$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft File: lHy2dKhYzZGupVJro2aKEeSey5M.mft (raw, json) Hash identifier: JwrQ4vkHGF8d8XuEcsXOTshovMBzkI0kfqctMDkwLHo= Subject key identifier: 75:E7:22:B4:7F:5D:7D:17:FC:F7:72:6E:C0:3F:81:45:F5:D2:AC:AB Authority key identifier: 94:7C:B6:74:A8:58:CD:91:AE:A5:52:6B:A3:66:8A:11:E4:9E:CB:93 Certificate issuer: /CN=A91DFC30/serialNumber=947CB674A858CD91AEA5526BA3668A11E49ECB93 Certificate serial: 03E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft Manifest number: 03DF Signing time: Fri 13 Jun 2025 00:08:56 +0000 Manifest this update: Fri 13 Jun 2025 00:08:56 +0000 Manifest next update: Fri 20 Jun 2025 00:08:56 +0000 Files and hashes: 1: lHy2dKhYzZGupVJro2aKEeSey5M.crl (hash: KPU42oHv4Z57dug8+lIKLjEqg1hJofdy/x4P/ziXKbg=) 2: 13F5D28685B111ECB675B552C4F9AE02.roa (hash: wg979tEV/edC9z/60lEEUA1wH6+Atveb0Z20mtMK9/g=) 3: 147D51CA85B111ECB675B552C4F9AE02.roa (hash: e9cwg8d7bC8r2DHgx/kL7/A4+KHztZ7rWF6Yv+XqYD8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.crl rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 00:08:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1000 (0x3e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFC30, serialNumber=947CB674A858CD91AEA5526BA3668A11E49ECB93 Validity Not Before: Jun 13 00:08:56 2025 GMT Not After : Jun 20 00:08:56 2025 GMT Subject: CN=684b6c18-5112 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:b7:1d:16:d0:8d:20:2a:b6:ae:d2:01:44:c5: 7f:61:a4:00:7b:e0:d9:7f:d4:83:1f:9f:1a:5f:3a: b9:e8:06:1b:20:0d:d9:88:f6:a9:9d:a6:fe:87:7b: 5a:d4:48:b6:68:9b:c3:13:a9:22:cd:41:e2:2c:3f: 5f:35:e4:d2:9b:f0:13:eb:db:de:d4:17:b7:ce:52: 46:fc:6f:28:ca:7f:66:1a:ac:88:e0:d7:8b:54:78: a4:ca:10:e1:d1:e2:1b:56:f5:2d:bd:9d:f4:9d:e1: 09:20:6a:fd:2a:af:99:f3:be:7a:de:ba:e1:bf:b9: 7f:a2:98:22:13:23:fa:90:32:2b:e4:72:83:55:30: a6:42:17:5d:95:fd:72:7d:c7:1d:a0:99:5f:f2:9c: 7c:c2:87:e4:2b:87:6d:8a:0a:9d:0b:91:ba:26:9c: 17:a8:b0:f7:66:59:0c:e4:9c:3e:cc:14:5f:7e:3c: 46:65:cc:0f:5b:75:97:e5:25:23:dd:6a:6d:6b:22: ee:89:61:b3:84:6e:20:67:c4:55:15:b9:e1:69:71: 74:a9:92:76:6c:ef:06:31:c0:fe:df:c9:4b:5b:83: 78:57:82:b1:24:25:ec:e6:91:c8:2e:2e:f5:84:9b: d4:e0:0f:4b:21:e6:ad:ff:26:ca:57:41:ed:17:44: a3:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:E7:22:B4:7F:5D:7D:17:FC:F7:72:6E:C0:3F:81:45:F5:D2:AC:AB X509v3 Authority Key Identifier: keyid:94:7C:B6:74:A8:58:CD:91:AE:A5:52:6B:A3:66:8A:11:E4:9E:CB:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:5f:67:0f:0c:c3:0c:1f:2c:90:29:76:e8:38:66:d9:cf:f2: 64:10:8d:af:85:fd:8a:f1:c5:96:47:75:b7:41:e2:86:83:3e: b3:64:a1:df:e4:f5:04:dc:29:5d:d1:ad:b6:6b:47:0d:9d:e7: 6e:a2:af:ef:62:9a:8b:42:63:00:37:e9:94:a3:c3:7f:f2:ce: d9:15:5a:f4:ba:5d:72:5d:b5:44:25:04:e2:97:c8:00:f5:de: d7:8e:c5:b3:36:6d:8c:51:c5:77:0a:58:70:cb:d6:4b:56:06: e4:c1:b7:28:78:e7:c2:b7:4d:3e:75:c6:5f:aa:a8:14:2e:4a: 5c:dc:60:95:97:5d:97:f1:50:16:21:1e:26:8a:31:74:4f:b1: b7:0e:73:6a:36:03:e0:92:5c:6f:18:f2:ad:11:05:96:34:b0: 97:90:f5:52:bd:82:ed:6f:7f:e3:ed:35:38:ae:a7:4f:40:c3: c0:ef:cf:f2:37:6e:9c:2f:72:4e:ca:d8:68:c6:a2:49:ad:7c: 0f:8a:bc:f8:c4:b7:d4:65:63:fd:4a:8d:c5:69:72:fc:51:a5: 9d:74:5d:ad:6e:16:27:45:1d:8d:fe:e3:89:04:fd:f6:15:eb: 86:35:67:74:67:38:61:09:39:88:2b:d6:90:14:1f:1b:1f:18: 8a:a1:71:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZDMzAxMTAvBgNVBAUTKDk0N0NCNjc0QTg1OENEOTFBRUE1NTI2QkEzNjY4QTEx RTQ5RUNCOTMwHhcNMjUwNjEzMDAwODU2WhcNMjUwNjIwMDAwODU2WjAYMRYwFAYD VQQDEw02ODRiNmMxOC01MTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3LcdFtCNICq2rtIBRMV/YaQAe+DZf9SDH58aXzq56AYbIA3ZiPapnab+h3ta 1Ei2aJvDE6kizUHiLD9fNeTSm/AT69ve1Be3zlJG/G8oyn9mGqyI4NeLVHikyhDh 0eIbVvUtvZ30neEJIGr9Kq+Z87563rrhv7l/opgiEyP6kDIr5HKDVTCmQhddlf1y fccdoJlf8px8wofkK4dtigqdC5G6JpwXqLD3ZlkM5Jw+zBRffjxGZcwPW3WX5SUj 3WptayLuiWGzhG4gZ8RVFbnhaXF0qZJ2bO8GMcD+38lLW4N4V4KxJCXs5pHILi71 hJvU4A9LIeat/ybKV0HtF0Sj6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHXnIrR/ XX0X/PdybsA/gUX10qyrMB8GA1UdIwQYMBaAFJR8tnSoWM2RrqVSa6NmihHknsuT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkMzMC8xMTJBRjFBQzg1 QUQxMUVDQjM2RjQxNERDNEY5QUUwMi9sSHkyZEtoWXpaR3VwVkpybzJhS0VlU2V5 NU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xIeTJkS2hZelpHdXBWSnJvMmFLRWVTZXk1TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RkMzMC8xMTJBRjFBQzg1QUQxMUVDQjM2RjQxNERDNEY5QUUwMi9sSHkyZEtoWXpa R3VwVkpybzJhS0VlU2V5NU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuX2cPDMMMHyyQKXboOGbZz/JkEI2vhf2K8cWWR3W3QeKGgz6zZKHf 5PUE3Cld0a22a0cNneduoq/vYpqLQmMAN+mUo8N/8s7ZFVr0ul1yXbVEJQTil8gA 9d7XjsWzNm2MUcV3Clhwy9ZLVgbkwbcoeOfCt00+dcZfqqgULkpc3GCVl12X8VAW IR4mijF0T7G3DnNqNgPgklxvGPKtEQWWNLCXkPVSvYLtb3/j7TU4rqdPQMPA78/y N26cL3JOythoxqJJrXwPirz4xLfUZWP9So3FaXL8UaWddF2tbhYnRR2N/uOJBP32 FeuGNWd0ZzhhCTmIK9aQFB8bHxiKoXGx -----END CERTIFICATE-----Generated at Sat Jun 14 18:48:04 2025 by rpki-client