$ rpki-client -vvf rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/lKFbyZFsWyyhjjWQUVAeVGQsCNM.mft File: lKFbyZFsWyyhjjWQUVAeVGQsCNM.mft (raw, json) Hash identifier: g9OjunjMuxJeUzDDmkt75HTi2Jbo4thkf/n03TfKogk= Subject key identifier: 5C:0C:0A:81:02:6A:45:7B:BA:5C:0D:DC:53:32:C3:47:AE:96:62:ED Authority key identifier: 94:A1:5B:C9:91:6C:5B:2C:A1:8E:35:90:51:50:1E:54:64:2C:08:D3 Certificate issuer: /CN=A916B0A3/serialNumber=94A15BC9916C5B2CA18E359051501E54642C08D3 Certificate serial: 26A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKFbyZFsWyyhjjWQUVAeVGQsCNM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/lKFbyZFsWyyhjjWQUVAeVGQsCNM.mft Manifest number: 31FC Signing time: Thu 24 Apr 2025 15:42:08 +0000 Manifest this update: Thu 24 Apr 2025 15:42:08 +0000 Manifest next update: Thu 01 May 2025 15:42:08 +0000 Files and hashes: 1: lKFbyZFsWyyhjjWQUVAeVGQsCNM.crl (hash: rZiHITBBhEmc+sRUXYQcIcOD2SUazoD+Se6aazRG8Hw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/lKFbyZFsWyyhjjWQUVAeVGQsCNM.crl rsync://rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/lKFbyZFsWyyhjjWQUVAeVGQsCNM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKFbyZFsWyyhjjWQUVAeVGQsCNM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:42:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9894 (0x26a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B0A3, serialNumber=94A15BC9916C5B2CA18E359051501E54642C08D3 Validity Not Before: Apr 24 15:42:08 2025 GMT Not After : May 1 15:42:08 2025 GMT Subject: CN=680a5bd0-d891 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:b1:65:00:5e:83:13:8b:86:2c:de:e7:ac:9b: 29:5f:d4:b4:57:96:b8:d4:e4:ff:1e:1d:cd:96:bf: aa:36:8e:02:7d:78:42:a6:e0:0b:f7:92:6d:8c:64: 3f:3a:e2:db:13:58:0e:69:48:4e:2a:2e:c4:bb:ca: 3f:73:1a:8e:22:f4:b5:0e:c4:b0:fa:87:75:b3:93: c0:b0:56:ef:03:f6:b7:af:6d:9c:63:46:f8:fe:18: e3:d4:ee:69:32:ce:c4:dc:fc:01:41:b1:03:d3:02: 3c:d7:c3:1c:a2:55:67:c9:51:f7:4a:3f:ac:fc:fb: 8a:f6:82:a7:a7:96:3b:f9:e1:b6:32:7e:09:bb:1d: 69:c4:22:0f:7b:fd:30:2b:2b:92:56:4c:c6:db:4d: d1:a1:f7:0c:2e:5f:ba:99:ab:76:94:7d:a6:84:b3: 84:dc:73:0e:3f:c4:00:83:31:76:67:9c:3a:92:e3: 63:f7:ac:cf:29:a1:a9:b1:bf:b3:0e:1c:5b:9a:3a: ee:61:e4:f7:6b:d8:bf:33:bc:dc:2d:81:b0:7f:19: 55:8a:f5:4a:43:73:74:97:b2:68:a2:07:a4:fd:d6: 7c:91:90:8b:3b:73:86:ba:fd:20:fc:7d:5e:3d:5f: cc:6a:aa:44:d7:ea:18:81:7c:bb:9f:fb:87:c1:b0: 15:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:0C:0A:81:02:6A:45:7B:BA:5C:0D:DC:53:32:C3:47:AE:96:62:ED X509v3 Authority Key Identifier: keyid:94:A1:5B:C9:91:6C:5B:2C:A1:8E:35:90:51:50:1E:54:64:2C:08:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/lKFbyZFsWyyhjjWQUVAeVGQsCNM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKFbyZFsWyyhjjWQUVAeVGQsCNM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/lKFbyZFsWyyhjjWQUVAeVGQsCNM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:e8:64:09:90:64:92:22:44:69:21:f9:90:00:cf:f7:44:b8: f9:43:60:8d:54:3c:e6:c7:ca:b0:3b:4a:d3:bf:42:c9:9a:ef: 96:c1:73:a5:85:7b:ce:01:3b:4b:d3:bc:d9:1d:45:a0:55:46: b0:19:5f:83:83:4a:11:79:96:a5:ee:5e:41:65:a1:f8:de:53: 9a:35:ce:bf:c6:8f:ce:d8:d9:0a:bd:b9:ac:13:22:3b:92:17: 14:1a:12:b0:a2:8d:06:da:ef:13:27:b8:df:cb:39:f2:06:55: 35:db:9c:dc:b8:b6:fb:f5:ca:dd:a2:b2:39:1b:24:13:70:52: 5c:1d:b9:1e:d3:b1:27:b5:a3:4f:93:d0:91:ab:4f:e6:c1:95: 18:80:5e:9b:0a:1a:53:cd:e2:33:58:86:7a:f0:ff:17:cf:15: 04:ba:ee:e7:1f:59:0f:65:89:dd:3d:7d:ab:58:19:e6:52:0d: 04:f9:47:a5:2b:91:78:1e:bf:84:55:bb:4e:60:af:a4:06:b2: cf:3e:a0:86:90:80:7e:e8:a9:af:02:06:b7:ea:b5:81:76:1c: 49:b0:0c:9f:27:34:2d:73:15:4a:21:7d:e4:b2:d1:ab:7a:23: 6b:7f:83:66:09:5c:7d:dc:8f:a5:17:a9:3c:c5:52:da:ff:ad: ea:5e:94:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJqYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIwQTMxMTAvBgNVBAUTKDk0QTE1QkM5OTE2QzVCMkNBMThFMzU5MDUxNTAxRTU0 NjQyQzA4RDMwHhcNMjUwNDI0MTU0MjA4WhcNMjUwNTAxMTU0MjA4WjAYMRYwFAYD VQQDEw02ODBhNWJkMC1kODkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA47FlAF6DE4uGLN7nrJspX9S0V5a41OT/Hh3Nlr+qNo4CfXhCpuAL95JtjGQ/ OuLbE1gOaUhOKi7Eu8o/cxqOIvS1DsSw+od1s5PAsFbvA/a3r22cY0b4/hjj1O5p Ms7E3PwBQbED0wI818McolVnyVH3Sj+s/PuK9oKnp5Y7+eG2Mn4Jux1pxCIPe/0w KyuSVkzG203RofcMLl+6mat2lH2mhLOE3HMOP8QAgzF2Z5w6kuNj96zPKaGpsb+z DhxbmjruYeT3a9i/M7zcLYGwfxlVivVKQ3N0l7Joogek/dZ8kZCLO3OGuv0g/H1e PV/MaqpE1+oYgXy7n/uHwbAVawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFwMCoEC akV7ulwN3FMyw0eulmLtMB8GA1UdIwQYMBaAFJShW8mRbFssoY41kFFQHlRkLAjT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjBBMy83MUFERTFGRUQ4 MjgxMUU0QUE3QzhBNDdDNEY5QUUwMi9sS0ZieVpGc1d5eWhqaldRVVZBZVZHUXND Tk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xLRmJ5WkZzV3l5aGpqV1FVVkFlVkdRc0NOTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjBBMy83MUFERTFGRUQ4MjgxMUU0QUE3QzhBNDdDNEY5QUUwMi9sS0ZieVpGc1d5 eWhqaldRVVZBZVZHUXNDTk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB36GQJkGSSIkRpIfmQAM/3RLj5Q2CNVDzmx8qwO0rTv0LJmu+WwXOl hXvOATtL07zZHUWgVUawGV+Dg0oReZal7l5BZaH43lOaNc6/xo/O2NkKvbmsEyI7 khcUGhKwoo0G2u8TJ7jfyznyBlU125zcuLb79crdorI5GyQTcFJcHbke07EntaNP k9CRq0/mwZUYgF6bChpTzeIzWIZ68P8XzxUEuu7nH1kPZYndPX2rWBnmUg0E+Uel K5F4Hr+EVbtOYK+kBrLPPqCGkIB+6KmvAga36rWBdhxJsAyfJzQtcxVKIX3kstGr eiNrf4NmCVx93I+lF6k8xVLa/63qXpQG -----END CERTIFICATE-----Generated at Sat Apr 26 04:29:06 2025 by rpki-client