$ rpki-client -vvf rpki.apnic.net/member_repository/A916AE6A/583245B61DAA11E2872AF3A508B02CD2/LIjzj21PhPLBkaP6KxkVrgiYhzQ.mft File: LIjzj21PhPLBkaP6KxkVrgiYhzQ.mft (raw, json) Hash identifier: +9Ji7JUoPIJBjcEFWHo52sETI1hPqeE4D+Y0NzH7rOI= Subject key identifier: 5F:66:BD:5D:98:FB:C1:05:6F:95:98:BB:30:3B:C8:00:94:03:5E:E1 Authority key identifier: 2C:88:F3:8F:6D:4F:84:F2:C1:91:A3:FA:2B:19:15:AE:08:98:87:34 Certificate issuer: /CN=A916AE6A/serialNumber=2C88F38F6D4F84F2C191A3FA2B1915AE08988734 Certificate serial: 3475 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LIjzj21PhPLBkaP6KxkVrgiYhzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916AE6A/583245B61DAA11E2872AF3A508B02CD2/LIjzj21PhPLBkaP6KxkVrgiYhzQ.mft Manifest number: 3472 Signing time: Thu 24 Apr 2025 15:17:43 +0000 Manifest this update: Thu 24 Apr 2025 15:17:42 +0000 Manifest next update: Thu 01 May 2025 15:17:42 +0000 Files and hashes: 1: LIjzj21PhPLBkaP6KxkVrgiYhzQ.crl (hash: 6+zYpIatJAqKwjcUYlsT5zxcKjHUIznlP6lR4BWk10E=) 2: 22355CF4DE8411EDBC551D19C4F9AE02.roa (hash: QaQ5tb2HeArxrs87I/5ZhVBteyAtirQGpvcsd5zF3kU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916AE6A/583245B61DAA11E2872AF3A508B02CD2/LIjzj21PhPLBkaP6KxkVrgiYhzQ.crl rsync://rpki.apnic.net/member_repository/A916AE6A/583245B61DAA11E2872AF3A508B02CD2/LIjzj21PhPLBkaP6KxkVrgiYhzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LIjzj21PhPLBkaP6KxkVrgiYhzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:17:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13429 (0x3475) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916AE6A, serialNumber=2C88F38F6D4F84F2C191A3FA2B1915AE08988734 Validity Not Before: Apr 24 15:17:42 2025 GMT Not After : May 1 15:17:42 2025 GMT Subject: CN=680a5616-3160 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:c7:9c:bb:b1:9b:72:30:7f:29:bd:28:a6:c0: 0e:e1:f6:dd:be:5c:c4:d6:cf:96:eb:80:5a:83:26: c2:18:5c:da:ac:57:62:fc:94:16:cb:96:12:b7:18: 98:d6:ed:e9:03:e1:75:73:99:fc:4d:56:1c:ca:62: e7:00:43:19:1c:b7:d6:86:85:c5:0f:24:38:d6:7d: 24:ce:e1:74:75:61:65:1f:7a:97:54:cd:95:5b:0d: 3f:5b:da:9e:3d:6a:a9:6c:ef:48:c9:94:c9:47:ca: 13:23:4e:45:0d:32:b9:0a:1c:80:28:ed:c7:6a:8d: e1:af:ea:88:8a:35:1c:ab:73:fd:4f:1f:f6:50:b3: 69:74:98:9d:41:9e:52:d4:ff:59:cd:40:5e:81:15: 18:6d:71:a5:7c:e7:74:c0:ab:c5:d1:75:e7:4d:7c: 49:0f:ac:08:f7:4b:d2:15:a7:7f:f3:2c:c8:4b:ac: 63:b9:50:31:2e:a8:26:9e:e3:a0:02:21:49:4b:73: f7:86:56:bd:b6:41:51:67:df:8b:c8:13:34:6f:ae: e0:04:f6:68:37:eb:9f:06:ff:00:0e:45:2c:2f:37: 3e:e6:fa:1a:53:2a:9e:a4:52:19:2e:1a:21:9b:89: 36:1d:f5:48:2b:c2:7c:e9:81:73:98:95:a8:f2:35: 5f:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:66:BD:5D:98:FB:C1:05:6F:95:98:BB:30:3B:C8:00:94:03:5E:E1 X509v3 Authority Key Identifier: keyid:2C:88:F3:8F:6D:4F:84:F2:C1:91:A3:FA:2B:19:15:AE:08:98:87:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916AE6A/583245B61DAA11E2872AF3A508B02CD2/LIjzj21PhPLBkaP6KxkVrgiYhzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LIjzj21PhPLBkaP6KxkVrgiYhzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916AE6A/583245B61DAA11E2872AF3A508B02CD2/LIjzj21PhPLBkaP6KxkVrgiYhzQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:1f:ca:61:ab:47:fa:1e:16:a3:04:4a:ae:1d:17:32:d2:4c: 95:97:5f:af:0f:0c:7c:9e:e6:d8:e3:1e:68:05:c3:f5:36:25: 1d:0e:db:f0:45:7c:71:11:4d:d3:86:91:af:c0:27:26:5a:ec: 9e:07:e3:56:c7:7a:ba:1a:8f:3f:2f:80:c6:34:ea:61:9d:51: ef:4f:41:bd:a2:03:c6:35:40:08:6f:6f:73:9a:d2:53:f9:68: 46:c1:ae:c4:60:48:f5:ac:77:54:2c:83:b1:5c:fe:5d:bf:60: 33:7f:a0:f3:f0:97:11:5d:9f:89:39:71:a2:3c:d6:d8:2f:89: b0:70:26:51:53:6f:1e:2f:ad:6a:92:64:bb:06:89:12:0b:f2: 91:04:86:f1:cc:bc:7e:c8:04:d1:68:c4:cd:9a:10:f0:f3:7c: a1:77:bc:49:72:22:ab:d9:e3:39:b1:43:56:a5:24:ab:d7:36: 1d:83:17:98:23:e2:61:f5:70:3f:e0:74:7f:12:16:8a:3b:90: 53:e1:0f:52:7d:f6:92:76:d0:77:d1:c3:18:44:7c:aa:73:d3: f2:23:5a:bb:e1:88:cf:fd:74:1b:19:92:24:6a:da:3c:74:ac: 44:e3:5d:ad:38:ec:f2:01:b1:aa:f8:50:fe:19:c7:d5:e8:b7: a6:83:62:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNHUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkFFNkExMTAvBgNVBAUTKDJDODhGMzhGNkQ0Rjg0RjJDMTkxQTNGQTJCMTkxNUFF MDg5ODg3MzQwHhcNMjUwNDI0MTUxNzQyWhcNMjUwNTAxMTUxNzQyWjAYMRYwFAYD VQQDEw02ODBhNTYxNi0zMTYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1secu7GbcjB/Kb0opsAO4fbdvlzE1s+W64BagybCGFzarFdi/JQWy5YStxiY 1u3pA+F1c5n8TVYcymLnAEMZHLfWhoXFDyQ41n0kzuF0dWFlH3qXVM2VWw0/W9qe PWqpbO9IyZTJR8oTI05FDTK5ChyAKO3Hao3hr+qIijUcq3P9Tx/2ULNpdJidQZ5S 1P9ZzUBegRUYbXGlfOd0wKvF0XXnTXxJD6wI90vSFad/8yzIS6xjuVAxLqgmnuOg AiFJS3P3hla9tkFRZ9+LyBM0b67gBPZoN+ufBv8ADkUsLzc+5voaUyqepFIZLhoh m4k2HfVIK8J86YFzmJWo8jVfVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF9mvV2Y +8EFb5WYuzA7yACUA17hMB8GA1UdIwQYMBaAFCyI849tT4TywZGj+isZFa4ImIc0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QUU2QS81ODMyNDVCNjFE QUExMUUyODcyQUYzQTUwOEIwMkNEMi9MSWp6ajIxUGhQTEJrYVA2S3hrVnJnaVlo elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xJanpqMjFQaFBMQmthUDZLeGtWcmdpWWh6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QUU2QS81ODMyNDVCNjFEQUExMUUyODcyQUYzQTUwOEIwMkNEMi9MSWp6ajIxUGhQ TEJrYVA2S3hrVnJnaVloelEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAH8phq0f6HhajBEquHRcy0kyVl1+vDwx8nubY4x5oBcP1NiUdDtvw RXxxEU3ThpGvwCcmWuyeB+NWx3q6Go8/L4DGNOphnVHvT0G9ogPGNUAIb29zmtJT +WhGwa7EYEj1rHdULIOxXP5dv2Azf6Dz8JcRXZ+JOXGiPNbYL4mwcCZRU28eL61q kmS7BokSC/KRBIbxzLx+yATRaMTNmhDw83yhd7xJciKr2eM5sUNWpSSr1zYdgxeY I+Jh9XA/4HR/EhaKO5BT4Q9SffaSdtB30cMYRHyqc9PyI1q74YjP/XQbGZIkato8 dKxE412tOOzyAbGq+FD+GcfV6Lemg2JU -----END CERTIFICATE-----Generated at Sat Apr 26 17:11:14 2025 by rpki-client