$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9467/915C07E691EA11E79D0D0A2BC4F9AE02/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.mft File: LhZNtFuEa7rmjCd9Q_iC9kCSKB4.mft (raw, json) Hash identifier: FUFDvrfLQeoVKrVlj4oOtJIoiW6BLgHZG94NLorMvX4= Subject key identifier: CA:17:C5:D1:BA:D3:BA:65:91:D8:A6:42:76:60:59:E3:36:65:AD:BE Authority key identifier: 2E:16:4D:B4:5B:84:6B:BA:E6:8C:27:7D:43:F8:82:F6:40:92:28:1E Certificate issuer: /CN=A91A9467/serialNumber=2E164DB45B846BBAE68C277D43F882F64092281E Certificate serial: 18CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9467/915C07E691EA11E79D0D0A2BC4F9AE02/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.mft Manifest number: 18BC Signing time: Thu 24 Apr 2025 16:30:09 +0000 Manifest this update: Thu 24 Apr 2025 16:30:09 +0000 Manifest next update: Thu 01 May 2025 16:30:09 +0000 Files and hashes: 1: LhZNtFuEa7rmjCd9Q_iC9kCSKB4.crl (hash: 4SeXjxgZD7kAZTETCILAxGrvXhXPkHjT564V4K+dtWA=) 2: 0EDA10A4A9A011EE96DCBB4FC4F9AE02.roa (hash: 9b8cbYORw44VvEpRgAtGCxHhf/hrQyvWwycoRACw4Zc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9467/915C07E691EA11E79D0D0A2BC4F9AE02/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.crl rsync://rpki.apnic.net/member_repository/A91A9467/915C07E691EA11E79D0D0A2BC4F9AE02/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:30:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6351 (0x18cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9467, serialNumber=2E164DB45B846BBAE68C277D43F882F64092281E Validity Not Before: Apr 24 16:30:09 2025 GMT Not After : May 1 16:30:09 2025 GMT Subject: CN=680a6711-224b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:3c:d6:cf:7d:f0:70:7a:a4:a8:32:41:58:a3: 84:ca:75:ab:fc:e2:6f:a2:18:2a:77:17:11:44:39: fb:55:3c:53:a5:8e:6e:6f:46:63:b0:da:63:f0:96: ae:9f:f1:e3:e6:22:d7:d2:06:96:89:6b:1d:6f:6d: b3:00:ad:ea:16:58:9f:3e:74:37:2c:81:50:42:03: ab:a8:07:fc:53:e4:57:7e:59:0a:57:e5:60:28:3e: dd:8e:4a:32:b2:30:4a:d2:92:d0:7c:82:13:14:75: d2:69:85:c1:a9:c6:e8:50:98:5b:98:00:e3:f9:56: 30:70:31:29:f0:a6:8e:28:6b:21:83:6b:4b:e8:83: 14:55:b9:ab:ff:49:08:41:f3:e6:4b:5f:b9:65:8d: f3:2e:9e:fc:4b:db:d7:76:28:0b:e3:39:c8:30:91: 9e:ea:9b:b4:cb:a2:34:f5:f3:bc:63:15:ff:85:ee: a0:cd:12:ed:01:f1:5b:92:46:55:b3:e5:c5:eb:ff: 43:56:93:64:ef:b1:0c:81:0d:d2:cf:38:9b:c9:3b: ec:5c:b0:17:1a:3b:9b:bf:67:a6:4d:31:00:a0:c4: 29:45:76:94:39:57:11:2e:c3:20:81:8b:56:2b:cc: 22:b6:80:36:ab:f3:1c:67:da:d7:2f:cd:35:02:f0: 16:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:17:C5:D1:BA:D3:BA:65:91:D8:A6:42:76:60:59:E3:36:65:AD:BE X509v3 Authority Key Identifier: keyid:2E:16:4D:B4:5B:84:6B:BA:E6:8C:27:7D:43:F8:82:F6:40:92:28:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9467/915C07E691EA11E79D0D0A2BC4F9AE02/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9467/915C07E691EA11E79D0D0A2BC4F9AE02/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:ce:5a:b2:1e:53:08:c7:1f:4c:f4:90:b8:a5:91:ea:51:27: d1:12:3c:51:79:cf:60:35:ed:63:dc:eb:3a:d8:7d:6b:a2:d3: 75:ef:58:19:70:91:14:d7:4a:c6:dc:43:a5:e1:1c:5c:ac:91: 9a:6c:73:c6:1a:dd:24:fd:fe:1d:af:79:78:7e:60:93:bc:d4: f5:00:87:f6:76:7e:07:94:45:c4:61:b0:d4:2c:c7:ca:8e:33: 28:e9:64:b3:a3:90:ac:ab:a3:77:fd:d4:c9:68:4c:6d:3a:69: 60:09:03:2b:bb:e2:19:80:d8:34:63:ad:29:5f:33:02:df:50: b3:e2:e5:30:ce:9f:40:01:05:7c:6c:db:7e:e1:8a:66:64:fd: 27:84:8f:f4:a4:5c:ed:47:42:1a:2d:b0:c0:54:56:73:ba:05: 6b:89:4f:08:88:bf:f7:d8:28:2a:76:4f:0c:da:c3:4b:1a:ee: d5:d2:d3:e9:a2:29:fa:ee:30:e4:95:25:a4:b4:30:bc:f9:a3: 48:2e:5c:16:05:37:3d:3b:ea:52:31:23:09:6c:c6:31:04:a0: ff:7d:26:00:dc:46:ee:2e:9d:bf:f9:e4:c9:0c:4d:98:47:24: 1a:84:0d:5b:4a:e0:79:84:e2:19:21:53:05:bb:2a:e0:26:e1: 63:2f:7c:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTk0NjcxMTAvBgNVBAUTKDJFMTY0REI0NUI4NDZCQkFFNjhDMjc3RDQzRjg4MkY2 NDA5MjI4MUUwHhcNMjUwNDI0MTYzMDA5WhcNMjUwNTAxMTYzMDA5WjAYMRYwFAYD VQQDEw02ODBhNjcxMS0yMjRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4jzWz33wcHqkqDJBWKOEynWr/OJvohgqdxcRRDn7VTxTpY5ub0ZjsNpj8Jau n/Hj5iLX0gaWiWsdb22zAK3qFlifPnQ3LIFQQgOrqAf8U+RXflkKV+VgKD7djkoy sjBK0pLQfIITFHXSaYXBqcboUJhbmADj+VYwcDEp8KaOKGshg2tL6IMUVbmr/0kI QfPmS1+5ZY3zLp78S9vXdigL4znIMJGe6pu0y6I09fO8YxX/he6gzRLtAfFbkkZV s+XF6/9DVpNk77EMgQ3SzzibyTvsXLAXGjubv2emTTEAoMQpRXaUOVcRLsMggYtW K8witoA2q/McZ9rXL801AvAWcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMoXxdG6 07plkdimQnZgWeM2Za2+MB8GA1UdIwQYMBaAFC4WTbRbhGu65ownfUP4gvZAkige MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTQ2Ny85MTVDMDdFNjkx RUExMUU3OUQwRDBBMkJDNEY5QUUwMi9MaFpOdEZ1RWE3cm1qQ2Q5UV9pQzlrQ1NL QjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xoWk50RnVFYTdybWpDZDlRX2lDOWtDU0tCNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTQ2Ny85MTVDMDdFNjkxRUExMUU3OUQwRDBBMkJDNEY5QUUwMi9MaFpOdEZ1RWE3 cm1qQ2Q5UV9pQzlrQ1NLQjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8zlqyHlMIxx9M9JC4pZHqUSfREjxRec9gNe1j3Os62H1rotN171gZ cJEU10rG3EOl4RxcrJGabHPGGt0k/f4dr3l4fmCTvNT1AIf2dn4HlEXEYbDULMfK jjMo6WSzo5Csq6N3/dTJaExtOmlgCQMru+IZgNg0Y60pXzMC31Cz4uUwzp9AAQV8 bNt+4YpmZP0nhI/0pFztR0IaLbDAVFZzugVriU8IiL/32Cgqdk8M2sNLGu7V0tPp oin67jDklSWktDC8+aNILlwWBTc9O+pSMSMJbMYxBKD/fSYA3EbuLp2/+eTJDE2Y RyQahA1bSuB5hOIZIVMFuyrgJuFjL3xF -----END CERTIFICATE-----Generated at Sat Apr 26 12:58:28 2025 by rpki-client