$ rpki-client -vvf rpki.apnic.net/member_repository/A911AD81/87D3520A89E111EF8921404DC4F9AE02/LejyFtzSvsbTj-vwHgbYqZAnDr8.mft File: LejyFtzSvsbTj-vwHgbYqZAnDr8.mft (raw, json) Hash identifier: +CX1+vueE8sOs5PDYoUQ8QLs+kUKPDVpEZREcF4/sVg= Subject key identifier: CF:68:2E:67:5C:FE:6F:3C:F7:69:61:70:D3:B7:FF:E7:1C:6F:C9:82 Authority key identifier: 2D:E8:F2:16:DC:D2:BE:C6:D3:8F:EB:F0:1E:06:D8:A9:90:27:0E:BF Certificate issuer: /CN=A911AD81/serialNumber=2DE8F216DCD2BEC6D38FEBF01E06D8A990270EBF Certificate serial: 9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LejyFtzSvsbTj-vwHgbYqZAnDr8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AD81/87D3520A89E111EF8921404DC4F9AE02/LejyFtzSvsbTj-vwHgbYqZAnDr8.mft Manifest number: 98 Signing time: Sat 19 Jul 2025 06:40:56 +0000 Manifest this update: Sat 19 Jul 2025 06:40:56 +0000 Manifest next update: Sat 26 Jul 2025 06:40:56 +0000 Files and hashes: 1: LejyFtzSvsbTj-vwHgbYqZAnDr8.crl (hash: gyBUt+Ox65go3tDtQEdXwuEb19gw/7ohGneMSah84Ow=) 2: 0E0C2FDA8A9211EF928F7977C4F9AE02.roa (hash: D50MfgKogwzT5uP2v0jQRRWmVMAdx71+85AyPtqqgw0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AD81/87D3520A89E111EF8921404DC4F9AE02/LejyFtzSvsbTj-vwHgbYqZAnDr8.crl rsync://rpki.apnic.net/member_repository/A911AD81/87D3520A89E111EF8921404DC4F9AE02/LejyFtzSvsbTj-vwHgbYqZAnDr8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LejyFtzSvsbTj-vwHgbYqZAnDr8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 06:40:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 157 (0x9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AD81, serialNumber=2DE8F216DCD2BEC6D38FEBF01E06D8A990270EBF Validity Not Before: Jul 19 06:40:56 2025 GMT Not After : Jul 26 06:40:56 2025 GMT Subject: CN=687b3df8-bcb2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:ad:e3:92:49:c0:78:f3:86:42:cb:9c:9d:0a: 15:32:94:93:58:3d:48:1c:d2:8b:fc:6a:1e:f9:70: ed:d4:d0:61:e5:12:6f:75:13:ca:f5:dc:c8:06:62: 4c:33:10:e7:bc:75:4d:fd:2f:1b:f5:a4:2d:a3:81: cd:c1:98:2a:c9:47:bd:0d:3e:9f:3e:94:59:e3:07: 19:11:60:b9:91:7d:39:a9:0c:f7:0d:f7:db:b8:02: 93:72:06:6d:a9:27:68:6f:f1:ef:d4:ea:ba:b2:e2: 48:62:22:1c:c0:eb:0b:71:ed:66:cd:e2:9c:c4:1a: e3:a1:85:1d:44:5e:69:32:7d:99:1f:a6:4e:3b:a3: 51:c9:a1:16:64:7c:d3:41:1b:94:d9:c6:39:e0:56: 17:2f:c4:e4:2f:c3:a3:c6:76:6f:35:ae:e3:0a:4c: 4e:ba:4e:d0:19:48:47:5b:3e:06:2e:c6:8e:03:fa: 4d:0b:13:79:4b:21:f6:6f:e3:24:f9:52:ab:15:77: a6:69:59:40:c2:17:7c:ba:7a:2a:74:0b:a2:0e:11: fb:fe:48:8a:2c:98:2d:8f:66:15:a4:37:10:1e:96: b2:71:39:35:63:76:5a:0e:15:c9:cb:53:17:b7:09: 34:62:e3:30:d2:4e:76:bd:61:d5:0d:dc:f6:9a:8b: 6d:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:68:2E:67:5C:FE:6F:3C:F7:69:61:70:D3:B7:FF:E7:1C:6F:C9:82 X509v3 Authority Key Identifier: keyid:2D:E8:F2:16:DC:D2:BE:C6:D3:8F:EB:F0:1E:06:D8:A9:90:27:0E:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AD81/87D3520A89E111EF8921404DC4F9AE02/LejyFtzSvsbTj-vwHgbYqZAnDr8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LejyFtzSvsbTj-vwHgbYqZAnDr8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AD81/87D3520A89E111EF8921404DC4F9AE02/LejyFtzSvsbTj-vwHgbYqZAnDr8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:e9:58:4b:c2:36:3f:67:19:a2:f5:bc:63:ee:db:9a:b4:bc: 84:f4:4e:40:12:f9:ed:1b:db:aa:3c:91:1a:dc:3b:41:ff:5b: 3e:7a:45:35:89:78:a7:3f:30:28:d6:86:2d:04:a2:52:de:c3: 6e:4a:0c:30:24:dd:13:bb:7d:d6:24:43:66:05:8a:50:52:fb: 17:59:91:87:f6:83:1e:5e:54:d6:b9:47:ad:f6:0a:ab:03:69: 3a:89:38:44:53:6e:77:d8:dd:73:e4:26:59:c9:ca:c0:6a:6e: f9:d1:e4:7b:e9:62:7b:fd:61:46:1e:9a:33:6c:57:1e:08:b2: fa:58:09:f9:55:1a:63:1d:87:b0:79:c1:4b:06:dd:50:95:43: 5b:d3:b5:f7:e9:6c:5e:5f:06:dc:1b:58:25:a6:14:3c:e8:19: 9a:ac:db:a8:4f:ed:86:0b:af:27:2e:72:cf:ce:f6:bc:c1:9a: 5c:ca:75:a8:1e:8f:bc:43:d6:aa:4d:87:c0:8b:0c:80:72:03: 49:6c:30:ec:d5:d2:e5:43:69:4c:fd:8a:a0:e0:50:33:3b:2f: fc:5a:69:aa:89:e5:ea:82:b6:d1:6f:d2:a4:6a:51:6e:e0:0a: 87:18:bb:2d:03:0a:68:c3:9d:ba:00:69:9b:1d:da:20:c6:bc: f9:c6:f8:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFEODExMTAvBgNVBAUTKDJERThGMjE2RENEMkJFQzZEMzhGRUJGMDFFMDZEOEE5 OTAyNzBFQkYwHhcNMjUwNzE5MDY0MDU2WhcNMjUwNzI2MDY0MDU2WjAYMRYwFAYD VQQDEw02ODdiM2RmOC1iY2IyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7K3jkknAePOGQsucnQoVMpSTWD1IHNKL/Goe+XDt1NBh5RJvdRPK9dzIBmJM MxDnvHVN/S8b9aQto4HNwZgqyUe9DT6fPpRZ4wcZEWC5kX05qQz3DffbuAKTcgZt qSdob/Hv1Oq6suJIYiIcwOsLce1mzeKcxBrjoYUdRF5pMn2ZH6ZOO6NRyaEWZHzT QRuU2cY54FYXL8TkL8OjxnZvNa7jCkxOuk7QGUhHWz4GLsaOA/pNCxN5SyH2b+Mk +VKrFXemaVlAwhd8unoqdAuiDhH7/kiKLJgtj2YVpDcQHpaycTk1Y3ZaDhXJy1MX twk0YuMw0k52vWHVDdz2mott3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM9oLmdc /m8892lhcNO3/+ccb8mCMB8GA1UdIwQYMBaAFC3o8hbc0r7G04/r8B4G2KmQJw6/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUQ4MS84N0QzNTIwQTg5 RTExMUVGODkyMTQwNERDNEY5QUUwMi9MZWp5RnR6U3ZzYlRqLXZ3SGdiWXFaQW5E cjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xlanlGdHpTdnNiVGotdndIZ2JZcVpBbkRyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUQ4MS84N0QzNTIwQTg5RTExMUVGODkyMTQwNERDNEY5QUUwMi9MZWp5RnR6U3Zz YlRqLXZ3SGdiWXFaQW5EcjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCr6VhLwjY/Zxmi9bxj7tuatLyE9E5AEvntG9uqPJEa3DtB/1s+ekU1 iXinPzAo1oYtBKJS3sNuSgwwJN0Tu33WJENmBYpQUvsXWZGH9oMeXlTWuUet9gqr A2k6iThEU2532N1z5CZZycrAam750eR76WJ7/WFGHpozbFceCLL6WAn5VRpjHYew ecFLBt1QlUNb07X36WxeXwbcG1glphQ86BmarNuoT+2GC68nLnLPzva8wZpcynWo Ho+8Q9aqTYfAiwyAcgNJbDDs1dLlQ2lM/Yqg4FAzOy/8WmmqieXqgrbRb9KkalFu 4AqHGLstAwpow526AGmbHdogxrz5xvi5 -----END CERTIFICATE-----Generated at Sun Jul 20 08:00:34 2025 by rpki-client