$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft File: lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft (raw, json) Hash identifier: 0clPaRm8LOq4Mkz4UImAB1Eju36mZ/fkv1fdPiYglgY= Subject key identifier: 14:A2:6C:EA:62:D9:3F:65:B9:DD:19:46:7C:9D:0D:C1:AB:AC:4F:B9 Authority key identifier: 95:06:8B:B3:0A:BC:7E:00:7F:D8:38:7E:4D:E0:A8:3E:FA:AD:D4:72 Certificate issuer: /CN=A91E9DF8/serialNumber=95068BB30ABC7E007FD8387E4DE0A83EFAADD472 Certificate serial: 05EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQaLswq8fgB_2Dh-TeCoPvqt1HI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft Manifest number: 05E8 Signing time: Wed 18 Jun 2025 22:47:24 +0000 Manifest this update: Wed 18 Jun 2025 22:47:23 +0000 Manifest next update: Wed 25 Jun 2025 22:47:23 +0000 Files and hashes: 1: lQaLswq8fgB_2Dh-TeCoPvqt1HI.crl (hash: dyOezaxSGfq0wWwqvL4a2DoJee0k5RnmSGI5ywUAnm8=) 2: A8086732B6DA11EBB7B67954C4F9AE02.roa (hash: ldWjzJ4l8BsIeHREFrvU51ElQcTYEq5MkB9HbZsC/bI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.crl rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQaLswq8fgB_2Dh-TeCoPvqt1HI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 22:47:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1518 (0x5ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9DF8, serialNumber=95068BB30ABC7E007FD8387E4DE0A83EFAADD472 Validity Not Before: Jun 18 22:47:23 2025 GMT Not After : Jun 25 22:47:23 2025 GMT Subject: CN=685341fc-1e07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:74:1d:63:45:a9:23:a5:db:fe:27:e7:c6:3a: 82:05:d2:77:22:b0:63:92:2f:2b:f4:7b:d1:bb:9a: b6:66:ec:fd:b5:77:be:6e:b7:89:05:25:8a:a9:8c: 24:cd:82:a2:d5:de:4e:64:af:13:bc:1e:52:f2:58: 52:bb:f9:f6:ee:b5:d1:6b:3a:52:19:98:93:60:88: 68:70:a7:df:a3:c1:b9:86:47:d1:8f:0a:17:53:54: c0:8a:d3:78:22:7f:9e:e0:cd:84:bf:9b:1a:cb:5c: a5:ac:c9:2e:3a:31:6f:d5:8e:6a:0c:3e:30:d3:be: 83:ce:7a:bb:60:6f:0a:d9:46:42:75:27:96:3f:3b: 90:80:9e:de:22:2c:ba:32:43:6e:2b:9d:68:be:c0: fe:00:08:dc:a5:ff:cc:db:f1:19:f7:0c:72:8a:39: 1a:ab:41:cf:12:0f:f5:cf:a4:ed:74:19:55:9d:c0: b5:67:41:f8:61:14:96:e9:7d:31:68:e2:cb:89:e1: 76:51:46:af:38:90:83:b1:d5:80:35:7f:bd:e4:9f: 45:64:b6:c7:b9:4a:e6:89:24:3b:bd:da:57:6b:80: 4f:f6:97:f8:6c:25:0b:dc:de:bd:6a:f0:e7:bd:be: 67:ee:d6:e7:33:71:ef:9f:fb:30:18:c6:18:86:e2: f6:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:A2:6C:EA:62:D9:3F:65:B9:DD:19:46:7C:9D:0D:C1:AB:AC:4F:B9 X509v3 Authority Key Identifier: keyid:95:06:8B:B3:0A:BC:7E:00:7F:D8:38:7E:4D:E0:A8:3E:FA:AD:D4:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQaLswq8fgB_2Dh-TeCoPvqt1HI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:03:a5:0e:f4:9d:2a:47:d4:78:e9:a5:35:b3:9d:66:b2:47: e8:a5:44:6b:05:a6:0c:0c:c3:85:44:95:d2:9f:40:9f:ad:85: 83:da:a0:f4:58:b5:e6:7b:af:85:fb:7b:41:47:7d:db:5f:32: 2a:28:34:e8:2b:5f:6a:cb:d3:dc:fd:e5:02:2d:df:21:6b:c1: b5:82:99:99:4b:a4:27:da:73:b3:36:92:4c:48:54:d6:6f:0f: 51:45:8f:bd:10:99:7d:0f:17:12:58:96:91:ce:d7:54:f6:90: c0:3e:d7:c6:ad:a3:32:54:97:2b:b7:25:cb:46:a2:5e:19:5f: 12:6e:37:85:04:40:8a:8c:33:04:df:7a:6e:bc:b7:06:45:ac: 55:ba:c7:34:da:07:2b:4a:bc:94:2b:ac:7a:99:08:58:00:b6: 50:f9:4a:00:65:d7:a1:b7:75:4b:d7:c1:1e:bd:7f:84:83:80: ec:a3:81:64:39:a6:a6:ff:b7:41:61:50:ee:28:c0:00:aa:dc: 09:9d:6e:3d:b1:75:a5:5d:e2:7d:d4:76:7c:2a:d6:d1:f3:97: 54:df:41:1f:65:9c:63:7a:5a:e1:d4:be:1f:99:9f:a7:76:52: 3c:63:90:45:f0:65:5b:a0:66:b2:d6:9d:0b:bb:f0:0a:3d:db: 2d:fb:1a:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBe4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlERjgxMTAvBgNVBAUTKDk1MDY4QkIzMEFCQzdFMDA3RkQ4Mzg3RTRERTBBODNF RkFBREQ0NzIwHhcNMjUwNjE4MjI0NzIzWhcNMjUwNjI1MjI0NzIzWjAYMRYwFAYD VQQDEw02ODUzNDFmYy0xZTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq3QdY0WpI6Xb/ifnxjqCBdJ3IrBjki8r9HvRu5q2Zuz9tXe+breJBSWKqYwk zYKi1d5OZK8TvB5S8lhSu/n27rXRazpSGZiTYIhocKffo8G5hkfRjwoXU1TAitN4 In+e4M2Ev5say1ylrMkuOjFv1Y5qDD4w076Dznq7YG8K2UZCdSeWPzuQgJ7eIiy6 MkNuK51ovsD+AAjcpf/M2/EZ9wxyijkaq0HPEg/1z6TtdBlVncC1Z0H4YRSW6X0x aOLLieF2UUavOJCDsdWANX+95J9FZLbHuUrmiSQ7vdpXa4BP9pf4bCUL3N69avDn vb5n7tbnM3Hvn/swGMYYhuL2BQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBSibOpi 2T9lud0ZRnydDcGrrE+5MB8GA1UdIwQYMBaAFJUGi7MKvH4Af9g4fk3gqD76rdRy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOURGOC80QjNCODgxRUI2 RDkxMUVCOEY4NjU1NTRDNEY5QUUwMi9sUWFMc3dxOGZnQl8yRGgtVGVDb1B2cXQx SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xRYUxzd3E4ZmdCXzJEaC1UZUNvUHZxdDFISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OURGOC80QjNCODgxRUI2RDkxMUVCOEY4NjU1NTRDNEY5QUUwMi9sUWFMc3dxOGZn Ql8yRGgtVGVDb1B2cXQxSEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2A6UO9J0qR9R46aU1s51mskfopURrBaYMDMOFRJXSn0CfrYWD2qD0 WLXme6+F+3tBR33bXzIqKDToK19qy9Pc/eUCLd8ha8G1gpmZS6Qn2nOzNpJMSFTW bw9RRY+9EJl9DxcSWJaRztdU9pDAPtfGraMyVJcrtyXLRqJeGV8SbjeFBECKjDME 33puvLcGRaxVusc02gcrSryUK6x6mQhYALZQ+UoAZdeht3VL18EevX+Eg4Dso4Fk Oaam/7dBYVDuKMAAqtwJnW49sXWlXeJ91HZ8KtbR85dU30EfZZxjelrh1L4fmZ+n dlI8Y5BF8GVboGay1p0Lu/AKPdst+xrR -----END CERTIFICATE-----Generated at Thu Jun 19 02:59:21 2025 by rpki-client