$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft File: LD0jWhshn0FmEJALADuKv9wXAqI.mft (raw, json) Hash identifier: 2xvBQRsDJVRQo4N121heY1GolvsbLrN0QMKAJ8d+LRk= Subject key identifier: E8:26:46:E8:24:63:25:34:1A:E8:B9:85:05:47:F7:38:BE:E3:09:13 Authority key identifier: 2C:3D:23:5A:1B:21:9F:41:66:10:90:0B:00:3B:8A:BF:DC:17:02:A2 Certificate issuer: /CN=A91CEA40/serialNumber=2C3D235A1B219F416610900B003B8ABFDC1702A2 Certificate serial: 0618 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft Manifest number: 060B Signing time: Thu 12 Jun 2025 22:32:28 +0000 Manifest this update: Thu 12 Jun 2025 22:32:27 +0000 Manifest next update: Thu 19 Jun 2025 22:32:27 +0000 Files and hashes: 1: LD0jWhshn0FmEJALADuKv9wXAqI.crl (hash: FSl2XupCQlFN3hfPgh9b7yHpArV/+VRvu52eRuLEW1o=) 2: 96F093D4BEA011EB8CAD965FC4F9AE02.roa (hash: NpLkQ/NypmNX/0X8ZR0aPK3YWZwmOShkZdvPXd4fivY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.crl rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 22:32:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1560 (0x618) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEA40, serialNumber=2C3D235A1B219F416610900B003B8ABFDC1702A2 Validity Not Before: Jun 12 22:32:27 2025 GMT Not After : Jun 19 22:32:27 2025 GMT Subject: CN=684b557c-f049 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:c9:de:83:3e:43:85:8f:8b:1a:63:26:e3:62: be:8d:96:59:c9:e9:b4:fa:d5:32:11:03:44:20:8e: 98:ab:47:39:04:d8:5b:a0:e7:b9:05:a7:77:1f:df: 4c:38:a8:55:ba:80:dd:a5:80:60:1f:6e:3e:5e:99: a6:5d:cc:49:dc:d7:70:52:91:e7:c5:88:70:69:91: 6a:ca:e8:bd:bc:54:ad:3a:4e:c1:92:3e:9d:1d:e7: d0:a4:01:a2:e4:89:07:c7:8c:c1:e0:73:2d:3d:1c: 06:96:64:42:98:45:1c:98:c1:c5:f3:f5:6e:6d:ab: 30:37:4f:d7:65:9c:66:4b:d6:0d:db:14:52:40:6a: f8:b4:96:3a:f9:2d:8c:34:ca:32:6b:0e:71:7e:84: 76:0e:72:1c:71:b0:4b:ac:ec:d8:cf:1b:82:19:0b: 4f:a5:c9:aa:35:d6:eb:ad:7b:29:0d:ae:b0:cf:92: bd:81:17:c8:c2:56:58:d4:31:c1:57:d9:2c:b4:2f: ba:ab:c9:56:67:25:43:53:c8:16:04:2c:18:d2:7b: e3:aa:0c:06:32:37:66:e6:3e:ad:ea:36:87:be:25: 37:26:45:30:4b:75:11:64:3a:5b:d8:62:25:54:57: 83:73:53:c9:e6:68:89:4a:2a:08:d3:09:d5:48:18: 79:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:26:46:E8:24:63:25:34:1A:E8:B9:85:05:47:F7:38:BE:E3:09:13 X509v3 Authority Key Identifier: keyid:2C:3D:23:5A:1B:21:9F:41:66:10:90:0B:00:3B:8A:BF:DC:17:02:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:f7:5a:20:3c:30:99:65:0e:cf:31:91:e7:3b:dd:90:7d:01: b8:fc:a6:2e:7f:57:de:0e:d2:14:73:16:97:50:4a:32:55:29: 33:88:6c:d6:e1:08:d4:f6:5b:fd:11:c4:a9:a0:f5:41:2a:28: 79:80:8b:a3:fb:c8:67:55:3a:af:2b:6b:1c:df:3b:5b:db:d4: 1c:b3:8e:56:cc:02:2b:46:2f:e1:57:d9:93:10:4f:83:fc:c0: 82:4d:19:ad:4d:c4:21:71:4c:73:7f:00:ee:8f:9e:63:8a:a9: 06:62:80:9a:77:20:72:67:66:e0:2c:d5:90:88:0d:4a:a7:be: f0:63:9d:7b:31:0d:30:14:f7:a8:be:29:7d:bb:51:ff:41:94: 01:91:3a:ca:8a:f7:20:c7:9d:5e:c6:e2:10:04:21:d6:31:f9: 5b:9e:5f:18:bb:49:50:82:78:63:a9:a0:ff:9b:ac:50:f6:4e: 41:c6:ab:d2:b5:53:95:e4:8b:2b:5c:27:62:21:77:11:24:32: 19:9f:7c:55:b6:25:2b:e3:e6:b9:e1:51:58:d8:94:28:e1:e4: 68:22:59:ab:88:cc:ec:82:dc:95:41:71:16:ff:9f:e7:28:7d: ad:a2:89:4c:1f:9e:bd:ee:c0:8d:58:5a:30:21:fa:f1:5f:0f: 41:da:b7:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VBNDAxMTAvBgNVBAUTKDJDM0QyMzVBMUIyMTlGNDE2NjEwOTAwQjAwM0I4QUJG REMxNzAyQTIwHhcNMjUwNjEyMjIzMjI3WhcNMjUwNjE5MjIzMjI3WjAYMRYwFAYD VQQDEw02ODRiNTU3Yy1mMDQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzsnegz5DhY+LGmMm42K+jZZZyem0+tUyEQNEII6Yq0c5BNhboOe5Bad3H99M OKhVuoDdpYBgH24+XpmmXcxJ3NdwUpHnxYhwaZFqyui9vFStOk7Bkj6dHefQpAGi 5IkHx4zB4HMtPRwGlmRCmEUcmMHF8/VubaswN0/XZZxmS9YN2xRSQGr4tJY6+S2M NMoyaw5xfoR2DnIccbBLrOzYzxuCGQtPpcmqNdbrrXspDa6wz5K9gRfIwlZY1DHB V9kstC+6q8lWZyVDU8gWBCwY0nvjqgwGMjdm5j6t6jaHviU3JkUwS3URZDpb2GIl VFeDc1PJ5miJSioI0wnVSBh5AwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOgmRugk YyU0Gui5hQVH9zi+4wkTMB8GA1UdIwQYMBaAFCw9I1obIZ9BZhCQCwA7ir/cFwKi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUE0MC84RTk2NEJDRUFG NzkxMUVCODQyMTdBNThDNEY5QUUwMi9MRDBqV2hzaG4wRm1FSkFMQUR1S3Y5d1hB cUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xEMGpXaHNobjBGbUVKQUxBRHVLdjl3WEFxSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUE0MC84RTk2NEJDRUFGNzkxMUVCODQyMTdBNThDNEY5QUUwMi9MRDBqV2hzaG4w Rm1FSkFMQUR1S3Y5d1hBcUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+91ogPDCZZQ7PMZHnO92QfQG4/KYuf1feDtIUcxaXUEoyVSkziGzW 4QjU9lv9EcSpoPVBKih5gIuj+8hnVTqvK2sc3ztb29Qcs45WzAIrRi/hV9mTEE+D /MCCTRmtTcQhcUxzfwDuj55jiqkGYoCadyByZ2bgLNWQiA1Kp77wY517MQ0wFPeo vil9u1H/QZQBkTrKivcgx51exuIQBCHWMflbnl8Yu0lQgnhjqaD/m6xQ9k5BxqvS tVOV5IsrXCdiIXcRJDIZn3xVtiUr4+a54VFY2JQo4eRoIlmriMzsgtyVQXEW/5/n KH2toolMH5697sCNWFowIfrxXw9B2rcK -----END CERTIFICATE-----Generated at Sat Jun 14 19:35:10 2025 by rpki-client