$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft File: lQfxHRNjrFs5Lzb17zgixc_NaPk.mft (raw, json) Hash identifier: oGaSNOXl2xLafcjGbKq7+/nEHkS+g9V7vNcTECcyL9A= Subject key identifier: AA:C7:4C:59:2C:35:BB:0E:1D:6B:4A:FE:A7:D8:AA:EF:ED:A1:0D:27 Authority key identifier: 95:07:F1:1D:13:63:AC:5B:39:2F:36:F5:EF:38:22:C5:CF:CD:68:F9 Certificate issuer: /CN=A91EE8AC/serialNumber=9507F11D1363AC5B392F36F5EF3822C5CFCD68F9 Certificate serial: 01C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQfxHRNjrFs5Lzb17zgixc_NaPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft Manifest number: 028A Signing time: Fri 25 Apr 2025 02:16:38 +0000 Manifest this update: Fri 25 Apr 2025 02:16:38 +0000 Manifest next update: Fri 02 May 2025 02:16:38 +0000 Files and hashes: 1: lQfxHRNjrFs5Lzb17zgixc_NaPk.crl (hash: AV+ff1LtJhFL7glnNdBgeL+6Wmv99ILreHTXvIS2fDo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.crl rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQfxHRNjrFs5Lzb17zgixc_NaPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:16:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 449 (0x1c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE8AC, serialNumber=9507F11D1363AC5B392F36F5EF3822C5CFCD68F9 Validity Not Before: Apr 25 02:16:38 2025 GMT Not After : May 2 02:16:38 2025 GMT Subject: CN=680af086-b13d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:5f:29:5e:9d:33:d9:97:4d:91:72:c7:c0:62: 26:df:aa:d8:0b:31:7f:1a:5a:cf:1d:7c:ae:67:1c: bb:27:92:4f:aa:26:2c:f7:28:3a:39:35:2f:11:0f: ad:50:27:a1:83:ef:69:cd:5a:6f:20:27:f9:24:38: d1:7b:12:0b:d0:68:19:84:e5:fb:a6:fd:28:97:0f: 1b:13:f7:98:c3:70:70:f9:df:f8:08:1f:dc:2f:fe: 36:ef:e0:59:c5:bb:c2:c2:7f:72:8b:de:e5:24:3d: 24:41:62:32:55:7d:c8:83:95:f0:e0:54:95:2c:d6: 4b:24:17:ee:67:e5:d1:9c:72:42:61:ba:03:f6:50: 96:79:ea:6f:30:a6:0d:b9:ce:2b:02:94:ae:20:b2: 5f:7f:05:96:1f:9c:b1:a4:de:6e:c3:ba:8e:58:d1: 7b:95:39:7e:4d:78:42:b8:a9:d4:df:03:85:af:28: 53:86:61:a9:ad:7a:c8:ce:e8:1e:a4:39:22:83:2e: ce:60:e7:56:ba:d1:ba:12:ac:be:e0:4d:96:16:a1: e3:38:00:71:c6:a0:ac:db:fd:ab:03:c7:64:df:26: bf:94:ae:1b:4b:44:51:8f:cb:e6:d0:45:af:02:90: 60:47:22:e6:d0:8d:fd:37:b7:93:ac:c9:76:bb:3d: 00:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:C7:4C:59:2C:35:BB:0E:1D:6B:4A:FE:A7:D8:AA:EF:ED:A1:0D:27 X509v3 Authority Key Identifier: keyid:95:07:F1:1D:13:63:AC:5B:39:2F:36:F5:EF:38:22:C5:CF:CD:68:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQfxHRNjrFs5Lzb17zgixc_NaPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:f6:b5:6d:10:ce:8f:05:a8:b6:bb:ff:14:ec:6a:3f:c1:a2: 79:d2:18:39:1c:34:ce:31:c8:e0:83:30:18:e8:31:ed:cc:96: 72:25:b4:59:f3:77:22:fd:83:6f:ff:14:7c:e7:ea:64:36:5b: 71:ec:84:c9:50:59:e4:6c:75:a3:3f:35:fc:e9:89:aa:5c:79: 9b:8e:4b:d0:97:1d:b7:5f:1d:e1:4d:e0:a8:63:05:a5:7e:a5: fa:83:63:06:7c:88:62:5d:5d:83:d6:65:f6:b5:e3:14:36:50: a1:42:20:73:f2:2a:24:d9:07:e7:e5:b0:25:45:09:95:9b:01: 5e:43:57:bf:6c:ce:11:9c:96:92:6e:43:e6:ed:91:fc:40:f8: c6:a1:d4:6f:e0:4f:d9:64:e8:d4:af:8b:0f:04:3b:6b:59:c5: b0:83:c3:bd:b4:21:a2:90:e4:bd:25:e0:e8:17:c3:46:84:5e: a4:33:63:06:89:c8:57:1a:c9:56:89:b3:56:49:80:af:18:45: ef:48:ad:3f:3b:02:9e:66:a2:9f:69:e1:f0:ab:f9:3d:67:7d: eb:fd:b4:ac:7a:10:dd:69:f7:eb:de:71:1e:8c:09:ca:4a:04: 1a:0f:0e:f5:eb:aa:31:a9:d1:89:21:19:66:a6:71:41:ec:8b: 35:4a:3a:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU4QUMxMTAvBgNVBAUTKDk1MDdGMTFEMTM2M0FDNUIzOTJGMzZGNUVGMzgyMkM1 Q0ZDRDY4RjkwHhcNMjUwNDI1MDIxNjM4WhcNMjUwNTAyMDIxNjM4WjAYMRYwFAYD VQQDEw02ODBhZjA4Ni1iMTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6l8pXp0z2ZdNkXLHwGIm36rYCzF/GlrPHXyuZxy7J5JPqiYs9yg6OTUvEQ+t UCehg+9pzVpvICf5JDjRexIL0GgZhOX7pv0olw8bE/eYw3Bw+d/4CB/cL/427+BZ xbvCwn9yi97lJD0kQWIyVX3Ig5Xw4FSVLNZLJBfuZ+XRnHJCYboD9lCWeepvMKYN uc4rApSuILJffwWWH5yxpN5uw7qOWNF7lTl+TXhCuKnU3wOFryhThmGprXrIzuge pDkigy7OYOdWutG6Eqy+4E2WFqHjOABxxqCs2/2rA8dk3ya/lK4bS0RRj8vm0EWv ApBgRyLm0I39N7eTrMl2uz0AFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKrHTFks NbsOHWtK/qfYqu/toQ0nMB8GA1UdIwQYMBaAFJUH8R0TY6xbOS829e84IsXPzWj5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRThBQy81MDM4RUM4QzdE RUIxMUVEQTdDQTRBN0VDNEY5QUUwMi9sUWZ4SFJOanJGczVMemIxN3pnaXhjX05h UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xRZnhIUk5qckZzNUx6YjE3emdpeGNfTmFQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RThBQy81MDM4RUM4QzdERUIxMUVEQTdDQTRBN0VDNEY5QUUwMi9sUWZ4SFJOanJG czVMemIxN3pnaXhjX05hUGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBV9rVtEM6PBai2u/8U7Go/waJ50hg5HDTOMcjggzAY6DHtzJZyJbRZ 83ci/YNv/xR85+pkNltx7ITJUFnkbHWjPzX86YmqXHmbjkvQlx23Xx3hTeCoYwWl fqX6g2MGfIhiXV2D1mX2teMUNlChQiBz8iok2Qfn5bAlRQmVmwFeQ1e/bM4RnJaS bkPm7ZH8QPjGodRv4E/ZZOjUr4sPBDtrWcWwg8O9tCGikOS9JeDoF8NGhF6kM2MG ichXGslWibNWSYCvGEXvSK0/OwKeZqKfaeHwq/k9Z33r/bSsehDdaffr3nEejAnK SgQaDw7166oxqdGJIRlmpnFB7Is1Sjq0 -----END CERTIFICATE-----Generated at Sat Apr 26 04:21:59 2025 by rpki-client