$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft File: LD0jWhshn0FmEJALADuKv9wXAqI.mft (raw, json) Hash identifier: GDi+79oywKOgET7JIf5oa+9irXhf/DSgU81eAVpbyiU= Subject key identifier: D2:96:D1:CD:8A:FD:0D:C6:C9:77:41:EE:45:CC:52:EA:5E:36:C3:4A Authority key identifier: 2C:3D:23:5A:1B:21:9F:41:66:10:90:0B:00:3B:8A:BF:DC:17:02:A2 Certificate issuer: /CN=A91CEA40/serialNumber=2C3D235A1B219F416610900B003B8ABFDC1702A2 Certificate serial: 0600 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft Manifest number: 05F3 Signing time: Thu 24 Apr 2025 22:46:39 +0000 Manifest this update: Thu 24 Apr 2025 22:46:38 +0000 Manifest next update: Thu 01 May 2025 22:46:38 +0000 Files and hashes: 1: LD0jWhshn0FmEJALADuKv9wXAqI.crl (hash: tlo/4PNafpaDNpmq/x9CP14erSTu/HDvsSA8Y+A4nRY=) 2: 96F093D4BEA011EB8CAD965FC4F9AE02.roa (hash: NpLkQ/NypmNX/0X8ZR0aPK3YWZwmOShkZdvPXd4fivY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.crl rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:46:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1536 (0x600) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEA40, serialNumber=2C3D235A1B219F416610900B003B8ABFDC1702A2 Validity Not Before: Apr 24 22:46:38 2025 GMT Not After : May 1 22:46:38 2025 GMT Subject: CN=680abf4e-52d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:b3:3c:4d:c7:71:59:7f:95:96:63:f1:2d:08: 76:1d:19:87:3b:bb:14:36:be:9c:73:6a:77:e2:c6: 57:0c:e4:f2:5a:92:2a:f8:fd:d0:f6:7a:fb:8d:9a: 64:33:96:64:0a:dd:f0:ae:61:d2:ad:0a:d1:fb:19: 83:d1:8f:1c:34:c6:70:99:1c:d9:cc:4f:e7:39:41: f9:53:9a:c0:33:06:01:f3:19:08:db:30:ad:ca:32: ab:b9:74:18:e3:63:82:e6:d2:a7:43:74:c0:9f:2f: 2a:51:76:5b:2c:37:23:46:72:05:c6:de:c9:98:26: f0:56:a8:27:0b:c6:48:f9:f8:86:84:3f:54:89:26: 28:f6:18:97:d3:b9:50:9d:ac:25:ac:83:79:b2:9b: 8b:0e:31:c9:3e:b8:26:71:03:cf:f4:66:ef:53:2b: 2a:43:df:28:77:3d:ea:ed:6a:24:68:ec:9a:31:a8: 95:46:c3:4e:dd:d4:26:f3:45:e3:d7:87:76:c6:69: fd:d4:96:a2:c5:a1:5b:4a:70:08:fd:35:03:7c:e6: 12:3e:80:9b:52:58:2b:4f:22:97:7f:e7:e0:88:56: ec:ee:3d:aa:c5:e8:1c:06:74:8f:06:f7:d0:89:22: 94:b1:e8:a1:91:0a:65:78:eb:55:be:a5:d6:d9:10: 82:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:96:D1:CD:8A:FD:0D:C6:C9:77:41:EE:45:CC:52:EA:5E:36:C3:4A X509v3 Authority Key Identifier: keyid:2C:3D:23:5A:1B:21:9F:41:66:10:90:0B:00:3B:8A:BF:DC:17:02:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:68:cd:89:60:d4:9e:c7:e6:61:c4:3e:5b:23:80:2e:eb:a4: 83:f7:b1:65:5b:5d:88:39:04:3f:2c:fb:70:e3:71:1d:c8:ca: 63:7d:1c:8c:fa:92:32:1e:ae:21:71:8d:97:ff:49:1d:7a:91: f1:91:da:e7:6b:d1:75:a2:a1:3b:18:d2:41:b3:ad:d1:fc:4b: 05:c6:47:7c:9d:96:8c:7e:c1:d4:3a:17:cc:dc:fd:f8:ac:74: a2:ea:54:e4:78:9b:c9:62:d9:e4:3f:85:1e:42:3e:59:2f:f1: 27:3e:c4:d9:bb:39:7d:b6:b2:96:e5:1f:83:ad:cd:bf:b7:e0: e9:91:48:44:33:0c:66:4d:ad:88:94:9d:c3:61:43:56:71:5c: b5:c0:ca:da:65:f8:05:80:48:b9:3e:30:c5:0e:94:d8:6c:48: b6:56:66:95:91:20:6d:bd:c1:c3:6b:12:e4:84:1d:e8:c9:1c: 37:88:10:6a:30:5e:13:71:91:1f:36:7e:1d:b2:e4:18:e3:3c: 1d:bf:3b:5a:03:bd:0d:dd:14:24:09:6f:2d:96:fb:ef:15:84: 16:78:25:22:6b:81:8e:96:65:09:7e:94:a1:39:0b:fa:15:36: 80:a0:f2:1f:06:8e:64:54:9e:5b:3f:66:26:ba:f3:25:03:7f: 67:c9:2f:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBgAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VBNDAxMTAvBgNVBAUTKDJDM0QyMzVBMUIyMTlGNDE2NjEwOTAwQjAwM0I4QUJG REMxNzAyQTIwHhcNMjUwNDI0MjI0NjM4WhcNMjUwNTAxMjI0NjM4WjAYMRYwFAYD VQQDEw02ODBhYmY0ZS01MmQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzbM8TcdxWX+VlmPxLQh2HRmHO7sUNr6cc2p34sZXDOTyWpIq+P3Q9nr7jZpk M5ZkCt3wrmHSrQrR+xmD0Y8cNMZwmRzZzE/nOUH5U5rAMwYB8xkI2zCtyjKruXQY 42OC5tKnQ3TAny8qUXZbLDcjRnIFxt7JmCbwVqgnC8ZI+fiGhD9UiSYo9hiX07lQ nawlrIN5spuLDjHJPrgmcQPP9GbvUysqQ98odz3q7WokaOyaMaiVRsNO3dQm80Xj 14d2xmn91JaixaFbSnAI/TUDfOYSPoCbUlgrTyKXf+fgiFbs7j2qxegcBnSPBvfQ iSKUseihkQpleOtVvqXW2RCCcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNKW0c2K /Q3GyXdB7kXMUupeNsNKMB8GA1UdIwQYMBaAFCw9I1obIZ9BZhCQCwA7ir/cFwKi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUE0MC84RTk2NEJDRUFG NzkxMUVCODQyMTdBNThDNEY5QUUwMi9MRDBqV2hzaG4wRm1FSkFMQUR1S3Y5d1hB cUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xEMGpXaHNobjBGbUVKQUxBRHVLdjl3WEFxSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUE0MC84RTk2NEJDRUFGNzkxMUVCODQyMTdBNThDNEY5QUUwMi9MRDBqV2hzaG4w Rm1FSkFMQUR1S3Y5d1hBcUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeaM2JYNSex+ZhxD5bI4Au66SD97FlW12IOQQ/LPtw43EdyMpjfRyM +pIyHq4hcY2X/0kdepHxkdrna9F1oqE7GNJBs63R/EsFxkd8nZaMfsHUOhfM3P34 rHSi6lTkeJvJYtnkP4UeQj5ZL/EnPsTZuzl9trKW5R+Drc2/t+DpkUhEMwxmTa2I lJ3DYUNWcVy1wMraZfgFgEi5PjDFDpTYbEi2VmaVkSBtvcHDaxLkhB3oyRw3iBBq MF4TcZEfNn4dsuQY4zwdvztaA70N3RQkCW8tlvvvFYQWeCUia4GOlmUJfpShOQv6 FTaAoPIfBo5kVJ5bP2YmuvMlA39nyS8z -----END CERTIFICATE-----Generated at Sat Apr 26 04:36:44 2025 by rpki-client