$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft File: lpDF1gn85ELDW5kW1WP58Ye2itQ.mft (raw, json) Hash identifier: oWlrJeEhEucfXKqAr+1v1T/QAM+i1NilOwv+CmnIBrw= Subject key identifier: E2:85:F4:71:AF:C2:F6:18:A8:C1:2F:4E:CD:D0:15:84:21:FD:C2:2D Authority key identifier: 96:90:C5:D6:09:FC:E4:42:C3:5B:99:16:D5:63:F9:F1:87:B6:8A:D4 Certificate issuer: /CN=A91D8E2C/serialNumber=9690C5D609FCE442C35B9916D563F9F187B68AD4 Certificate serial: 0E2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft Manifest number: 0E22 Signing time: Thu 24 Apr 2025 17:46:19 +0000 Manifest this update: Thu 24 Apr 2025 17:46:19 +0000 Manifest next update: Thu 01 May 2025 17:46:19 +0000 Files and hashes: 1: lpDF1gn85ELDW5kW1WP58Ye2itQ.crl (hash: Dn3rPy6/b2XCyfOTdgDyenkWv0/ZqvifQx66qi2tllA=) 2: 6C153768CE5511EB9DD80C30C4F9AE02.roa (hash: 8FSx/7pmWfnqq5buFAKmXuNtb84bNl4hKWrDWfIfWSE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.crl rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:46:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3626 (0xe2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8E2C, serialNumber=9690C5D609FCE442C35B9916D563F9F187B68AD4 Validity Not Before: Apr 24 17:46:19 2025 GMT Not After : May 1 17:46:19 2025 GMT Subject: CN=680a78eb-2ecd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:75:01:f7:77:27:34:cd:64:15:40:b7:5e:03: 62:08:66:49:57:6f:b3:08:e6:35:b1:e2:89:b9:b5: 05:bb:c8:92:19:4d:72:e0:8c:53:c8:38:90:a9:f2: 2c:d9:ab:08:b9:ba:b3:51:3f:c3:50:0d:18:2a:16: 79:2c:d7:31:27:cd:40:a0:21:f1:08:62:e6:b7:95: 83:c4:4b:84:74:47:03:ac:6f:fc:21:82:56:12:87: b6:d5:8b:d9:1f:1c:0c:83:07:08:99:bf:65:d0:de: b4:69:3c:1b:a8:a9:d4:e9:fa:69:c5:ec:a3:f7:16: 9c:20:60:21:17:f4:c0:78:4b:7d:1d:1a:35:16:68: 60:92:20:6d:cf:22:b2:a1:93:0e:b9:96:ed:49:cd: cd:8c:2e:d0:66:b7:60:44:d0:23:2e:a1:82:9d:f0: 4a:20:c0:1a:d9:2a:63:11:30:6a:b2:81:d4:6d:25: 4c:98:b3:12:10:60:d0:7f:01:23:06:ff:31:f7:9c: bc:7c:12:81:e5:8e:3c:35:cb:ee:b0:65:76:41:c7: fa:8a:46:83:5a:33:02:0a:9d:0e:79:fd:a5:a2:47: 7b:97:87:01:56:65:f2:35:84:77:ca:7c:07:59:2f: eb:c6:78:21:a7:3d:2f:c1:f3:c1:c4:7c:9a:c5:0c: b0:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:85:F4:71:AF:C2:F6:18:A8:C1:2F:4E:CD:D0:15:84:21:FD:C2:2D X509v3 Authority Key Identifier: keyid:96:90:C5:D6:09:FC:E4:42:C3:5B:99:16:D5:63:F9:F1:87:B6:8A:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:46:3c:d0:a9:fc:95:dc:c3:af:c4:07:fe:2e:a4:04:2b:c7: 90:51:f2:8d:a8:7a:bb:b7:44:2f:ca:76:7b:00:8d:97:ea:90: 1f:8b:11:51:82:9e:28:9c:98:49:d6:2b:ca:46:28:b0:1b:2c: 32:7f:1b:9e:9d:6c:70:6d:43:1b:91:8a:dc:58:b3:c0:d1:10: 4b:0f:24:fb:a0:d7:48:aa:60:db:05:da:86:1b:ef:60:15:e0: 1d:c4:61:03:a5:6c:93:e4:bc:fd:3a:82:bc:ed:e0:a1:47:f7: 3e:af:c1:0a:e1:f3:2a:56:fe:21:66:ab:fc:69:69:4f:e3:ef: 9b:99:eb:3b:cd:41:44:c7:2e:5d:3c:76:1a:1e:1a:13:84:87: b4:6f:4b:22:a0:9b:8a:f4:15:c9:e4:9a:55:7c:b9:66:c1:cc: 95:a3:e3:56:1f:44:1b:45:e5:c5:e0:77:18:03:ee:d9:39:2c: 5d:1d:87:e8:d6:58:20:a9:24:1f:6c:2e:83:2e:77:13:86:57: ba:63:f2:43:39:aa:15:49:fb:c4:57:63:e6:95:14:3f:54:10: d0:eb:e0:56:39:13:b8:90:eb:56:60:ea:0a:5d:7f:42:d8:d4: bd:fb:d8:88:46:c4:3c:e7:81:66:63:ed:7a:96:ba:fd:62:b5: 99:68:2b:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDiowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhFMkMxMTAvBgNVBAUTKDk2OTBDNUQ2MDlGQ0U0NDJDMzVCOTkxNkQ1NjNGOUYx ODdCNjhBRDQwHhcNMjUwNDI0MTc0NjE5WhcNMjUwNTAxMTc0NjE5WjAYMRYwFAYD VQQDEw02ODBhNzhlYi0yZWNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArHUB93cnNM1kFUC3XgNiCGZJV2+zCOY1seKJubUFu8iSGU1y4IxTyDiQqfIs 2asIubqzUT/DUA0YKhZ5LNcxJ81AoCHxCGLmt5WDxEuEdEcDrG/8IYJWEoe21YvZ HxwMgwcImb9l0N60aTwbqKnU6fppxeyj9xacIGAhF/TAeEt9HRo1FmhgkiBtzyKy oZMOuZbtSc3NjC7QZrdgRNAjLqGCnfBKIMAa2SpjETBqsoHUbSVMmLMSEGDQfwEj Bv8x95y8fBKB5Y48NcvusGV2Qcf6ikaDWjMCCp0Oef2lokd7l4cBVmXyNYR3ynwH WS/rxnghpz0vwfPBxHyaxQywlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOKF9HGv wvYYqMEvTs3QFYQh/cItMB8GA1UdIwQYMBaAFJaQxdYJ/ORCw1uZFtVj+fGHtorU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEUyQy8wRkUxRUQwNkEy RkIxMUU5QTUyNkE1N0VDNEY5QUUwMi9scERGMWduODVFTERXNWtXMVdQNThZZTJp dFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xwREYxZ244NUVMRFc1a1cxV1A1OFllMml0US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEUyQy8wRkUxRUQwNkEyRkIxMUU5QTUyNkE1N0VDNEY5QUUwMi9scERGMWduODVF TERXNWtXMVdQNThZZTJpdFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADRjzQqfyV3MOvxAf+LqQEK8eQUfKNqHq7t0QvynZ7AI2X6pAfixFR gp4onJhJ1ivKRiiwGywyfxuenWxwbUMbkYrcWLPA0RBLDyT7oNdIqmDbBdqGG+9g FeAdxGEDpWyT5Lz9OoK87eChR/c+r8EK4fMqVv4hZqv8aWlP4++bmes7zUFExy5d PHYaHhoThIe0b0sioJuK9BXJ5JpVfLlmwcyVo+NWH0QbReXF4HcYA+7ZOSxdHYfo 1lggqSQfbC6DLncThle6Y/JDOaoVSfvEV2PmlRQ/VBDQ6+BWORO4kOtWYOoKXX9C 2NS9+9iIRsQ854FmY+16lrr9YrWZaCs9 -----END CERTIFICATE-----Generated at Sat Apr 26 16:43:42 2025 by rpki-client