$ rpki-client -vvf rpki.apnic.net/member_repository/A915FDD9/B622FA8AD6DE11EFB0474E1BC4F9AE02/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.mft File: lnuX2eMRJQ2ClC0n5MX5DZgTgFg.mft (raw, json) Hash identifier: j4cEyNvwDBfShMHx7ecWh9Xy6RVpH4Utc0k8yIxRsWo= Subject key identifier: E9:02:75:25:B5:60:C2:D7:C6:36:F3:F8:68:15:FD:1F:94:7B:25:0D Authority key identifier: 96:7B:97:D9:E3:11:25:0D:82:94:2D:27:E4:C5:F9:0D:98:13:80:58 Certificate issuer: /CN=A915FDD9/serialNumber=967B97D9E311250D82942D27E4C5F90D98138058 Certificate serial: 40 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FDD9/B622FA8AD6DE11EFB0474E1BC4F9AE02/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.mft Manifest number: 3B Signing time: Fri 25 Apr 2025 06:37:19 +0000 Manifest this update: Fri 25 Apr 2025 06:37:19 +0000 Manifest next update: Fri 02 May 2025 06:37:19 +0000 Files and hashes: 1: lnuX2eMRJQ2ClC0n5MX5DZgTgFg.crl (hash: WFgtWb4lEevftDwoKCY6O5LQ/gz8sH5zN/MzvHZk1kM=) 2: 3D8B70B4E38D11EFBE901A46C4F9AE02.roa (hash: xtMQdylJd5ExIfku7HjSFZQ9NVkXk2zy2EL4rw3KqeI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FDD9/B622FA8AD6DE11EFB0474E1BC4F9AE02/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.crl rsync://rpki.apnic.net/member_repository/A915FDD9/B622FA8AD6DE11EFB0474E1BC4F9AE02/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:37:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64 (0x40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FDD9, serialNumber=967B97D9E311250D82942D27E4C5F90D98138058 Validity Not Before: Apr 25 06:37:19 2025 GMT Not After : May 2 06:37:19 2025 GMT Subject: CN=680b2d9f-29a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:0a:1d:31:a8:29:90:d6:7b:28:ca:6d:8f:38: 09:b5:a1:1c:53:1b:cb:37:1e:aa:99:96:a8:36:92: 10:f8:9c:a7:4b:01:4a:22:89:b5:96:ac:38:d0:47: 3a:df:54:e6:b3:5e:f6:a9:c9:ea:6d:f3:63:30:a7: fb:2b:9f:ee:58:4f:22:01:c6:58:aa:1f:99:5a:cb: f2:b6:3e:d4:d3:bd:03:2c:5c:9a:af:c7:3f:f0:ba: 60:03:b9:a9:7d:f8:ce:38:49:6a:6a:fa:5d:b4:5c: 8b:30:de:37:9b:fe:42:a3:5c:01:92:6f:e1:12:c9: 18:95:54:ca:53:b5:a6:aa:65:3c:ba:29:0e:da:8b: df:8e:75:f0:3b:05:d9:a7:37:06:e8:d3:cc:0b:d7: ef:03:7a:a0:ed:89:1b:b6:d8:28:13:d2:50:37:86: 23:18:d4:71:34:e9:c3:c3:39:df:5a:d8:1e:53:44: 13:dc:e0:96:63:ae:3a:ae:2c:d4:62:86:30:46:47: 47:9e:a1:7b:5a:d6:86:f6:53:7b:25:d0:de:dc:dd: a2:d0:3a:d0:1e:5f:fb:82:9d:43:03:b8:5a:25:b6: 12:c7:70:d3:f7:37:9b:0d:be:78:e9:27:60:77:f2: 00:8b:fc:f7:55:ac:88:d4:84:44:22:8a:5d:49:a7: b7:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:02:75:25:B5:60:C2:D7:C6:36:F3:F8:68:15:FD:1F:94:7B:25:0D X509v3 Authority Key Identifier: keyid:96:7B:97:D9:E3:11:25:0D:82:94:2D:27:E4:C5:F9:0D:98:13:80:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FDD9/B622FA8AD6DE11EFB0474E1BC4F9AE02/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FDD9/B622FA8AD6DE11EFB0474E1BC4F9AE02/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:10:1b:46:b7:e2:eb:44:f5:97:ea:e0:d6:fe:87:21:ad:80: 2d:04:49:4a:c4:0c:25:eb:53:2b:4a:2a:ed:71:66:12:a3:6d: 0f:51:23:d1:22:90:df:64:03:3a:7f:5e:cb:a0:ac:6d:9e:d4: 4e:91:36:77:43:e3:2c:03:ee:8c:b9:62:d3:e2:9c:d3:79:eb: b1:3e:02:ae:31:88:42:36:6f:4a:26:cc:50:bb:02:50:aa:36: af:3e:ec:10:8f:40:29:41:b7:f0:9a:1c:df:40:25:d9:9c:0d: bc:31:57:a5:78:90:bc:38:c0:56:d3:1f:14:00:9f:b7:33:98: 26:33:ce:ad:c9:a2:2f:e8:a8:9a:ea:2f:46:74:f2:f2:7a:2b: aa:08:c3:a0:e5:de:5e:e9:d0:06:d8:49:01:45:6b:59:6d:c2: 72:13:a0:50:67:58:30:6c:6a:0c:9c:90:10:87:74:a9:9b:6b: fa:21:ed:1f:cc:a7:6a:df:54:05:d6:cb:ad:b0:a6:13:71:ee: e8:98:10:2d:4f:1d:4f:9e:3c:7a:36:e6:f1:25:76:b4:d9:76: 36:87:af:d8:5f:4d:b0:58:49:c3:4e:ae:b6:57:4a:47:5d:61: 39:45:d8:58:c2:5e:8b:80:aa:a6:27:bc:31:f7:6a:b3:77:ea: 8a:5d:0b:49 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 RkREOTExMC8GA1UEBRMoOTY3Qjk3RDlFMzExMjUwRDgyOTQyRDI3RTRDNUY5MEQ5 ODEzODA1ODAeFw0yNTA0MjUwNjM3MTlaFw0yNTA1MDIwNjM3MTlaMBgxFjAUBgNV BAMTDTY4MGIyZDlmLTI5YTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0Ch0xqCmQ1nsoym2POAm1oRxTG8s3HqqZlqg2khD4nKdLAUoiibWWrDjQRzrf VOazXvapyept82Mwp/srn+5YTyIBxliqH5lay/K2PtTTvQMsXJqvxz/wumADual9 +M44SWpq+l20XIsw3jeb/kKjXAGSb+ESyRiVVMpTtaaqZTy6KQ7ai9+OdfA7Bdmn Nwbo08wL1+8DeqDtiRu22CgT0lA3hiMY1HE06cPDOd9a2B5TRBPc4JZjrjquLNRi hjBGR0eeoXta1ob2U3sl0N7c3aLQOtAeX/uCnUMDuFolthLHcNP3N5sNvnjpJ2B3 8gCL/PdVrIjUhEQiil1Jp7fnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU6QJ1JbVg wtfGNvP4aBX9H5R7JQ0wHwYDVR0jBBgwFoAUlnuX2eMRJQ2ClC0n5MX5DZgTgFgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVGREQ5L0I2MjJGQThBRDZE RTExRUZCMDQ3NEUxQkM0RjlBRTAyL2xudVgyZU1SSlEyQ2xDMG41TVg1RFpnVGdG Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvbG51WDJlTVJKUTJDbEMwbjVNWDVEWmdUZ0ZnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVG REQ5L0I2MjJGQThBRDZERTExRUZCMDQ3NEUxQkM0RjlBRTAyL2xudVgyZU1SSlEy Q2xDMG41TVg1RFpnVGdGZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGUQG0a34utE9Zfq4Nb+hyGtgC0ESUrEDCXrUytKKu1xZhKjbQ9RI9Ei kN9kAzp/XsugrG2e1E6RNndD4ywD7oy5YtPinNN567E+Aq4xiEI2b0omzFC7AlCq Nq8+7BCPQClBt/CaHN9AJdmcDbwxV6V4kLw4wFbTHxQAn7czmCYzzq3Joi/oqJrq L0Z08vJ6K6oIw6Dl3l7p0AbYSQFFa1ltwnIToFBnWDBsagyckBCHdKmba/oh7R/M p2rfVAXWy62wphNx7uiYEC1PHU+ePHo25vEldrTZdjaHr9hfTbBYScNOrrZXSkdd YTlF2FjCXouAqqYnvDH3arN36opdC0k= -----END CERTIFICATE-----Generated at Sat Apr 26 13:38:56 2025 by rpki-client