$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2E92/1885A6D206CF11EE9C97127BC4F9AE02/l_PsEBRVjghHCgOpR4yE8j5FADo.mft File: l_PsEBRVjghHCgOpR4yE8j5FADo.mft (raw, json) Hash identifier: BmVonV9ElPAQ9JY6hznrLAlSYDqlp306aBuAH+Nwse8= Subject key identifier: D2:BD:5C:0C:74:FD:0C:8E:E5:DF:AA:A7:75:B3:5D:5D:6D:35:1C:0A Authority key identifier: 97:F3:EC:10:14:55:8E:08:47:0A:03:A9:47:8C:84:F2:3E:45:00:3A Certificate issuer: /CN=A91E2E92/serialNumber=97F3EC1014558E08470A03A9478C84F23E45003A Certificate serial: 017A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_PsEBRVjghHCgOpR4yE8j5FADo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2E92/1885A6D206CF11EE9C97127BC4F9AE02/l_PsEBRVjghHCgOpR4yE8j5FADo.mft Manifest number: 016D Signing time: Fri 25 Apr 2025 03:07:15 +0000 Manifest this update: Fri 25 Apr 2025 03:07:14 +0000 Manifest next update: Fri 02 May 2025 03:07:14 +0000 Files and hashes: 1: l_PsEBRVjghHCgOpR4yE8j5FADo.crl (hash: lvsqJUSj7basoi+QFtryZYy92HOZFQ80SIPD0ZF7gPM=) 2: B7D34CC444ED11EE8D931624C4F9AE02.roa (hash: o91C1jFze1aQemqWDwZsi+b9/Rmy3VyieJUeIkyvzoc=) 3: D78EA2DE44ED11EEA6685324C4F9AE02.roa (hash: /JrzSFgR8sIchQqbAkxuKHvug5BLuVR/st4b3ZlxES8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2E92/1885A6D206CF11EE9C97127BC4F9AE02/l_PsEBRVjghHCgOpR4yE8j5FADo.crl rsync://rpki.apnic.net/member_repository/A91E2E92/1885A6D206CF11EE9C97127BC4F9AE02/l_PsEBRVjghHCgOpR4yE8j5FADo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_PsEBRVjghHCgOpR4yE8j5FADo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:07:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 378 (0x17a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2E92, serialNumber=97F3EC1014558E08470A03A9478C84F23E45003A Validity Not Before: Apr 25 03:07:14 2025 GMT Not After : May 2 03:07:14 2025 GMT Subject: CN=680afc63-bbb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:0a:2a:a7:72:68:39:fc:a7:69:d0:d6:0c:54: 12:46:82:9f:00:b7:d7:32:51:5f:94:83:3b:6e:87: 68:fc:f0:77:67:f3:56:b0:e4:e1:e7:94:68:22:8a: 71:ae:4c:5c:25:f3:75:de:48:2f:0d:fd:4f:46:73: c1:5f:a1:d8:9a:8a:49:6b:b8:99:1a:f8:78:10:ab: 2c:4f:04:93:89:35:e2:19:be:59:e9:09:a6:f3:d4: 87:5c:7a:e0:b5:70:0e:b6:0a:ad:bc:c7:6c:73:77: 01:62:42:35:bd:66:48:64:cc:79:32:1b:e6:58:80: bc:80:05:6e:e8:4d:ec:b4:0a:a3:b8:a9:e6:01:f5: aa:7d:ec:ee:e3:57:ef:bf:1a:f7:c8:b1:ca:39:72: 9b:81:9f:8e:d1:b0:e0:7b:26:35:7e:e0:5f:b2:6a: ef:29:a1:ea:3e:a0:21:78:b9:c6:82:8b:de:94:f6: 2f:91:66:40:35:65:92:1f:16:cb:24:f0:ae:a6:3f: c4:f6:13:8d:ae:78:d3:25:02:c5:86:34:1e:66:3c: b8:ec:8e:c2:72:26:63:e9:0d:fe:57:07:9b:e0:60: 13:9e:75:7e:3b:33:70:ae:a9:53:26:86:1a:5f:cd: ad:8d:93:98:77:1a:11:ae:88:f5:a9:59:91:16:6b: 8d:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:BD:5C:0C:74:FD:0C:8E:E5:DF:AA:A7:75:B3:5D:5D:6D:35:1C:0A X509v3 Authority Key Identifier: keyid:97:F3:EC:10:14:55:8E:08:47:0A:03:A9:47:8C:84:F2:3E:45:00:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2E92/1885A6D206CF11EE9C97127BC4F9AE02/l_PsEBRVjghHCgOpR4yE8j5FADo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_PsEBRVjghHCgOpR4yE8j5FADo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2E92/1885A6D206CF11EE9C97127BC4F9AE02/l_PsEBRVjghHCgOpR4yE8j5FADo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:d9:06:99:7a:65:6a:cb:2f:23:a2:86:1e:7c:3b:f3:ea:6c: 73:0d:f0:f4:7e:96:fa:25:3b:a8:5f:2c:bc:e8:e6:ca:16:0f: 43:b3:c4:86:0d:da:4a:e6:52:54:03:7c:b7:a1:60:25:92:f2: 6e:93:a0:1b:26:ef:40:ba:11:34:fd:60:8d:47:3c:0a:47:33: 54:32:1a:21:08:bd:ba:6f:df:6b:03:19:d1:92:00:1a:b3:1c: 60:55:4f:07:8c:6a:bf:dc:2e:64:48:e6:86:7e:83:ca:91:f4: 64:d6:b9:f3:8a:55:1f:ae:c2:2a:b9:ab:29:93:52:88:01:69: d5:f0:8e:4a:17:29:bc:9f:eb:c8:bd:4a:92:c5:a4:e1:9e:ce: 4f:83:4a:9a:06:cc:bf:24:1a:69:d2:53:67:57:ed:cd:04:71: 6f:a4:81:50:48:93:67:55:b9:48:44:52:06:1e:a2:6a:f5:1b: d6:56:a1:53:24:65:6d:16:29:aa:73:92:1f:ce:4d:8e:52:61: aa:aa:ae:83:5b:f9:bb:a6:e8:a5:f8:4d:a7:10:7b:c2:2d:bf: 3d:32:74:11:46:f1:32:79:ce:c4:ef:08:3e:1a:2d:79:fa:b4: 85:f8:e3:93:3c:6c:dd:f2:5a:78:71:ca:37:d5:cf:3e:fd:ef: 43:a0:3e:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJFOTIxMTAvBgNVBAUTKDk3RjNFQzEwMTQ1NThFMDg0NzBBMDNBOTQ3OEM4NEYy M0U0NTAwM0EwHhcNMjUwNDI1MDMwNzE0WhcNMjUwNTAyMDMwNzE0WjAYMRYwFAYD VQQDEw02ODBhZmM2My1iYmIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqgoqp3JoOfynadDWDFQSRoKfALfXMlFflIM7bodo/PB3Z/NWsOTh55RoIopx rkxcJfN13kgvDf1PRnPBX6HYmopJa7iZGvh4EKssTwSTiTXiGb5Z6Qmm89SHXHrg tXAOtgqtvMdsc3cBYkI1vWZIZMx5MhvmWIC8gAVu6E3stAqjuKnmAfWqfezu41fv vxr3yLHKOXKbgZ+O0bDgeyY1fuBfsmrvKaHqPqAheLnGgovelPYvkWZANWWSHxbL JPCupj/E9hONrnjTJQLFhjQeZjy47I7CciZj6Q3+Vweb4GATnnV+OzNwrqlTJoYa X82tjZOYdxoRroj1qVmRFmuNfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNK9XAx0 /QyO5d+qp3WzXV1tNRwKMB8GA1UdIwQYMBaAFJfz7BAUVY4IRwoDqUeMhPI+RQA6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkU5Mi8xODg1QTZEMjA2 Q0YxMUVFOUM5NzEyN0JDNEY5QUUwMi9sX1BzRUJSVmpnaEhDZ09wUjR5RThqNUZB RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xfUHNFQlJWamdoSENnT3BSNHlFOGo1RkFEby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkU5Mi8xODg1QTZEMjA2Q0YxMUVFOUM5NzEyN0JDNEY5QUUwMi9sX1BzRUJSVmpn aEhDZ09wUjR5RThqNUZBRG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAR2QaZemVqyy8jooYefDvz6mxzDfD0fpb6JTuoXyy86ObKFg9Ds8SG DdpK5lJUA3y3oWAlkvJuk6AbJu9AuhE0/WCNRzwKRzNUMhohCL26b99rAxnRkgAa sxxgVU8HjGq/3C5kSOaGfoPKkfRk1rnzilUfrsIquaspk1KIAWnV8I5KFym8n+vI vUqSxaThns5Pg0qaBsy/JBpp0lNnV+3NBHFvpIFQSJNnVblIRFIGHqJq9RvWVqFT JGVtFimqc5Ifzk2OUmGqqq6DW/m7puil+E2nEHvCLb89MnQRRvEyec7E7wg+Gi15 +rSF+OOTPGzd8lp4cco31c8+/e9DoD6F -----END CERTIFICATE-----Generated at Sat Apr 26 05:49:21 2025 by rpki-client