$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD38B/A1AB2ABCBA8911EF9B338512C4F9AE02/L2sefhQB3gCsju23qFkNA9xUD3g.mft File: L2sefhQB3gCsju23qFkNA9xUD3g.mft (raw, json) Hash identifier: SX8QCZFHd2DXq0xDr/nO9OTCQWXUIm6iag2F+U/QFl4= Subject key identifier: 03:E5:47:D1:B9:2B:C8:E6:B4:44:C2:CB:C8:A0:10:F8:8F:08:4D:72 Authority key identifier: 2F:6B:1E:7E:14:01:DE:00:AC:8E:ED:B7:A8:59:0D:03:DC:54:0F:78 Certificate issuer: /CN=A91DD38B/serialNumber=2F6B1E7E1401DE00AC8EEDB7A8590D03DC540F78 Certificate serial: 45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2sefhQB3gCsju23qFkNA9xUD3g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD38B/A1AB2ABCBA8911EF9B338512C4F9AE02/L2sefhQB3gCsju23qFkNA9xUD3g.mft Manifest number: 45 Signing time: Fri 25 Apr 2025 06:25:19 +0000 Manifest this update: Fri 25 Apr 2025 06:25:19 +0000 Manifest next update: Fri 02 May 2025 06:25:19 +0000 Files and hashes: 1: L2sefhQB3gCsju23qFkNA9xUD3g.crl (hash: OEBvI/sQkyjqDT9KmQVt7/mMDNyX+Nk6Ue8LrFtsfwU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD38B/A1AB2ABCBA8911EF9B338512C4F9AE02/L2sefhQB3gCsju23qFkNA9xUD3g.crl rsync://rpki.apnic.net/member_repository/A91DD38B/A1AB2ABCBA8911EF9B338512C4F9AE02/L2sefhQB3gCsju23qFkNA9xUD3g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2sefhQB3gCsju23qFkNA9xUD3g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:25:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69 (0x45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD38B, serialNumber=2F6B1E7E1401DE00AC8EEDB7A8590D03DC540F78 Validity Not Before: Apr 25 06:25:19 2025 GMT Not After : May 2 06:25:19 2025 GMT Subject: CN=680b2acf-e80a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:dd:7b:0f:25:08:da:54:6e:25:fc:44:c4:ad: 16:62:24:e6:26:f1:2e:d3:27:bb:dc:43:b1:4f:3a: 7d:b6:ec:69:25:da:6d:2e:32:00:f9:4b:12:8d:9e: c9:a4:09:03:96:84:63:58:7e:ee:61:f2:2b:17:f3: e6:95:b3:67:11:a7:0c:19:af:e8:41:72:57:a5:a8: 00:9e:da:95:73:1e:3c:a5:ca:8d:94:e5:5e:d9:55: 2e:08:c6:2a:1c:16:1e:a4:8a:14:5c:2b:0d:67:a1: dd:f4:a6:a4:7e:ad:84:eb:5e:05:34:67:0d:87:f4: 7f:f6:5e:89:66:04:31:0d:11:0a:2c:97:03:15:47: e7:e8:53:1d:70:bb:0d:64:f4:21:8b:4c:ca:87:04: 10:d7:7e:d0:19:97:ed:ae:f5:79:71:52:b0:b5:e6: fe:2f:62:c9:41:4d:17:7e:99:23:db:ee:11:9a:6c: 87:37:bf:58:99:07:ae:a4:01:86:cc:ae:e7:8a:f9: 02:03:02:17:15:8f:77:20:27:ec:d7:07:3f:31:b7: e3:85:af:23:90:82:7c:88:d6:09:8e:48:bb:d1:f5: e8:79:9d:7c:b6:7f:7b:46:90:85:42:9c:82:7e:6b: 0d:9f:0a:33:56:9f:6b:cb:1f:d4:4d:85:0b:c9:59: 8b:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:E5:47:D1:B9:2B:C8:E6:B4:44:C2:CB:C8:A0:10:F8:8F:08:4D:72 X509v3 Authority Key Identifier: keyid:2F:6B:1E:7E:14:01:DE:00:AC:8E:ED:B7:A8:59:0D:03:DC:54:0F:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD38B/A1AB2ABCBA8911EF9B338512C4F9AE02/L2sefhQB3gCsju23qFkNA9xUD3g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2sefhQB3gCsju23qFkNA9xUD3g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD38B/A1AB2ABCBA8911EF9B338512C4F9AE02/L2sefhQB3gCsju23qFkNA9xUD3g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:f2:22:3d:bd:33:a0:5a:2b:38:a7:d6:46:df:48:60:00:42: 47:91:92:6f:02:8f:7d:7a:96:71:b3:fc:05:ee:ee:ab:f6:34: 20:6a:9e:89:50:88:b6:3c:63:37:fb:c2:02:b8:fd:ab:a5:da: 49:22:61:3e:df:59:0a:d5:97:ba:96:3f:cd:3c:9a:2b:52:c9: cf:0f:9f:0a:3a:4f:ee:7d:19:cd:7a:5f:b0:23:82:32:a0:08: 9b:29:62:82:23:48:81:aa:df:60:79:17:b8:f1:3c:92:ed:0c: f3:92:07:bb:b7:ac:c8:42:00:44:f5:cb:8f:ef:b4:e4:c5:75: 28:43:29:8a:e2:d2:f2:34:33:c8:d5:0a:d3:de:81:30:18:69: 19:00:87:41:d9:53:58:f4:ab:5c:4a:2c:d7:97:29:87:0e:ce: 08:82:cf:4b:fe:e0:7b:3d:14:6d:7a:88:d4:fc:a7:0f:55:f6: 34:76:1b:d4:72:97:7d:d8:43:14:96:b1:cc:da:7c:9d:b2:1e: 48:3a:ce:64:5b:e7:f4:db:64:35:f1:d1:49:a0:ef:59:97:81: 7c:b4:ca:de:55:d6:f9:6b:1e:ee:39:ef:48:ca:b7:1c:b4:bd: ba:88:04:cf:fe:6d:80:a1:02:83:b0:ab:f5:66:28:e7:f5:28: ed:d3:b5:82 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RDM4QjExMC8GA1UEBRMoMkY2QjFFN0UxNDAxREUwMEFDOEVFREI3QTg1OTBEMDNE QzU0MEY3ODAeFw0yNTA0MjUwNjI1MTlaFw0yNTA1MDIwNjI1MTlaMBgxFjAUBgNV BAMTDTY4MGIyYWNmLWU4MGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC63XsPJQjaVG4l/ETErRZiJOYm8S7TJ7vcQ7FPOn227Gkl2m0uMgD5SxKNnsmk CQOWhGNYfu5h8isX8+aVs2cRpwwZr+hBclelqACe2pVzHjylyo2U5V7ZVS4Ixioc Fh6kihRcKw1nod30pqR+rYTrXgU0Zw2H9H/2XolmBDENEQoslwMVR+foUx1wuw1k 9CGLTMqHBBDXftAZl+2u9XlxUrC15v4vYslBTRd+mSPb7hGabIc3v1iZB66kAYbM rueK+QIDAhcVj3cgJ+zXBz8xt+OFryOQgnyI1gmOSLvR9eh5nXy2f3tGkIVCnIJ+ aw2fCjNWn2vLH9RNhQvJWYsTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUA+VH0bkr yOa0RMLLyKAQ+I8ITXIwHwYDVR0jBBgwFoAUL2sefhQB3gCsju23qFkNA9xUD3gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUREMzhCL0ExQUIyQUJDQkE4 OTExRUY5QjMzODUxMkM0RjlBRTAyL0wyc2VmaFFCM2dDc2p1MjNxRmtOQTl4VUQz Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTDJzZWZoUUIzZ0NzanUyM3FGa05BOXhVRDNnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURE MzhCL0ExQUIyQUJDQkE4OTExRUY5QjMzODUxMkM0RjlBRTAyL0wyc2VmaFFCM2dD c2p1MjNxRmtOQTl4VUQzZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIHyIj29M6BaKzin1kbfSGAAQkeRkm8Cj316lnGz/AXu7qv2NCBqnolQ iLY8Yzf7wgK4/aul2kkiYT7fWQrVl7qWP808mitSyc8Pnwo6T+59Gc16X7AjgjKg CJspYoIjSIGq32B5F7jxPJLtDPOSB7u3rMhCAET1y4/vtOTFdShDKYri0vI0M8jV CtPegTAYaRkAh0HZU1j0q1xKLNeXKYcOzgiCz0v+4Hs9FG16iNT8pw9V9jR2G9Ry l33YQxSWsczafJ2yHkg6zmRb5/TbZDXx0Umg71mXgXy0yt5V1vlrHu4570jKtxy0 vbqIBM/+bYChAoOwq/VmKOf1KO3TtYI= -----END CERTIFICATE-----Generated at Sat Apr 26 04:34:17 2025 by rpki-client