$ rpki-client -vvf rpki.apnic.net/member_repository/A9179EAE/A49CDDB88D0E11EFA8FE9371C4F9AE02/lFOfgqNeshWO18Ni1boVQz5-0uE.mft File: lFOfgqNeshWO18Ni1boVQz5-0uE.mft (raw, json) Hash identifier: gkwO9x+q0gtfaFTuUr1EUWa61MsUOB3b2JbQDULWuug= Subject key identifier: F8:FC:E4:84:50:98:3F:96:99:53:7D:9B:75:7C:61:BE:97:AF:91:95 Authority key identifier: 94:53:9F:82:A3:5E:B2:15:8E:D7:C3:62:D5:BA:15:43:3E:7E:D2:E1 Certificate issuer: /CN=A9179EAE/serialNumber=94539F82A35EB2158ED7C362D5BA15433E7ED2E1 Certificate serial: 6A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lFOfgqNeshWO18Ni1boVQz5-0uE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179EAE/A49CDDB88D0E11EFA8FE9371C4F9AE02/lFOfgqNeshWO18Ni1boVQz5-0uE.mft Manifest number: 67 Signing time: Fri 25 Apr 2025 06:01:45 +0000 Manifest this update: Fri 25 Apr 2025 06:01:44 +0000 Manifest next update: Fri 02 May 2025 06:01:44 +0000 Files and hashes: 1: lFOfgqNeshWO18Ni1boVQz5-0uE.crl (hash: HHYAI3Va2UnK1IKa75O35yKhgU3QdomdsQ4H38APXIU=) 2: B3DA6A52A96511EFB3EB6721C4F9AE02.roa (hash: FFio9OtmebaEzCJyFXTCLhGivXqzWOQVgzKrbso6U2U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179EAE/A49CDDB88D0E11EFA8FE9371C4F9AE02/lFOfgqNeshWO18Ni1boVQz5-0uE.crl rsync://rpki.apnic.net/member_repository/A9179EAE/A49CDDB88D0E11EFA8FE9371C4F9AE02/lFOfgqNeshWO18Ni1boVQz5-0uE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lFOfgqNeshWO18Ni1boVQz5-0uE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:01:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 106 (0x6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179EAE, serialNumber=94539F82A35EB2158ED7C362D5BA15433E7ED2E1 Validity Not Before: Apr 25 06:01:44 2025 GMT Not After : May 2 06:01:44 2025 GMT Subject: CN=680b2548-d969 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:71:a9:6b:3e:5e:1e:51:c2:a8:5d:b3:67:a9: 72:27:43:f2:15:5e:c9:99:d8:de:6e:8a:d5:32:c7: b6:cd:f4:da:2a:e5:7d:f5:3d:af:b5:75:5a:6a:0a: 72:9e:6e:fe:a9:41:ba:63:91:a3:e7:17:46:dd:a5: 41:af:d4:f9:56:fa:c1:18:5c:e3:f9:f4:f3:83:f1: bd:79:7f:2f:91:7c:88:b9:cc:c4:99:0c:cc:17:e3: 8b:0f:2f:2a:cd:6f:d9:25:17:88:8b:a7:54:27:1a: 13:f6:3b:c6:f0:7f:a9:f3:96:61:80:00:02:a7:be: 22:20:b8:b7:34:bb:72:1b:30:1b:ee:b8:37:79:f6: bf:6f:5f:ef:24:cc:38:a5:a6:40:15:a8:96:1f:df: c7:51:f6:15:dd:6e:27:87:03:9d:8d:0d:b5:a7:ca: 43:d8:c7:99:cf:11:45:2a:a1:33:c3:81:67:03:04: 0c:d6:8c:90:e3:64:c1:f5:f5:79:ef:92:20:ac:01: d1:43:e1:17:04:26:25:f4:e1:a4:fb:28:ec:5f:f6: 05:05:70:c8:c9:a6:a1:50:f6:ac:db:bf:29:08:fe: d4:1e:d0:43:d2:08:a2:62:da:13:e0:31:d9:18:ce: 22:c0:74:5a:06:80:9d:83:08:75:ca:3d:31:dd:59: 7f:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:FC:E4:84:50:98:3F:96:99:53:7D:9B:75:7C:61:BE:97:AF:91:95 X509v3 Authority Key Identifier: keyid:94:53:9F:82:A3:5E:B2:15:8E:D7:C3:62:D5:BA:15:43:3E:7E:D2:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179EAE/A49CDDB88D0E11EFA8FE9371C4F9AE02/lFOfgqNeshWO18Ni1boVQz5-0uE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lFOfgqNeshWO18Ni1boVQz5-0uE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179EAE/A49CDDB88D0E11EFA8FE9371C4F9AE02/lFOfgqNeshWO18Ni1boVQz5-0uE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:44:8f:67:4a:cc:e5:51:39:84:f8:a0:19:4c:6a:8b:9e:f5: 9d:ee:79:d8:7f:1e:6b:73:a3:dd:fe:e5:69:1d:d2:ed:52:bb: ed:19:14:34:db:e1:6a:ef:96:d4:b1:57:dd:ea:c4:04:88:ff: 08:ec:c9:8e:38:a2:45:f1:3d:57:14:b7:97:1d:af:99:a9:67: 5a:72:24:7c:86:04:08:35:de:5f:f6:ac:3c:35:96:8f:72:94: 4e:68:b3:18:e2:d6:bf:5b:e2:a5:df:76:9d:12:1d:3b:f1:36: cf:ce:18:7d:45:ef:35:2a:58:4c:74:f5:ae:34:74:04:a6:8b: 7b:cb:08:01:e2:81:8b:74:ec:44:41:d6:6f:f8:e1:d5:27:27: ab:02:46:83:d2:99:90:dc:05:1d:ce:dd:cc:cd:f5:6f:bd:a5: 28:0d:d0:c7:3d:a0:4c:c3:0f:65:f3:70:38:42:d0:70:e1:4c: 36:51:84:c1:51:7e:e2:b6:2f:93:57:62:76:c0:d8:3d:0e:06: 4c:73:77:6f:ee:62:0d:32:d6:a3:79:9e:dd:d9:b0:5e:46:9a: d7:84:07:e6:74:94:be:f2:2c:b0:c3:e9:03:35:83:58:97:ce: 4a:53:9f:2f:0a:04:c3:f3:88:19:bf:2c:83:ab:87:b0:b0:df: 8e:ff:5e:c7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBajANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 OUVBRTExMC8GA1UEBRMoOTQ1MzlGODJBMzVFQjIxNThFRDdDMzYyRDVCQTE1NDMz RTdFRDJFMTAeFw0yNTA0MjUwNjAxNDRaFw0yNTA1MDIwNjAxNDRaMBgxFjAUBgNV BAMTDTY4MGIyNTQ4LWQ5NjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0calrPl4eUcKoXbNnqXInQ/IVXsmZ2N5uitUyx7bN9Noq5X31Pa+1dVpqCnKe bv6pQbpjkaPnF0bdpUGv1PlW+sEYXOP59POD8b15fy+RfIi5zMSZDMwX44sPLyrN b9klF4iLp1QnGhP2O8bwf6nzlmGAAAKnviIguLc0u3IbMBvuuDd59r9vX+8kzDil pkAVqJYf38dR9hXdbieHA52NDbWnykPYx5nPEUUqoTPDgWcDBAzWjJDjZMH19Xnv kiCsAdFD4RcEJiX04aT7KOxf9gUFcMjJpqFQ9qzbvykI/tQe0EPSCKJi2hPgMdkY ziLAdFoGgJ2DCHXKPTHdWX/9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU+PzkhFCY P5aZU32bdXxhvpevkZUwHwYDVR0jBBgwFoAUlFOfgqNeshWO18Ni1boVQz5+0uEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc5RUFFL0E0OUNEREI4OEQw RTExRUZBOEZFOTM3MUM0RjlBRTAyL2xGT2ZncU5lc2hXTzE4TmkxYm9WUXo1LTB1 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvbEZPZmdxTmVzaFdPMThOaTFib1ZRejUtMHVFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc5 RUFFL0E0OUNEREI4OEQwRTExRUZBOEZFOTM3MUM0RjlBRTAyL2xGT2ZncU5lc2hX TzE4TmkxYm9WUXo1LTB1RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGxEj2dKzOVROYT4oBlMaoue9Z3uedh/Hmtzo93+5Wkd0u1Su+0ZFDTb 4WrvltSxV93qxASI/wjsyY44okXxPVcUt5cdr5mpZ1pyJHyGBAg13l/2rDw1lo9y lE5osxji1r9b4qXfdp0SHTvxNs/OGH1F7zUqWEx09a40dASmi3vLCAHigYt07ERB 1m/44dUnJ6sCRoPSmZDcBR3O3czN9W+9pSgN0Mc9oEzDD2XzcDhC0HDhTDZRhMFR fuK2L5NXYnbA2D0OBkxzd2/uYg0y1qN5nt3ZsF5GmteEB+Z0lL7yLLDD6QM1g1iX zkpTny8KBMPziBm/LIOrh7Cw347/Xsc= -----END CERTIFICATE-----Generated at Sat Apr 26 13:08:28 2025 by rpki-client