$ rpki-client -vvf rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft File: lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft (raw, json) Hash identifier: 5HCFcI1V0vwOE92mR/w4tI5+gkevWSJSGPAeWwlIr2c= Subject key identifier: 20:60:E8:E8:54:60:CC:D2:E5:11:A9:B3:9C:37:21:B5:08:7D:19:09 Authority key identifier: 96:B8:0C:37:C6:61:3D:14:A9:2C:DB:EC:66:28:21:64:3E:8A:F1:1B Certificate issuer: /CN=A91818BD/serialNumber=96B80C37C6613D14A92CDBEC662821643E8AF11B Certificate serial: 0299 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lrgMN8ZhPRSpLNvsZighZD6K8Rs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft Manifest number: 0292 Signing time: Fri 25 Apr 2025 01:19:39 +0000 Manifest this update: Fri 25 Apr 2025 01:19:38 +0000 Manifest next update: Fri 02 May 2025 01:19:38 +0000 Files and hashes: 1: lrgMN8ZhPRSpLNvsZighZD6K8Rs.crl (hash: r6EGj3G9NBn8AU1+APMZaU2v4iURx6e/v1efGH3hEIg=) 2: B83B7E0C065511EDB3E94E54C4F9AE02.roa (hash: tal6R2lkJBoeIIUyi6mdxCD2dqzkhyqrKbW//gzTT04=) 3: 481545DEFE8211ECBAB0E13FC4F9AE02.roa (hash: Qlo4+mbKJCym2bywU9/+B9nSR/lgPkj3tiR7WBd3VEs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.crl rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lrgMN8ZhPRSpLNvsZighZD6K8Rs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 665 (0x299) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91818BD, serialNumber=96B80C37C6613D14A92CDBEC662821643E8AF11B Validity Not Before: Apr 25 01:19:38 2025 GMT Not After : May 2 01:19:38 2025 GMT Subject: CN=680ae32a-6080 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:c1:3a:5a:81:46:68:e8:3b:8b:7a:60:e2:07: bb:33:1b:6a:a9:3a:4d:9b:30:ad:84:fd:1d:f9:fc: 92:33:45:9a:69:b1:87:30:90:b8:be:e8:cf:12:ed: 41:e6:f0:72:a2:28:42:a3:a0:6a:2e:f5:6c:6b:a6: bf:9d:37:2a:fa:1e:bf:82:61:30:77:3a:97:88:13: 08:a7:17:02:36:fa:28:ee:72:2e:da:5b:6b:03:19: 03:c0:8b:2a:56:9f:f0:45:fa:d6:64:d8:fb:a2:c6: 01:84:e1:55:59:be:f1:9b:ea:7a:17:3c:c1:ac:bb: ed:08:2f:d6:26:0b:6d:9b:99:9c:d1:58:ce:b3:8b: 2d:72:02:ae:1b:8b:01:3b:4c:29:62:f4:c5:71:58: 3d:ee:70:c4:56:9c:72:8e:af:59:e2:cc:2c:4e:c9: 6e:ae:3a:25:38:bf:51:e2:11:3a:80:19:77:07:93: 04:7f:78:5f:79:a7:8a:9c:62:89:39:72:84:06:69: 01:af:dc:ba:3f:4a:b7:ef:c1:45:6e:11:f9:58:c3: 1c:9e:5d:5a:f1:2a:7d:84:82:1d:a8:87:b8:d4:ff: db:1b:bf:ce:81:39:3d:51:87:6c:41:e0:1c:44:7f: f2:6f:c3:bc:7c:01:f0:d3:9c:ae:ec:d3:b1:2d:00: 3b:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:60:E8:E8:54:60:CC:D2:E5:11:A9:B3:9C:37:21:B5:08:7D:19:09 X509v3 Authority Key Identifier: keyid:96:B8:0C:37:C6:61:3D:14:A9:2C:DB:EC:66:28:21:64:3E:8A:F1:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lrgMN8ZhPRSpLNvsZighZD6K8Rs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d2:cb:f4:a7:f0:5d:ea:51:78:17:5a:da:2e:f1:b4:81:9f:db: b3:75:df:c1:3c:bb:0b:96:42:2e:a6:40:61:31:ae:2a:07:de: 78:ea:b1:a1:aa:2f:07:da:57:57:3f:fd:1e:c6:2e:ba:2c:56: 87:94:5a:b3:56:28:35:9e:9d:87:4b:19:5e:71:f0:64:2d:1e: ee:8b:0e:61:37:e0:ab:93:23:fc:cb:15:5a:54:68:8b:53:d9: 79:72:f4:29:38:bd:d2:e5:5e:6a:03:ac:2f:32:99:a9:25:d1: af:17:e6:5b:03:f3:a1:a9:ed:2a:ec:86:d6:e7:31:89:58:ca: 20:c6:0c:39:bd:ef:17:09:6b:2a:96:ba:10:9d:a3:b8:e2:07: 19:75:2b:cd:02:af:4b:3e:f1:35:e0:3d:fb:a9:2e:b4:10:e2: 1d:de:c3:63:23:87:75:91:6b:6f:11:36:08:85:02:29:b0:63: 92:02:d4:67:37:46:d5:bc:56:44:27:bc:06:de:07:52:78:75: 8c:59:3f:a5:83:99:8d:64:79:9d:b6:11:06:6d:6b:49:2b:27: 93:9e:ed:04:f9:fb:1f:44:c9:62:7b:7d:94:37:13:13:e3:be: 54:d9:2d:4c:81:7a:6e:90:97:3c:17:f7:f2:36:dd:76:72:c2: 9b:73:f6:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODE4QkQxMTAvBgNVBAUTKDk2QjgwQzM3QzY2MTNEMTRBOTJDREJFQzY2MjgyMTY0 M0U4QUYxMUIwHhcNMjUwNDI1MDExOTM4WhcNMjUwNTAyMDExOTM4WjAYMRYwFAYD VQQDEw02ODBhZTMyYS02MDgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA58E6WoFGaOg7i3pg4ge7MxtqqTpNmzCthP0d+fySM0WaabGHMJC4vujPEu1B 5vByoihCo6BqLvVsa6a/nTcq+h6/gmEwdzqXiBMIpxcCNvoo7nIu2ltrAxkDwIsq Vp/wRfrWZNj7osYBhOFVWb7xm+p6FzzBrLvtCC/WJgttm5mc0VjOs4stcgKuG4sB O0wpYvTFcVg97nDEVpxyjq9Z4swsTslurjolOL9R4hE6gBl3B5MEf3hfeaeKnGKJ OXKEBmkBr9y6P0q378FFbhH5WMMcnl1a8Sp9hIIdqIe41P/bG7/OgTk9UYdsQeAc RH/yb8O8fAHw05yu7NOxLQA75QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCBg6OhU YMzS5RGps5w3IbUIfRkJMB8GA1UdIwQYMBaAFJa4DDfGYT0UqSzb7GYoIWQ+ivEb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MThCRC80MTRENUJEQUZF ODAxMUVDOUYzMTdBM0ZDNEY5QUUwMi9scmdNTjhaaFBSU3BMTnZzWmlnaFpENks4 UnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xyZ01OOFpoUFJTcExOdnNaaWdoWkQ2SzhScy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MThCRC80MTRENUJEQUZFODAxMUVDOUYzMTdBM0ZDNEY5QUUwMi9scmdNTjhaaFBS U3BMTnZzWmlnaFpENks4UnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDSy/Sn8F3qUXgXWtou8bSBn9uzdd/BPLsLlkIupkBhMa4qB9546rGh qi8H2ldXP/0exi66LFaHlFqzVig1np2HSxlecfBkLR7uiw5hN+CrkyP8yxVaVGiL U9l5cvQpOL3S5V5qA6wvMpmpJdGvF+ZbA/Ohqe0q7IbW5zGJWMogxgw5ve8XCWsq lroQnaO44gcZdSvNAq9LPvE14D37qS60EOId3sNjI4d1kWtvETYIhQIpsGOSAtRn N0bVvFZEJ7wG3gdSeHWMWT+lg5mNZHmdthEGbWtJKyeTnu0E+fsfRMlie32UNxMT 475U2S1MgXpukJc8F/fyNt12csKbc/Yq -----END CERTIFICATE-----Generated at Sat Apr 26 05:05:09 2025 by rpki-client