$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5114/34E19E88E5A211ED808CF377C4F9AE02/LIi8YKOEeXk7VUcMN37SPqAtByI.mft File: LIi8YKOEeXk7VUcMN37SPqAtByI.mft (raw, json) Hash identifier: WBmD8p599n9DTdJpdAhdHad2CqDXjTWZGe6jrAmTbn8= Subject key identifier: F0:92:02:64:19:62:3C:39:06:83:AB:A4:AF:E1:AD:AD:81:17:F1:51 Authority key identifier: 2C:88:BC:60:A3:84:79:79:3B:55:47:0C:37:7E:D2:3E:A0:2D:07:22 Certificate issuer: /CN=A91D5114/serialNumber=2C88BC60A38479793B55470C377ED23EA02D0722 Certificate serial: 0181 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LIi8YKOEeXk7VUcMN37SPqAtByI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5114/34E19E88E5A211ED808CF377C4F9AE02/LIi8YKOEeXk7VUcMN37SPqAtByI.mft Manifest number: 017A Signing time: Fri 25 Apr 2025 02:54:16 +0000 Manifest this update: Fri 25 Apr 2025 02:54:15 +0000 Manifest next update: Fri 02 May 2025 02:54:15 +0000 Files and hashes: 1: LIi8YKOEeXk7VUcMN37SPqAtByI.crl (hash: 2NnCvcXKw8PacvuhfTbChvpH1XvMQX9EDKO3GSEgvNA=) 2: 97EFA28EE5A911ED80EF757BC4F9AE02.roa (hash: AWrudQQgzJLS7MSlB50m43MehkidwQ5Ce89Ne/Grvwo=) 3: ED0DECA6E5A611EDADDD1074C4F9AE02.roa (hash: z3xacBjovMyDRqTM7g6iTpB77mlZVh09tcUD0xiN+xY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5114/34E19E88E5A211ED808CF377C4F9AE02/LIi8YKOEeXk7VUcMN37SPqAtByI.crl rsync://rpki.apnic.net/member_repository/A91D5114/34E19E88E5A211ED808CF377C4F9AE02/LIi8YKOEeXk7VUcMN37SPqAtByI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LIi8YKOEeXk7VUcMN37SPqAtByI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:54:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 385 (0x181) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5114, serialNumber=2C88BC60A38479793B55470C377ED23EA02D0722 Validity Not Before: Apr 25 02:54:15 2025 GMT Not After : May 2 02:54:15 2025 GMT Subject: CN=680af958-ea99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:83:f6:0d:2b:20:0e:13:38:81:fa:af:77:be: f1:16:66:e8:93:3b:31:66:a0:ee:e7:98:07:36:a2: a7:a4:4a:5c:d7:07:55:2e:da:30:11:8c:61:1a:85: 12:6d:5d:50:32:87:f0:fa:7e:3c:91:65:fb:e5:3d: 4b:19:80:7b:8a:23:04:33:23:c2:d1:9a:70:ed:b2: 00:4d:dc:09:8c:61:9d:e2:62:e6:c6:40:6e:0f:49: 8e:17:b9:f1:46:f7:c7:d2:35:53:cd:35:33:64:a3: 6a:78:0c:90:84:9e:e9:34:81:28:86:59:b0:89:59: 91:56:b2:17:4d:b9:32:7d:73:87:e3:85:40:3e:46: c9:28:c9:1c:ca:c4:0b:cf:4b:3c:b6:47:cf:b7:ef: 5c:04:c3:5a:75:c2:c2:76:6d:a5:5d:42:af:a4:eb: eb:07:63:f7:8e:67:15:48:35:18:1f:f4:6e:0e:ec: 7e:1b:46:07:80:fb:55:86:1c:90:6a:5b:66:9d:47: 7b:53:a6:31:5b:0a:8a:f8:aa:12:06:27:cf:c1:8f: da:5b:8b:9d:5b:32:69:a8:e3:60:9b:f3:58:d9:51: dc:d1:5d:97:43:2e:7d:86:1a:2f:1f:55:77:4c:b6: 59:1d:e9:35:29:5c:0a:3d:19:e7:dd:8d:16:04:35: 94:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:92:02:64:19:62:3C:39:06:83:AB:A4:AF:E1:AD:AD:81:17:F1:51 X509v3 Authority Key Identifier: keyid:2C:88:BC:60:A3:84:79:79:3B:55:47:0C:37:7E:D2:3E:A0:2D:07:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5114/34E19E88E5A211ED808CF377C4F9AE02/LIi8YKOEeXk7VUcMN37SPqAtByI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LIi8YKOEeXk7VUcMN37SPqAtByI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5114/34E19E88E5A211ED808CF377C4F9AE02/LIi8YKOEeXk7VUcMN37SPqAtByI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:f4:f9:64:ef:6d:57:17:af:f4:ae:72:86:ee:74:29:ed:29: 69:9a:82:93:2d:4f:8e:d9:31:89:d7:f1:e0:be:4e:95:8c:29: 72:3c:a2:be:e8:17:07:0a:5a:ab:6d:6b:ac:4b:3b:7f:c6:6c: 4a:af:42:68:b9:f3:74:e9:c4:ad:bf:83:77:c8:47:39:e2:53: ba:07:1a:e2:49:d9:7e:5a:0d:da:54:52:14:15:34:cc:ab:9e: a7:b9:a7:cc:c1:7f:87:21:98:2f:58:ea:d7:e3:16:6e:7b:2b: 0c:2c:55:81:60:fd:d6:71:ae:e5:95:be:55:d5:4c:38:f1:72: c1:ba:d8:0e:fc:32:07:d0:3d:e5:9f:49:05:ce:80:f1:bb:25: 67:b9:cf:ec:a7:fd:4b:d2:a3:bc:24:12:21:bb:f5:7d:b3:33: d8:ee:64:69:fa:e8:b7:bf:bf:12:73:c4:7d:b6:19:81:2d:0e: 95:9e:bd:29:07:b9:31:30:b5:ae:a8:ef:a5:42:55:8d:58:06: 19:4d:fc:e6:14:07:73:1a:30:45:f6:12:6f:c4:e5:b3:5b:e0: c1:1f:fd:84:29:9f:2c:8b:01:71:96:d2:f8:d6:9f:aa:d7:b3: df:d5:1d:fe:26:0c:84:a6:3d:02:c7:bc:fb:0d:54:e3:67:c8: 65:13:7b:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUxMTQxMTAvBgNVBAUTKDJDODhCQzYwQTM4NDc5NzkzQjU1NDcwQzM3N0VEMjNF QTAyRDA3MjIwHhcNMjUwNDI1MDI1NDE1WhcNMjUwNTAyMDI1NDE1WjAYMRYwFAYD VQQDEw02ODBhZjk1OC1lYTk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsIP2DSsgDhM4gfqvd77xFmbokzsxZqDu55gHNqKnpEpc1wdVLtowEYxhGoUS bV1QMofw+n48kWX75T1LGYB7iiMEMyPC0Zpw7bIATdwJjGGd4mLmxkBuD0mOF7nx RvfH0jVTzTUzZKNqeAyQhJ7pNIEohlmwiVmRVrIXTbkyfXOH44VAPkbJKMkcysQL z0s8tkfPt+9cBMNadcLCdm2lXUKvpOvrB2P3jmcVSDUYH/RuDux+G0YHgPtVhhyQ altmnUd7U6YxWwqK+KoSBifPwY/aW4udWzJpqONgm/NY2VHc0V2XQy59hhovH1V3 TLZZHek1KVwKPRnn3Y0WBDWUjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPCSAmQZ Yjw5BoOrpK/hra2BF/FRMB8GA1UdIwQYMBaAFCyIvGCjhHl5O1VHDDd+0j6gLQci MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTExNC8zNEUxOUU4OEU1 QTIxMUVEODA4Q0YzNzdDNEY5QUUwMi9MSWk4WUtPRWVYazdWVWNNTjM3U1BxQXRC eUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xJaThZS09FZVhrN1ZVY01OMzdTUHFBdEJ5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTExNC8zNEUxOUU4OEU1QTIxMUVEODA4Q0YzNzdDNEY5QUUwMi9MSWk4WUtPRWVY azdWVWNNTjM3U1BxQXRCeUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAA9Plk721XF6/0rnKG7nQp7SlpmoKTLU+O2TGJ1/Hgvk6VjClyPKK+ 6BcHClqrbWusSzt/xmxKr0JoufN06cStv4N3yEc54lO6BxriSdl+Wg3aVFIUFTTM q56nuafMwX+HIZgvWOrX4xZueysMLFWBYP3Wca7llb5V1Uw48XLButgO/DIH0D3l n0kFzoDxuyVnuc/sp/1L0qO8JBIhu/V9szPY7mRp+ui3v78Sc8R9thmBLQ6Vnr0p B7kxMLWuqO+lQlWNWAYZTfzmFAdzGjBF9hJvxOWzW+DBH/2EKZ8siwFxltL41p+q 17Pf1R3+JgyEpj0Cx7z7DVTjZ8hlE3to -----END CERTIFICATE-----Generated at Sat Apr 26 12:37:51 2025 by rpki-client