$ rpki-client -vvf rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft File: lufMd6OOPhgL91JrodlTIYBONeY.mft (raw, json) Hash identifier: xIxnypOWPmtXa/PZD/hlpz3cJeWAs+z9QTyiKGr+uB4= Subject key identifier: 87:DA:C2:11:3E:F6:C4:31:FF:E2:33:FF:EA:48:F5:0D:43:E9:BF:18 Authority key identifier: 96:E7:CC:77:A3:8E:3E:18:0B:F7:52:6B:A1:D9:53:21:80:4E:35:E6 Certificate issuer: /CN=A916C4FA/serialNumber=96E7CC77A38E3E180BF7526BA1D95321804E35E6 Certificate serial: 01B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lufMd6OOPhgL91JrodlTIYBONeY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft Manifest number: 050D Signing time: Sun 15 Jun 2025 00:42:16 +0000 Manifest this update: Sun 15 Jun 2025 00:42:16 +0000 Manifest next update: Sun 22 Jun 2025 00:42:16 +0000 Files and hashes: 1: lufMd6OOPhgL91JrodlTIYBONeY.crl (hash: 6BajpGaE67SfSqUit5AXCnWzFCy1zVUkl9OmI5KSLKU=) 2: C310EE5AACD311ED84BAA06EC4F9AE02.roa (hash: NPYNnjaBYs2qmRUfu8/y0KOBedXU4EghxnWja8r1cbI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.crl rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lufMd6OOPhgL91JrodlTIYBONeY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 00:42:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 441 (0x1b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C4FA, serialNumber=96E7CC77A38E3E180BF7526BA1D95321804E35E6 Validity Not Before: Jun 15 00:42:16 2025 GMT Not After : Jun 22 00:42:16 2025 GMT Subject: CN=684e16e8-013b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:8d:6f:d4:a6:ec:3b:27:00:24:6c:ce:35:2d: 37:a1:27:aa:7e:13:10:24:99:c3:38:b4:25:c4:4e: 4b:3a:fe:03:70:b8:8c:00:83:d8:45:7a:7c:d0:b0: 97:2b:7c:7c:ac:23:b4:a8:a8:86:95:6e:78:78:80: 34:9b:20:82:70:e2:ac:24:7f:44:f2:d1:61:39:f2: 63:c8:be:bf:d8:d3:e7:ef:14:db:0d:d5:c2:32:db: 68:ce:98:41:9e:71:c1:0f:2a:a6:64:67:f3:dc:35: cd:fb:77:ab:a7:83:de:b4:e0:19:5c:f0:f4:e6:a4: 57:18:93:8f:11:ef:1e:cf:00:0b:66:bb:a6:75:15: bb:61:a2:72:6c:88:8e:37:41:c7:44:ec:b6:b7:07: 17:d6:93:37:f4:0d:af:62:bf:f2:c8:9c:75:26:d8: 4a:52:e8:b0:37:55:cb:8a:83:0b:59:25:e0:7e:a3: 44:87:9c:fc:0e:60:77:86:3b:5c:f4:68:74:f4:e4: da:7c:04:07:0d:94:f3:be:02:c7:07:2c:46:2b:74: 64:5f:88:70:32:4c:69:eb:3f:78:32:53:14:22:06: 22:b5:d2:32:79:43:b9:00:d0:09:6f:87:a7:9f:d7: 9b:79:32:b9:7d:79:87:53:0f:e4:71:ae:a3:a9:31: f4:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:DA:C2:11:3E:F6:C4:31:FF:E2:33:FF:EA:48:F5:0D:43:E9:BF:18 X509v3 Authority Key Identifier: keyid:96:E7:CC:77:A3:8E:3E:18:0B:F7:52:6B:A1:D9:53:21:80:4E:35:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lufMd6OOPhgL91JrodlTIYBONeY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d2:11:56:8e:48:a7:20:ab:f9:95:ae:d3:b9:52:29:94:27:c2: 28:ef:b5:df:f1:b0:b7:69:25:e2:51:ad:27:00:f7:24:7d:f3: 9d:74:1b:81:65:80:dc:5a:08:e4:76:27:6d:b9:b0:95:b8:fa: c1:8f:47:39:2f:93:07:ec:c5:da:d9:6f:01:e0:03:75:22:23: 39:ef:a8:0c:f6:08:2c:d5:1e:0a:e1:6a:32:af:68:8a:f0:0b: a6:ad:21:89:cf:98:c3:11:8e:74:b7:e5:e0:32:ac:5c:b2:db: 7a:28:ed:29:9d:f4:3f:4f:5b:9c:88:f6:8d:b7:64:66:ef:f2: b6:7f:a1:99:ff:21:d6:ad:b9:97:4c:61:f7:48:a5:b9:ef:86: 04:e6:61:ee:e2:d8:5f:5e:61:73:23:e0:10:31:6c:e1:2e:bc: d0:72:7b:c1:ef:b7:bd:15:b9:c0:b9:93:e8:16:c1:f4:40:d3: d6:c7:a5:9b:ab:27:2d:c1:13:62:79:15:b5:8f:4d:8b:f9:f7: ed:c4:ee:15:d7:f2:c7:36:0b:d5:99:82:ac:98:9c:eb:10:9c: b6:cd:ee:20:d5:9c:00:d8:58:32:ce:8c:94:85:c1:22:a8:79: ef:cd:20:48:0d:0f:79:e3:26:6b:9c:f1:56:fa:09:fb:63:11: da:9a:02:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM0RkExMTAvBgNVBAUTKDk2RTdDQzc3QTM4RTNFMTgwQkY3NTI2QkExRDk1MzIx ODA0RTM1RTYwHhcNMjUwNjE1MDA0MjE2WhcNMjUwNjIyMDA0MjE2WjAYMRYwFAYD VQQDEw02ODRlMTZlOC0wMTNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2o1v1KbsOycAJGzONS03oSeqfhMQJJnDOLQlxE5LOv4DcLiMAIPYRXp80LCX K3x8rCO0qKiGlW54eIA0myCCcOKsJH9E8tFhOfJjyL6/2NPn7xTbDdXCMttozphB nnHBDyqmZGfz3DXN+3erp4PetOAZXPD05qRXGJOPEe8ezwALZrumdRW7YaJybIiO N0HHROy2twcX1pM39A2vYr/yyJx1JthKUuiwN1XLioMLWSXgfqNEh5z8DmB3hjtc 9Gh09OTafAQHDZTzvgLHByxGK3RkX4hwMkxp6z94MlMUIgYitdIyeUO5ANAJb4en n9ebeTK5fXmHUw/kca6jqTH0OQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIfawhE+ 9sQx/+Iz/+pI9Q1D6b8YMB8GA1UdIwQYMBaAFJbnzHejjj4YC/dSa6HZUyGATjXm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzRGQS9CODlCQ0JGNEJB NkExMUVDODJBQzA3ODdDNEY5QUUwMi9sdWZNZDZPT1BoZ0w5MUpyb2RsVElZQk9O ZVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x1Zk1kNk9PUGhnTDkxSnJvZGxUSVlCT05lWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzRGQS9CODlCQ0JGNEJBNkExMUVDODJBQzA3ODdDNEY5QUUwMi9sdWZNZDZPT1Bo Z0w5MUpyb2RsVElZQk9OZVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDSEVaOSKcgq/mVrtO5UimUJ8Io77Xf8bC3aSXiUa0nAPckffOddBuB ZYDcWgjkdidtubCVuPrBj0c5L5MH7MXa2W8B4AN1IiM576gM9ggs1R4K4Woyr2iK 8AumrSGJz5jDEY50t+XgMqxcstt6KO0pnfQ/T1uciPaNt2Rm7/K2f6GZ/yHWrbmX TGH3SKW574YE5mHu4thfXmFzI+AQMWzhLrzQcnvB77e9FbnAuZPoFsH0QNPWx6Wb qyctwRNieRW1j02L+fftxO4V1/LHNgvVmYKsmJzrEJy2ze4g1ZwA2FgyzoyUhcEi qHnvzSBIDQ954yZrnPFW+gn7YxHamgIA -----END CERTIFICATE-----Generated at Sun Jun 15 09:46:22 2025 by rpki-client