$ rpki-client -vvf rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft File: 1lqglKUeKDl1O1khC2zyxUkVwB4.mft (raw, json) Hash identifier: v7InQSVmfoDf+6F9DXx1bVsPDBx1yiGuAkpcGW4FHS4= Subject key identifier: 91:65:07:FC:1C:C1:AF:50:15:4D:A1:4C:DC:A3:61:13:7D:DB:81:84 Authority key identifier: D6:5A:A0:94:A5:1E:28:39:75:3B:59:21:0B:6C:F2:C5:49:15:C0:1E Certificate issuer: /CN=A915C1AA/serialNumber=D65AA094A51E2839753B59210B6CF2C54915C01E Certificate serial: 09C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqglKUeKDl1O1khC2zyxUkVwB4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft Manifest number: 09BE Signing time: Thu 24 Apr 2025 19:51:36 +0000 Manifest this update: Thu 24 Apr 2025 19:51:35 +0000 Manifest next update: Thu 01 May 2025 19:51:35 +0000 Files and hashes: 1: 1lqglKUeKDl1O1khC2zyxUkVwB4.crl (hash: //9YuJmVNRi0v8T/75NdVbJ54EAGjrh5IKlbP1arS04=) 2: 220853047F2211EA8E730F35C4F9AE02.roa (hash: xV0WLxYqqQFCLmI/y4DVLsG2EiamVNg0WSby5MmNSBE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.crl rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqglKUeKDl1O1khC2zyxUkVwB4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:51:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2500 (0x9c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C1AA, serialNumber=D65AA094A51E2839753B59210B6CF2C54915C01E Validity Not Before: Apr 24 19:51:35 2025 GMT Not After : May 1 19:51:35 2025 GMT Subject: CN=680a9647-63a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:8e:4d:2d:a3:bb:03:62:ea:13:05:99:31:57: ed:b4:0f:98:45:a8:55:cc:f3:fd:03:90:41:8c:b1: 23:ce:c9:20:21:35:6f:b3:88:00:c9:82:0d:b6:76: d5:44:83:4c:ad:ef:8e:6b:13:95:03:66:81:c5:ff: 43:90:22:28:39:89:97:68:7f:05:0e:11:bc:81:e1: e1:dd:5f:ef:33:0a:04:01:88:07:e4:6d:d8:05:34: 94:43:65:9c:70:ac:ee:dc:e8:ce:4e:a5:cb:f9:28: c8:b2:65:e6:ac:f7:3c:44:6c:68:22:d2:8c:5c:8b: cb:e9:a4:ff:1a:df:91:52:36:82:c2:34:87:87:7f: 0c:ff:c4:bc:c2:4d:4c:65:2a:0b:0d:19:2e:ff:c9: 1a:52:8a:b7:6a:68:06:af:1d:ff:cd:f2:7c:89:25: 01:54:70:b3:6f:b9:fd:b7:87:95:ad:e6:cd:34:17: 96:c3:dd:2b:79:4d:a3:5a:7b:2e:20:b2:4c:80:70: b7:56:18:b1:70:d7:d8:4e:ce:64:0a:fa:d1:7d:54: 26:e7:af:30:3f:1e:d2:eb:8a:b4:d1:fa:16:7f:4b: 11:ee:1f:e5:04:f8:a8:97:4b:d1:7a:c1:e9:c9:a1: 68:67:0e:24:d9:d9:f1:13:68:c5:6f:0a:2c:d7:53: 10:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:65:07:FC:1C:C1:AF:50:15:4D:A1:4C:DC:A3:61:13:7D:DB:81:84 X509v3 Authority Key Identifier: keyid:D6:5A:A0:94:A5:1E:28:39:75:3B:59:21:0B:6C:F2:C5:49:15:C0:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqglKUeKDl1O1khC2zyxUkVwB4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:76:84:a2:9f:0e:0c:70:81:f9:20:75:2e:11:c1:0d:2d:1b: ca:a5:c9:62:1a:2f:cd:9c:7c:8a:19:1c:ce:aa:88:1d:88:8c: 90:c8:cc:97:0c:83:94:0b:ed:b0:f7:c7:85:ee:bc:c6:95:fb: 99:8e:90:c5:0c:81:67:c0:0d:82:0c:af:8b:de:84:c4:12:c9: bf:27:e2:cd:91:2f:09:93:63:42:33:ea:cb:84:d5:f9:7f:c5: 93:f6:a4:60:93:41:9b:7b:40:b1:c4:28:06:66:f2:2c:25:9a: 23:c7:d7:c0:30:72:5d:1b:ea:79:8a:eb:64:b8:35:6e:a7:aa: 1a:d9:63:55:2b:d9:d2:62:73:80:00:b4:38:36:b8:a2:e4:48: 42:ff:eb:1d:8d:5b:46:ca:e1:96:0e:db:d0:06:ce:75:ca:d4: 7d:8f:0f:84:b2:f0:e3:6a:43:39:63:21:ea:d3:f4:66:ef:dd: b5:8b:47:58:2f:4d:37:72:2f:51:ff:fa:a7:63:5a:3c:4c:c8: 21:98:e9:44:06:4c:ad:9a:52:35:de:4c:0b:6f:7d:f2:1f:a1: ce:7c:1f:de:28:d9:bd:40:58:bd:42:b4:b2:af:c9:69:87:ec: 9e:0f:90:a5:07:e5:b0:85:9d:b8:00:fa:da:b6:0c:bd:1a:a4: 3f:e4:75:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCcQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUMxQUExMTAvBgNVBAUTKEQ2NUFBMDk0QTUxRTI4Mzk3NTNCNTkyMTBCNkNGMkM1 NDkxNUMwMUUwHhcNMjUwNDI0MTk1MTM1WhcNMjUwNTAxMTk1MTM1WjAYMRYwFAYD VQQDEw02ODBhOTY0Ny02M2ExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu45NLaO7A2LqEwWZMVfttA+YRahVzPP9A5BBjLEjzskgITVvs4gAyYINtnbV RINMre+OaxOVA2aBxf9DkCIoOYmXaH8FDhG8geHh3V/vMwoEAYgH5G3YBTSUQ2Wc cKzu3OjOTqXL+SjIsmXmrPc8RGxoItKMXIvL6aT/Gt+RUjaCwjSHh38M/8S8wk1M ZSoLDRku/8kaUoq3amgGrx3/zfJ8iSUBVHCzb7n9t4eVrebNNBeWw90reU2jWnsu ILJMgHC3VhixcNfYTs5kCvrRfVQm568wPx7S64q00foWf0sR7h/lBPiol0vResHp yaFoZw4k2dnxE2jFbwos11MQpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJFlB/wc wa9QFU2hTNyjYRN924GEMB8GA1UdIwQYMBaAFNZaoJSlHig5dTtZIQts8sVJFcAe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzFBQS82QzlEMjYzMDdG MjAxMUVBQjU3RDU3MzJDNEY5QUUwMi8xbHFnbEtVZUtEbDFPMWtoQzJ6eXhVa1Z3 QjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFscWdsS1VlS0RsMU8xa2hDMnp5eFVrVndCNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QzFBQS82QzlEMjYzMDdGMjAxMUVBQjU3RDU3MzJDNEY5QUUwMi8xbHFnbEtVZUtE bDFPMWtoQzJ6eXhVa1Z3QjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcdoSinw4McIH5IHUuEcENLRvKpcliGi/NnHyKGRzOqogdiIyQyMyX DIOUC+2w98eF7rzGlfuZjpDFDIFnwA2CDK+L3oTEEsm/J+LNkS8Jk2NCM+rLhNX5 f8WT9qRgk0Gbe0CxxCgGZvIsJZojx9fAMHJdG+p5iutkuDVup6oa2WNVK9nSYnOA ALQ4Nrii5EhC/+sdjVtGyuGWDtvQBs51ytR9jw+EsvDjakM5YyHq0/Rm7921i0dY L003ci9R//qnY1o8TMghmOlEBkytmlI13kwLb33yH6HOfB/eKNm9QFi9QrSyr8lp h+yeD5ClB+WwhZ24APratgy9GqQ/5HXT -----END CERTIFICATE-----Generated at Sat Apr 26 17:11:17 2025 by rpki-client