$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0C55/4157FF96031311EBA70CC812C4F9AE02/LsoZlE2psLqHJb5wu-9Unl0huTc.mft File: LsoZlE2psLqHJb5wu-9Unl0huTc.mft (raw, json) Hash identifier: dMoAX6X27CDnFmMPND8tj0eWavGuCdNiKo6kwl0XwUI= Subject key identifier: 25:E7:8F:79:31:03:6C:BA:A3:34:5D:76:4F:BC:1E:B3:93:2E:83:4F Authority key identifier: 2E:CA:19:94:4D:A9:B0:BA:87:25:BE:70:BB:EF:54:9E:5D:21:B9:37 Certificate issuer: /CN=A91F0C55/serialNumber=2ECA19944DA9B0BA8725BE70BBEF549E5D21B937 Certificate serial: 079B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LsoZlE2psLqHJb5wu-9Unl0huTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0C55/4157FF96031311EBA70CC812C4F9AE02/LsoZlE2psLqHJb5wu-9Unl0huTc.mft Manifest number: 0795 Signing time: Thu 24 Apr 2025 21:06:57 +0000 Manifest this update: Thu 24 Apr 2025 21:06:57 +0000 Manifest next update: Thu 01 May 2025 21:06:57 +0000 Files and hashes: 1: LsoZlE2psLqHJb5wu-9Unl0huTc.crl (hash: pAfSAvpwUcLlSB/ePKq9URgtP4cFL0j95IPNEgrG064=) 2: 29B0FABC031511EB8CE8EF17C4F9AE02.roa (hash: UDBTwJHFIDnykm5WO4HER1SExnJLtd1inkUNEKV6P8k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0C55/4157FF96031311EBA70CC812C4F9AE02/LsoZlE2psLqHJb5wu-9Unl0huTc.crl rsync://rpki.apnic.net/member_repository/A91F0C55/4157FF96031311EBA70CC812C4F9AE02/LsoZlE2psLqHJb5wu-9Unl0huTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LsoZlE2psLqHJb5wu-9Unl0huTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:06:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1947 (0x79b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0C55, serialNumber=2ECA19944DA9B0BA8725BE70BBEF549E5D21B937 Validity Not Before: Apr 24 21:06:57 2025 GMT Not After : May 1 21:06:57 2025 GMT Subject: CN=680aa7f1-ad7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:6d:2e:11:4e:27:6d:7a:3c:73:0e:0c:b9:25: b0:dd:30:79:46:a7:9a:6f:14:00:f7:f6:57:f4:cd: 9b:1e:24:d0:af:a0:9d:69:f3:83:4e:ab:82:c3:b5: e3:dc:a8:e0:22:71:88:6b:ef:02:6a:02:2c:2f:9e: fc:13:8c:89:3e:b6:24:5e:93:ce:9d:0a:c6:78:66: df:37:d6:78:8f:fd:90:ef:55:00:1b:ae:d3:97:8b: dd:cd:3e:4a:2a:1e:a6:0f:c7:8e:bc:f9:2d:b6:55: 08:6b:27:b3:5d:4d:53:bd:ba:d4:76:e8:dc:f7:1c: f0:e9:ab:0a:48:75:85:ec:4b:fa:ad:f7:80:f8:d6: c5:a3:85:08:dd:99:4d:86:4c:c6:06:2d:85:8b:b7: 2e:23:a1:2b:9e:0e:15:5c:2c:7b:20:22:87:6d:2d: 94:87:58:1f:8c:ef:e9:d5:1e:59:4c:b6:24:6c:6d: c6:14:e7:e3:32:27:f4:2d:40:cb:cc:9e:ff:d4:9c: 3c:5d:0e:d2:aa:6d:87:21:7f:21:29:6f:0b:2b:35: 40:c0:04:33:3f:60:f8:8d:c6:89:ea:6b:09:ab:62: 28:7d:df:01:a0:3c:8c:78:c9:e3:f0:f7:3f:d8:4c: be:25:e8:d9:80:0d:62:fe:dd:19:f0:cd:3d:ea:e0: 1b:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:E7:8F:79:31:03:6C:BA:A3:34:5D:76:4F:BC:1E:B3:93:2E:83:4F X509v3 Authority Key Identifier: keyid:2E:CA:19:94:4D:A9:B0:BA:87:25:BE:70:BB:EF:54:9E:5D:21:B9:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0C55/4157FF96031311EBA70CC812C4F9AE02/LsoZlE2psLqHJb5wu-9Unl0huTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LsoZlE2psLqHJb5wu-9Unl0huTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0C55/4157FF96031311EBA70CC812C4F9AE02/LsoZlE2psLqHJb5wu-9Unl0huTc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:da:43:2d:be:ab:28:c4:fb:33:2a:49:b6:0c:ca:c7:0e:96: 04:a1:80:e7:37:de:01:46:f5:3a:ad:47:4d:fb:76:d2:78:80: 7f:b6:0e:03:0f:9e:4f:46:41:e1:f6:83:ba:62:88:18:18:66: f6:9e:a1:88:6b:58:97:38:fa:81:68:09:45:cb:c5:c8:2a:a6: 19:da:dc:42:05:2b:6e:6d:2e:69:20:40:f6:62:5a:d0:aa:60: 78:f4:7e:2d:53:f8:84:72:ed:ce:bd:32:c6:13:1e:ed:0f:39: 73:22:f2:a9:f7:a2:e3:df:44:ed:ea:55:b2:ce:d1:80:e7:c1: 34:cb:75:4b:aa:fc:b6:79:82:ab:f1:f8:33:55:cc:b5:05:a0: 41:5c:5f:f3:d9:3f:b6:16:d9:2b:b3:ec:cc:86:fa:53:fa:8f: 26:ec:f3:3d:6b:59:2e:88:2e:21:44:4a:2e:bb:d8:bc:28:c9: 14:f1:13:d0:f5:11:44:89:9a:7b:4b:19:2a:c7:1c:fe:95:8b: 5c:e3:51:7d:1e:42:e1:75:54:e0:95:5d:ac:d9:7e:04:2a:a1: 9b:fb:7a:93:a8:15:9f:af:a7:3f:a8:f9:c8:d2:e1:5f:44:58: 20:78:c9:b4:a7:de:62:48:fe:6d:1e:e7:97:44:57:85:4c:61: bc:18:30:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB5swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBDNTUxMTAvBgNVBAUTKDJFQ0ExOTk0NERBOUIwQkE4NzI1QkU3MEJCRUY1NDlF NUQyMUI5MzcwHhcNMjUwNDI0MjEwNjU3WhcNMjUwNTAxMjEwNjU3WjAYMRYwFAYD VQQDEw02ODBhYTdmMS1hZDdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzW0uEU4nbXo8cw4MuSWw3TB5RqeabxQA9/ZX9M2bHiTQr6CdafODTquCw7Xj 3KjgInGIa+8CagIsL578E4yJPrYkXpPOnQrGeGbfN9Z4j/2Q71UAG67Tl4vdzT5K Kh6mD8eOvPkttlUIayezXU1TvbrUdujc9xzw6asKSHWF7Ev6rfeA+NbFo4UI3ZlN hkzGBi2Fi7cuI6Erng4VXCx7ICKHbS2Uh1gfjO/p1R5ZTLYkbG3GFOfjMif0LUDL zJ7/1Jw8XQ7Sqm2HIX8hKW8LKzVAwAQzP2D4jcaJ6msJq2Iofd8BoDyMeMnj8Pc/ 2Ey+JejZgA1i/t0Z8M096uAb7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCXnj3kx A2y6ozRddk+8HrOTLoNPMB8GA1UdIwQYMBaAFC7KGZRNqbC6hyW+cLvvVJ5dIbk3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEM1NS80MTU3RkY5NjAz MTMxMUVCQTcwQ0M4MTJDNEY5QUUwMi9Mc29abEUycHNMcUhKYjV3dS05VW5sMGh1 VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xzb1psRTJwc0xxSEpiNXd1LTlVbmwwaHVUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEM1NS80MTU3RkY5NjAzMTMxMUVCQTcwQ0M4MTJDNEY5QUUwMi9Mc29abEUycHNM cUhKYjV3dS05VW5sMGh1VGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC42kMtvqsoxPszKkm2DMrHDpYEoYDnN94BRvU6rUdN+3bSeIB/tg4D D55PRkHh9oO6YogYGGb2nqGIa1iXOPqBaAlFy8XIKqYZ2txCBStubS5pIED2YlrQ qmB49H4tU/iEcu3OvTLGEx7tDzlzIvKp96Lj30Tt6lWyztGA58E0y3VLqvy2eYKr 8fgzVcy1BaBBXF/z2T+2Ftkrs+zMhvpT+o8m7PM9a1kuiC4hREouu9i8KMkU8RPQ 9RFEiZp7Sxkqxxz+lYtc41F9HkLhdVTglV2s2X4EKqGb+3qTqBWfr6c/qPnI0uFf RFggeMm0p95iSP5tHueXRFeFTGG8GDDS -----END CERTIFICATE-----Generated at Sat Apr 26 12:25:53 2025 by rpki-client