$ rpki-client -vvf rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft File: LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft (raw, json) Hash identifier: Fy3jQGr+D/a3Fc9F7w7ueOauwcuhBP5jJkOKh83ZmYM= Subject key identifier: 98:4A:4E:54:C3:4F:A7:4D:65:5E:8F:90:9C:24:22:00:6D:9E:E0:15 Authority key identifier: 2D:BC:46:5D:A6:81:B5:B3:11:89:7A:B6:C4:68:C2:54:70:6E:5D:2F Certificate issuer: /CN=A9153D75/serialNumber=2DBC465DA681B5B311897AB6C468C254706E5D2F Certificate serial: 01CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LbxGXaaBtbMRiXq2xGjCVHBuXS8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft Manifest number: 01C8 Signing time: Fri 25 Apr 2025 02:04:01 +0000 Manifest this update: Fri 25 Apr 2025 02:04:00 +0000 Manifest next update: Fri 02 May 2025 02:04:00 +0000 Files and hashes: 1: LbxGXaaBtbMRiXq2xGjCVHBuXS8.crl (hash: tL21MM9+3mns5Nr4yu5pntQEBIdpxfsDTM81L2RfVTQ=) 2: 552D155464A711ED99D40117C4F9AE02.roa (hash: vqnq1ln0jacCM48xfrENGgLrWxqslFbyB5Snj9ZJdaw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.crl rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LbxGXaaBtbMRiXq2xGjCVHBuXS8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:04:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 459 (0x1cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153D75, serialNumber=2DBC465DA681B5B311897AB6C468C254706E5D2F Validity Not Before: Apr 25 02:04:00 2025 GMT Not After : May 2 02:04:00 2025 GMT Subject: CN=680aed90-4c6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:8c:44:b0:e1:2a:75:2a:b9:ea:b7:23:37:b8: d1:5c:68:2d:e8:e1:27:ac:b2:ed:92:ea:f6:81:33: 26:fa:d7:f1:9f:08:b8:06:e3:17:8a:37:41:fa:9d: cc:2e:a3:d5:4e:4d:06:29:82:21:88:ad:77:67:ce: e9:bc:35:5b:3b:d1:49:de:e9:91:86:3f:5f:1e:ac: 10:bc:fe:61:24:e2:cd:e5:ce:01:e1:ca:e9:3b:f4: 08:99:4b:65:25:d2:f1:69:31:a7:00:1e:15:76:57: 71:8e:1a:48:e3:18:ef:04:fb:13:3f:a1:e8:22:fa: b7:43:a8:32:d3:d5:96:69:26:eb:ea:55:8f:05:45: b1:f4:eb:7d:36:01:b2:59:f1:08:ab:e1:5e:7e:85: 8e:62:7a:48:30:d2:5a:8f:94:52:e0:83:c9:0d:82: 33:78:f0:7b:e4:b5:e9:4c:16:7f:2b:d6:a1:95:34: 64:57:e0:6e:90:7e:ad:a6:0d:7a:62:62:10:76:e6: 1c:b7:a6:ba:bc:db:7f:c9:5f:45:92:d8:d8:ea:30: 80:f3:10:99:de:04:33:90:fc:50:47:76:c8:ae:ee: 91:64:47:dc:98:02:dd:dc:02:2e:b7:b4:76:f6:e6: e1:14:79:86:44:2d:8e:f1:8b:f1:7a:37:75:e0:d2: b4:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:4A:4E:54:C3:4F:A7:4D:65:5E:8F:90:9C:24:22:00:6D:9E:E0:15 X509v3 Authority Key Identifier: keyid:2D:BC:46:5D:A6:81:B5:B3:11:89:7A:B6:C4:68:C2:54:70:6E:5D:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LbxGXaaBtbMRiXq2xGjCVHBuXS8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:6a:e5:41:2b:1b:54:66:f7:6d:80:2f:96:a7:89:f3:e4:b0: 04:3d:26:1a:f8:48:fd:ea:d1:70:dc:06:36:e1:7d:03:69:f6: cc:58:1f:6e:55:5e:b0:37:19:cc:75:bf:b8:d2:ca:f2:89:40: 6e:a6:3c:a8:86:e3:3b:72:f6:8a:f6:8b:25:69:a7:d8:57:8d: 18:56:1a:ba:cf:99:4a:0e:5b:92:35:6e:b8:a8:c2:b6:a0:ab: 6c:11:70:7a:cf:1d:9c:d1:76:ca:90:44:93:c6:44:f8:ee:f6: 86:19:8b:cb:10:d4:b7:cf:1e:60:84:27:1d:0f:a1:48:2b:d5: 4b:f6:39:fa:a1:1d:ba:98:8b:ac:06:c0:d0:0f:9b:02:82:b4: d3:bc:fb:c7:a7:18:8c:a0:ae:a5:3b:ad:79:71:8e:a5:f8:99: c7:8e:d4:54:d0:32:a5:72:81:b8:b3:d4:30:1b:aa:33:bc:8f: fd:c1:ae:6a:05:58:32:d2:82:85:22:8c:57:9c:ae:26:d1:aa: 85:dd:ca:e5:21:5c:1f:40:19:81:15:3f:e2:d3:a0:bf:29:96: 1f:df:a9:fd:17:93:59:ee:e0:c1:f6:91:6f:66:60:c3:07:a6: 2f:c9:8e:80:ec:07:86:74:f9:bb:bd:25:93:6c:f7:bc:95:ec: c5:e6:16:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNENzUxMTAvBgNVBAUTKDJEQkM0NjVEQTY4MUI1QjMxMTg5N0FCNkM0NjhDMjU0 NzA2RTVEMkYwHhcNMjUwNDI1MDIwNDAwWhcNMjUwNTAyMDIwNDAwWjAYMRYwFAYD VQQDEw02ODBhZWQ5MC00YzZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr4xEsOEqdSq56rcjN7jRXGgt6OEnrLLtkur2gTMm+tfxnwi4BuMXijdB+p3M LqPVTk0GKYIhiK13Z87pvDVbO9FJ3umRhj9fHqwQvP5hJOLN5c4B4crpO/QImUtl JdLxaTGnAB4VdldxjhpI4xjvBPsTP6HoIvq3Q6gy09WWaSbr6lWPBUWx9Ot9NgGy WfEIq+FefoWOYnpIMNJaj5RS4IPJDYIzePB75LXpTBZ/K9ahlTRkV+BukH6tpg16 YmIQduYct6a6vNt/yV9FktjY6jCA8xCZ3gQzkPxQR3bIru6RZEfcmALd3AIut7R2 9ubhFHmGRC2O8Yvxejd14NK0DwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJhKTlTD T6dNZV6PkJwkIgBtnuAVMB8GA1UdIwQYMBaAFC28Rl2mgbWzEYl6tsRowlRwbl0v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0Q3NS81MkRFNEM0QTY0 QTMxMUVEODIyMDI0MTJDNEY5QUUwMi9MYnhHWGFhQnRiTVJpWHEyeEdqQ1ZIQnVY UzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xieEdYYWFCdGJNUmlYcTJ4R2pDVkhCdVhTOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0Q3NS81MkRFNEM0QTY0QTMxMUVEODIyMDI0MTJDNEY5QUUwMi9MYnhHWGFhQnRi TVJpWHEyeEdqQ1ZIQnVYUzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBauVBKxtUZvdtgC+Wp4nz5LAEPSYa+Ej96tFw3AY24X0DafbMWB9u VV6wNxnMdb+40sryiUBupjyohuM7cvaK9oslaafYV40YVhq6z5lKDluSNW64qMK2 oKtsEXB6zx2c0XbKkESTxkT47vaGGYvLENS3zx5ghCcdD6FIK9VL9jn6oR26mIus BsDQD5sCgrTTvPvHpxiMoK6lO615cY6l+JnHjtRU0DKlcoG4s9QwG6ozvI/9wa5q BVgy0oKFIoxXnK4m0aqF3crlIVwfQBmBFT/i06C/KZYf36n9F5NZ7uDB9pFvZmDD B6YvyY6A7AeGdPm7vSWTbPe8lezF5hZq -----END CERTIFICATE-----Generated at Sat Apr 26 14:39:38 2025 by rpki-client