$ rpki-client -vvf rpki.apnic.net/member_repository/A916AE6A/583245B61DAA11E2872AF3A508B02CD2/LIjzj21PhPLBkaP6KxkVrgiYhzQ.mft File: LIjzj21PhPLBkaP6KxkVrgiYhzQ.mft (raw, json) Hash identifier: +8v+Qb0TF5esfBagBixoBE3eB5I/HU60E2t1BxbbeOY= Subject key identifier: DB:3B:0A:FC:6D:26:17:CD:34:EB:26:02:25:8B:6B:9D:66:7A:2E:5D Authority key identifier: 2C:88:F3:8F:6D:4F:84:F2:C1:91:A3:FA:2B:19:15:AE:08:98:87:34 Certificate issuer: /CN=A916AE6A/serialNumber=2C88F38F6D4F84F2C191A3FA2B1915AE08988734 Certificate serial: 3492 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LIjzj21PhPLBkaP6KxkVrgiYhzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916AE6A/583245B61DAA11E2872AF3A508B02CD2/LIjzj21PhPLBkaP6KxkVrgiYhzQ.mft Manifest number: 348E Signing time: Sat 14 Jun 2025 15:16:24 +0000 Manifest this update: Sat 14 Jun 2025 15:16:24 +0000 Manifest next update: Sat 21 Jun 2025 15:16:24 +0000 Files and hashes: 1: LIjzj21PhPLBkaP6KxkVrgiYhzQ.crl (hash: pgQajvjFCxFfpo81YV1clxfWiIGsY3NmkyVO99gx0ps=) 2: 22355CF4DE8411EDBC551D19C4F9AE02.roa (hash: cD8CzWCOccX7amwfxtqgHIbE7YwiBohTqztQjp4x6HM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916AE6A/583245B61DAA11E2872AF3A508B02CD2/LIjzj21PhPLBkaP6KxkVrgiYhzQ.crl rsync://rpki.apnic.net/member_repository/A916AE6A/583245B61DAA11E2872AF3A508B02CD2/LIjzj21PhPLBkaP6KxkVrgiYhzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LIjzj21PhPLBkaP6KxkVrgiYhzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:16:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13458 (0x3492) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916AE6A, serialNumber=2C88F38F6D4F84F2C191A3FA2B1915AE08988734 Validity Not Before: Jun 14 15:16:24 2025 GMT Not After : Jun 21 15:16:24 2025 GMT Subject: CN=684d9248-759a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:12:84:e6:46:1c:64:ea:d1:95:14:ff:ff:98: ae:43:35:ce:18:b0:8e:2b:eb:ac:e5:7c:36:e5:8a: 96:f1:75:c5:74:8e:64:b3:e7:0d:88:36:4e:f4:b1: dd:10:9f:7b:5d:fc:2f:61:6a:5e:a4:54:d2:ed:cf: e8:ad:26:3c:62:67:5c:bc:3d:35:59:e8:62:cc:bf: 97:55:f1:28:39:92:b2:16:61:40:1d:ae:62:fc:6d: 68:50:4e:b0:b9:56:bc:54:10:92:7a:f1:44:8a:8a: 9a:2e:34:59:c4:9f:50:70:93:01:22:95:d4:6d:31: 48:ea:6b:e1:76:58:45:31:cc:62:87:a3:54:b7:b6: eb:81:61:d1:6a:85:f3:28:be:f1:7a:ff:de:5b:3d: 5a:5a:d0:2c:c2:c2:4a:b1:30:e0:6c:80:a9:91:99: 49:a3:22:d2:f4:14:40:86:eb:e5:82:dc:df:81:f0: 37:fc:e0:7f:44:1b:14:bb:99:03:ab:5e:e6:2f:84: a9:d0:03:c6:29:9a:1b:35:05:3d:4a:b3:b9:9d:45: 50:26:54:91:89:ae:e8:15:a5:dd:b8:44:f6:26:fb: ac:66:71:6b:20:e7:c0:da:b9:4a:67:ff:d2:e6:c4: c3:9c:17:8c:ba:7b:af:88:25:72:b5:4b:a7:7b:9d: 32:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:3B:0A:FC:6D:26:17:CD:34:EB:26:02:25:8B:6B:9D:66:7A:2E:5D X509v3 Authority Key Identifier: keyid:2C:88:F3:8F:6D:4F:84:F2:C1:91:A3:FA:2B:19:15:AE:08:98:87:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916AE6A/583245B61DAA11E2872AF3A508B02CD2/LIjzj21PhPLBkaP6KxkVrgiYhzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LIjzj21PhPLBkaP6KxkVrgiYhzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916AE6A/583245B61DAA11E2872AF3A508B02CD2/LIjzj21PhPLBkaP6KxkVrgiYhzQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:99:91:33:cd:b4:20:4f:2f:e2:26:0b:27:fb:0a:fc:22:30: d8:d7:7c:32:44:07:26:4b:1e:f8:3b:2f:8c:6e:c7:fb:7f:bd: 9f:45:a7:1d:38:99:02:f2:ef:99:c7:35:a6:9b:74:37:01:6f: 82:b6:00:4e:ed:42:fb:ff:8d:e1:8d:ba:b6:ec:e1:c5:68:6a: 10:9b:f3:11:df:f9:c0:b1:5f:99:58:32:d2:fc:f0:be:5b:e6: 68:75:cd:45:0f:cf:1c:e6:d0:2b:7d:c6:46:6d:8e:74:6b:62: 11:fc:4a:8c:1c:b3:b9:51:2e:0c:a4:a3:50:6e:7d:5d:21:b1: 05:d4:b9:5f:dd:ec:bb:69:9b:10:c7:d0:0e:71:5d:8a:01:ff: c7:cb:06:5c:5b:5f:72:bc:38:2d:af:57:be:da:0e:76:ca:30: 5d:94:ae:37:53:4d:bd:3e:15:1f:da:4c:a7:3d:cf:35:d2:dc: 79:6b:d2:67:f8:4f:d7:3e:07:b5:2e:80:46:5a:28:b1:1d:b7: 41:9a:b3:61:f9:4f:52:61:3c:ce:ed:2d:f1:37:c5:92:42:af: 47:71:e8:8a:f5:e8:7d:ef:c5:06:d8:f7:04:90:82:a2:8f:95: f2:b1:62:a7:08:a8:d6:1f:73:2f:77:11:4b:43:32:b1:0f:be: fe:b8:b4:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkFFNkExMTAvBgNVBAUTKDJDODhGMzhGNkQ0Rjg0RjJDMTkxQTNGQTJCMTkxNUFF MDg5ODg3MzQwHhcNMjUwNjE0MTUxNjI0WhcNMjUwNjIxMTUxNjI0WjAYMRYwFAYD VQQDEw02ODRkOTI0OC03NTlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwRKE5kYcZOrRlRT//5iuQzXOGLCOK+us5Xw25YqW8XXFdI5ks+cNiDZO9LHd EJ97XfwvYWpepFTS7c/orSY8YmdcvD01WehizL+XVfEoOZKyFmFAHa5i/G1oUE6w uVa8VBCSevFEioqaLjRZxJ9QcJMBIpXUbTFI6mvhdlhFMcxih6NUt7brgWHRaoXz KL7xev/eWz1aWtAswsJKsTDgbICpkZlJoyLS9BRAhuvlgtzfgfA3/OB/RBsUu5kD q17mL4Sp0APGKZobNQU9SrO5nUVQJlSRia7oFaXduET2JvusZnFrIOfA2rlKZ//S 5sTDnBeMunuviCVytUune50yUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNs7Cvxt JhfNNOsmAiWLa51mei5dMB8GA1UdIwQYMBaAFCyI849tT4TywZGj+isZFa4ImIc0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QUU2QS81ODMyNDVCNjFE QUExMUUyODcyQUYzQTUwOEIwMkNEMi9MSWp6ajIxUGhQTEJrYVA2S3hrVnJnaVlo elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xJanpqMjFQaFBMQmthUDZLeGtWcmdpWWh6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QUU2QS81ODMyNDVCNjFEQUExMUUyODcyQUYzQTUwOEIwMkNEMi9MSWp6ajIxUGhQ TEJrYVA2S3hrVnJnaVloelEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWmZEzzbQgTy/iJgsn+wr8IjDY13wyRAcmSx74Oy+Mbsf7f72fRacd OJkC8u+ZxzWmm3Q3AW+CtgBO7UL7/43hjbq27OHFaGoQm/MR3/nAsV+ZWDLS/PC+ W+Zodc1FD88c5tArfcZGbY50a2IR/EqMHLO5US4MpKNQbn1dIbEF1Llf3ey7aZsQ x9AOcV2KAf/HywZcW19yvDgtr1e+2g52yjBdlK43U029PhUf2kynPc810tx5a9Jn +E/XPge1LoBGWiixHbdBmrNh+U9SYTzO7S3xN8WSQq9HceiK9eh978UG2PcEkIKi j5XysWKnCKjWH3MvdxFLQzKxD77+uLQB -----END CERTIFICATE-----Generated at Sat Jun 14 19:33:13 2025 by rpki-client