$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD174/51C3E5480B4D11EA92C28F20C4F9AE02/ldziG17K3rBp3IG5JAXUdN5BwgY.mft File: ldziG17K3rBp3IG5JAXUdN5BwgY.mft (raw, json) Hash identifier: gIrtW/xWA5rFEmBtT171jAfOxHxJ2iLLrS1jPAtnT6A= Subject key identifier: 38:6D:FD:E4:9D:E7:61:66:6A:58:DF:16:BE:7C:33:A9:12:79:83:ED Authority key identifier: 95:DC:E2:1B:5E:CA:DE:B0:69:DC:81:B9:24:05:D4:74:DE:41:C2:06 Certificate issuer: /CN=A91CD174/serialNumber=95DCE21B5ECADEB069DC81B92405D474DE41C206 Certificate serial: 0C1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldziG17K3rBp3IG5JAXUdN5BwgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD174/51C3E5480B4D11EA92C28F20C4F9AE02/ldziG17K3rBp3IG5JAXUdN5BwgY.mft Manifest number: 0C13 Signing time: Thu 24 Apr 2025 18:33:30 +0000 Manifest this update: Thu 24 Apr 2025 18:33:29 +0000 Manifest next update: Thu 01 May 2025 18:33:29 +0000 Files and hashes: 1: ldziG17K3rBp3IG5JAXUdN5BwgY.crl (hash: QRlzL3UHHJ3k+MN9F766I6PovxlKm//YLWXSLBXe1kw=) 2: 54AD60AE0C2E11EABBBFA158C4F9AE02.roa (hash: /1zN6Gwwi0zP2Xs45slEdMpw3TT72EUNYyQ6n/qRBPQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD174/51C3E5480B4D11EA92C28F20C4F9AE02/ldziG17K3rBp3IG5JAXUdN5BwgY.crl rsync://rpki.apnic.net/member_repository/A91CD174/51C3E5480B4D11EA92C28F20C4F9AE02/ldziG17K3rBp3IG5JAXUdN5BwgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldziG17K3rBp3IG5JAXUdN5BwgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:33:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3102 (0xc1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD174, serialNumber=95DCE21B5ECADEB069DC81B92405D474DE41C206 Validity Not Before: Apr 24 18:33:29 2025 GMT Not After : May 1 18:33:29 2025 GMT Subject: CN=680a83f9-cd69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:fb:e1:d1:95:d8:03:1c:1b:d0:74:fb:82:dc: 38:fd:89:16:21:c7:47:34:ab:d6:5a:ff:af:db:94: 9f:71:7f:b0:00:ff:5e:44:89:e9:d4:d9:ac:56:fe: 29:40:6a:9d:c9:26:d3:ff:54:f4:e5:80:f5:22:ee: 45:b1:7b:dc:90:4e:59:47:65:fa:46:4b:03:44:d1: 38:f4:1c:5e:2a:d9:c4:55:83:51:1e:8a:12:f4:47: 7a:14:70:94:9d:ec:d3:79:5d:fc:07:d6:54:b5:c8: 5c:9c:5b:65:6f:94:f1:16:c9:73:9f:70:e2:60:df: b9:78:5c:ca:52:d2:55:79:5c:67:0f:81:82:a5:37: 55:f4:3d:fd:cf:13:13:aa:4f:20:45:50:5b:6b:09: a2:c0:05:d4:d0:f6:40:c8:27:bb:74:0d:ae:1f:37: b1:b5:82:22:42:f1:da:79:7d:ee:d4:1a:2c:b3:4e: c6:60:1a:1f:f4:8c:9f:50:a1:f6:87:47:3d:b9:93: 85:b3:98:46:df:8f:dd:54:7e:22:eb:9d:29:28:ce: 0f:1e:d2:07:d1:c2:ea:2a:b9:12:ce:3d:af:53:19: ae:90:1e:d2:0c:bc:ca:37:ac:5f:ee:39:a5:c4:29: 5a:0b:99:b6:7e:5b:c8:05:b3:8a:72:34:b6:c9:8b: b8:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:6D:FD:E4:9D:E7:61:66:6A:58:DF:16:BE:7C:33:A9:12:79:83:ED X509v3 Authority Key Identifier: keyid:95:DC:E2:1B:5E:CA:DE:B0:69:DC:81:B9:24:05:D4:74:DE:41:C2:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD174/51C3E5480B4D11EA92C28F20C4F9AE02/ldziG17K3rBp3IG5JAXUdN5BwgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldziG17K3rBp3IG5JAXUdN5BwgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD174/51C3E5480B4D11EA92C28F20C4F9AE02/ldziG17K3rBp3IG5JAXUdN5BwgY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:0e:fa:ac:2d:0c:25:86:fe:b2:99:fa:98:db:c2:48:72:3b: 17:74:88:3d:e3:d5:86:0c:ad:a0:23:47:8c:5f:4a:b8:49:61: 44:fc:da:0f:bf:60:c0:b9:41:f1:f5:24:94:b0:5a:03:05:0b: bc:b1:52:2a:88:5e:1a:fd:88:b4:14:be:98:b6:6c:6a:a4:3a: 55:a5:e7:91:86:74:77:d5:d1:5c:b9:e9:de:b3:0f:44:a1:05: 1d:37:d6:3f:2a:95:40:57:4d:9e:63:7d:0e:b8:ca:f7:7e:c1: bc:24:16:52:05:a7:1b:3f:90:dd:af:7c:a6:18:fb:68:62:34: ca:f3:84:7b:10:6c:18:8e:b4:22:66:f7:5d:b7:d9:37:5d:ef: 83:3d:b5:17:63:4d:9d:bf:bb:d6:28:56:f4:11:6c:de:18:fc: a9:a4:a1:d9:05:40:c5:c3:c1:b9:cc:99:ba:18:82:f5:1c:b8: b4:9b:8f:c5:3a:f5:1f:21:71:c6:cf:42:29:06:9c:0b:7f:a2: a4:f8:8d:48:40:a1:f8:95:0b:04:53:c4:ec:4f:c3:0c:e0:6d: cd:bb:c7:9a:60:e7:f1:e1:ed:04:9c:de:b4:f5:ca:78:e3:39: 11:09:a9:49:52:a3:79:de:62:56:aa:57:12:66:14:85:a0:0b: 16:78:14:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDB4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0QxNzQxMTAvBgNVBAUTKDk1RENFMjFCNUVDQURFQjA2OURDODFCOTI0MDVENDc0 REU0MUMyMDYwHhcNMjUwNDI0MTgzMzI5WhcNMjUwNTAxMTgzMzI5WjAYMRYwFAYD VQQDEw02ODBhODNmOS1jZDY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6/vh0ZXYAxwb0HT7gtw4/YkWIcdHNKvWWv+v25SfcX+wAP9eRInp1NmsVv4p QGqdySbT/1T05YD1Iu5FsXvckE5ZR2X6RksDRNE49BxeKtnEVYNRHooS9Ed6FHCU nezTeV38B9ZUtchcnFtlb5TxFslzn3DiYN+5eFzKUtJVeVxnD4GCpTdV9D39zxMT qk8gRVBbawmiwAXU0PZAyCe7dA2uHzextYIiQvHaeX3u1Boss07GYBof9IyfUKH2 h0c9uZOFs5hG34/dVH4i650pKM4PHtIH0cLqKrkSzj2vUxmukB7SDLzKN6xf7jml xClaC5m2flvIBbOKcjS2yYu4NQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDht/eSd 52FmaljfFr58M6kSeYPtMB8GA1UdIwQYMBaAFJXc4hteyt6wadyBuSQF1HTeQcIG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDE3NC81MUMzRTU0ODBC NEQxMUVBOTJDMjhGMjBDNEY5QUUwMi9sZHppRzE3SzNyQnAzSUc1SkFYVWRONUJ3 Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xkemlHMTdLM3JCcDNJRzVKQVhVZE41QndnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDE3NC81MUMzRTU0ODBCNEQxMUVBOTJDMjhGMjBDNEY5QUUwMi9sZHppRzE3SzNy QnAzSUc1SkFYVWRONUJ3Z1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDDDvqsLQwlhv6ymfqY28JIcjsXdIg949WGDK2gI0eMX0q4SWFE/NoP v2DAuUHx9SSUsFoDBQu8sVIqiF4a/Yi0FL6YtmxqpDpVpeeRhnR31dFcuenesw9E oQUdN9Y/KpVAV02eY30OuMr3fsG8JBZSBacbP5Ddr3ymGPtoYjTK84R7EGwYjrQi Zvddt9k3Xe+DPbUXY02dv7vWKFb0EWzeGPyppKHZBUDFw8G5zJm6GIL1HLi0m4/F OvUfIXHGz0IpBpwLf6Kk+I1IQKH4lQsEU8TsT8MM4G3Nu8eaYOfx4e0EnN609cp4 4zkRCalJUqN53mJWqlcSZhSFoAsWeBRq -----END CERTIFICATE-----Generated at Sat Apr 26 04:31:41 2025 by rpki-client