$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1A60/80314F863CFF11EA82108253C4F9AE02/LoI9WUls-sc3j6gr-E3faE2TK50.mft File: LoI9WUls-sc3j6gr-E3faE2TK50.mft (raw, json) Hash identifier: QhXTvdWgOEol0EW66Rc4Weprgp4FQ/bB8dFDEUu8k7Q= Subject key identifier: 16:2B:EB:CC:39:73:2D:57:E6:88:57:1D:2B:A0:ED:85:90:38:A1:08 Authority key identifier: 2E:82:3D:59:49:6C:FA:C7:37:8F:A8:2B:F8:4D:DF:68:4D:93:2B:9D Certificate issuer: /CN=A91E1A60/serialNumber=2E823D59496CFAC7378FA82BF84DDF684D932B9D Certificate serial: 0B16 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LoI9WUls-sc3j6gr-E3faE2TK50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1A60/80314F863CFF11EA82108253C4F9AE02/LoI9WUls-sc3j6gr-E3faE2TK50.mft Manifest number: 0B10 Signing time: Thu 24 Apr 2025 19:08:20 +0000 Manifest this update: Thu 24 Apr 2025 19:08:19 +0000 Manifest next update: Thu 01 May 2025 19:08:19 +0000 Files and hashes: 1: LoI9WUls-sc3j6gr-E3faE2TK50.crl (hash: EOz1TTiF0lCt/jSjWNFc+kuxq+Qq/cR7o6DmIOd7DJk=) 2: 33A8447E3D0111EA9B37B256C4F9AE02.roa (hash: dhmOvv7uMkUQoCzxXTfQXJHUTAQuNuYH/MTOVQ2M8Fw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1A60/80314F863CFF11EA82108253C4F9AE02/LoI9WUls-sc3j6gr-E3faE2TK50.crl rsync://rpki.apnic.net/member_repository/A91E1A60/80314F863CFF11EA82108253C4F9AE02/LoI9WUls-sc3j6gr-E3faE2TK50.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LoI9WUls-sc3j6gr-E3faE2TK50.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:08:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2838 (0xb16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1A60, serialNumber=2E823D59496CFAC7378FA82BF84DDF684D932B9D Validity Not Before: Apr 24 19:08:19 2025 GMT Not After : May 1 19:08:19 2025 GMT Subject: CN=680a8c24-e674 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:c4:28:c8:31:54:34:3e:c6:f1:51:f2:66:6a: 94:6b:ab:0b:07:dd:fd:19:2c:66:49:c8:1f:f9:ee: 7a:de:a3:cf:39:0e:35:90:b6:97:8d:e6:f9:a7:f6: a5:d5:db:c3:78:13:a4:67:e8:a1:bb:96:10:d5:fa: 91:52:7b:f4:49:af:18:cd:27:66:0a:d8:8c:af:77: e3:94:e1:50:b4:b3:dc:9f:62:6f:c6:5a:e1:99:32: a3:e3:d1:cf:f3:ce:c8:a6:95:5e:d2:1b:5e:54:4c: 56:7d:89:86:03:24:33:8e:b8:24:1c:34:d6:0b:c9: db:f6:38:ec:56:85:0c:32:fc:70:0a:c9:00:27:4b: 8f:1d:75:ae:85:85:be:80:1a:69:b5:09:2e:d0:03: 2a:ae:59:27:85:d9:9e:4b:4e:8b:d8:89:1c:b7:c2: b8:ea:fd:fe:ae:6f:2b:79:b0:e8:e8:36:d2:51:ec: b3:47:dc:cf:d1:4e:dd:99:ce:24:8e:e7:d3:6d:4e: eb:a8:aa:cc:32:dd:52:01:b1:c2:d0:64:85:68:2e: 31:15:1d:5a:93:15:45:0b:a1:57:54:6e:d7:d9:74: d1:dd:fe:25:21:4d:d0:1d:f6:40:74:fd:f1:53:a6: 2f:e9:57:e8:b7:0f:81:fd:cf:a0:fd:07:7e:68:12: b3:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:2B:EB:CC:39:73:2D:57:E6:88:57:1D:2B:A0:ED:85:90:38:A1:08 X509v3 Authority Key Identifier: keyid:2E:82:3D:59:49:6C:FA:C7:37:8F:A8:2B:F8:4D:DF:68:4D:93:2B:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1A60/80314F863CFF11EA82108253C4F9AE02/LoI9WUls-sc3j6gr-E3faE2TK50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LoI9WUls-sc3j6gr-E3faE2TK50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1A60/80314F863CFF11EA82108253C4F9AE02/LoI9WUls-sc3j6gr-E3faE2TK50.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:3c:ec:11:6c:fe:90:c3:ce:1c:45:59:8c:62:f1:41:4b:84: bb:f3:b6:17:1f:14:1e:16:c5:38:5f:d4:01:8a:96:7d:eb:fc: 7a:bc:05:5c:8f:bf:f5:f5:5b:0c:d9:aa:4c:e7:ff:0b:65:e7: 69:97:32:2f:f9:b8:8d:82:0d:a2:9e:a7:a5:df:90:03:30:fb: 79:0b:77:3a:98:c3:05:df:68:25:46:55:7b:81:b0:5f:f6:e0: 3e:dc:71:46:b8:4b:a6:6f:5e:c5:49:3b:ac:39:79:d5:2c:f3: c8:55:00:aa:4c:52:9b:94:c6:4f:98:d5:f5:38:eb:f2:16:d2: 7a:88:d9:60:c0:7c:9f:62:6e:23:1b:e4:66:68:a1:22:b4:1b: 63:ed:95:42:45:1d:3a:fc:e9:c2:fd:f2:d7:ee:0f:39:ba:f2: ce:43:9b:5f:95:c2:62:09:8e:4b:1a:32:0e:1a:30:fd:c2:f5: d3:ee:b9:ac:b8:d3:f9:02:72:9d:ba:bb:66:56:c7:0b:ec:ad: 05:5c:1d:3a:24:66:7d:c4:77:9e:f4:aa:83:fd:48:9c:2a:fc: c7:31:11:ea:dd:13:4e:81:1d:70:a2:ac:33:01:de:52:11:17: 00:3f:16:9e:28:73:8a:f6:97:07:00:b6:78:51:db:0e:17:92: 33:79:c1:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTFBNjAxMTAvBgNVBAUTKDJFODIzRDU5NDk2Q0ZBQzczNzhGQTgyQkY4NERERjY4 NEQ5MzJCOUQwHhcNMjUwNDI0MTkwODE5WhcNMjUwNTAxMTkwODE5WjAYMRYwFAYD VQQDEw02ODBhOGMyNC1lNjc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo8QoyDFUND7G8VHyZmqUa6sLB939GSxmScgf+e563qPPOQ41kLaXjeb5p/al 1dvDeBOkZ+ihu5YQ1fqRUnv0Sa8YzSdmCtiMr3fjlOFQtLPcn2JvxlrhmTKj49HP 887IppVe0hteVExWfYmGAyQzjrgkHDTWC8nb9jjsVoUMMvxwCskAJ0uPHXWuhYW+ gBpptQku0AMqrlknhdmeS06L2Ikct8K46v3+rm8rebDo6DbSUeyzR9zP0U7dmc4k jufTbU7rqKrMMt1SAbHC0GSFaC4xFR1akxVFC6FXVG7X2XTR3f4lIU3QHfZAdP3x U6Yv6Vfotw+B/c+g/Qd+aBKzwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBYr68w5 cy1X5ohXHSug7YWQOKEIMB8GA1UdIwQYMBaAFC6CPVlJbPrHN4+oK/hN32hNkyud MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMUE2MC84MDMxNEY4NjND RkYxMUVBODIxMDgyNTNDNEY5QUUwMi9Mb0k5V1Vscy1zYzNqNmdyLUUzZmFFMlRL NTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xvSTlXVWxzLXNjM2o2Z3ItRTNmYUUyVEs1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MUE2MC84MDMxNEY4NjNDRkYxMUVBODIxMDgyNTNDNEY5QUUwMi9Mb0k5V1Vscy1z YzNqNmdyLUUzZmFFMlRLNTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNPOwRbP6Qw84cRVmMYvFBS4S787YXHxQeFsU4X9QBipZ96/x6vAVc j7/19VsM2apM5/8LZedplzIv+biNgg2inqel35ADMPt5C3c6mMMF32glRlV7gbBf 9uA+3HFGuEumb17FSTusOXnVLPPIVQCqTFKblMZPmNX1OOvyFtJ6iNlgwHyfYm4j G+RmaKEitBtj7ZVCRR06/OnC/fLX7g85uvLOQ5tflcJiCY5LGjIOGjD9wvXT7rms uNP5AnKdurtmVscL7K0FXB06JGZ9xHee9KqD/UicKvzHMRHq3RNOgR1woqwzAd5S ERcAPxaeKHOK9pcHALZ4UdsOF5IzecHm -----END CERTIFICATE-----Generated at Sat Apr 26 16:57:31 2025 by rpki-client