$ rpki-client -vvf rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft File: leqvwkta9LFytYuwGnAc_hltoZk.mft (raw, json) Hash identifier: 2ZRp71H9RNrmPeKN0ELrKtkpEKrgafGu5nt7AwnAxb8= Subject key identifier: AA:7E:35:39:36:EE:30:13:47:4D:C3:99:AF:C8:AE:62:90:50:5F:2F Authority key identifier: 95:EA:AF:C2:4B:5A:F4:B1:72:B5:8B:B0:1A:70:1C:FE:19:6D:A1:99 Certificate issuer: /CN=A91972B6/serialNumber=95EAAFC24B5AF4B172B58BB01A701CFE196DA199 Certificate serial: 1106 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft Manifest number: 10FC Signing time: Thu 24 Apr 2025 17:17:48 +0000 Manifest this update: Thu 24 Apr 2025 17:17:48 +0000 Manifest next update: Thu 01 May 2025 17:17:48 +0000 Files and hashes: 1: leqvwkta9LFytYuwGnAc_hltoZk.crl (hash: ZaQOG/z4hJjLvjnCp7tv2bXYa8PZImXMEOIoGWO+IbI=) 2: 2837843AA3E811EAB397F675C4F9AE02.roa (hash: y9Ue7Mqnzr2Y9oHbpxdCKjDeFirsk0PRqFHYUCwvvtk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.crl rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:17:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4358 (0x1106) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91972B6, serialNumber=95EAAFC24B5AF4B172B58BB01A701CFE196DA199 Validity Not Before: Apr 24 17:17:48 2025 GMT Not After : May 1 17:17:48 2025 GMT Subject: CN=680a723c-8ae3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:96:2b:f9:a5:a8:a0:25:d4:a2:ce:66:c7:29: 12:f5:65:a5:30:ac:c1:d4:9e:98:60:96:25:23:52: 9f:9d:49:13:ac:aa:04:fe:7e:ba:43:ff:83:cb:e3: 69:4f:2a:2a:ca:28:f7:d4:7c:37:f8:e1:a0:30:c7: 45:93:1f:77:10:b2:a7:c3:7d:40:db:47:c2:5e:44: 24:45:93:e5:91:41:e1:80:8f:ee:6d:da:24:5e:b9: fc:67:5d:df:b1:27:53:52:79:ad:c3:0d:50:d9:44: 94:08:4b:d3:e8:a5:41:41:8c:75:93:f1:8a:66:ff: b5:7e:fa:6e:58:61:2b:c8:20:f4:42:a2:b4:84:30: 6a:1f:e0:6c:13:39:48:29:f2:a1:97:f4:0a:92:39: 1d:d6:03:41:ac:19:6a:8e:2b:3c:2e:a1:f4:d7:c0: af:2d:e8:7d:7d:fa:22:f7:49:7d:ba:47:3c:2d:60: ff:e2:33:a3:c9:dc:36:9a:ea:ff:d3:33:b7:0d:8b: 90:b4:5f:0c:1b:cc:20:32:1f:a3:56:3d:e8:78:f6: 1e:55:ba:e6:dd:06:7e:e1:ba:d1:30:a5:c5:bd:3b: 3b:f2:27:33:0e:a9:67:3e:76:55:43:68:cb:8d:ca: 8c:cc:8b:5e:76:63:be:ff:4c:6d:d2:e0:15:69:b9: 7a:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:7E:35:39:36:EE:30:13:47:4D:C3:99:AF:C8:AE:62:90:50:5F:2F X509v3 Authority Key Identifier: keyid:95:EA:AF:C2:4B:5A:F4:B1:72:B5:8B:B0:1A:70:1C:FE:19:6D:A1:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:f8:ac:ef:8a:63:f1:26:b5:a2:71:5c:fa:bf:8e:27:d2:c6: 8e:fb:71:34:3b:a5:c2:44:75:9e:03:56:99:92:a0:41:71:66: 52:52:2c:91:78:b8:75:2f:ef:20:8f:53:fa:5a:57:b5:3a:3f: 96:14:f9:0e:22:4d:f2:8c:f4:ac:8d:ba:4e:03:c8:4d:84:06: 5b:6c:91:82:05:b1:4c:d8:55:8b:a3:a7:1d:7c:b7:95:ea:e9: 20:76:3f:5f:ee:65:d4:04:7b:13:4b:28:ac:91:04:40:1e:ef: f3:b9:e3:24:8c:4c:3a:1c:d6:78:3f:cb:21:ea:d2:16:aa:fa: 0e:5c:16:78:2c:e7:ee:aa:db:a5:93:fe:d6:4b:96:a5:91:85: cb:03:2a:a9:12:d4:fe:7c:91:8e:5f:2d:53:e7:71:5c:87:a3: 84:c1:f6:f1:ce:b7:fd:13:f9:53:e6:01:74:32:81:cd:c3:16: f8:a4:98:b6:e2:df:d8:7e:b5:89:2a:4e:f1:8c:ce:54:0c:2e: 86:b9:9c:92:30:c2:30:da:b6:a2:47:20:2f:97:f7:82:61:80: 0f:91:12:c2:b7:d8:86:91:6a:a0:bf:83:97:bd:72:d0:c2:19: fd:63:14:fe:25:28:b4:0e:b3:a6:94:78:82:80:8f:e9:1a:e4: 53:5f:b1:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyQjYxMTAvBgNVBAUTKDk1RUFBRkMyNEI1QUY0QjE3MkI1OEJCMDFBNzAxQ0ZF MTk2REExOTkwHhcNMjUwNDI0MTcxNzQ4WhcNMjUwNTAxMTcxNzQ4WjAYMRYwFAYD VQQDEw02ODBhNzIzYy04YWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApJYr+aWooCXUos5mxykS9WWlMKzB1J6YYJYlI1KfnUkTrKoE/n66Q/+Dy+Np Tyoqyij31Hw3+OGgMMdFkx93ELKnw31A20fCXkQkRZPlkUHhgI/ubdokXrn8Z13f sSdTUnmtww1Q2USUCEvT6KVBQYx1k/GKZv+1fvpuWGEryCD0QqK0hDBqH+BsEzlI KfKhl/QKkjkd1gNBrBlqjis8LqH018CvLeh9ffoi90l9ukc8LWD/4jOjydw2mur/ 0zO3DYuQtF8MG8wgMh+jVj3oePYeVbrm3QZ+4brRMKXFvTs78iczDqlnPnZVQ2jL jcqMzItedmO+/0xt0uAVabl6zQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKp+NTk2 7jATR03Dma/IrmKQUF8vMB8GA1UdIwQYMBaAFJXqr8JLWvSxcrWLsBpwHP4ZbaGZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzJCNi8wODI0M0M4QzEz MkIxMUU5QUU3N0FEN0JDNEY5QUUwMi9sZXF2d2t0YTlMRnl0WXV3R25BY19obHRv WmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2xlcXZ3a3RhOUxGeXRZdXdHbkFjX2hsdG9aay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzJCNi8wODI0M0M4QzEzMkIxMUU5QUU3N0FEN0JDNEY5QUUwMi9sZXF2d2t0YTlM Rnl0WXV3R25BY19obHRvWmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAx+KzvimPxJrWicVz6v44n0saO+3E0O6XCRHWeA1aZkqBBcWZSUiyR eLh1L+8gj1P6Wle1Oj+WFPkOIk3yjPSsjbpOA8hNhAZbbJGCBbFM2FWLo6cdfLeV 6ukgdj9f7mXUBHsTSyiskQRAHu/zueMkjEw6HNZ4P8sh6tIWqvoOXBZ4LOfuqtul k/7WS5alkYXLAyqpEtT+fJGOXy1T53Fch6OEwfbxzrf9E/lT5gF0MoHNwxb4pJi2 4t/YfrWJKk7xjM5UDC6GuZySMMIw2raiRyAvl/eCYYAPkRLCt9iGkWqgv4OXvXLQ whn9YxT+JSi0DrOmlHiCgI/pGuRTX7HY -----END CERTIFICATE-----Generated at Sat Apr 26 14:18:37 2025 by rpki-client