$ rpki-client -vvf rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.mft File: LzabRI0hcVlrosk82-JY6vMxdZQ.mft (raw, json) Hash identifier: RQCh5jM3sjilbjxZR3JBX7fg0AuWQVlH7rea5AME2ko= Subject key identifier: 0E:D4:49:77:9C:A7:D4:2B:C2:CC:18:8C:6E:72:31:87:EC:AC:49:2F Authority key identifier: 2F:36:9B:44:8D:21:71:59:6B:A2:C9:3C:DB:E2:58:EA:F3:31:75:94 Certificate issuer: /CN=A9161A5A/serialNumber=2F369B448D2171596BA2C93CDBE258EAF3317594 Certificate serial: 06D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LzabRI0hcVlrosk82-JY6vMxdZQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.mft Manifest number: 06C8 Signing time: Fri 18 Jul 2025 22:23:30 +0000 Manifest this update: Fri 18 Jul 2025 22:23:29 +0000 Manifest next update: Fri 25 Jul 2025 22:23:29 +0000 Files and hashes: 1: LzabRI0hcVlrosk82-JY6vMxdZQ.crl (hash: GKgMEWTpJsTaEMOzwQSCHsp0wYYyXrT0dqwS6MmDPxU=) 2: 79D611D265E711EBB6FD8A0DC4F9AE02.roa (hash: 8jITrnqODr3hbw+6QboJeBK8U7SJ4xuwPGHj3X5tTD4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.crl rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LzabRI0hcVlrosk82-JY6vMxdZQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 22:23:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1744 (0x6d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161A5A, serialNumber=2F369B448D2171596BA2C93CDBE258EAF3317594 Validity Not Before: Jul 18 22:23:29 2025 GMT Not After : Jul 25 22:23:29 2025 GMT Subject: CN=687ac962-53f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:dc:6e:80:b5:fe:a0:2f:1f:35:85:01:1f:9f: a2:f3:65:d6:0d:56:5a:21:06:86:1f:6a:05:fe:92: de:ef:39:39:0e:28:b6:d8:ac:cb:64:79:04:71:7c: 8f:df:5c:dd:ca:3a:78:fc:f6:39:6a:29:e5:a2:58: 15:bf:51:03:18:e7:ec:ab:79:dd:55:ef:b8:e3:14: 18:db:4a:27:e9:49:a3:d0:34:e4:0a:51:bf:79:a7: 89:ac:22:fa:0f:7f:38:17:e9:de:30:2c:c8:b3:a4: f7:a3:a0:52:19:f7:0d:3a:74:1d:02:56:a2:b4:d0: f2:ac:a9:fd:16:da:a8:7d:b8:e8:d0:4d:97:84:44: e9:97:e8:49:2f:d3:22:4b:72:d6:91:96:d7:48:10: a2:5d:3c:c2:53:e7:e2:5d:c1:d1:c6:a7:e6:76:24: d6:75:6c:2a:43:1e:d8:c5:15:99:26:fc:f5:b2:d7: 18:50:56:87:e5:13:fc:97:c5:54:bd:9a:da:f6:ce: 62:4b:d6:8a:a1:19:d5:5b:9e:5e:3f:27:e2:22:4b: 74:8a:0b:6a:d5:06:d0:64:df:6b:52:37:ee:aa:42: f4:8b:a9:d3:f5:35:c2:34:5c:71:4d:a1:7f:dd:7e: 6c:bd:a2:a1:a9:71:97:f6:90:e1:82:b4:13:ea:a5: 14:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:D4:49:77:9C:A7:D4:2B:C2:CC:18:8C:6E:72:31:87:EC:AC:49:2F X509v3 Authority Key Identifier: keyid:2F:36:9B:44:8D:21:71:59:6B:A2:C9:3C:DB:E2:58:EA:F3:31:75:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LzabRI0hcVlrosk82-JY6vMxdZQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:80:92:46:39:06:7c:70:72:3d:24:f6:2e:67:0b:29:bd:aa: 59:6f:48:55:a2:aa:a7:c2:b0:64:93:c7:78:08:b6:86:2f:e3: 76:3d:fc:99:c2:ab:a0:68:52:21:58:7f:ca:a7:eb:9b:38:51: cb:e0:97:27:4e:7e:a2:fa:1d:13:86:49:b9:03:ee:4e:5d:70: 1a:db:2a:a4:84:94:b1:ce:cb:88:1f:62:09:c7:2c:9a:9d:bb: f4:36:b0:80:a7:9d:fc:30:ea:d4:f3:c9:8e:8e:f2:c0:c7:3c: 12:b5:3a:d5:6d:10:b5:68:d7:d0:49:f7:c9:dc:2b:bf:94:e6: 5f:1f:c0:73:a5:74:74:c9:4a:de:ea:f1:3c:eb:3f:dc:ee:6d: f1:8b:c9:9f:0c:b9:0e:ed:44:7a:91:90:0f:ae:dc:28:67:91: 1f:f2:cf:76:d6:35:5a:71:8c:d4:f2:e0:56:a3:0d:6e:5a:e4: a0:bf:f9:7f:b5:b7:2f:7c:41:50:db:ed:fb:fd:32:dc:b1:3b: 21:9d:98:9f:16:73:ee:e8:c9:92:f8:2c:3a:06:40:7b:80:ee: 08:20:0f:0d:99:52:fc:cb:00:e5:22:10:55:67:27:9e:5e:5f: 89:f7:87:f9:52:cf:fe:3f:21:f7:d7:57:31:c5:a1:71:f9:05: 4b:cb:28:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjFBNUExMTAvBgNVBAUTKDJGMzY5QjQ0OEQyMTcxNTk2QkEyQzkzQ0RCRTI1OEVB RjMzMTc1OTQwHhcNMjUwNzE4MjIyMzI5WhcNMjUwNzI1MjIyMzI5WjAYMRYwFAYD VQQDEw02ODdhYzk2Mi01M2YxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy9xugLX+oC8fNYUBH5+i82XWDVZaIQaGH2oF/pLe7zk5Dii22KzLZHkEcXyP 31zdyjp4/PY5ainlolgVv1EDGOfsq3ndVe+44xQY20on6Umj0DTkClG/eaeJrCL6 D384F+neMCzIs6T3o6BSGfcNOnQdAlaitNDyrKn9Ftqofbjo0E2XhETpl+hJL9Mi S3LWkZbXSBCiXTzCU+fiXcHRxqfmdiTWdWwqQx7YxRWZJvz1stcYUFaH5RP8l8VU vZra9s5iS9aKoRnVW55ePyfiIkt0igtq1QbQZN9rUjfuqkL0i6nT9TXCNFxxTaF/ 3X5svaKhqXGX9pDhgrQT6qUUxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA7USXec p9QrwswYjG5yMYfsrEkvMB8GA1UdIwQYMBaAFC82m0SNIXFZa6LJPNviWOrzMXWU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MUE1QS9COEJCNTY4RTY1 RTUxMUVCQTI1RjkyMEJDNEY5QUUwMi9MemFiUkkwaGNWbHJvc2s4Mi1KWTZ2TXhk WlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0x6YWJSSTBoY1Zscm9zazgyLUpZNnZNeGRaUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MUE1QS9COEJCNTY4RTY1RTUxMUVCQTI1RjkyMEJDNEY5QUUwMi9MemFiUkkwaGNW bHJvc2s4Mi1KWTZ2TXhkWlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWgJJGOQZ8cHI9JPYuZwspvapZb0hVoqqnwrBkk8d4CLaGL+N2PfyZ wqugaFIhWH/Kp+ubOFHL4JcnTn6i+h0Thkm5A+5OXXAa2yqkhJSxzsuIH2IJxyya nbv0NrCAp538MOrU88mOjvLAxzwStTrVbRC1aNfQSffJ3Cu/lOZfH8BzpXR0yUre 6vE86z/c7m3xi8mfDLkO7UR6kZAPrtwoZ5Ef8s921jVacYzU8uBWow1uWuSgv/l/ tbcvfEFQ2+37/TLcsTshnZifFnPu6MmS+Cw6BkB7gO4IIA8NmVL8ywDlIhBVZyee Xl+J94f5Us/+PyH311cxxaFx+QVLyyhN -----END CERTIFICATE-----Generated at Sun Jul 20 11:01:54 2025 by rpki-client