$ rpki-client -vvf rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft File: l_lzn2QJyHWu4cSbtpqnQ882YRs.mft (raw, json) Hash identifier: 6JFjw6qjWL71bz2JVNYSpI7V5VpdArvQwD6n4/X5ZA8= Subject key identifier: 54:3A:BA:D6:F3:80:85:69:CF:A3:34:95:55:BF:40:F4:98:07:46:4A Authority key identifier: 97:F9:73:9F:64:09:C8:75:AE:E1:C4:9B:B6:9A:A7:43:CF:36:61:1B Certificate issuer: /CN=A917047F/serialNumber=97F9739F6409C875AEE1C49BB69AA743CF36611B Certificate serial: 0E36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_lzn2QJyHWu4cSbtpqnQ882YRs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft Manifest number: 0E29 Signing time: Thu 24 Apr 2025 17:46:26 +0000 Manifest this update: Thu 24 Apr 2025 17:46:26 +0000 Manifest next update: Thu 01 May 2025 17:46:26 +0000 Files and hashes: 1: l_lzn2QJyHWu4cSbtpqnQ882YRs.crl (hash: oUCWPi2ImxQmwObhOKrTtix7FuTPOfaDQC/jninO8Jc=) 2: 06FD60AAA8CE11EBBD4DB90DC4F9AE02.roa (hash: fNpUJmaY/58+uPHYwxaUVKQVkJ1Z1JQOjKMefzdFE80=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.crl rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_lzn2QJyHWu4cSbtpqnQ882YRs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:46:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3638 (0xe36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917047F, serialNumber=97F9739F6409C875AEE1C49BB69AA743CF36611B Validity Not Before: Apr 24 17:46:26 2025 GMT Not After : May 1 17:46:26 2025 GMT Subject: CN=680a78f2-a403 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:b5:ec:e4:f0:a0:2c:07:f9:a3:31:16:e1:c2: a7:12:7e:3a:6f:f0:3a:50:8b:8c:d9:3c:d2:34:1a: 7d:10:e5:9a:8c:20:ad:e8:f4:63:ac:a5:ba:c1:76: a7:9b:14:10:a5:99:f5:41:c1:89:58:2d:40:7b:b6: e0:63:8d:cd:eb:b2:34:b3:53:2c:3e:8c:9b:00:28: 5b:b0:34:cb:df:0d:8a:80:ed:e1:68:3a:58:98:a3: db:e2:3f:07:6a:c1:9a:c3:6b:dd:ca:09:5f:10:ec: 99:b1:4a:cf:43:3d:bb:ed:3e:ce:33:b0:86:8e:5a: a5:4f:97:37:3b:ee:05:e0:c8:b9:a4:f9:92:1f:41: fd:19:41:ac:cd:dd:58:3b:f8:d5:ad:fb:a8:7a:0e: 60:21:8c:1a:fd:b7:bc:21:02:12:b6:b4:c3:b1:b9: 09:f7:7b:e1:07:12:8d:a1:8f:ad:80:f6:66:8b:f5: 64:92:95:ac:0e:93:08:35:42:a4:26:f6:de:6d:c4: ed:1f:70:ba:f4:26:4c:51:87:9c:60:d5:6e:45:5e: f5:72:29:fb:4b:ad:e7:6c:3a:4f:69:f9:7d:19:90: 82:c0:6c:f5:5d:78:b8:74:13:ac:bf:67:d9:5a:1c: 51:0c:c8:66:df:e3:6a:6b:af:e2:86:73:a2:9b:a7: d3:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:3A:BA:D6:F3:80:85:69:CF:A3:34:95:55:BF:40:F4:98:07:46:4A X509v3 Authority Key Identifier: keyid:97:F9:73:9F:64:09:C8:75:AE:E1:C4:9B:B6:9A:A7:43:CF:36:61:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_lzn2QJyHWu4cSbtpqnQ882YRs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:e2:0e:cd:bf:97:f1:b1:68:38:3f:a5:5e:ca:be:55:ca:ca: 19:c7:92:8e:ac:8e:61:ea:0e:ec:8d:1a:7a:c4:5e:ef:74:77: d9:4b:7b:95:49:36:30:da:1f:30:64:af:a2:3b:af:63:d9:06: c2:93:60:6f:27:bd:bd:f6:26:94:db:15:d6:01:98:a4:b1:b5: ee:1f:b3:22:f5:c4:ef:e3:06:12:4e:a2:c2:c4:68:1f:eb:c0: 95:16:71:4b:05:b3:42:ed:20:32:53:d4:b5:82:cb:f0:a3:69: 7f:fe:8d:3e:04:ba:d0:a0:e8:52:35:a2:09:c9:73:0e:b4:89: 49:c6:55:19:be:15:34:64:bd:47:24:d2:ab:fe:5b:2c:e4:35: 07:33:8c:7f:17:22:11:21:4d:2b:07:1a:5f:53:24:db:b4:f2: 79:56:05:fd:9c:26:97:e9:9d:9c:d7:a9:92:79:4c:54:09:db: 66:4f:47:c6:ca:ab:1d:c9:e6:6c:cb:46:15:c0:4b:42:b8:ea: 15:4f:3d:68:64:cc:bd:85:25:61:e7:2f:ee:7e:56:a9:07:bf: 62:5d:33:43:6c:89:43:37:ca:99:a2:27:7f:4a:65:b1:37:62: 4f:c9:44:78:ba:a6:57:b3:25:98:76:b9:24:74:ba:be:5f:fa: 71:46:1d:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDjYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA0N0YxMTAvBgNVBAUTKDk3Rjk3MzlGNjQwOUM4NzVBRUUxQzQ5QkI2OUFBNzQz Q0YzNjYxMUIwHhcNMjUwNDI0MTc0NjI2WhcNMjUwNTAxMTc0NjI2WjAYMRYwFAYD VQQDEw02ODBhNzhmMi1hNDAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7LXs5PCgLAf5ozEW4cKnEn46b/A6UIuM2TzSNBp9EOWajCCt6PRjrKW6wXan mxQQpZn1QcGJWC1Ae7bgY43N67I0s1MsPoybAChbsDTL3w2KgO3haDpYmKPb4j8H asGaw2vdyglfEOyZsUrPQz277T7OM7CGjlqlT5c3O+4F4Mi5pPmSH0H9GUGszd1Y O/jVrfuoeg5gIYwa/be8IQIStrTDsbkJ93vhBxKNoY+tgPZmi/VkkpWsDpMINUKk JvbebcTtH3C69CZMUYecYNVuRV71cin7S63nbDpPafl9GZCCwGz1XXi4dBOsv2fZ WhxRDMhm3+Nqa6/ihnOim6fTpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFQ6utbz gIVpz6M0lVW/QPSYB0ZKMB8GA1UdIwQYMBaAFJf5c59kCch1ruHEm7aap0PPNmEb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDQ3Ri9GRDcyREUxNEEz QTkxMUU5OUY3NTc3N0JDNEY5QUUwMi9sX2x6bjJRSnlIV3U0Y1NidHBxblE4ODJZ UnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xfbHpuMlFKeUhXdTRjU2J0cHFuUTg4MllScy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDQ3Ri9GRDcyREUxNEEzQTkxMUU5OUY3NTc3N0JDNEY5QUUwMi9sX2x6bjJRSnlI V3U0Y1NidHBxblE4ODJZUnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA64g7Nv5fxsWg4P6Veyr5VysoZx5KOrI5h6g7sjRp6xF7vdHfZS3uV STYw2h8wZK+iO69j2QbCk2BvJ7299iaU2xXWAZiksbXuH7Mi9cTv4wYSTqLCxGgf 68CVFnFLBbNC7SAyU9S1gsvwo2l//o0+BLrQoOhSNaIJyXMOtIlJxlUZvhU0ZL1H JNKr/lss5DUHM4x/FyIRIU0rBxpfUyTbtPJ5VgX9nCaX6Z2c16mSeUxUCdtmT0fG yqsdyeZsy0YVwEtCuOoVTz1oZMy9hSVh5y/uflapB79iXTNDbIlDN8qZoid/SmWx N2JPyUR4uqZXsyWYdrkkdLq+X/pxRh3V -----END CERTIFICATE-----Generated at Sat Apr 26 05:21:41 2025 by rpki-client