$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft File: lKlQswO0aQDdWjBhAwyJpIloA68.mft (raw, json) Hash identifier: sjb7Lp8V1DN/lJfiX8GCqE+E9rZUPwf5AG6AuSZ5IEI= Subject key identifier: F0:E8:D5:BA:7D:53:4C:4C:33:7C:03:C4:BC:EB:4F:1C:5F:F1:95:58 Authority key identifier: 94:A9:50:B3:03:B4:69:00:DD:5A:30:61:03:0C:89:A4:89:68:03:AF Certificate issuer: /CN=A91BAD2D/serialNumber=94A950B303B46900DD5A3061030C89A4896803AF Certificate serial: D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKlQswO0aQDdWjBhAwyJpIloA68.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft Manifest number: D6 Signing time: Sat 03 May 2025 05:00:39 +0000 Manifest this update: Sat 03 May 2025 05:00:39 +0000 Manifest next update: Sat 10 May 2025 05:00:39 +0000 Files and hashes: 1: lKlQswO0aQDdWjBhAwyJpIloA68.crl (hash: HiZIltynAIf2rnYKuBh69Y7Oz0ra1CqnbUqLsGIHTss=) 2: 33B566F2E80811EEB4888B0FC4F9AE02.roa (hash: ZSDoXQLk70kw9Tv9vuIwvYTULilf6nNLQq+LER2jQIQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.crl rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKlQswO0aQDdWjBhAwyJpIloA68.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 05:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 217 (0xd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAD2D, serialNumber=94A950B303B46900DD5A3061030C89A4896803AF Validity Not Before: May 3 05:00:39 2025 GMT Not After : May 10 05:00:39 2025 GMT Subject: CN=6815a2f7-9e09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:1f:b1:83:a7:d1:cf:fe:c8:9a:10:00:76:1f: d1:e1:a0:1f:32:6d:6d:b7:67:b4:aa:5f:19:ba:82: 5b:6d:15:6c:a6:30:cb:45:4a:fd:38:20:dd:75:f3: 9f:b1:bf:d7:fe:89:42:8b:6c:01:da:d6:b3:63:4c: 9e:46:e0:3a:aa:71:91:24:0d:66:f1:c7:5a:79:b4: 8e:a8:91:f3:79:77:70:62:e6:83:fa:5d:dd:ed:14: 75:d9:11:8d:1b:95:a1:6c:bd:32:ef:2d:1b:d1:26: 46:cb:4d:d9:ee:48:10:5d:7b:a5:b9:e7:29:84:c3: 53:4c:43:a3:7d:2c:90:76:11:a7:8f:9d:0e:61:a7: 16:57:85:6b:c1:6d:86:a3:52:ac:4f:90:60:80:ef: 98:48:c1:06:d4:96:56:c6:4c:67:a1:fc:28:dd:9d: c7:83:46:e8:b8:42:14:71:0d:8a:2e:f9:17:78:21: ba:eb:a1:49:bd:8a:5a:fd:8b:16:f6:ef:04:ad:d6: 14:0b:73:d0:05:7c:18:8c:c6:1a:4c:43:c3:8e:9c: b8:39:95:d6:01:66:e6:35:55:42:a9:58:38:2e:74: 44:07:e8:86:bd:0e:92:07:70:41:8f:80:bc:37:58: e4:7e:21:a7:7f:ba:69:01:11:b5:f6:e5:30:be:68: 1f:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:E8:D5:BA:7D:53:4C:4C:33:7C:03:C4:BC:EB:4F:1C:5F:F1:95:58 X509v3 Authority Key Identifier: keyid:94:A9:50:B3:03:B4:69:00:DD:5A:30:61:03:0C:89:A4:89:68:03:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKlQswO0aQDdWjBhAwyJpIloA68.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:2c:a4:e8:81:8e:da:6e:d1:40:2c:5b:2e:7d:57:1e:d7:34: 39:36:33:fe:d2:e3:f9:28:b6:d3:6c:20:59:14:31:72:b5:df: 06:1f:96:73:d4:e0:d3:21:d7:2f:39:85:e4:9b:d9:3d:a9:0b: 82:0a:b7:e8:c4:ff:06:85:0f:87:a6:1b:e2:d7:9b:c1:e2:5d: cd:46:2d:92:48:c5:63:62:f6:e4:a6:48:17:31:10:8a:77:28: 3c:73:e0:f6:ab:08:18:63:a0:3e:85:25:40:b1:ec:fd:94:e6: 7c:f0:7b:be:8b:32:16:00:e5:0a:a2:d1:a1:73:86:48:3e:16: bf:73:7a:33:e5:fe:44:94:1e:bf:e3:8e:2b:be:88:91:63:85: fb:89:1a:2a:49:36:3b:97:73:99:b3:c1:7e:28:e1:9d:0c:77: 44:22:fe:7a:88:f5:db:1f:64:79:c9:9f:e6:95:d7:0f:b8:d1: 6e:41:ec:2f:36:c5:e7:9c:e1:0d:f7:93:40:7f:27:63:f7:b1: 46:6e:13:55:ed:01:4f:c1:ed:4f:2c:5b:0a:88:19:dd:72:0c: 64:c6:e2:5a:76:7e:98:21:21:d0:48:ae:8d:20:95:f4:91:e1: eb:5d:76:18:cd:10:4b:9d:01:54:9f:b4:f8:b3:8d:b1:76:3e: e4:66:74:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFEMkQxMTAvBgNVBAUTKDk0QTk1MEIzMDNCNDY5MDBERDVBMzA2MTAzMEM4OUE0 ODk2ODAzQUYwHhcNMjUwNTAzMDUwMDM5WhcNMjUwNTEwMDUwMDM5WjAYMRYwFAYD VQQDEw02ODE1YTJmNy05ZTA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAux+xg6fRz/7ImhAAdh/R4aAfMm1tt2e0ql8ZuoJbbRVspjDLRUr9OCDddfOf sb/X/olCi2wB2tazY0yeRuA6qnGRJA1m8cdaebSOqJHzeXdwYuaD+l3d7RR12RGN G5WhbL0y7y0b0SZGy03Z7kgQXXuluecphMNTTEOjfSyQdhGnj50OYacWV4VrwW2G o1KsT5BggO+YSMEG1JZWxkxnofwo3Z3Hg0bouEIUcQ2KLvkXeCG666FJvYpa/YsW 9u8ErdYUC3PQBXwYjMYaTEPDjpy4OZXWAWbmNVVCqVg4LnREB+iGvQ6SB3BBj4C8 N1jkfiGnf7ppARG19uUwvmgfBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPDo1bp9 U0xMM3wDxLzrTxxf8ZVYMB8GA1UdIwQYMBaAFJSpULMDtGkA3VowYQMMiaSJaAOv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUQyRC85MDg4RUU1QUU4 MDExMUVFQUQ2QzUwMzBDNEY5QUUwMi9sS2xRc3dPMGFRRGRXakJoQXd5SnBJbG9B NjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xLbFFzd08wYVFEZFdqQmhBd3lKcElsb0E2OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUQyRC85MDg4RUU1QUU4MDExMUVFQUQ2QzUwMzBDNEY5QUUwMi9sS2xRc3dPMGFR RGRXakJoQXd5SnBJbG9BNjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYLKTogY7abtFALFsufVce1zQ5NjP+0uP5KLbTbCBZFDFytd8GH5Zz 1ODTIdcvOYXkm9k9qQuCCrfoxP8GhQ+Hphvi15vB4l3NRi2SSMVjYvbkpkgXMRCK dyg8c+D2qwgYY6A+hSVAsez9lOZ88Hu+izIWAOUKotGhc4ZIPha/c3oz5f5ElB6/ 444rvoiRY4X7iRoqSTY7l3OZs8F+KOGdDHdEIv56iPXbH2R5yZ/mldcPuNFuQewv NsXnnOEN95NAfydj97FGbhNV7QFPwe1PLFsKiBndcgxkxuJadn6YISHQSK6NIJX0 keHrXXYYzRBLnQFUn7T4s42xdj7kZnSF -----END CERTIFICATE-----Generated at Sun May 4 06:17:18 2025 by rpki-client