$ rpki-client -vvf rpki.apnic.net/member_repository/A9197DD5/16D4B0DC81CF11EEBC152F60C4F9AE02/lMPujMByTro8sQMk-e24G6yFAyA.mft File: lMPujMByTro8sQMk-e24G6yFAyA.mft (raw, json) Hash identifier: HgJTngzvwxByxnX2H6VHbCDWvHVJWkx7Q5pwQrZV89U= Subject key identifier: 87:85:A3:07:A3:9B:42:27:73:DB:BE:6A:67:58:F3:E7:BC:7F:CE:BB Authority key identifier: 94:C3:EE:8C:C0:72:4E:BA:3C:B1:03:24:F9:ED:B8:1B:AC:85:03:20 Certificate issuer: /CN=A9197DD5/serialNumber=94C3EE8CC0724EBA3CB10324F9EDB81BAC850320 Certificate serial: 0111 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMPujMByTro8sQMk-e24G6yFAyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197DD5/16D4B0DC81CF11EEBC152F60C4F9AE02/lMPujMByTro8sQMk-e24G6yFAyA.mft Manifest number: 010F Signing time: Fri 25 Apr 2025 03:58:09 +0000 Manifest this update: Fri 25 Apr 2025 03:58:09 +0000 Manifest next update: Fri 02 May 2025 03:58:09 +0000 Files and hashes: 1: lMPujMByTro8sQMk-e24G6yFAyA.crl (hash: epBVOj5MWv1yPfeZUPiqGRkcuBAOokdAvhlQ7Xt4+G8=) 2: 5E3ADA8C81CF11EE9AB1F360C4F9AE02.roa (hash: Mp31Dl4GGrwfX+s1p5DZGdrkWL4P3e5ufUEs+Tl9/MA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197DD5/16D4B0DC81CF11EEBC152F60C4F9AE02/lMPujMByTro8sQMk-e24G6yFAyA.crl rsync://rpki.apnic.net/member_repository/A9197DD5/16D4B0DC81CF11EEBC152F60C4F9AE02/lMPujMByTro8sQMk-e24G6yFAyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMPujMByTro8sQMk-e24G6yFAyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:58:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 273 (0x111) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197DD5, serialNumber=94C3EE8CC0724EBA3CB10324F9EDB81BAC850320 Validity Not Before: Apr 25 03:58:09 2025 GMT Not After : May 2 03:58:09 2025 GMT Subject: CN=680b0851-6974 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:7e:98:67:f5:b8:5d:74:63:73:a5:1e:f7:1f: 76:dc:90:b4:d8:4e:bb:3a:02:96:f1:7d:eb:fa:c3: 40:ed:05:39:ce:e1:1a:b2:91:13:d9:83:54:50:db: a5:2c:43:46:4b:37:3f:a6:7d:52:8f:c2:48:8b:99: 8e:db:76:31:24:f4:e4:b2:9d:45:d4:c9:3d:ed:ea: ce:8a:14:7c:6f:e1:2c:64:81:4c:3a:bd:d8:5f:c8: d4:ec:0f:dc:3c:ad:30:20:0f:cd:3f:b2:27:64:2e: 36:f2:b5:02:29:39:50:72:8c:56:d6:e8:21:bb:22: 46:92:8b:1c:1e:b3:de:7a:4c:c8:a8:c0:5c:c5:0f: 49:84:05:6d:ca:6b:ec:a0:fc:96:c7:02:f9:65:ba: 6e:a0:b1:8e:a1:15:31:18:31:c3:66:84:94:bf:79: b8:03:3d:bb:e8:27:72:dd:a3:40:fc:5d:3b:3f:18: 60:52:c4:b5:53:2f:b5:50:71:a6:d6:29:03:d7:53: e1:4c:54:87:c1:d4:f6:f6:08:13:8b:ac:f3:66:3d: 0e:d9:b8:e6:b5:77:d6:2d:00:fc:83:86:3a:5a:b1: 47:2d:82:09:57:6a:ff:1f:18:d4:e2:c7:11:ae:36: 19:03:ec:db:f2:6a:ad:b7:f9:af:a0:22:bd:64:36: 92:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:85:A3:07:A3:9B:42:27:73:DB:BE:6A:67:58:F3:E7:BC:7F:CE:BB X509v3 Authority Key Identifier: keyid:94:C3:EE:8C:C0:72:4E:BA:3C:B1:03:24:F9:ED:B8:1B:AC:85:03:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197DD5/16D4B0DC81CF11EEBC152F60C4F9AE02/lMPujMByTro8sQMk-e24G6yFAyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMPujMByTro8sQMk-e24G6yFAyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197DD5/16D4B0DC81CF11EEBC152F60C4F9AE02/lMPujMByTro8sQMk-e24G6yFAyA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:9a:34:46:26:7a:21:01:6f:a8:09:f8:eb:1d:75:54:f3:4d: 93:ec:f3:d3:66:cf:66:de:a7:c9:f7:f5:9d:85:f8:d3:46:bf: ef:12:ff:10:15:a2:ac:fb:fc:7e:4d:8b:ed:67:bd:8c:de:4a: ee:93:85:63:df:51:c5:c7:ca:62:6b:b0:08:1e:25:df:b7:3b: d1:d4:1a:88:2e:57:eb:64:f4:3a:a1:0f:c0:e0:ea:1c:2c:39: cf:71:f4:bc:8b:08:8e:2b:65:d0:4a:29:52:3c:9e:4e:1b:c2: 84:e8:2d:1a:2c:cc:a9:ab:02:6c:9d:0b:e5:c1:1d:5f:a1:f8: 2b:90:e6:da:0e:52:4d:dd:56:ff:6a:5f:50:8a:bd:7c:89:f4: cf:ef:e0:76:15:52:bd:e8:1d:92:d6:b3:9d:72:68:5a:98:7f: c8:9e:fa:71:1a:64:c7:54:ee:a7:d4:e4:b6:96:d8:b4:a8:20: bb:30:a1:49:7b:64:f8:af:85:54:ed:d6:99:b5:20:b2:c3:7d: 00:d5:8b:69:21:fc:87:10:af:fa:3c:2c:82:e2:79:b2:f9:af: 15:b3:d5:b4:64:89:78:e5:e0:a9:7f:d8:ce:28:85:46:d4:3c: 1b:33:3b:4a:b4:9e:79:61:c9:6b:70:f2:df:3b:12:e1:1b:9a: 1c:15:49:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdERDUxMTAvBgNVBAUTKDk0QzNFRThDQzA3MjRFQkEzQ0IxMDMyNEY5RURCODFC QUM4NTAzMjAwHhcNMjUwNDI1MDM1ODA5WhcNMjUwNTAyMDM1ODA5WjAYMRYwFAYD VQQDEw02ODBiMDg1MS02OTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsX6YZ/W4XXRjc6Ue9x923JC02E67OgKW8X3r+sNA7QU5zuEaspET2YNUUNul LENGSzc/pn1Sj8JIi5mO23YxJPTksp1F1Mk97erOihR8b+EsZIFMOr3YX8jU7A/c PK0wIA/NP7InZC428rUCKTlQcoxW1ughuyJGkoscHrPeekzIqMBcxQ9JhAVtymvs oPyWxwL5ZbpuoLGOoRUxGDHDZoSUv3m4Az276Cdy3aNA/F07PxhgUsS1Uy+1UHGm 1ikD11PhTFSHwdT29ggTi6zzZj0O2bjmtXfWLQD8g4Y6WrFHLYIJV2r/HxjU4scR rjYZA+zb8mqtt/mvoCK9ZDaSHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIeFowej m0Inc9u+amdY8+e8f867MB8GA1UdIwQYMBaAFJTD7ozAck66PLEDJPntuBushQMg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0RENS8xNkQ0QjBEQzgx Q0YxMUVFQkMxNTJGNjBDNEY5QUUwMi9sTVB1ak1CeVRybzhzUU1rLWUyNEc2eUZB eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xNUHVqTUJ5VHJvOHNRTWstZTI0RzZ5RkF5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0RENS8xNkQ0QjBEQzgxQ0YxMUVFQkMxNTJGNjBDNEY5QUUwMi9sTVB1ak1CeVRy bzhzUU1rLWUyNEc2eUZBeUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4mjRGJnohAW+oCfjrHXVU802T7PPTZs9m3qfJ9/WdhfjTRr/vEv8Q FaKs+/x+TYvtZ72M3kruk4Vj31HFx8pia7AIHiXftzvR1BqILlfrZPQ6oQ/A4Ooc LDnPcfS8iwiOK2XQSilSPJ5OG8KE6C0aLMypqwJsnQvlwR1fofgrkObaDlJN3Vb/ al9Qir18ifTP7+B2FVK96B2S1rOdcmhamH/InvpxGmTHVO6n1OS2lti0qCC7MKFJ e2T4r4VU7daZtSCyw30A1YtpIfyHEK/6PCyC4nmy+a8Vs9W0ZIl45eCpf9jOKIVG 1DwbMztKtJ55YclrcPLfOxLhG5ocFUkt -----END CERTIFICATE-----Generated at Sat Apr 26 04:19:57 2025 by rpki-client