$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB8A3/96650F38FD1711EC82898365C4F9AE02/L8Qw8eIVy9fgjyZDiDcDUALeMak.mft File: L8Qw8eIVy9fgjyZDiDcDUALeMak.mft (raw, json) Hash identifier: iC75QpMYudOsohZ8SArsUTa+qBKDqfXqzAQBRA1bVBA= Subject key identifier: 3F:71:CC:A9:3D:3B:05:A6:2C:08:10:6C:6C:46:B0:6F:33:B5:F3:BA Authority key identifier: 2F:C4:30:F1:E2:15:CB:D7:E0:8F:26:43:88:37:03:50:02:DE:31:A9 Certificate issuer: /CN=A91CB8A3/serialNumber=2FC430F1E215CBD7E08F26438837035002DE31A9 Certificate serial: 02AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L8Qw8eIVy9fgjyZDiDcDUALeMak.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB8A3/96650F38FD1711EC82898365C4F9AE02/L8Qw8eIVy9fgjyZDiDcDUALeMak.mft Manifest number: 02A9 Signing time: Sun 15 Jun 2025 01:11:22 +0000 Manifest this update: Sun 15 Jun 2025 01:11:21 +0000 Manifest next update: Sun 22 Jun 2025 01:11:21 +0000 Files and hashes: 1: L8Qw8eIVy9fgjyZDiDcDUALeMak.crl (hash: sQCj8bzoXj2X5oDcN8i9TW5G4arnpeqyVsEghWGLxO8=) 2: D2E9BA7EFD1911EC9E748466C4F9AE02.roa (hash: 3mXWOSXoGGGoIw3Jc45rTgdUlsOtzRtgn3W5YkMOraE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB8A3/96650F38FD1711EC82898365C4F9AE02/L8Qw8eIVy9fgjyZDiDcDUALeMak.crl rsync://rpki.apnic.net/member_repository/A91CB8A3/96650F38FD1711EC82898365C4F9AE02/L8Qw8eIVy9fgjyZDiDcDUALeMak.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L8Qw8eIVy9fgjyZDiDcDUALeMak.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 01:11:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 684 (0x2ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB8A3, serialNumber=2FC430F1E215CBD7E08F26438837035002DE31A9 Validity Not Before: Jun 15 01:11:21 2025 GMT Not After : Jun 22 01:11:21 2025 GMT Subject: CN=684e1dba-a8c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:d2:03:ef:77:df:21:82:f5:cf:97:e9:db:f1: a3:f0:42:a0:52:ce:d0:91:70:4f:d2:e2:85:9b:4b: 8d:32:39:84:64:b6:1e:7f:67:5b:b2:3a:63:03:ca: 43:55:e5:1a:ec:ad:fa:e8:37:8b:7d:80:cb:a3:78: a5:d4:17:10:12:91:13:c7:5e:48:4c:ad:14:bd:dc: 27:77:30:1c:71:bd:3f:86:17:61:40:38:d7:aa:e4: f4:90:9f:fa:21:93:c1:4d:a0:b6:3a:38:47:05:fb: aa:1f:b8:5f:3d:e3:44:7a:b7:4d:fe:c2:4b:2f:24: 04:b6:70:eb:65:91:d8:60:77:c8:c7:86:04:8c:7e: 28:f8:ca:b1:22:0c:5a:63:c1:05:6a:69:e4:2c:5b: 46:5d:2d:5b:fc:70:99:27:93:ae:e3:74:9f:31:2d: 6b:75:4a:77:3a:23:9f:4e:03:e9:79:dd:1a:df:98: 6a:eb:d0:3c:58:34:53:42:7f:7a:ef:c5:72:8d:52: 18:4b:5a:86:3d:0d:21:00:00:0e:48:f2:75:8d:e0: 53:01:76:50:bd:eb:cb:33:10:32:0c:25:12:be:56: 9f:b3:3b:8c:c5:ea:0b:7c:70:ba:98:06:01:a0:16: 24:4f:88:68:36:48:25:76:7c:ea:45:8f:d1:b1:6d: 75:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:71:CC:A9:3D:3B:05:A6:2C:08:10:6C:6C:46:B0:6F:33:B5:F3:BA X509v3 Authority Key Identifier: keyid:2F:C4:30:F1:E2:15:CB:D7:E0:8F:26:43:88:37:03:50:02:DE:31:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB8A3/96650F38FD1711EC82898365C4F9AE02/L8Qw8eIVy9fgjyZDiDcDUALeMak.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L8Qw8eIVy9fgjyZDiDcDUALeMak.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB8A3/96650F38FD1711EC82898365C4F9AE02/L8Qw8eIVy9fgjyZDiDcDUALeMak.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:be:de:33:f1:39:f4:99:a2:1e:4d:d6:14:49:eb:71:82:aa: 8d:7d:e3:78:00:e9:68:d0:d5:85:2b:c1:e1:cb:81:56:fc:37: 23:d2:b3:66:ba:af:0f:81:f6:17:d4:70:95:37:44:28:7d:bd: d6:f1:1a:6b:61:b7:6c:48:16:e4:4d:24:ea:ff:0c:87:3b:db: 7d:3e:c2:00:cd:1c:a9:5a:7e:8e:82:ab:8a:2c:7f:9b:9c:3e: c7:0c:bd:06:97:88:b9:c6:7a:df:37:5c:33:a7:2a:d7:ae:9f: aa:c3:13:3c:3a:c4:86:5b:f5:ec:a8:d8:fa:d5:48:33:a6:61: 3d:1d:56:81:fc:9f:da:7e:9c:3d:7d:de:cd:38:f4:1a:1d:ea: 9e:d7:5e:1d:a0:d8:15:be:c9:80:05:18:ea:54:91:8b:40:dc: 3d:b0:ce:11:fa:ad:50:88:37:21:2d:13:ec:b6:48:3e:2f:47: 65:90:5b:f1:c7:a0:7e:f0:c9:8f:cd:07:2d:d7:8f:10:e8:a0: f5:9e:2f:d5:d3:da:71:8a:4b:ef:4f:71:ad:7d:24:12:a4:bd: 44:9a:aa:44:48:2f:59:7a:d2:ae:76:f3:16:34:cb:22:f0:72: db:76:54:1c:75:02:39:e8:f1:63:3f:a4:66:02:21:bf:8e:02: 31:ea:c2:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I4QTMxMTAvBgNVBAUTKDJGQzQzMEYxRTIxNUNCRDdFMDhGMjY0Mzg4MzcwMzUw MDJERTMxQTkwHhcNMjUwNjE1MDExMTIxWhcNMjUwNjIyMDExMTIxWjAYMRYwFAYD VQQDEw02ODRlMWRiYS1hOGM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7NID73ffIYL1z5fp2/Gj8EKgUs7QkXBP0uKFm0uNMjmEZLYef2dbsjpjA8pD VeUa7K366DeLfYDLo3il1BcQEpETx15ITK0UvdwndzAccb0/hhdhQDjXquT0kJ/6 IZPBTaC2OjhHBfuqH7hfPeNEerdN/sJLLyQEtnDrZZHYYHfIx4YEjH4o+MqxIgxa Y8EFamnkLFtGXS1b/HCZJ5Ou43SfMS1rdUp3OiOfTgPped0a35hq69A8WDRTQn96 78VyjVIYS1qGPQ0hAAAOSPJ1jeBTAXZQvevLMxAyDCUSvlafszuMxeoLfHC6mAYB oBYkT4hoNkgldnzqRY/RsW11owIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD9xzKk9 OwWmLAgQbGxGsG8ztfO6MB8GA1UdIwQYMBaAFC/EMPHiFcvX4I8mQ4g3A1AC3jGp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjhBMy85NjY1MEYzOEZE MTcxMUVDODI4OTgzNjVDNEY5QUUwMi9MOFF3OGVJVnk5ZmdqeVpEaURjRFVBTGVN YWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0w4UXc4ZUlWeTlmZ2p5WkRpRGNEVUFMZU1hay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjhBMy85NjY1MEYzOEZEMTcxMUVDODI4OTgzNjVDNEY5QUUwMi9MOFF3OGVJVnk5 ZmdqeVpEaURjRFVBTGVNYWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZvt4z8Tn0maIeTdYUSetxgqqNfeN4AOlo0NWFK8Hhy4FW/Dcj0rNm uq8PgfYX1HCVN0Qofb3W8RprYbdsSBbkTSTq/wyHO9t9PsIAzRypWn6OgquKLH+b nD7HDL0Gl4i5xnrfN1wzpyrXrp+qwxM8OsSGW/XsqNj61UgzpmE9HVaB/J/afpw9 fd7NOPQaHeqe114doNgVvsmABRjqVJGLQNw9sM4R+q1QiDchLRPstkg+L0dlkFvx x6B+8MmPzQct148Q6KD1ni/V09pxikvvT3GtfSQSpL1EmqpESC9ZetKudvMWNMsi 8HLbdlQcdQI56PFjP6RmAiG/jgIx6sI7 -----END CERTIFICATE-----Generated at Sun Jun 15 08:49:29 2025 by rpki-client