$ rpki-client -vvf rpki.apnic.net/member_repository/A9155688/9D5629A0814211EBBD8C4284C4F9AE02/luWqcIJLjRPdz-YfzJogytZeYME.mft File: luWqcIJLjRPdz-YfzJogytZeYME.mft (raw, json) Hash identifier: bfXGFdbBhhi9Wo940ZgRByq4ElUW4rIOpKC3XBxS8pg= Subject key identifier: D8:AA:67:74:30:7A:B4:D2:17:21:47:69:52:8D:72:12:E4:69:1B:8E Authority key identifier: 96:E5:AA:70:82:4B:8D:13:DD:CF:E6:1F:CC:9A:20:CA:D6:5E:60:C1 Certificate issuer: /CN=A9155688/serialNumber=96E5AA70824B8D13DDCFE61FCC9A20CAD65E60C1 Certificate serial: 0689 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/luWqcIJLjRPdz-YfzJogytZeYME.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155688/9D5629A0814211EBBD8C4284C4F9AE02/luWqcIJLjRPdz-YfzJogytZeYME.mft Manifest number: 0681 Signing time: Tue 22 Jul 2025 22:41:42 +0000 Manifest this update: Tue 22 Jul 2025 22:41:42 +0000 Manifest next update: Tue 29 Jul 2025 22:41:42 +0000 Files and hashes: 1: luWqcIJLjRPdz-YfzJogytZeYME.crl (hash: ZSfp+RVGMUVcgFdY8hJYPdRGiVaI4d9xzsjQPHVdfWs=) 2: 6656B366814C11EB913AEC78C4F9AE02.roa (hash: hWmIjVl3wq2WAFI85MCQWSOZgmGgPc2bb2Ktcia7bs0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155688/9D5629A0814211EBBD8C4284C4F9AE02/luWqcIJLjRPdz-YfzJogytZeYME.crl rsync://rpki.apnic.net/member_repository/A9155688/9D5629A0814211EBBD8C4284C4F9AE02/luWqcIJLjRPdz-YfzJogytZeYME.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/luWqcIJLjRPdz-YfzJogytZeYME.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 22:41:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1673 (0x689) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155688, serialNumber=96E5AA70824B8D13DDCFE61FCC9A20CAD65E60C1 Validity Not Before: Jul 22 22:41:42 2025 GMT Not After : Jul 29 22:41:42 2025 GMT Subject: CN=688013a6-4113 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:39:2a:ca:22:83:2f:51:9b:ac:cb:01:c7:ea: 02:40:a1:a1:db:c2:ce:7c:13:57:2d:8d:19:15:b5: 21:26:ee:5e:26:1b:65:96:20:60:d4:82:42:c4:73: b1:1d:70:74:47:fa:d3:f1:02:65:07:a9:d9:bc:85: 92:34:80:3a:27:f7:07:57:ec:61:18:44:c3:4f:b0: 2d:e6:2b:c1:55:4a:fe:43:31:3a:b2:13:ee:b1:0f: 88:44:66:3d:9b:d1:09:11:8a:cb:e6:ab:6a:e1:7c: 1a:ba:a1:aa:1e:df:7d:f7:f1:2b:23:36:37:65:d3: 98:b1:4a:17:e0:27:f0:77:1c:d6:e3:30:45:e0:c5: 52:ec:95:7d:9e:fa:2e:8a:89:94:59:e0:e1:0c:e4: 76:2e:7a:db:87:b7:89:98:a4:f0:aa:a5:1e:36:4f: 79:03:78:65:2f:d2:11:87:2d:e5:4f:fb:51:2a:bb: bd:cc:3f:b7:0d:cd:15:8d:ef:dc:ce:59:01:1f:27: cd:50:c1:ec:a9:c6:bc:b6:3e:4d:c8:58:e3:f5:11: bf:b9:8d:5d:c3:a2:c5:7d:8a:0d:37:7c:d7:a5:96: e8:46:ed:0a:65:69:c0:d3:bf:48:1e:60:ab:07:4a: 85:e0:81:b5:fb:36:66:38:52:72:4c:75:d0:d6:fd: c0:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:AA:67:74:30:7A:B4:D2:17:21:47:69:52:8D:72:12:E4:69:1B:8E X509v3 Authority Key Identifier: keyid:96:E5:AA:70:82:4B:8D:13:DD:CF:E6:1F:CC:9A:20:CA:D6:5E:60:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155688/9D5629A0814211EBBD8C4284C4F9AE02/luWqcIJLjRPdz-YfzJogytZeYME.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/luWqcIJLjRPdz-YfzJogytZeYME.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155688/9D5629A0814211EBBD8C4284C4F9AE02/luWqcIJLjRPdz-YfzJogytZeYME.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:98:ab:83:a6:cf:90:2b:57:74:a9:42:26:23:57:23:80:a2: 20:d8:8c:73:79:71:b5:c8:a0:61:49:fd:e3:76:81:d7:3f:b1: bc:61:b5:d6:fa:55:49:79:98:73:56:03:f2:78:52:1e:d9:5e: 34:90:7a:3b:cd:05:f5:e2:ac:d3:91:eb:c6:12:54:ed:39:23: 51:97:b6:be:d2:58:e7:56:25:0a:ea:15:6f:ee:09:4c:ac:7f: c5:e1:48:6a:67:5f:91:cd:7c:4b:85:e6:ae:17:e0:28:60:06: a9:a9:e3:d6:0c:81:f0:53:16:ff:dc:64:24:5d:35:0c:af:f5: cb:5d:dc:24:3b:17:f5:21:1c:6a:3c:44:06:a4:5f:22:59:b3: a1:39:f6:64:ad:3f:aa:ae:93:94:3b:21:cb:ca:97:c9:ad:fb: 20:94:df:45:d2:e5:59:14:0c:02:17:fb:42:8e:c9:7f:46:99: d2:5b:18:66:f6:c0:ac:e4:20:54:82:d1:0a:fb:88:50:81:65: 43:87:b9:cf:e3:eb:29:43:70:97:33:57:07:a2:df:84:ab:0d: 97:9e:92:53:1e:3d:55:c1:05:d4:af:84:bd:f3:ba:5f:47:ae: 48:df:c8:a1:d4:0d:c1:3b:de:dd:bb:20:51:70:e8:d9:63:01: 57:1c:36:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBokwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU2ODgxMTAvBgNVBAUTKDk2RTVBQTcwODI0QjhEMTNERENGRTYxRkNDOUEyMENB RDY1RTYwQzEwHhcNMjUwNzIyMjI0MTQyWhcNMjUwNzI5MjI0MTQyWjAYMRYwFAYD VQQDEw02ODgwMTNhNi00MTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwTkqyiKDL1GbrMsBx+oCQKGh28LOfBNXLY0ZFbUhJu5eJhtlliBg1IJCxHOx HXB0R/rT8QJlB6nZvIWSNIA6J/cHV+xhGETDT7At5ivBVUr+QzE6shPusQ+IRGY9 m9EJEYrL5qtq4XwauqGqHt999/ErIzY3ZdOYsUoX4CfwdxzW4zBF4MVS7JV9nvou iomUWeDhDOR2Lnrbh7eJmKTwqqUeNk95A3hlL9IRhy3lT/tRKru9zD+3Dc0Vje/c zlkBHyfNUMHsqca8tj5NyFjj9RG/uY1dw6LFfYoNN3zXpZboRu0KZWnA079IHmCr B0qF4IG1+zZmOFJyTHXQ1v3ADwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNiqZ3Qw erTSFyFHaVKNchLkaRuOMB8GA1UdIwQYMBaAFJblqnCCS40T3c/mH8yaIMrWXmDB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTY4OC85RDU2MjlBMDgx NDIxMUVCQkQ4QzQyODRDNEY5QUUwMi9sdVdxY0lKTGpSUGR6LVlmekpvZ3l0WmVZ TUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x1V3FjSUpMalJQZHotWWZ6Sm9neXRaZVlNRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTY4OC85RDU2MjlBMDgxNDIxMUVCQkQ4QzQyODRDNEY5QUUwMi9sdVdxY0lKTGpS UGR6LVlmekpvZ3l0WmVZTUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0mKuDps+QK1d0qUImI1cjgKIg2IxzeXG1yKBhSf3jdoHXP7G8YbXW +lVJeZhzVgPyeFIe2V40kHo7zQX14qzTkevGElTtOSNRl7a+0ljnViUK6hVv7glM rH/F4UhqZ1+RzXxLheauF+AoYAapqePWDIHwUxb/3GQkXTUMr/XLXdwkOxf1IRxq PEQGpF8iWbOhOfZkrT+qrpOUOyHLypfJrfsglN9F0uVZFAwCF/tCjsl/RpnSWxhm 9sCs5CBUgtEK+4hQgWVDh7nP4+spQ3CXM1cHot+Eqw2XnpJTHj1VwQXUr4S987pf R65I38ih1A3BO97duyBRcOjZYwFXHDbN -----END CERTIFICATE-----Generated at Wed Jul 23 12:53:47 2025 by rpki-client