$ rpki-client -vvf rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft File: loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft (raw, json) Hash identifier: L9kakCbBL3r1HbXCTpFn1qH66XdW5i1LngPAF/Y0vBM= Subject key identifier: D6:67:BB:2A:89:1A:BA:36:9F:42:CD:85:B3:29:7C:C2:90:3D:7C:5F Authority key identifier: 96:82:C2:AB:E2:53:23:58:07:76:B1:D0:E2:75:D2:FD:2D:69:7E:B6 Certificate issuer: /CN=A91514B1/serialNumber=9682C2ABE25323580776B1D0E275D2FD2D697EB6 Certificate serial: 0570 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft Manifest number: 0559 Signing time: Fri 18 Jul 2025 23:47:35 +0000 Manifest this update: Fri 18 Jul 2025 23:47:35 +0000 Manifest next update: Fri 25 Jul 2025 23:47:35 +0000 Files and hashes: 1: loLCq-JTI1gHdrHQ4nXS_S1pfrY.crl (hash: h3YRUXZ+1NLvEo95/X0C/79zDll0Sk+W0tg4kwxw9ek=) 2: AF0A3F14178911EC876F5F50C4F9AE02.roa (hash: IVU27JRYWuBmIt6QcWFMqPFM6vDpf9nhIJBTc75GYY0=) 3: F1C7A044D91E11EFAD3C7613C4F9AE02.roa (hash: iDEEL9U9FxQCZ93LBYj286NgN76ygoYjLl0M4z8SPpI=) 4: D3D36BE0271011ECA0D7D95AC4F9AE02.roa (hash: U7esX+0iuEFV+x7WiXgxLOpS83nYnKPDWOfbwdSRies=) 5: AE8BB766178911EC876F5F50C4F9AE02.roa (hash: OD4QLqvF0E7NjniUYIqO9yXt+jiElu9IZS+rh6A1NUw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.crl rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 23:47:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1392 (0x570) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91514B1, serialNumber=9682C2ABE25323580776B1D0E275D2FD2D697EB6 Validity Not Before: Jul 18 23:47:35 2025 GMT Not After : Jul 25 23:47:35 2025 GMT Subject: CN=687add17-125e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:8e:24:af:80:58:43:7a:df:da:4a:b5:b7:ac: 5c:cc:ca:c5:46:4e:00:93:d9:c5:9d:b7:25:4e:81: 32:1c:b6:01:c4:9c:3e:d4:30:28:2b:38:ab:11:cc: 73:2a:0c:0a:90:20:bb:15:d3:47:f7:28:4b:bd:51: 1b:5e:04:ac:d5:95:e8:fb:f5:14:5e:1e:67:51:82: 8d:ce:18:12:4a:75:03:87:bd:57:44:40:38:85:de: 2a:8b:1b:13:46:12:b2:54:62:3b:6a:43:a6:31:a7: b5:ef:ff:3a:d7:9d:6e:d1:5d:e5:f8:d9:e7:d6:0b: ed:c9:e5:cf:4e:4d:9a:98:a4:06:60:86:f2:fd:90: 3b:b1:b8:50:bf:55:aa:f5:89:76:d2:be:fe:ea:e4: a6:90:82:13:54:bd:53:4d:fc:7d:1e:16:6c:85:07: 9e:89:07:ec:46:c9:e4:04:1d:e4:23:22:1d:c9:9d: 28:80:9d:83:0e:af:64:f4:19:ec:88:d3:1c:f6:03: ec:6f:e6:95:cb:e7:01:a1:fb:8f:98:99:c0:90:43: af:cc:22:3f:42:49:9e:14:04:44:9b:4b:ec:c5:40: 72:37:0e:47:83:c5:ed:9b:a2:9f:7d:db:c4:65:f2: 44:0e:19:cb:dd:9e:c4:88:77:b2:4e:04:b6:ab:31: b4:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:67:BB:2A:89:1A:BA:36:9F:42:CD:85:B3:29:7C:C2:90:3D:7C:5F X509v3 Authority Key Identifier: keyid:96:82:C2:AB:E2:53:23:58:07:76:B1:D0:E2:75:D2:FD:2D:69:7E:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:64:ef:ce:9a:2c:27:97:7a:a3:2c:13:48:7e:ee:3f:9b:d8: 44:28:6e:5f:05:89:a8:86:3e:f8:25:08:92:05:1a:52:f3:ae: a2:b2:01:e4:a8:8e:a6:c8:12:e8:c0:82:6d:03:28:cd:ce:ec: fd:8a:de:bb:05:89:59:99:26:52:67:c6:fc:43:ce:a0:ac:03: 7a:10:fc:72:d7:67:7b:1f:d4:fa:1e:13:f7:06:85:ae:bd:13: 4e:34:ce:c3:91:70:c2:80:9d:5b:7d:1f:f5:d5:36:68:15:5d: f2:f9:25:7c:66:bb:1a:b7:22:a3:b7:ed:ab:14:cf:24:77:98: c9:d2:4d:e6:00:ec:95:59:59:99:e8:68:68:aa:4a:10:2b:52: c9:97:da:48:8b:54:3a:a4:3b:67:fd:38:c0:7c:2c:aa:e6:62: bf:01:66:77:25:3d:0d:42:c0:ea:d3:6b:77:d7:3e:2f:c9:92: 68:9d:21:7e:9f:f4:91:a7:ea:2b:69:c1:54:78:e1:d8:f3:ff: 26:b1:f2:e8:70:de:4e:b2:0e:50:f1:61:d2:2b:84:2f:fa:d2: 8a:49:ff:05:bb:b3:34:1c:3e:2b:ac:1a:76:bd:8b:a9:08:5c: 95:66:d6:0f:da:d5:3c:ae:23:9f:48:20:be:28:b9:52:23:77: d0:e5:66:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE0QjExMTAvBgNVBAUTKDk2ODJDMkFCRTI1MzIzNTgwNzc2QjFEMEUyNzVEMkZE MkQ2OTdFQjYwHhcNMjUwNzE4MjM0NzM1WhcNMjUwNzI1MjM0NzM1WjAYMRYwFAYD VQQDEw02ODdhZGQxNy0xMjVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyY4kr4BYQ3rf2kq1t6xczMrFRk4Ak9nFnbclToEyHLYBxJw+1DAoKzirEcxz KgwKkCC7FdNH9yhLvVEbXgSs1ZXo+/UUXh5nUYKNzhgSSnUDh71XREA4hd4qixsT RhKyVGI7akOmMae17/86151u0V3l+Nnn1gvtyeXPTk2amKQGYIby/ZA7sbhQv1Wq 9Yl20r7+6uSmkIITVL1TTfx9HhZshQeeiQfsRsnkBB3kIyIdyZ0ogJ2DDq9k9Bns iNMc9gPsb+aVy+cBofuPmJnAkEOvzCI/QkmeFAREm0vsxUByNw5Hg8Xtm6KffdvE ZfJEDhnL3Z7EiHeyTgS2qzG0NQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNZnuyqJ Gro2n0LNhbMpfMKQPXxfMB8GA1UdIwQYMBaAFJaCwqviUyNYB3ax0OJ10v0taX62 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTRCMS83QTg4NjRBQ0ZC RTQxMUVCODJCNjI2NEZDNEY5QUUwMi9sb0xDcS1KVEkxZ0hkckhRNG5YU19TMXBm clkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xvTENxLUpUSTFnSGRySFE0blhTX1MxcGZyWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTRCMS83QTg4NjRBQ0ZCRTQxMUVCODJCNjI2NEZDNEY5QUUwMi9sb0xDcS1KVEkx Z0hkckhRNG5YU19TMXBmclkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnZO/Omiwnl3qjLBNIfu4/m9hEKG5fBYmohj74JQiSBRpS866isgHk qI6myBLowIJtAyjNzuz9it67BYlZmSZSZ8b8Q86grAN6EPxy12d7H9T6HhP3BoWu vRNONM7DkXDCgJ1bfR/11TZoFV3y+SV8ZrsatyKjt+2rFM8kd5jJ0k3mAOyVWVmZ 6GhoqkoQK1LJl9pIi1Q6pDtn/TjAfCyq5mK/AWZ3JT0NQsDq02t31z4vyZJonSF+ n/SRp+oracFUeOHY8/8msfLocN5Osg5Q8WHSK4Qv+tKKSf8Fu7M0HD4rrBp2vYup CFyVZtYP2tU8riOfSCC+KLlSI3fQ5WZp -----END CERTIFICATE-----Generated at Sun Jul 20 19:07:42 2025 by rpki-client