$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft File: lHy2dKhYzZGupVJro2aKEeSey5M.mft (raw, json) Hash identifier: UzW7KOxPX+Ee4q1mYRNc4/4CbTlLkGDQNu3LVnstURg= Subject key identifier: A0:85:7E:C8:39:7B:28:EE:F7:EB:A5:98:35:1A:82:B4:BD:96:DE:BA Authority key identifier: 94:7C:B6:74:A8:58:CD:91:AE:A5:52:6B:A3:66:8A:11:E4:9E:CB:93 Certificate issuer: /CN=A91DFC30/serialNumber=947CB674A858CD91AEA5526BA3668A11E49ECB93 Certificate serial: 03D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft Manifest number: 03C7 Signing time: Fri 25 Apr 2025 00:25:48 +0000 Manifest this update: Fri 25 Apr 2025 00:25:48 +0000 Manifest next update: Fri 02 May 2025 00:25:48 +0000 Files and hashes: 1: lHy2dKhYzZGupVJro2aKEeSey5M.crl (hash: qUb4eAotqiK5Ueie/NvCrvQBmhtN9VzMbY7vFtCzluU=) 2: 13F5D28685B111ECB675B552C4F9AE02.roa (hash: wg979tEV/edC9z/60lEEUA1wH6+Atveb0Z20mtMK9/g=) 3: 147D51CA85B111ECB675B552C4F9AE02.roa (hash: e9cwg8d7bC8r2DHgx/kL7/A4+KHztZ7rWF6Yv+XqYD8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.crl rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:25:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 976 (0x3d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFC30, serialNumber=947CB674A858CD91AEA5526BA3668A11E49ECB93 Validity Not Before: Apr 25 00:25:48 2025 GMT Not After : May 2 00:25:48 2025 GMT Subject: CN=680ad68c-6936 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:b0:0a:c5:39:f8:44:14:ee:4e:97:ce:12:ec: 5c:90:09:c1:d0:1d:4c:86:92:bd:b8:3a:4f:1f:5c: a9:3c:55:04:f9:2b:0a:43:d9:52:00:d1:ce:f1:86: ce:f2:82:a6:38:c3:77:78:19:bb:06:97:fe:6a:01: e8:1c:4c:32:1f:ad:48:8e:be:ba:d8:ce:7f:2d:58: ef:33:70:8c:64:ae:2f:cf:73:4e:1d:9e:00:12:42: d1:31:ad:b7:a8:3d:fd:df:e8:f2:cc:c0:40:28:29: 1f:62:08:5c:ba:9c:7a:6c:61:77:2f:7a:dc:73:11: 78:a9:89:ec:82:4f:bc:37:53:93:a8:a0:1e:28:51: b3:03:06:2d:7e:f1:8e:a3:b0:84:b1:8b:16:c5:85: 81:34:11:4a:b0:62:93:a4:d1:eb:cf:97:6a:c2:2a: 32:52:ad:78:15:e0:4e:0a:35:f1:69:47:ce:e6:7a: 49:77:02:25:ff:c5:54:ed:08:87:72:42:0b:44:e5: d7:e3:a7:49:69:f8:b8:69:c0:45:4f:4b:91:38:02: 68:38:57:a3:1b:f8:37:f6:ee:d0:47:f1:d1:9d:fa: f0:53:7e:71:e9:df:5d:c8:b0:21:f1:df:76:8e:b6: 58:76:d3:98:29:39:64:43:45:5a:eb:25:96:b1:c5: 14:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:85:7E:C8:39:7B:28:EE:F7:EB:A5:98:35:1A:82:B4:BD:96:DE:BA X509v3 Authority Key Identifier: keyid:94:7C:B6:74:A8:58:CD:91:AE:A5:52:6B:A3:66:8A:11:E4:9E:CB:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:c7:71:a2:07:2c:6d:df:1c:e3:f8:62:10:62:a8:cb:8d:53: 2b:e4:af:7a:fa:5b:af:22:12:94:8d:ce:62:f7:96:09:0e:6a: 3c:d1:90:c7:d9:c2:df:c6:18:b7:e0:7b:3e:b9:de:9a:f7:44: 7b:64:76:d9:46:1d:09:d5:69:c0:0d:48:aa:d9:33:ac:61:b5: 6e:db:e3:31:9c:84:8c:cf:44:0b:f8:fd:6c:7b:45:54:8a:61: d3:f4:47:35:cd:30:66:70:e0:d2:8f:5d:da:7d:ef:e3:a8:84: 93:ac:bf:80:48:c0:a5:aa:bd:15:aa:1f:01:9d:f9:3f:20:46: 5b:d7:04:4a:aa:f6:ef:9d:7d:f4:77:30:3c:e5:6f:7a:96:d6: 2b:1d:42:40:a9:40:ca:21:98:e0:40:89:93:6c:f4:ea:33:c6: 53:7a:59:83:db:24:36:d9:6b:6f:d0:2f:20:fc:2f:38:8c:9e: f3:27:a3:d2:53:18:b9:a0:3c:ff:04:4b:f2:e0:2b:ea:d2:78: 58:bd:7a:20:7f:9a:e6:99:97:cb:1b:95:b9:4b:23:36:b0:9c: 66:5d:a9:89:c4:11:a1:55:5b:b1:cc:a4:01:e9:7a:c3:14:24: 64:29:6c:b1:88:ac:7f:32:f9:23:be:01:c5:4a:95:e1:99:2c: 43:40:07:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZDMzAxMTAvBgNVBAUTKDk0N0NCNjc0QTg1OENEOTFBRUE1NTI2QkEzNjY4QTEx RTQ5RUNCOTMwHhcNMjUwNDI1MDAyNTQ4WhcNMjUwNTAyMDAyNTQ4WjAYMRYwFAYD VQQDEw02ODBhZDY4Yy02OTM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3rAKxTn4RBTuTpfOEuxckAnB0B1MhpK9uDpPH1ypPFUE+SsKQ9lSANHO8YbO 8oKmOMN3eBm7Bpf+agHoHEwyH61Ijr662M5/LVjvM3CMZK4vz3NOHZ4AEkLRMa23 qD393+jyzMBAKCkfYghcupx6bGF3L3rccxF4qYnsgk+8N1OTqKAeKFGzAwYtfvGO o7CEsYsWxYWBNBFKsGKTpNHrz5dqwioyUq14FeBOCjXxaUfO5npJdwIl/8VU7QiH ckILROXX46dJafi4acBFT0uROAJoOFejG/g39u7QR/HRnfrwU35x6d9dyLAh8d92 jrZYdtOYKTlkQ0Va6yWWscUU8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKCFfsg5 eyju9+ulmDUagrS9lt66MB8GA1UdIwQYMBaAFJR8tnSoWM2RrqVSa6NmihHknsuT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkMzMC8xMTJBRjFBQzg1 QUQxMUVDQjM2RjQxNERDNEY5QUUwMi9sSHkyZEtoWXpaR3VwVkpybzJhS0VlU2V5 NU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xIeTJkS2hZelpHdXBWSnJvMmFLRWVTZXk1TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RkMzMC8xMTJBRjFBQzg1QUQxMUVDQjM2RjQxNERDNEY5QUUwMi9sSHkyZEtoWXpa R3VwVkpybzJhS0VlU2V5NU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAux3GiByxt3xzj+GIQYqjLjVMr5K96+luvIhKUjc5i95YJDmo80ZDH 2cLfxhi34Hs+ud6a90R7ZHbZRh0J1WnADUiq2TOsYbVu2+MxnISMz0QL+P1se0VU imHT9Ec1zTBmcODSj13afe/jqISTrL+ASMClqr0Vqh8Bnfk/IEZb1wRKqvbvnX30 dzA85W96ltYrHUJAqUDKIZjgQImTbPTqM8ZTelmD2yQ22Wtv0C8g/C84jJ7zJ6PS Uxi5oDz/BEvy4Cvq0nhYvXogf5rmmZfLG5W5SyM2sJxmXamJxBGhVVuxzKQB6XrD FCRkKWyxiKx/MvkjvgHFSpXhmSxDQAeF -----END CERTIFICATE-----Generated at Sat Apr 26 16:18:22 2025 by rpki-client