$ rpki-client -vvf rpki.apnic.net/member_repository/A9149063/6889ADF274BC11EA95099D2BC4F9AE02/l5f3hScG7hxCxopeRQtXL47lCBg.mft File: l5f3hScG7hxCxopeRQtXL47lCBg.mft (raw, json) Hash identifier: ZAF0qJxIMM0EiKwNRbT1y0Q2WnqMb8p8pBNt9xXyyGI= Subject key identifier: BC:76:F0:19:CD:E2:FC:A3:15:7E:F0:03:C9:84:C9:DF:91:98:AB:DC Authority key identifier: 97:97:F7:85:27:06:EE:1C:42:C6:8A:5E:45:0B:57:2F:8E:E5:08:18 Certificate issuer: /CN=A9149063/serialNumber=9797F7852706EE1C42C68A5E450B572F8EE50818 Certificate serial: 0A27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l5f3hScG7hxCxopeRQtXL47lCBg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149063/6889ADF274BC11EA95099D2BC4F9AE02/l5f3hScG7hxCxopeRQtXL47lCBg.mft Manifest number: 0A20 Signing time: Fri 18 Jul 2025 20:01:24 +0000 Manifest this update: Fri 18 Jul 2025 20:01:23 +0000 Manifest next update: Fri 25 Jul 2025 20:01:23 +0000 Files and hashes: 1: l5f3hScG7hxCxopeRQtXL47lCBg.crl (hash: MMUf7ntZiJQiV2KzUJXY0/3KfsvQdPaf9oMJoTZmvGU=) 2: 1EDD32B274BE11EA97202132C4F9AE02.roa (hash: v31hx7pnoT1x1labmZhnEXrmOdmMDEQ40w+RQf8muiA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149063/6889ADF274BC11EA95099D2BC4F9AE02/l5f3hScG7hxCxopeRQtXL47lCBg.crl rsync://rpki.apnic.net/member_repository/A9149063/6889ADF274BC11EA95099D2BC4F9AE02/l5f3hScG7hxCxopeRQtXL47lCBg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l5f3hScG7hxCxopeRQtXL47lCBg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 20:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2599 (0xa27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149063, serialNumber=9797F7852706EE1C42C68A5E450B572F8EE50818 Validity Not Before: Jul 18 20:01:23 2025 GMT Not After : Jul 25 20:01:23 2025 GMT Subject: CN=687aa813-f9c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:63:05:0a:c9:10:60:f9:64:ef:75:49:5c:01: 19:80:12:fb:f3:04:ca:f0:01:0a:33:74:95:03:01: d1:3e:07:6b:d7:8c:95:f3:d3:a5:05:a8:31:7a:fb: 56:4d:36:1d:e8:3a:bb:e4:14:b1:92:ed:05:60:a1: e5:3c:f3:ca:6d:f8:c7:99:67:df:5a:1f:89:76:24: 78:be:78:ce:4b:c1:ad:53:20:2e:a6:b4:77:a9:de: fb:ac:db:37:73:96:98:13:5d:a8:9e:d7:8b:45:f2: b7:22:3b:9d:1c:62:da:7a:11:eb:d6:2f:ed:d4:e3: 02:a2:af:4e:0a:6b:95:8f:69:ff:92:5c:99:9e:b4: a1:1e:0c:6d:bd:eb:ca:60:59:1b:ff:f4:1e:f3:5d: 36:65:92:bc:fb:e6:62:eb:cc:45:89:b3:41:3e:a2: 23:7b:6e:7b:ee:c6:26:4c:d2:ec:8f:4a:06:2d:7b: b7:d1:68:cb:d5:ed:3b:57:d3:69:4d:d2:2b:de:59: 06:40:a5:da:cf:72:05:39:e1:1b:70:ad:3a:ac:c1: b5:cf:91:f0:3a:01:91:1b:c3:e4:5d:13:54:ce:8e: 95:c1:2c:8a:eb:dc:26:dc:fa:02:2f:a4:70:fc:4b: 69:c1:8b:1d:1e:7c:76:09:40:fa:a2:61:62:bd:79: 11:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:76:F0:19:CD:E2:FC:A3:15:7E:F0:03:C9:84:C9:DF:91:98:AB:DC X509v3 Authority Key Identifier: keyid:97:97:F7:85:27:06:EE:1C:42:C6:8A:5E:45:0B:57:2F:8E:E5:08:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149063/6889ADF274BC11EA95099D2BC4F9AE02/l5f3hScG7hxCxopeRQtXL47lCBg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l5f3hScG7hxCxopeRQtXL47lCBg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149063/6889ADF274BC11EA95099D2BC4F9AE02/l5f3hScG7hxCxopeRQtXL47lCBg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:d0:92:ab:f8:69:0c:67:02:2f:34:37:0f:24:92:c9:25:14: 48:91:2f:86:84:6d:76:49:8c:dc:80:51:e8:80:65:a2:19:e0: 08:bc:7e:7f:29:21:7b:8d:ce:d4:ff:ad:8c:5c:c5:3e:32:ba: aa:11:0b:6d:c8:79:d7:85:de:31:d3:b3:40:85:7b:91:42:c4: 8c:94:05:9c:c0:5b:0d:f9:fb:87:8a:d9:7b:90:fa:88:58:9e: 2c:31:a8:7f:c6:49:41:d6:eb:47:46:e9:fb:ce:26:56:b1:c4: 0d:0d:b1:c5:9a:42:92:93:c6:14:09:f4:e4:27:b6:74:86:9a: a0:c1:ef:d8:63:2d:8f:0b:46:a3:37:9b:f0:1c:38:72:d9:02: d5:bc:1b:d3:13:4d:b1:fb:e4:fe:fe:0c:71:36:9e:6d:a4:d9: 9e:e2:92:6d:47:e0:6c:83:45:de:5d:35:e0:a9:b4:33:53:d2: b9:ac:5f:b0:02:ec:fe:4c:9d:33:9f:1e:fd:8d:c4:82:62:5a: 92:29:9f:26:67:90:b6:fa:7a:11:86:bd:a8:f1:66:51:b7:a0: d2:79:9b:4c:7d:95:32:c6:f2:46:5b:a9:06:30:a2:1a:94:7c: ec:43:e7:ea:b8:4f:b3:f6:23:f0:34:7f:62:35:a1:0e:23:da: aa:c8:20:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCicwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDkwNjMxMTAvBgNVBAUTKDk3OTdGNzg1MjcwNkVFMUM0MkM2OEE1RTQ1MEI1NzJG OEVFNTA4MTgwHhcNMjUwNzE4MjAwMTIzWhcNMjUwNzI1MjAwMTIzWjAYMRYwFAYD VQQDEw02ODdhYTgxMy1mOWM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3GMFCskQYPlk73VJXAEZgBL78wTK8AEKM3SVAwHRPgdr14yV89OlBagxevtW TTYd6Dq75BSxku0FYKHlPPPKbfjHmWffWh+JdiR4vnjOS8GtUyAuprR3qd77rNs3 c5aYE12onteLRfK3IjudHGLaehHr1i/t1OMCoq9OCmuVj2n/klyZnrShHgxtvevK YFkb//Qe8102ZZK8++Zi68xFibNBPqIje2577sYmTNLsj0oGLXu30WjL1e07V9Np TdIr3lkGQKXaz3IFOeEbcK06rMG1z5HwOgGRG8PkXRNUzo6VwSyK69wm3PoCL6Rw /EtpwYsdHnx2CUD6omFivXkRMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLx28BnN 4vyjFX7wA8mEyd+RmKvcMB8GA1UdIwQYMBaAFJeX94UnBu4cQsaKXkULVy+O5QgY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OTA2My82ODg5QURGMjc0 QkMxMUVBOTUwOTlEMkJDNEY5QUUwMi9sNWYzaFNjRzdoeEN4b3BlUlF0WEw0N2xD QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w1ZjNoU2NHN2h4Q3hvcGVSUXRYTDQ3bENCZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OTA2My82ODg5QURGMjc0QkMxMUVBOTUwOTlEMkJDNEY5QUUwMi9sNWYzaFNjRzdo eEN4b3BlUlF0WEw0N2xDQmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAY0JKr+GkMZwIvNDcPJJLJJRRIkS+GhG12SYzcgFHogGWiGeAIvH5/ KSF7jc7U/62MXMU+MrqqEQttyHnXhd4x07NAhXuRQsSMlAWcwFsN+fuHitl7kPqI WJ4sMah/xklB1utHRun7ziZWscQNDbHFmkKSk8YUCfTkJ7Z0hpqgwe/YYy2PC0aj N5vwHDhy2QLVvBvTE02x++T+/gxxNp5tpNme4pJtR+Bsg0XeXTXgqbQzU9K5rF+w Auz+TJ0znx79jcSCYlqSKZ8mZ5C2+noRhr2o8WZRt6DSeZtMfZUyxvJGW6kGMKIa lHzsQ+fquE+z9iPwNH9iNaEOI9qqyCBz -----END CERTIFICATE-----Generated at Sun Jul 20 07:48:18 2025 by rpki-client