A2B91AC002A7607E13C15D09491 Validity Not Before: Jun 13 05:00:26 2025 GMT Not After : Jun 20 05:00:26 2025 GMT Subject: CN=684bb06a-8d2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:3a:00:f9:8a:98:02:8c:19:b6:1f:3d:6a:b3: c4:c7:83:9d:7f:06:1e:2d:d9:5c:f1:f5:32:ce:8a: b6:a1:75:54:99:48:9d:4c:f0:41:9f:af:c3:5d:13: 76:af:73:60:ec:17:68:eb:2b:e5:d2:07:a0:e2:15: 51:b3:bf:61:c5:ad:0c:6f:dd:dd:40:4f:b2:fe:21: 74:d9:d4:d5:da:68:08:cd:9a:d9:f9:d4:43:82:a1: 0f:a6:35:ad:07:5b:cb:b8:eb:e8:3d:17:76:a8:6c: 55:c2:f5:29:31:06:c2:c2:50:c9:8b:bd:04:e4:2f: 1c:2e:0d:9c:99:5a:0f:c8:ef:86:1a:96:c2:f1:4d: ee:78:ec:3a:f8:e0:ee:f7:61:bb:82:d1:11:8e:32: 84:1f:2f:7d:fe:76:92:04:69:44:3d:73:75:72:d7: 09:79:e3:e9:bb:9d:a6:e9:4b:57:7f:5a:68:d3:9c: fd:05:c3:a2:92:74:98:53:a8:46:1e:59:ac:9c:20: dd:5c:53:59:fe:ce:aa:b3:82:de:c7:20:1a:31:07: a5:66:4f:a6:12:73:fd:ac:b8:08:98:c6:bc:0e:ed: 77:90:b8:ef:74:6d:78:25:68:72:27:14:e8:2f:75: e8:c1:63:cc:76:45:df:ef:00:63:a2:ed:c9:27:4f: cd:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:94:C0:BF:EB:7C:B5:57:9F:B2:16:0D:9A:F3:81:B0:B3:45:3A:1A X509v3 Authority Key Identifier: keyid:96:54:A2:F0:84:59:7A:2B:91:AC:00:2A:76:07:E1:3C:15:D0:94:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/llSi8IRZeiuRrAAqdgfhPBXQlJE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:6e:af:c2:e4:f4:b1:cb:3b:a9:16:ee:45:b6:95:24:47:c0: 5e:9b:98:83:5d:59:b3:5b:9d:df:00:f9:50:7f:49:e0:0c:2d: 2d:31:29:93:c1:e8:87:dc:0d:6a:a6:37:30:9d:e7:1e:95:e7: e1:17:22:13:6b:c0:a1:f8:1d:3c:da:7f:ed:2a:a2:67:60:55: 12:22:93:c9:9c:89:fc:f0:df:53:aa:58:82:0d:80:5f:67:44: 9f:9a:48:6f:45:12:32:00:3d:34:1f:29:66:ba:03:97:71:2b: 3b:aa:66:ed:0a:c3:16:25:50:c2:d9:84:e4:f4:ce:89:60:3a: fe:63:3d:69:6a:35:aa:9c:78:e3:58:0f:00:7b:ab:48:84:4d: ee:51:7b:d1:31:d1:60:68:9a:ae:47:e6:ab:3f:56:ac:a6:54: 47:52:ee:8e:da:c8:cb:58:22:25:11:01:bc:01:54:a1:95:28: 48:99:a9:30:3c:ae:93:da:83:ee:c1:46:f0:b3:67:33:cf:9a: 48:b3:c4:e5:ca:8c:4c:fd:c4:98:b7:42:1d:fd:5a:bf:2a:be: c1:26:fd:99:32:5f:6c:e6:a2:dc:3d:22:a4:b1:7d:be:dc:f2: 90:4f:05:d7:98:5c:1a:0e:e8:db:0c:82:56:08:21:d8:d8:7e: b2:a0:d0:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTMzMDMxMTAvBgNVBAUTKDk2NTRBMkYwODQ1OTdBMkI5MUFDMDAyQTc2MDdFMTND MTVEMDk0OTEwHhcNMjUwNjEzMDUwMDI2WhcNMjUwNjIwMDUwMDI2WjAYMRYwFAYD VQQDEw02ODRiYjA2YS04ZDJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2ToA+YqYAowZth89arPEx4OdfwYeLdlc8fUyzoq2oXVUmUidTPBBn6/DXRN2 r3Ng7Bdo6yvl0geg4hVRs79hxa0Mb93dQE+y/iF02dTV2mgIzZrZ+dRDgqEPpjWt B1vLuOvoPRd2qGxVwvUpMQbCwlDJi70E5C8cLg2cmVoPyO+GGpbC8U3ueOw6+ODu 92G7gtERjjKEHy99/naSBGlEPXN1ctcJeePpu52m6UtXf1po05z9BcOiknSYU6hG HlmsnCDdXFNZ/s6qs4LexyAaMQelZk+mEnP9rLgImMa8Du13kLjvdG14JWhyJxTo L3XowWPMdkXf7wBjou3JJ0/NdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFaUwL/r fLVXn7IWDZrzgbCzRToaMB8GA1UdIwQYMBaAFJZUovCEWXorkawAKnYH4TwV0JSR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzMwMy84MEJGMUE2MjNG RTAxMUVGODYzNUQ3MTJDNEY5QUUwMi9sbFNpOElSWmVpdVJyQUFxZGdmaFBCWFFs SkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xsU2k4SVJaZWl1UnJBQXFkZ2ZoUEJYUWxKRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzMwMy84MEJGMUE2MjNGRTAxMUVGODYzNUQ3MTJDNEY5QUUwMi9sbFNpOElSWmVp dVJyQUFxZGdmaFBCWFFsSkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClbq/C5PSxyzupFu5FtpUkR8Bem5iDXVmzW53fAPlQf0ngDC0tMSmT weiH3A1qpjcwnecelefhFyITa8Ch+B082n/tKqJnYFUSIpPJnIn88N9TqliCDYBf Z0SfmkhvRRIyAD00HylmugOXcSs7qmbtCsMWJVDC2YTk9M6JYDr+Yz1pajWqnHjj WA8Ae6tIhE3uUXvRMdFgaJquR+arP1asplRHUu6O2sjLWCIlEQG8AVShlShImakw PK6T2oPuwUbws2czz5pIs8TlyoxM/cSYt0Id/Vq/Kr7BJv2ZMl9s5qLcPSKksX2+ 3PKQTwXXmFwaDujbDIJWCCHY2H6yoNA+ -----END CERTIFICATE-----Generated at Sat Jun 14 19:41:10 2025 by rpki-client