$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.mft File: ldQuwvRot-OPlYyPupMYARfcJuA.mft (raw, json) Hash identifier: XsoPoFGm+d1AO1WSCCB5Ouyf8yIor+EFEozeiTO3wvg= Subject key identifier: 7B:6F:47:8A:40:4C:F3:B5:01:BC:58:CD:F4:66:EA:78:73:1D:21:4C Authority key identifier: 95:D4:2E:C2:F4:68:B7:E3:8F:95:8C:8F:BA:93:18:01:17:DC:26:E0 Certificate issuer: /CN=A91A7F6A/serialNumber=95D42EC2F468B7E38F958C8FBA93180117DC26E0 Certificate serial: 3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldQuwvRot-OPlYyPupMYARfcJuA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.mft Manifest number: 33 Signing time: Fri 13 Jun 2025 06:40:49 +0000 Manifest this update: Fri 13 Jun 2025 06:40:49 +0000 Manifest next update: Fri 20 Jun 2025 06:40:49 +0000 Files and hashes: 1: ldQuwvRot-OPlYyPupMYARfcJuA.crl (hash: 9JYFDt21nsjkMWFxaikSewiBcH6tkkzt1NiCpZ/GuaQ=) 2: F8C2A4E4359311F08C686E1BC4F9AE02.roa (hash: vSYTG4FiK7ZLm+rL5F5xQfklb4JbIfkyGEDj5czTJUY=) 3: B3849A9A359311F09B54926FC4F9AE02.roa (hash: Y+aC1xM6nmmoKwU/+TkwylgFTc7TBvkghCXTXAy84ng=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.crl rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldQuwvRot-OPlYyPupMYARfcJuA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 06:40:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59 (0x3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7F6A, serialNumber=95D42EC2F468B7E38F958C8FBA93180117DC26E0 Validity Not Before: Jun 13 06:40:49 2025 GMT Not After : Jun 20 06:40:49 2025 GMT Subject: CN=684bc7f1-155a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:84:39:7c:47:a3:e8:54:98:5e:c3:80:0c:96: 8b:4e:98:4c:60:aa:a3:c2:e2:e3:d9:86:3c:de:40: b9:4c:82:16:c6:5c:a5:96:f2:27:76:64:67:88:a7: 88:2e:19:32:ee:f9:b4:46:e7:1c:f5:a3:52:15:10: 54:89:28:39:8c:2b:9a:11:c2:38:3c:17:1d:bb:ed: 1c:34:d3:a4:9a:8d:40:bf:42:3d:e2:0a:9a:89:16: 00:cc:3f:6b:90:f7:a5:07:ca:4c:a7:ff:73:44:12: 3b:31:3a:0c:e1:80:b7:10:83:0b:59:9d:df:e2:65: a4:fc:33:aa:3b:cc:a1:58:24:a4:30:bf:14:de:30: 7d:93:01:54:f3:74:ab:1a:14:85:97:a2:84:03:4d: ec:a1:6b:3c:c8:e2:96:92:62:fd:7b:98:8e:04:c9: fa:9c:4a:d3:97:43:43:e5:43:d8:c5:df:7c:91:fa: d2:9e:27:fc:d7:68:66:f8:ab:33:76:f2:be:95:d0: 71:ce:f2:2f:2e:72:89:ad:06:d6:58:6e:39:1a:57: f6:67:40:4c:54:69:ae:52:99:f4:66:f5:1a:ad:23: fb:d7:40:ce:7f:d5:92:03:4d:b3:86:03:37:75:69: ef:38:5a:37:b6:8f:c1:9f:b6:47:73:02:14:91:2c: ab:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:6F:47:8A:40:4C:F3:B5:01:BC:58:CD:F4:66:EA:78:73:1D:21:4C X509v3 Authority Key Identifier: keyid:95:D4:2E:C2:F4:68:B7:E3:8F:95:8C:8F:BA:93:18:01:17:DC:26:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldQuwvRot-OPlYyPupMYARfcJuA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:7d:b7:d7:32:21:53:47:e2:d0:7f:9a:90:9c:3b:0b:1e:c1: ad:5d:b1:dc:b0:73:91:42:99:ab:7e:8e:e9:6f:60:90:47:8a: ed:01:99:67:23:d6:d4:15:b8:7c:c3:e0:d4:10:5f:3d:97:1f: b9:db:9a:c1:ad:ea:3a:ed:fc:63:a3:85:d0:c1:a8:0a:a8:d5: 32:58:e2:76:e2:a7:92:44:14:4d:bf:ce:7b:23:d4:bb:54:2d: 91:41:05:2e:10:59:8f:f3:98:d1:00:e0:af:3e:ce:f9:e7:50: 99:d8:6c:60:11:ab:db:12:b9:0d:46:92:b4:ed:61:db:d1:30: 5f:d8:53:ee:7e:f4:34:72:d8:c1:18:9f:30:f4:ae:db:03:1f: 15:a3:70:cb:36:cc:07:9c:30:b8:67:77:72:67:ce:3d:95:ce: f6:2d:69:29:4d:2e:9e:64:ed:bb:d6:32:04:59:dc:ca:90:63: 89:da:8a:e1:76:76:de:89:dd:7b:fa:c8:2d:f9:36:f7:4b:25: b4:03:6f:b2:bb:40:76:92:41:ca:d0:be:6b:82:59:1c:1c:0f: 3c:31:df:7a:56:55:75:2f:b3:3d:22:85:c6:ff:02:48:da:86: c8:b0:c5:70:a7:93:b5:fb:b5:a7:eb:bb:30:de:8a:2f:97:73: 6a:d7:fc:65 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB N0Y2QTExMC8GA1UEBRMoOTVENDJFQzJGNDY4QjdFMzhGOTU4QzhGQkE5MzE4MDEx N0RDMjZFMDAeFw0yNTA2MTMwNjQwNDlaFw0yNTA2MjAwNjQwNDlaMBgxFjAUBgNV BAMTDTY4NGJjN2YxLTE1NWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCehDl8R6PoVJhew4AMlotOmExgqqPC4uPZhjzeQLlMghbGXKWW8id2ZGeIp4gu GTLu+bRG5xz1o1IVEFSJKDmMK5oRwjg8Fx277Rw006SajUC/Qj3iCpqJFgDMP2uQ 96UHykyn/3NEEjsxOgzhgLcQgwtZnd/iZaT8M6o7zKFYJKQwvxTeMH2TAVTzdKsa FIWXooQDTeyhazzI4paSYv17mI4EyfqcStOXQ0PlQ9jF33yR+tKeJ/zXaGb4qzN2 8r6V0HHO8i8ucomtBtZYbjkaV/ZnQExUaa5SmfRm9RqtI/vXQM5/1ZIDTbOGAzd1 ae84Wje2j8GftkdzAhSRLKutAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUe29HikBM 87UBvFjN9GbqeHMdIUwwHwYDVR0jBBgwFoAUldQuwvRot+OPlYyPupMYARfcJuAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE3RjZBLzdBNTI5ODc2MEFG MDExRjA4NTMxRDQzQ0M0RjlBRTAyL2xkUXV3dlJvdC1PUGxZeVB1cE1ZQVJmY0p1 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbGRRdXd2Um90LU9QbFl5UHVwTVlBUmZjSnVBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE3 RjZBLzdBNTI5ODc2MEFGMDExRjA4NTMxRDQzQ0M0RjlBRTAyL2xkUXV3dlJvdC1P UGxZeVB1cE1ZQVJmY0p1QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAA19t9cyIVNH4tB/mpCcOwsewa1dsdywc5FCmat+julvYJBHiu0BmWcj 1tQVuHzD4NQQXz2XH7nbmsGt6jrt/GOjhdDBqAqo1TJY4nbip5JEFE2/znsj1LtU LZFBBS4QWY/zmNEA4K8+zvnnUJnYbGARq9sSuQ1GkrTtYdvRMF/YU+5+9DRy2MEY nzD0rtsDHxWjcMs2zAecMLhnd3Jnzj2VzvYtaSlNLp5k7bvWMgRZ3MqQY4naiuF2 dt6J3Xv6yC35NvdLJbQDb7K7QHaSQcrQvmuCWRwcDzwx33pWVXUvsz0ihcb/Akja hsiwxXCnk7X7tafruzDeii+Xc2rX/GU= -----END CERTIFICATE-----Generated at Sat Jun 14 17:54:02 2025 by rpki-client