$ rpki-client -vvf rpki.apnic.net/member_repository/A91E63E7/4ACB8BF0887111EFA708D17DC4F9AE02/ltMlORFGzztdo_4Uaf7BKLS2jEk.mft File: ltMlORFGzztdo_4Uaf7BKLS2jEk.mft (raw, json) Hash identifier: xobjCUSdyhapc212VCauoTvev/QiGelZkYKBpTjk22c= Subject key identifier: 78:10:28:57:5E:38:65:6E:C0:FF:DC:01:EE:3F:6D:9F:E5:5F:59:3A Authority key identifier: 96:D3:25:39:11:46:CF:3B:5D:A3:FE:14:69:FE:C1:28:B4:B6:8C:49 Certificate issuer: /CN=A91E63E7/serialNumber=96D325391146CF3B5DA3FE1469FEC128B4B68C49 Certificate serial: 7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ltMlORFGzztdo_4Uaf7BKLS2jEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E63E7/4ACB8BF0887111EFA708D17DC4F9AE02/ltMlORFGzztdo_4Uaf7BKLS2jEk.mft Manifest number: 7E Signing time: Fri 13 Jun 2025 05:35:46 +0000 Manifest this update: Fri 13 Jun 2025 05:35:45 +0000 Manifest next update: Fri 20 Jun 2025 05:35:45 +0000 Files and hashes: 1: ltMlORFGzztdo_4Uaf7BKLS2jEk.crl (hash: 4ZvXL0NqckX1+PVToxgrDkND3WYUUN1GvUzWiCgHHkE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E63E7/4ACB8BF0887111EFA708D17DC4F9AE02/ltMlORFGzztdo_4Uaf7BKLS2jEk.crl rsync://rpki.apnic.net/member_repository/A91E63E7/4ACB8BF0887111EFA708D17DC4F9AE02/ltMlORFGzztdo_4Uaf7BKLS2jEk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ltMlORFGzztdo_4Uaf7BKLS2jEk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 05:35:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 126 (0x7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E63E7, serialNumber=96D325391146CF3B5DA3FE1469FEC128B4B68C49 Validity Not Before: Jun 13 05:35:45 2025 GMT Not After : Jun 20 05:35:45 2025 GMT Subject: CN=684bb8b1-2082 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:78:ac:9f:80:ea:22:17:9a:8c:32:52:8a:07: cb:05:57:a2:da:fe:d3:3d:95:b6:53:a8:75:10:8f: f8:49:8b:1d:36:4f:21:a8:d1:57:b0:4e:aa:7f:d8: e0:05:fc:75:59:aa:d4:23:61:83:b3:99:84:5c:1d: 44:67:0e:d4:b6:09:6a:ae:be:ab:a2:7d:bb:6c:dc: 44:50:cb:c3:8d:92:d0:65:8b:20:54:a9:6d:75:c8: d5:be:04:fc:2d:78:0e:67:d6:7c:ba:ce:cb:a1:90: 67:23:40:ab:98:f5:b1:c5:fb:e7:25:91:0c:58:7b: 2b:79:44:0c:5c:2f:0f:1b:62:58:37:ad:fa:d9:42: 13:3c:73:c3:30:1d:c3:e1:b3:e3:34:11:77:53:8d: b1:0f:19:56:da:94:ed:0d:ce:7e:61:90:c6:78:7e: 49:3b:c1:df:fb:77:1f:11:ea:65:79:d5:86:f2:6e: 69:dc:6c:41:34:14:15:32:06:6a:27:3c:6a:0e:1f: b0:a4:0e:70:b2:c1:f6:3c:3d:4d:01:b3:77:d4:24: 32:d6:19:ef:8e:2f:7b:eb:6e:e9:32:e8:70:41:b8: d0:b2:14:75:60:1f:e0:0b:9a:28:45:47:9a:00:c4: 02:5e:08:d9:76:26:af:a2:a1:cd:15:97:9c:25:7c: 41:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:10:28:57:5E:38:65:6E:C0:FF:DC:01:EE:3F:6D:9F:E5:5F:59:3A X509v3 Authority Key Identifier: keyid:96:D3:25:39:11:46:CF:3B:5D:A3:FE:14:69:FE:C1:28:B4:B6:8C:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E63E7/4ACB8BF0887111EFA708D17DC4F9AE02/ltMlORFGzztdo_4Uaf7BKLS2jEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ltMlORFGzztdo_4Uaf7BKLS2jEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E63E7/4ACB8BF0887111EFA708D17DC4F9AE02/ltMlORFGzztdo_4Uaf7BKLS2jEk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:22:32:96:5d:d7:05:43:79:73:a8:e4:ce:8a:1c:57:e8:3b: 3d:cc:7d:57:12:06:da:28:cb:28:19:0d:a4:c9:23:64:05:8b: 99:32:a4:3b:f9:31:96:f2:3c:68:63:4f:64:22:5b:7b:30:52: 81:6e:ba:56:c4:e5:52:48:f2:07:2c:d1:d5:1e:d1:dc:41:28: 13:d1:47:10:1a:b0:68:84:36:c9:fb:8f:6e:49:2a:b6:ed:34: 04:a5:e9:8e:88:c8:46:f7:6b:78:db:01:4b:d2:a5:e6:18:b5: dd:b1:66:56:7d:f6:80:3a:2a:d3:39:9a:88:35:79:ea:fa:78: 61:9f:d3:e1:13:dc:14:1f:2f:4d:e9:6b:92:d8:fa:7c:73:c0: ea:be:91:bd:c7:60:67:1b:28:21:7d:a1:b4:65:c8:20:a6:55: 29:0c:1c:d7:f9:27:4c:6c:fe:89:6d:95:8d:19:3e:15:dc:8c: b6:6d:d7:54:1a:49:eb:90:60:11:b4:9d:a2:b3:5e:4d:2e:06: 6a:83:cf:1b:b7:24:38:50:82:26:3b:80:45:13:88:c7:ed:d1: b7:63:8a:6d:a4:21:1c:d4:b9:f9:74:61:39:22:f4:34:bf:a2: 12:1a:45:2c:40:d4:4e:a1:09:b8:40:a5:6f:bd:e5:bf:96:52: 4b:bc:ed:0f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NjNFNzExMC8GA1UEBRMoOTZEMzI1MzkxMTQ2Q0YzQjVEQTNGRTE0NjlGRUMxMjhC NEI2OEM0OTAeFw0yNTA2MTMwNTM1NDVaFw0yNTA2MjAwNTM1NDVaMBgxFjAUBgNV BAMTDTY4NGJiOGIxLTIwODIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDBeKyfgOoiF5qMMlKKB8sFV6La/tM9lbZTqHUQj/hJix02TyGo0VewTqp/2OAF /HVZqtQjYYOzmYRcHURnDtS2CWquvquifbts3ERQy8ONktBliyBUqW11yNW+BPwt eA5n1ny6zsuhkGcjQKuY9bHF++clkQxYeyt5RAxcLw8bYlg3rfrZQhM8c8MwHcPh s+M0EXdTjbEPGVbalO0Nzn5hkMZ4fkk7wd/7dx8R6mV51YbybmncbEE0FBUyBmon PGoOH7CkDnCywfY8PU0Bs3fUJDLWGe+OL3vrbuky6HBBuNCyFHVgH+ALmihFR5oA xAJeCNl2Jq+ioc0Vl5wlfEHDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUeBAoV144 ZW7A/9wB7j9tn+VfWTowHwYDVR0jBBgwFoAUltMlORFGzztdo/4Uaf7BKLS2jEkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU2M0U3LzRBQ0I4QkYwODg3 MTExRUZBNzA4RDE3REM0RjlBRTAyL2x0TWxPUkZHenp0ZG9fNFVhZjdCS0xTMmpF ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbHRNbE9SRkd6enRkb180VWFmN0JLTFMyakVrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU2 M0U3LzRBQ0I4QkYwODg3MTExRUZBNzA4RDE3REM0RjlBRTAyL2x0TWxPUkZHenp0 ZG9fNFVhZjdCS0xTMmpFay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAD4iMpZd1wVDeXOo5M6KHFfoOz3MfVcSBtooyygZDaTJI2QFi5kypDv5 MZbyPGhjT2QiW3swUoFuulbE5VJI8gcs0dUe0dxBKBPRRxAasGiENsn7j25JKrbt NASl6Y6IyEb3a3jbAUvSpeYYtd2xZlZ99oA6KtM5mog1eer6eGGf0+ET3BQfL03p a5LY+nxzwOq+kb3HYGcbKCF9obRlyCCmVSkMHNf5J0xs/oltlY0ZPhXcjLZt11Qa SeuQYBG0naKzXk0uBmqDzxu3JDhQgiY7gEUTiMft0bdjim2kIRzUufl0YTki9DS/ ohIaRSxA1E6hCbhApW+95b+WUku87Q8= -----END CERTIFICATE-----Generated at Sun Jun 15 05:07:17 2025 by rpki-client