$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.mft File: lSamckeK-nVEXY0H3MV8BYlm7-I.mft (raw, json) Hash identifier: r4vo6V0V5DI9car5dQanj6NLywCCYPOJM1SUTRe1oZU= Subject key identifier: A5:62:93:CF:85:14:EC:89:3B:A0:8C:B3:B8:2A:66:BD:BE:B8:A9:ED Authority key identifier: 95:26:A6:72:47:8A:FA:75:44:5D:8D:07:DC:C5:7C:05:89:66:EF:E2 Certificate issuer: /CN=A91FA1BE/serialNumber=9526A672478AFA75445D8D07DCC57C058966EFE2 Certificate serial: 0232 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSamckeK-nVEXY0H3MV8BYlm7-I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.mft Manifest number: 022C Signing time: Fri 13 Jun 2025 01:24:47 +0000 Manifest this update: Fri 13 Jun 2025 01:24:46 +0000 Manifest next update: Fri 20 Jun 2025 01:24:46 +0000 Files and hashes: 1: lSamckeK-nVEXY0H3MV8BYlm7-I.crl (hash: VoZEYG4ze1gA0lbNtS8L5pScHcjCMhsjqATd0y9bWbY=) 2: 6F46908C2D3411ED92165562C4F9AE02.roa (hash: 4gZpKbAZ3PPZ8XY+4tRmnbJCoHSToqpiZD3Xw35DspI=) 3: 6E98B3182D3411ED92165562C4F9AE02.roa (hash: lDaMLlKkOnOEtKB4HQw14YL4MByHOHikQc7Dy/TLNpg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.crl rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSamckeK-nVEXY0H3MV8BYlm7-I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 01:24:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 562 (0x232) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA1BE, serialNumber=9526A672478AFA75445D8D07DCC57C058966EFE2 Validity Not Before: Jun 13 01:24:46 2025 GMT Not After : Jun 20 01:24:46 2025 GMT Subject: CN=684b7dde-d597 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:23:6e:4c:c5:5e:a0:09:40:48:ba:0c:91:41: f5:ca:3a:f8:81:e3:3c:a0:40:d4:92:ed:c9:6e:bd: 0f:e0:f2:6e:dd:50:8e:6f:3e:77:d7:90:82:fc:a0: 5f:3c:c1:7d:ed:85:6d:f8:04:a9:a9:e0:86:f4:e4: ad:31:3c:0c:73:71:ad:59:75:aa:3e:c1:90:47:b4: 44:4c:41:48:69:02:b0:05:9a:b9:07:c2:a4:ff:ff: 46:78:f6:aa:ca:29:05:61:6d:66:90:0a:49:9b:9a: c6:94:b4:41:0b:7a:b2:62:c0:e5:05:c6:8d:2e:d7: b0:52:e4:64:23:c8:6d:f5:99:b0:3f:3b:0e:1c:d4: a1:ba:cd:9b:0b:0b:06:79:cb:8b:e4:ba:10:75:62: c2:a8:29:26:8d:93:cc:71:f5:4f:cd:5e:b8:b7:dc: a4:22:18:f7:8b:ca:aa:4f:83:b8:41:f0:16:a7:df: 67:88:49:1e:29:c6:c2:0a:a1:3b:73:23:e3:bf:88: c2:15:e3:cf:f0:af:f2:f3:dd:9c:25:3c:0c:e8:21: ec:ed:4f:91:22:a2:b0:23:34:8d:66:d0:a7:34:fd: b0:86:87:8d:8a:a8:84:65:8e:0d:b2:fb:41:cd:d9: fe:ed:04:9d:08:21:ae:af:2a:4e:d6:74:59:1e:c4: 63:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:62:93:CF:85:14:EC:89:3B:A0:8C:B3:B8:2A:66:BD:BE:B8:A9:ED X509v3 Authority Key Identifier: keyid:95:26:A6:72:47:8A:FA:75:44:5D:8D:07:DC:C5:7C:05:89:66:EF:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSamckeK-nVEXY0H3MV8BYlm7-I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:57:0e:73:04:83:d2:8f:32:2d:78:5a:ef:1b:b5:b6:35:a1: 3a:02:92:6c:f5:8d:60:d3:22:08:f1:1f:f8:7c:72:bc:fc:d0: 0d:78:cb:cb:2e:20:f6:29:1e:78:70:95:97:55:09:1d:ce:4c: 31:fc:5c:04:56:8a:59:df:31:36:0b:17:a7:40:3f:68:3c:fd: 9e:c2:f1:28:a7:7c:88:47:94:29:45:10:64:2f:d0:58:fb:2d: 76:17:41:e5:67:07:e8:d1:b7:70:e6:06:3a:a4:de:9a:33:f2: 9e:62:c5:cb:a6:7a:0a:43:57:59:50:7f:83:26:2b:fb:75:9f: d7:5b:31:09:bd:63:3d:7b:a2:1e:88:b5:b7:e2:81:a1:4b:7c: 26:9b:ea:37:db:e5:2c:14:07:ce:f7:83:16:46:45:9e:7b:a8: d7:6f:e4:dc:9a:05:e3:4e:2c:f9:63:b8:f9:e8:b5:14:7c:3e: 42:8b:24:0a:d9:34:62:0f:70:c6:36:64:c4:37:d8:f5:0a:4c: fe:ee:96:34:8f:95:ab:93:54:d5:5b:53:3b:dd:45:16:5c:8f: 55:b4:db:96:95:1f:32:0f:f6:d5:4e:ce:3d:af:cc:53:8b:0a: e9:97:ba:46:28:4c:c8:45:32:8c:3c:ac:4e:68:58:ad:52:6d: ea:46:b8:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkExQkUxMTAvBgNVBAUTKDk1MjZBNjcyNDc4QUZBNzU0NDVEOEQwN0RDQzU3QzA1 ODk2NkVGRTIwHhcNMjUwNjEzMDEyNDQ2WhcNMjUwNjIwMDEyNDQ2WjAYMRYwFAYD VQQDEw02ODRiN2RkZS1kNTk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoCNuTMVeoAlASLoMkUH1yjr4geM8oEDUku3Jbr0P4PJu3VCObz5315CC/KBf PMF97YVt+ASpqeCG9OStMTwMc3GtWXWqPsGQR7RETEFIaQKwBZq5B8Kk//9GePaq yikFYW1mkApJm5rGlLRBC3qyYsDlBcaNLtewUuRkI8ht9ZmwPzsOHNShus2bCwsG ecuL5LoQdWLCqCkmjZPMcfVPzV64t9ykIhj3i8qqT4O4QfAWp99niEkeKcbCCqE7 cyPjv4jCFePP8K/y892cJTwM6CHs7U+RIqKwIzSNZtCnNP2whoeNiqiEZY4NsvtB zdn+7QSdCCGurypO1nRZHsRjAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKVik8+F FOyJO6CMs7gqZr2+uKntMB8GA1UdIwQYMBaAFJUmpnJHivp1RF2NB9zFfAWJZu/i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTFCRS80MTY4RkY3NjJE MzIxMUVEOTJCOEI3NjFDNEY5QUUwMi9sU2FtY2tlSy1uVkVYWTBIM01WOEJZbG03 LUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xTYW1ja2VLLW5WRVhZMEgzTVY4QllsbTctSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTFCRS80MTY4RkY3NjJEMzIxMUVEOTJCOEI3NjFDNEY5QUUwMi9sU2FtY2tlSy1u VkVYWTBIM01WOEJZbG03LUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCeVw5zBIPSjzIteFrvG7W2NaE6ApJs9Y1g0yII8R/4fHK8/NANeMvL LiD2KR54cJWXVQkdzkwx/FwEVopZ3zE2CxenQD9oPP2ewvEop3yIR5QpRRBkL9BY +y12F0HlZwfo0bdw5gY6pN6aM/KeYsXLpnoKQ1dZUH+DJiv7dZ/XWzEJvWM9e6Ie iLW34oGhS3wmm+o32+UsFAfO94MWRkWee6jXb+TcmgXjTiz5Y7j56LUUfD5CiyQK 2TRiD3DGNmTEN9j1Ckz+7pY0j5Wrk1TVW1M73UUWXI9VtNuWlR8yD/bVTs49r8xT iwrpl7pGKEzIRTKMPKxOaFitUm3qRrgu -----END CERTIFICATE-----Generated at Sat Jun 14 17:58:37 2025 by rpki-client