$ rpki-client -vvf rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft File: lDrZvGF3q4wvjoExwUpUZexClU8.mft (raw, json) Hash identifier: Ff0XbR9Z5NVytFP+EMGt95bIQhgQ+/746eUkVsFckXc= Subject key identifier: 1B:60:62:8F:0A:DF:E8:1F:09:12:F2:23:AD:32:FD:0B:CA:13:F2:65 Authority key identifier: 94:3A:D9:BC:61:77:AB:8C:2F:8E:81:31:C1:4A:54:65:EC:42:95:4F Certificate issuer: /CN=A9158568/serialNumber=943AD9BC6177AB8C2F8E8131C14A5465EC42954F Certificate serial: 014D Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lDrZvGF3q4wvjoExwUpUZexClU8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft Manifest number: 0149 Signing time: Fri 18 Jul 2025 18:56:29 +0000 Manifest this update: Fri 18 Jul 2025 18:56:28 +0000 Manifest next update: Fri 25 Jul 2025 18:56:28 +0000 Files and hashes: 1: lDrZvGF3q4wvjoExwUpUZexClU8.crl (hash: AXBCuJIletVqeQebZcrnakTO8z2HZG9PG5D3hXgqV6s=) 2: 203DB338782111EEAFDDBD86C4F9AE02.roa (hash: wX9s/s7jxKKJJyFHtP8kJqChB04GKqVy3xgEjOBVe9Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.crl rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lDrZvGF3q4wvjoExwUpUZexClU8.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 18:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 333 (0x14d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158568, serialNumber=943AD9BC6177AB8C2F8E8131C14A5465EC42954F Validity Not Before: Jul 18 18:56:28 2025 GMT Not After : Jul 25 18:56:28 2025 GMT Subject: CN=687a98dc-f257 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:83:06:be:71:31:89:b3:7e:9d:98:d8:5a:93: b2:3d:bc:72:6b:ee:b2:22:90:d9:87:6e:15:59:fa: 89:93:15:cc:f9:d3:73:f6:df:31:8c:e8:ef:02:fa: 12:95:6a:ff:4e:3c:51:9d:51:86:8b:51:2a:df:78: ea:15:e2:58:e6:84:73:02:2d:1d:9c:52:7f:ae:2b: 28:a5:c4:22:bc:05:f2:e1:01:a3:74:9f:00:80:ae: fc:69:32:1b:43:d0:9e:b7:ae:3b:16:03:86:63:9b: 94:9a:2f:57:f9:e8:be:28:de:89:92:4d:4b:b0:74: 6c:e2:bf:81:48:f2:01:c7:ac:3c:84:42:76:73:b8: 44:8f:db:25:d4:fc:11:7b:2c:c0:25:c4:d2:ca:db: 34:1d:7c:c9:9f:19:e7:df:8c:12:76:13:f4:77:31: 1b:98:14:02:34:c9:28:e6:6b:bf:b4:6c:df:ca:82: df:97:03:e9:3f:53:a9:00:bc:63:3c:67:88:51:9f: 2c:c4:01:0f:46:42:6d:88:3e:f8:e6:9e:8e:64:6c: 7c:92:64:80:83:71:4f:09:ac:12:50:aa:85:e2:8d: 1c:96:e7:37:7b:40:a7:4d:b6:8c:ae:66:00:a5:9a: e9:31:ee:42:13:21:09:a1:09:1e:70:cb:9d:96:8d: ad:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:60:62:8F:0A:DF:E8:1F:09:12:F2:23:AD:32:FD:0B:CA:13:F2:65 X509v3 Authority Key Identifier: keyid:94:3A:D9:BC:61:77:AB:8C:2F:8E:81:31:C1:4A:54:65:EC:42:95:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lDrZvGF3q4wvjoExwUpUZexClU8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:f0:5e:b8:b9:3a:fd:44:e9:f6:dd:4e:20:c9:33:58:54:b2: fd:af:e9:75:01:20:bc:dc:f2:a1:dc:60:9a:13:b9:b6:80:5a: df:ce:a9:9a:4b:d0:62:2b:e8:9d:6f:da:fd:f8:76:96:db:11: c5:99:9a:92:cb:26:8e:de:35:3d:09:35:eb:1c:f9:8d:8f:51: 77:30:e4:fa:16:15:72:0a:a5:1e:48:5a:5d:36:b9:da:58:a4: 6f:6a:85:86:7e:65:52:bb:4e:7c:3f:bb:ef:b5:d1:70:fc:22: d7:01:84:38:94:dd:a0:90:4c:2c:e0:75:76:b6:2a:61:c7:ec: b9:40:42:c7:be:a5:8d:cc:02:11:20:0d:20:f5:7a:1d:7d:7e: f4:b8:a7:0e:23:f8:63:03:28:df:20:5a:7d:f6:56:0a:29:98: cd:73:d3:c4:da:e8:fe:d7:b6:30:19:28:06:1c:7f:ad:f5:39: 15:8d:30:b8:fb:9f:89:ec:9f:2c:7f:dd:1c:ea:83:a0:fa:dd: 43:43:c2:a9:c1:ac:7f:35:e2:1e:e2:64:80:67:c1:28:3d:f9: 36:73:37:a9:42:ed:c4:37:8b:31:fe:c7:af:0c:48:d8:ed:5a: 4a:f3:d9:7f:42:70:40:13:0d:4f:07:dc:9e:b8:8e:95:31:24: 68:65:7c:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAU0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg1NjgxMTAvBgNVBAUTKDk0M0FEOUJDNjE3N0FCOEMyRjhFODEzMUMxNEE1NDY1 RUM0Mjk1NEYwHhcNMjUwNzE4MTg1NjI4WhcNMjUwNzI1MTg1NjI4WjAYMRYwFAYD VQQDEw02ODdhOThkYy1mMjU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwIMGvnExibN+nZjYWpOyPbxya+6yIpDZh24VWfqJkxXM+dNz9t8xjOjvAvoS lWr/TjxRnVGGi1Eq33jqFeJY5oRzAi0dnFJ/risopcQivAXy4QGjdJ8AgK78aTIb Q9Cet647FgOGY5uUmi9X+ei+KN6Jkk1LsHRs4r+BSPIBx6w8hEJ2c7hEj9sl1PwR eyzAJcTSyts0HXzJnxnn34wSdhP0dzEbmBQCNMko5mu/tGzfyoLflwPpP1OpALxj PGeIUZ8sxAEPRkJtiD745p6OZGx8kmSAg3FPCawSUKqF4o0cluc3e0CnTbaMrmYA pZrpMe5CEyEJoQkecMudlo2tTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBtgYo8K 3+gfCRLyI60y/QvKE/JlMB8GA1UdIwQYMBaAFJQ62bxhd6uML46BMcFKVGXsQpVP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODU2OC8zNjE4QUI2RTcy QTMxMUVFOTQ1NTcyMTFDNEY5QUUwMi9sRHJadkdGM3E0d3Zqb0V4d1VwVVpleENs VTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2xEclp2R0YzcTR3dmpvRXh3VXBVWmV4Q2xVOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODU2OC8zNjE4QUI2RTcyQTMxMUVFOTQ1NTcyMTFDNEY5QUUwMi9sRHJadkdGM3E0 d3Zqb0V4d1VwVVpleENsVTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCU8F64uTr9ROn23U4gyTNYVLL9r+l1ASC83PKh3GCaE7m2gFrfzqma S9BiK+idb9r9+HaW2xHFmZqSyyaO3jU9CTXrHPmNj1F3MOT6FhVyCqUeSFpdNrna WKRvaoWGfmVSu058P7vvtdFw/CLXAYQ4lN2gkEws4HV2tiphx+y5QELHvqWNzAIR IA0g9XodfX70uKcOI/hjAyjfIFp99lYKKZjNc9PE2uj+17YwGSgGHH+t9TkVjTC4 +5+J7J8sf90c6oOg+t1DQ8Kpwax/NeIe4mSAZ8EoPfk2czepQu3EN4sx/sevDEjY 7VpK89l/QnBAEw1PB9yeuI6VMSRoZXwW -----END CERTIFICATE-----Generated at Sun Jul 20 15:12:48 2025 by rpki-client