$ rpki-client -vvf rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft File: lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft (raw, json) Hash identifier: uM+7qPAtxVkpFme7X7J6hII2WtbMEiGp6d4dfovw8SY= Subject key identifier: 85:1F:83:5A:EE:7E:8B:77:86:4E:22:9F:42:FD:88:37:26:67:50:E3 Authority key identifier: 96:4D:08:72:7D:AE:DA:C7:40:37:AB:9C:43:A5:08:BA:DB:CF:DA:FD Certificate issuer: /CN=A914E0FE/serialNumber=964D08727DAEDAC74037AB9C43A508BADBCFDAFD Certificate serial: 83 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lk0Icn2u2sdAN6ucQ6UIutvP2v0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft Manifest number: 7E Signing time: Sat 19 Jul 2025 07:00:13 +0000 Manifest this update: Sat 19 Jul 2025 07:00:13 +0000 Manifest next update: Sat 26 Jul 2025 07:00:13 +0000 Files and hashes: 1: lk0Icn2u2sdAN6ucQ6UIutvP2v0.crl (hash: axo3jcsR3pC30GgYcA6NWkn1AmOoGO/53yUDIwrt9Jg=) 2: 9C9FACF6502411F093EA9419C4F9AE02.roa (hash: 3kK2PgqZkvV+Tke5YJ6lRXtuJEdURQG3ApvWLdCTm0Q=) 3: C5D7AFBA502411F0881DEB19C4F9AE02.roa (hash: Ti8eJO2oAD+cInPnRMrFT32zgx0G9iPebdag3c53iUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.crl rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lk0Icn2u2sdAN6ucQ6UIutvP2v0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 131 (0x83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E0FE, serialNumber=964D08727DAEDAC74037AB9C43A508BADBCFDAFD Validity Not Before: Jul 19 07:00:13 2025 GMT Not After : Jul 26 07:00:13 2025 GMT Subject: CN=687b427d-5446 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:8e:99:de:98:1b:91:83:05:77:ff:9a:db:2e: f7:d3:26:15:67:16:a6:cb:e6:e4:53:70:b0:47:bb: 7f:78:2b:76:68:39:52:b4:7e:47:2f:4e:f8:6b:30: 0a:fb:cb:6e:4f:23:0c:df:a2:52:bf:b1:33:8c:38: 82:5a:15:0a:3c:65:7c:f8:d9:67:18:b9:4a:9e:7d: c5:22:80:e8:86:21:6c:8a:a5:42:ab:60:a3:81:a1: cc:8e:bd:14:c4:ae:a0:01:18:c6:24:62:76:96:93: aa:cd:c8:56:21:3a:d6:c3:61:e4:59:d5:cf:5e:75: 6c:93:fc:31:0e:ea:3f:7d:83:eb:f8:48:d1:d9:20: 75:47:ed:c9:8c:b0:15:25:18:1e:1a:bc:a8:06:f9: 92:db:b9:de:f1:80:e1:ab:7a:79:67:e2:ab:8c:ea: 0e:23:9a:77:76:90:53:b4:f0:ae:88:df:51:9a:d9: 3e:02:e1:18:6f:56:5b:0f:40:48:89:cb:ea:3d:cb: b4:7d:33:f4:ec:11:1d:f4:d2:25:a9:b1:40:fb:52: ce:63:40:46:87:2d:12:aa:b5:2e:a6:ee:98:de:02: 12:7e:59:96:9a:31:42:c7:70:29:47:84:a8:f4:76: 2f:ef:1e:82:d9:5e:68:7a:fa:d0:ef:8a:ae:98:4d: 6e:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:1F:83:5A:EE:7E:8B:77:86:4E:22:9F:42:FD:88:37:26:67:50:E3 X509v3 Authority Key Identifier: keyid:96:4D:08:72:7D:AE:DA:C7:40:37:AB:9C:43:A5:08:BA:DB:CF:DA:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lk0Icn2u2sdAN6ucQ6UIutvP2v0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:4f:35:09:a6:d3:1c:e3:4f:9f:9c:19:19:eb:23:5d:1f:f0: 71:cf:6e:a8:02:16:c7:64:92:d3:89:e2:2a:c6:b8:ff:fa:dc: e9:eb:ac:58:74:d0:fa:7e:c8:f2:e2:0e:79:c6:08:f4:a0:11: 43:52:39:66:fd:af:24:4e:5e:cc:21:bf:3e:6d:28:61:24:e2: e5:9b:8a:30:90:38:27:84:93:ec:36:23:05:cc:4e:c1:33:1c: 9d:7b:bd:c6:ae:5f:8a:aa:39:ee:ab:25:92:46:7f:f5:75:4c: b6:e5:ab:98:e9:77:dd:7f:5d:cb:f5:96:20:f7:98:01:eb:d0: 99:6d:86:94:dc:03:9f:58:65:bf:50:ed:66:05:61:46:d1:f0: 12:ef:6f:29:f6:90:66:8d:09:75:25:ce:e9:b2:67:58:a1:40: 1e:60:02:88:e7:24:7f:b6:5a:7b:9f:5f:d0:7e:ec:1a:04:92: 85:c6:89:35:6a:a1:fc:b5:6f:0f:1d:5e:e3:66:b5:99:6a:83: 49:05:7f:1d:43:b8:22:ed:33:c1:df:54:13:9c:a5:db:a3:b6: 53:cb:f1:68:8f:bf:27:4e:aa:a3:2a:06:51:51:c1:e8:6c:8c: f4:6d:11:72:4d:e1:2e:c4:74:85:b6:e4:fc:d2:18:08:69:56: a7:28:dc:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUwRkUxMTAvBgNVBAUTKDk2NEQwODcyN0RBRURBQzc0MDM3QUI5QzQzQTUwOEJB REJDRkRBRkQwHhcNMjUwNzE5MDcwMDEzWhcNMjUwNzI2MDcwMDEzWjAYMRYwFAYD VQQDEw02ODdiNDI3ZC01NDQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyI6Z3pgbkYMFd/+a2y730yYVZxamy+bkU3CwR7t/eCt2aDlStH5HL074azAK +8tuTyMM36JSv7EzjDiCWhUKPGV8+NlnGLlKnn3FIoDohiFsiqVCq2CjgaHMjr0U xK6gARjGJGJ2lpOqzchWITrWw2HkWdXPXnVsk/wxDuo/fYPr+EjR2SB1R+3JjLAV JRgeGryoBvmS27ne8YDhq3p5Z+KrjOoOI5p3dpBTtPCuiN9Rmtk+AuEYb1ZbD0BI icvqPcu0fTP07BEd9NIlqbFA+1LOY0BGhy0SqrUupu6Y3gISflmWmjFCx3ApR4So 9HYv7x6C2V5oevrQ74qumE1uXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIUfg1ru fot3hk4in0L9iDcmZ1DjMB8GA1UdIwQYMBaAFJZNCHJ9rtrHQDernEOlCLrbz9r9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTBGRS8yRjJCNkZFMkFC Q0ExMUVGQTk5NEQxMjlDNEY5QUUwMi9sazBJY24ydTJzZEFONnVjUTZVSXV0dlAy djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xrMEljbjJ1MnNkQU42dWNRNlVJdXR2UDJ2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTBGRS8yRjJCNkZFMkFCQ0ExMUVGQTk5NEQxMjlDNEY5QUUwMi9sazBJY24ydTJz ZEFONnVjUTZVSXV0dlAydjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzTzUJptMc40+fnBkZ6yNdH/Bxz26oAhbHZJLTieIqxrj/+tzp66xY dND6fsjy4g55xgj0oBFDUjlm/a8kTl7MIb8+bShhJOLlm4owkDgnhJPsNiMFzE7B Mxyde73Grl+KqjnuqyWSRn/1dUy25auY6Xfdf13L9ZYg95gB69CZbYaU3AOfWGW/ UO1mBWFG0fAS728p9pBmjQl1Jc7psmdYoUAeYAKI5yR/tlp7n1/QfuwaBJKFxok1 aqH8tW8PHV7jZrWZaoNJBX8dQ7gi7TPB31QTnKXbo7ZTy/Foj78nTqqjKgZRUcHo bIz0bRFyTeEuxHSFtuT80hgIaVanKNxO -----END CERTIFICATE-----Generated at Sun Jul 20 07:34:15 2025 by rpki-client