$ rpki-client -vvf rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft File: lufMd6OOPhgL91JrodlTIYBONeY.mft (raw, json) Hash identifier: GAgyCWe+SpibAmyn2YOHHDFig1w/ykqER8y5bwlqW5o= Subject key identifier: 86:F8:80:DC:8F:E0:BE:54:65:D5:18:F8:A7:24:F3:DC:30:51:39:4B Authority key identifier: 96:E7:CC:77:A3:8E:3E:18:0B:F7:52:6B:A1:D9:53:21:80:4E:35:E6 Certificate issuer: /CN=A916C4FA/serialNumber=96E7CC77A38E3E180BF7526BA1D95321804E35E6 Certificate serial: 01A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lufMd6OOPhgL91JrodlTIYBONeY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft Manifest number: 04DB Signing time: Fri 25 Apr 2025 00:50:20 +0000 Manifest this update: Fri 25 Apr 2025 00:50:19 +0000 Manifest next update: Fri 02 May 2025 00:50:19 +0000 Files and hashes: 1: lufMd6OOPhgL91JrodlTIYBONeY.crl (hash: wGhvOd8VExCWDtfQbZQbialFYaUMbvGPSWCbEbQXEC8=) 2: C310EE5AACD311ED84BAA06EC4F9AE02.roa (hash: NPYNnjaBYs2qmRUfu8/y0KOBedXU4EghxnWja8r1cbI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.crl rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lufMd6OOPhgL91JrodlTIYBONeY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 416 (0x1a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C4FA, serialNumber=96E7CC77A38E3E180BF7526BA1D95321804E35E6 Validity Not Before: Apr 25 00:50:19 2025 GMT Not After : May 2 00:50:19 2025 GMT Subject: CN=680adc4b-28aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:b3:e0:e1:de:2d:b9:f0:02:7b:8f:cb:bb:f6: d6:01:82:e9:aa:9b:15:05:8c:cc:aa:a2:59:0c:ec: ec:b9:14:eb:ba:33:f5:4b:f2:0d:50:67:e6:01:f5: bc:6d:fc:ce:d8:b0:c9:d7:2b:a6:46:23:cd:76:7c: 11:c4:3f:be:d1:70:e6:af:f9:15:0b:d4:6c:de:8e: c2:02:a6:8e:99:07:7a:ea:01:a3:0b:16:51:ee:79: 6a:69:dd:a6:83:34:37:76:53:0e:04:f5:e9:5b:76: cb:18:c8:5f:5e:b8:6f:93:47:e1:ab:28:ba:81:35: 4e:a9:18:93:ad:b7:31:c7:80:95:e7:c4:61:90:21: 35:a5:1f:fc:9f:c1:f9:98:58:0c:7c:f2:dd:c0:4d: 82:11:9e:47:d1:80:53:9f:92:70:7a:b6:b5:33:93: 26:c2:1f:2b:a3:54:03:bd:e1:36:42:b3:63:b2:17: 4b:79:34:11:b3:8c:ef:97:23:d5:22:6d:f6:cc:7c: 34:df:c9:89:29:f4:29:c5:02:5f:99:63:82:6c:17: d9:eb:39:76:80:f6:62:a3:e8:0a:19:63:d7:2e:2c: a7:1d:45:04:a7:0f:d4:80:fe:0e:54:4e:00:53:6b: f6:65:c7:06:66:63:a3:ed:4b:b6:44:7d:1c:64:a0: 25:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:F8:80:DC:8F:E0:BE:54:65:D5:18:F8:A7:24:F3:DC:30:51:39:4B X509v3 Authority Key Identifier: keyid:96:E7:CC:77:A3:8E:3E:18:0B:F7:52:6B:A1:D9:53:21:80:4E:35:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lufMd6OOPhgL91JrodlTIYBONeY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:b2:a4:f1:30:1d:a0:a6:a7:98:e1:d8:aa:d3:b8:5c:29:42: 19:2b:63:16:b4:f2:a9:ed:b7:35:a8:4f:f8:aa:92:1b:10:6a: 3f:e7:a9:28:10:2e:d9:8b:98:7d:b3:42:7b:a3:e9:28:ed:7e: 5f:0c:1a:63:82:de:a4:dd:9a:95:6f:85:0f:7a:63:a8:11:e8: 9f:ac:38:a2:b6:c1:30:02:eb:82:c0:5b:08:cd:44:5f:9e:82: 8f:eb:b0:59:55:db:4d:69:16:69:a2:70:48:fe:41:53:ce:92: b4:dc:f5:29:11:01:51:f7:3e:99:8d:33:5f:63:cf:e8:ca:d8: e6:be:2b:d8:a4:c1:bb:d7:11:36:7d:d9:0e:89:03:b5:2c:4c: 8b:1c:f2:2a:02:5d:40:f9:ef:87:32:19:06:25:81:f3:fd:59: ea:c8:1b:f0:ad:48:54:2d:1d:39:47:08:6c:0f:dd:72:22:93: 3a:a4:ef:81:bf:10:69:51:e4:ea:9e:6b:4d:72:56:8f:97:fe: 5e:94:13:ad:e0:c2:75:11:77:4f:5f:f9:c0:3b:e9:43:df:38: 78:f2:c0:ea:99:04:e6:c0:e0:fc:20:d9:56:cb:46:63:19:71: 65:e7:a8:1d:4a:21:48:c0:fc:d2:cd:ff:e5:44:9f:86:68:51: 84:d1:3a:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM0RkExMTAvBgNVBAUTKDk2RTdDQzc3QTM4RTNFMTgwQkY3NTI2QkExRDk1MzIx ODA0RTM1RTYwHhcNMjUwNDI1MDA1MDE5WhcNMjUwNTAyMDA1MDE5WjAYMRYwFAYD VQQDEw02ODBhZGM0Yi0yOGFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9LPg4d4tufACe4/Lu/bWAYLpqpsVBYzMqqJZDOzsuRTrujP1S/INUGfmAfW8 bfzO2LDJ1yumRiPNdnwRxD++0XDmr/kVC9Rs3o7CAqaOmQd66gGjCxZR7nlqad2m gzQ3dlMOBPXpW3bLGMhfXrhvk0fhqyi6gTVOqRiTrbcxx4CV58RhkCE1pR/8n8H5 mFgMfPLdwE2CEZ5H0YBTn5Jwera1M5Mmwh8ro1QDveE2QrNjshdLeTQRs4zvlyPV Im32zHw038mJKfQpxQJfmWOCbBfZ6zl2gPZio+gKGWPXLiynHUUEpw/UgP4OVE4A U2v2ZccGZmOj7Uu2RH0cZKAlxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIb4gNyP 4L5UZdUY+Kck89wwUTlLMB8GA1UdIwQYMBaAFJbnzHejjj4YC/dSa6HZUyGATjXm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzRGQS9CODlCQ0JGNEJB NkExMUVDODJBQzA3ODdDNEY5QUUwMi9sdWZNZDZPT1BoZ0w5MUpyb2RsVElZQk9O ZVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x1Zk1kNk9PUGhnTDkxSnJvZGxUSVlCT05lWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzRGQS9CODlCQ0JGNEJBNkExMUVDODJBQzA3ODdDNEY5QUUwMi9sdWZNZDZPT1Bo Z0w5MUpyb2RsVElZQk9OZVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUsqTxMB2gpqeY4diq07hcKUIZK2MWtPKp7bc1qE/4qpIbEGo/56ko EC7Zi5h9s0J7o+ko7X5fDBpjgt6k3ZqVb4UPemOoEeifrDiitsEwAuuCwFsIzURf noKP67BZVdtNaRZponBI/kFTzpK03PUpEQFR9z6ZjTNfY8/oytjmvivYpMG71xE2 fdkOiQO1LEyLHPIqAl1A+e+HMhkGJYHz/VnqyBvwrUhULR05RwhsD91yIpM6pO+B vxBpUeTqnmtNclaPl/5elBOt4MJ1EXdPX/nAO+lD3zh48sDqmQTmwOD8INlWy0Zj GXFl56gdSiFIwPzSzf/lRJ+GaFGE0TpY -----END CERTIFICATE-----Generated at Sat Apr 26 14:18:35 2025 by rpki-client