$ rpki-client -vvf rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/lDuBQuFVPslGJaRyTlaYKhVY_pw.mft File: lDuBQuFVPslGJaRyTlaYKhVY_pw.mft (raw, json) Hash identifier: YXDif1zS06sC6aTr/4Yri3SWRd+Xn0Qpr2OWSFh33DY= Subject key identifier: A8:2B:51:F5:50:E1:3B:DE:C2:9F:B5:B7:CF:A8:82:AE:D3:14:44:A5 Authority key identifier: 94:3B:81:42:E1:55:3E:C9:46:25:A4:72:4E:56:98:2A:15:58:FE:9C Certificate issuer: /CN=A91582D9/serialNumber=943B8142E1553EC94625A4724E56982A1558FE9C Certificate serial: 1780 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lDuBQuFVPslGJaRyTlaYKhVY_pw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/lDuBQuFVPslGJaRyTlaYKhVY_pw.mft Manifest number: 1F69 Signing time: Thu 24 Apr 2025 16:36:55 +0000 Manifest this update: Thu 24 Apr 2025 16:36:54 +0000 Manifest next update: Thu 01 May 2025 16:36:54 +0000 Files and hashes: 1: lDuBQuFVPslGJaRyTlaYKhVY_pw.crl (hash: ka7I0pGHC1pIpgHF+RHrwr9KDRomFYxz3FhNvlLr6Sg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/lDuBQuFVPslGJaRyTlaYKhVY_pw.crl rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/lDuBQuFVPslGJaRyTlaYKhVY_pw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lDuBQuFVPslGJaRyTlaYKhVY_pw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:36:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6016 (0x1780) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91582D9, serialNumber=943B8142E1553EC94625A4724E56982A1558FE9C Validity Not Before: Apr 24 16:36:54 2025 GMT Not After : May 1 16:36:54 2025 GMT Subject: CN=680a68a6-4aa7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:1a:2b:01:3a:c0:f2:00:7b:26:76:ed:f7:3a: ac:15:60:90:da:b8:33:68:6e:c5:64:65:c6:f0:cb: 0e:1b:b7:82:e8:ac:60:71:00:1b:a3:c6:60:f4:bb: 3d:42:32:e3:4a:95:6a:f7:44:d1:61:6a:0c:e9:f9: 8a:6a:64:83:71:6e:57:fe:26:fb:ce:e4:e5:44:c3: 19:f4:e7:76:fa:82:39:9c:58:c3:5a:42:9d:49:c5: 2c:88:08:c1:79:bb:f9:55:35:09:ad:6b:bd:ce:79: 52:20:4a:36:24:65:d4:60:3b:25:ac:d7:c3:8f:43: b1:1d:dc:2c:31:df:69:7c:10:2a:d8:48:41:b9:cf: 41:16:f5:e0:81:1d:c3:7f:98:84:64:36:cf:cc:0d: e5:aa:e5:a2:42:98:f6:72:da:fb:74:a0:1f:40:a6: 71:93:ca:d4:c0:ec:8b:0a:29:ac:b9:56:e6:53:59: 87:76:90:63:5d:b8:06:99:b4:c1:0d:0e:62:7e:54: 34:19:c0:b0:a7:ce:32:45:91:f5:fe:0c:41:57:52: e1:70:4c:d3:c9:d0:d6:4e:6e:66:bc:84:ae:a0:ed: 27:93:16:31:2f:73:d5:fb:8b:38:4f:56:9f:1f:b9: bb:53:c0:b2:13:68:26:27:26:97:b7:77:79:02:2f: 7a:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:2B:51:F5:50:E1:3B:DE:C2:9F:B5:B7:CF:A8:82:AE:D3:14:44:A5 X509v3 Authority Key Identifier: keyid:94:3B:81:42:E1:55:3E:C9:46:25:A4:72:4E:56:98:2A:15:58:FE:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/lDuBQuFVPslGJaRyTlaYKhVY_pw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lDuBQuFVPslGJaRyTlaYKhVY_pw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/lDuBQuFVPslGJaRyTlaYKhVY_pw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:d0:ea:a4:3f:46:81:3a:8e:d0:33:25:77:c7:13:f6:55:da: ee:c7:a3:57:7c:52:47:d1:c1:e2:c8:d3:6b:67:e9:5c:db:c7: 1d:39:45:b7:06:fa:f9:e3:7a:73:7e:ed:99:c9:87:48:b0:cc: a8:ee:2d:b9:8b:f2:06:0e:f1:34:14:ae:13:31:61:c1:61:98: cb:8e:57:88:2a:ee:6b:0a:a9:18:e8:22:0d:29:99:a1:5e:1e: c5:fd:b0:f9:b4:ea:68:80:e4:0c:56:f2:2d:24:d3:4f:fb:20: 49:63:8c:b1:05:12:22:25:b2:6c:a6:9a:e8:c5:46:4b:6c:aa: 04:95:3b:f1:3a:be:48:39:77:5a:29:22:cd:1d:78:4f:cd:75: d5:fe:43:9f:93:27:6d:fb:35:53:c7:59:05:95:3e:c3:dd:de: 98:52:d9:96:6c:5f:e8:59:9a:91:a3:cf:81:dc:b3:c4:7e:50: a4:e1:f7:4b:06:07:28:21:04:fb:9c:38:b0:12:b1:04:fc:98: eb:cf:1d:43:11:40:20:d8:bf:c3:00:b2:a9:ce:39:f2:4d:b1: 29:b7:27:72:1b:3e:5a:7a:5a:f8:c1:2b:5d:d3:75:39:ad:70: 61:e0:4a:3b:44:c5:a2:b2:6b:67:52:0a:0f:c7:ec:85:4e:f6: c1:5d:08:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF4AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgyRDkxMTAvBgNVBAUTKDk0M0I4MTQyRTE1NTNFQzk0NjI1QTQ3MjRFNTY5ODJB MTU1OEZFOUMwHhcNMjUwNDI0MTYzNjU0WhcNMjUwNTAxMTYzNjU0WjAYMRYwFAYD VQQDEw02ODBhNjhhNi00YWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5RorATrA8gB7Jnbt9zqsFWCQ2rgzaG7FZGXG8MsOG7eC6KxgcQAbo8Zg9Ls9 QjLjSpVq90TRYWoM6fmKamSDcW5X/ib7zuTlRMMZ9Od2+oI5nFjDWkKdScUsiAjB ebv5VTUJrWu9znlSIEo2JGXUYDslrNfDj0OxHdwsMd9pfBAq2EhBuc9BFvXggR3D f5iEZDbPzA3lquWiQpj2ctr7dKAfQKZxk8rUwOyLCimsuVbmU1mHdpBjXbgGmbTB DQ5iflQ0GcCwp84yRZH1/gxBV1LhcEzTydDWTm5mvISuoO0nkxYxL3PV+4s4T1af H7m7U8CyE2gmJyaXt3d5Ai96FwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKgrUfVQ 4Tvewp+1t8+ogq7TFESlMB8GA1UdIwQYMBaAFJQ7gULhVT7JRiWkck5WmCoVWP6c MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODJEOS8wRURBNkQ1RUNE REExMUU3QkRFQThDMkJDNEY5QUUwMi9sRHVCUXVGVlBzbEdKYVJ5VGxhWUtoVllf cHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xEdUJRdUZWUHNsR0phUnlUbGFZS2hWWV9wdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODJEOS8wRURBNkQ1RUNEREExMUU3QkRFQThDMkJDNEY5QUUwMi9sRHVCUXVGVlBz bEdKYVJ5VGxhWUtoVllfcHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZ0OqkP0aBOo7QMyV3xxP2Vdrux6NXfFJH0cHiyNNrZ+lc28cdOUW3 Bvr543pzfu2ZyYdIsMyo7i25i/IGDvE0FK4TMWHBYZjLjleIKu5rCqkY6CINKZmh Xh7F/bD5tOpogOQMVvItJNNP+yBJY4yxBRIiJbJspproxUZLbKoElTvxOr5IOXda KSLNHXhPzXXV/kOfkydt+zVTx1kFlT7D3d6YUtmWbF/oWZqRo8+B3LPEflCk4fdL BgcoIQT7nDiwErEE/Jjrzx1DEUAg2L/DALKpzjnyTbEptydyGz5aelr4wStd03U5 rXBh4Eo7RMWismtnUgoPx+yFTvbBXQgb -----END CERTIFICATE-----Generated at Sat Apr 26 15:59:38 2025 by rpki-client