$ rpki-client -vvf rpki.apnic.net/member_repository/A91CAA69/40E1FC9C9EB011E9B07E7A82C4F9AE02/lGqi80z6-eS9bjRboJqd6bnC0U0.mft File: lGqi80z6-eS9bjRboJqd6bnC0U0.mft (raw, json) Hash identifier: 6L0YYO/rQkVGMMCzYu+5eBLsbd0mi84iW9oMljBVBdI= Subject key identifier: 42:3B:B5:89:97:1D:6E:BA:6E:6F:0D:37:29:32:47:34:67:8B:6B:4C Authority key identifier: 94:6A:A2:F3:4C:FA:F9:E4:BD:6E:34:5B:A0:9A:9D:E9:B9:C2:D1:4D Certificate issuer: /CN=A91CAA69/serialNumber=946AA2F34CFAF9E4BD6E345BA09A9DE9B9C2D14D Certificate serial: 0E50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lGqi80z6-eS9bjRboJqd6bnC0U0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CAA69/40E1FC9C9EB011E9B07E7A82C4F9AE02/lGqi80z6-eS9bjRboJqd6bnC0U0.mft Manifest number: 0E3F Signing time: Fri 02 May 2025 17:58:23 +0000 Manifest this update: Fri 02 May 2025 17:58:23 +0000 Manifest next update: Fri 09 May 2025 17:58:22 +0000 Files and hashes: 1: lGqi80z6-eS9bjRboJqd6bnC0U0.crl (hash: r3D+7fpeurzz6vWKZTL4yjunPxjkquwuXpPbkc+lRWE=) 2: 1FAB60EE9EB111E99ED10D84C4F9AE02.roa (hash: J9DgdD9cL2JfNJGX2KpEbeL9xCo98zH1CjpWmw6WEyg=) 3: DECBB040985611ECBE7ED328C4F9AE02.roa (hash: fVjIBFUgnQxd9qxxnDI3HntLIaXeeQgbbHy+hbpb2zg=) 4: DF5D49F6985611ECBE7ED328C4F9AE02.roa (hash: oySlLPz0K/UmHCqFTFPFIY5DaigueFo/oV/JPUia/uU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CAA69/40E1FC9C9EB011E9B07E7A82C4F9AE02/lGqi80z6-eS9bjRboJqd6bnC0U0.crl rsync://rpki.apnic.net/member_repository/A91CAA69/40E1FC9C9EB011E9B07E7A82C4F9AE02/lGqi80z6-eS9bjRboJqd6bnC0U0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lGqi80z6-eS9bjRboJqd6bnC0U0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 09 May 2025 17:58:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3664 (0xe50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CAA69, serialNumber=946AA2F34CFAF9E4BD6E345BA09A9DE9B9C2D14D Validity Not Before: May 2 17:58:23 2025 GMT Not After : May 9 17:58:22 2025 GMT Subject: CN=681507bf-fc75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:42:8b:38:72:9e:2d:2e:9c:d3:c1:94:b2:76: c8:00:10:ba:f3:12:77:1f:85:7b:ae:75:09:e9:44: e2:35:3f:d9:e6:bc:26:ae:40:1d:f0:79:30:86:34: 6b:56:91:2a:90:1f:08:51:b2:5e:0f:3d:fe:cb:7a: df:34:88:19:25:ef:85:11:7b:42:8a:5f:a8:22:44: 8e:e4:ff:c7:57:21:63:33:11:62:88:65:68:10:4d: 3b:cc:93:65:b9:fd:f0:51:27:67:4a:87:5b:94:5d: 9d:7f:c4:cd:cd:3d:a2:95:40:f9:21:ba:e0:2f:f1: 29:d3:f1:3f:42:31:c7:95:9a:ae:8c:ba:41:74:02: 0d:b5:2d:95:08:e0:cf:d7:b7:6a:e6:0b:95:57:a0: 01:03:07:1f:a1:f6:fd:37:8f:d9:96:5f:90:b9:33: 30:c4:19:2f:b6:d3:18:e0:56:a8:0a:44:d9:a3:d5: 6c:46:5a:0d:42:0f:01:55:25:30:bd:f6:a0:92:67: 9b:cf:45:db:a9:63:81:c8:c0:cf:c2:0d:a0:4b:28: 7c:a1:ec:c4:22:5a:d5:33:9b:fc:bd:2d:94:fe:78: 04:ed:6a:8d:bf:da:99:6f:69:1e:a2:34:41:76:b4: a4:37:0d:10:9c:cf:63:62:c3:06:aa:4f:10:eb:6d: 94:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:3B:B5:89:97:1D:6E:BA:6E:6F:0D:37:29:32:47:34:67:8B:6B:4C X509v3 Authority Key Identifier: keyid:94:6A:A2:F3:4C:FA:F9:E4:BD:6E:34:5B:A0:9A:9D:E9:B9:C2:D1:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CAA69/40E1FC9C9EB011E9B07E7A82C4F9AE02/lGqi80z6-eS9bjRboJqd6bnC0U0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lGqi80z6-eS9bjRboJqd6bnC0U0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CAA69/40E1FC9C9EB011E9B07E7A82C4F9AE02/lGqi80z6-eS9bjRboJqd6bnC0U0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:1e:ce:c5:6e:34:80:94:20:be:37:a1:60:f4:9f:c1:28:5e: 1b:78:ca:ce:5e:ad:3a:d0:c2:6d:d0:a6:9d:0e:d6:61:19:81: 5e:04:e7:ff:16:bc:2e:13:39:4c:d2:66:09:30:5d:88:03:0f: d4:93:8c:ae:9b:5b:a7:c4:4e:6a:40:58:da:0a:b3:a5:68:9a: 3c:8d:12:34:6b:91:49:63:1e:9e:a8:52:03:76:50:49:64:a1: 82:9b:91:b2:cc:24:6a:7e:b3:0e:76:a1:84:e8:ef:cb:c8:47: 5c:22:90:4e:fb:d7:e4:16:4f:6e:5b:5b:bf:bc:54:1a:13:02: 38:db:ac:b8:80:d8:32:b9:e4:63:dd:89:87:aa:2b:4c:1e:bf: 8a:1d:a0:e6:b5:bd:ae:b5:7d:c7:a2:94:13:c3:11:de:5f:fb: fa:18:a5:2b:7d:e4:81:33:c7:9c:0c:b5:50:d5:81:24:78:84: 88:47:a6:62:44:9a:ea:20:37:60:50:bf:64:b8:ef:6d:05:0d: 0d:2f:ff:8a:18:30:36:f8:2a:c6:1d:8f:f5:d4:ad:de:53:6c: 3d:7b:19:9b:16:42:c0:da:d2:4d:90:41:51:6c:65:79:7c:6a: 84:49:43:32:87:63:8e:29:65:62:14:09:91:c9:c6:93:ae:12: 8a:1f:23:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDlAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FBNjkxMTAvBgNVBAUTKDk0NkFBMkYzNENGQUY5RTRCRDZFMzQ1QkEwOUE5REU5 QjlDMkQxNEQwHhcNMjUwNTAyMTc1ODIzWhcNMjUwNTA5MTc1ODIyWjAYMRYwFAYD VQQDEw02ODE1MDdiZi1mYzc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7EKLOHKeLS6c08GUsnbIABC68xJ3H4V7rnUJ6UTiNT/Z5rwmrkAd8HkwhjRr VpEqkB8IUbJeDz3+y3rfNIgZJe+FEXtCil+oIkSO5P/HVyFjMxFiiGVoEE07zJNl uf3wUSdnSodblF2df8TNzT2ilUD5IbrgL/Ep0/E/QjHHlZqujLpBdAINtS2VCODP 17dq5guVV6ABAwcfofb9N4/Zll+QuTMwxBkvttMY4FaoCkTZo9VsRloNQg8BVSUw vfagkmebz0XbqWOByMDPwg2gSyh8oezEIlrVM5v8vS2U/ngE7WqNv9qZb2keojRB drSkNw0QnM9jYsMGqk8Q622UvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEI7tYmX HW66bm8NNykyRzRni2tMMB8GA1UdIwQYMBaAFJRqovNM+vnkvW40W6Canem5wtFN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUE2OS80MEUxRkM5QzlF QjAxMUU5QjA3RTdBODJDNEY5QUUwMi9sR3FpODB6Ni1lUzlialJib0pxZDZibkMw VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xHcWk4MHo2LWVTOWJqUmJvSnFkNmJuQzBVMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QUE2OS80MEUxRkM5QzlFQjAxMUU5QjA3RTdBODJDNEY5QUUwMi9sR3FpODB6Ni1l UzlialJib0pxZDZibkMwVTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/Hs7FbjSAlCC+N6Fg9J/BKF4beMrOXq060MJt0KadDtZhGYFeBOf/ FrwuEzlM0mYJMF2IAw/Uk4yum1unxE5qQFjaCrOlaJo8jRI0a5FJYx6eqFIDdlBJ ZKGCm5GyzCRqfrMOdqGE6O/LyEdcIpBO+9fkFk9uW1u/vFQaEwI426y4gNgyueRj 3YmHqitMHr+KHaDmtb2utX3HopQTwxHeX/v6GKUrfeSBM8ecDLVQ1YEkeISIR6Zi RJrqIDdgUL9kuO9tBQ0NL/+KGDA2+CrGHY/11K3eU2w9exmbFkLA2tJNkEFRbGV5 fGqESUMyh2OOKWViFAmRycaTrhKKHyPU -----END CERTIFICATE-----Generated at Sat May 3 23:20:07 2025 by rpki-client