$ rpki-client -vvf rpki.apnic.net/member_repository/A9169E9B/7A53A61825A311EAA47F0527C4F9AE02/l0lYFtbbSd_t6sTBdCkSb-Pfl_s.mft File: l0lYFtbbSd_t6sTBdCkSb-Pfl_s.mft (raw, json) Hash identifier: Q5XQOGxfHRnDN7r0XhaXEGk5I9GWReSk2CLDBB1ByKI= Subject key identifier: 0D:3B:96:AA:0E:0C:0B:A8:47:E6:D3:5A:91:82:06:B8:1E:49:20:4F Authority key identifier: 97:49:58:16:D6:DB:49:DF:ED:EA:C4:C1:74:29:12:6F:E3:DF:97:FB Certificate issuer: /CN=A9169E9B/serialNumber=97495816D6DB49DFEDEAC4C17429126FE3DF97FB Certificate serial: 0BCA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l0lYFtbbSd_t6sTBdCkSb-Pfl_s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169E9B/7A53A61825A311EAA47F0527C4F9AE02/l0lYFtbbSd_t6sTBdCkSb-Pfl_s.mft Manifest number: 0BB8 Signing time: Sun 20 Jul 2025 19:01:27 +0000 Manifest this update: Sun 20 Jul 2025 19:01:27 +0000 Manifest next update: Sun 27 Jul 2025 19:01:27 +0000 Files and hashes: 1: l0lYFtbbSd_t6sTBdCkSb-Pfl_s.crl (hash: 8xh64jyYG2PTgQB3kj8ykDdaJluxAsdsOFDAAZrAEaM=) 2: A807146437E411EC9BA3E20AC4F9AE02.roa (hash: dh5ymVZvIc7FqFzTtBzYEQEIMygfVmNQaVU/qA2YVgE=) 3: A6EF086637E411EC9BA3E20AC4F9AE02.roa (hash: K2Zxx9ME49vXDeg1Ffdf+j0UFdQqBnMUQi0IozP8thk=) 4: A64A2A9437E411EC9BA3E20AC4F9AE02.roa (hash: W6nL3EukqFE9RFLXXry6g4CH+1Dbd14zPnwD38PnUxM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169E9B/7A53A61825A311EAA47F0527C4F9AE02/l0lYFtbbSd_t6sTBdCkSb-Pfl_s.crl rsync://rpki.apnic.net/member_repository/A9169E9B/7A53A61825A311EAA47F0527C4F9AE02/l0lYFtbbSd_t6sTBdCkSb-Pfl_s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l0lYFtbbSd_t6sTBdCkSb-Pfl_s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 19:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3018 (0xbca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169E9B, serialNumber=97495816D6DB49DFEDEAC4C17429126FE3DF97FB Validity Not Before: Jul 20 19:01:27 2025 GMT Not After : Jul 27 19:01:27 2025 GMT Subject: CN=687d3d07-7d71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:7b:10:b0:0a:52:39:b7:eb:2b:a9:1f:f4:a3: 88:d2:37:de:0e:9e:bc:2a:93:3e:50:2e:20:21:13: fe:dd:e9:fa:97:9b:aa:3b:72:f6:ae:61:69:24:a7: 6b:02:91:7e:89:fe:96:8c:9f:56:f3:7f:84:00:ae: b4:14:3e:4d:d6:61:d1:0c:88:ba:00:c3:33:2b:77: 5e:fb:11:b7:ce:36:02:e4:fa:e0:83:21:c9:2b:00: 62:94:e0:ea:7d:78:68:01:a2:8f:c5:e2:32:1e:d4: 84:02:d1:eb:56:68:41:bb:c6:d2:30:9b:97:e2:ab: 71:f4:ce:23:ce:8c:00:7d:07:29:04:07:1e:36:e3: 92:b6:1d:bc:26:32:bb:45:b8:c7:aa:d2:f1:f9:d0: 40:8b:8e:7e:ae:9b:c6:4a:bc:52:c5:4d:d9:8e:ff: bb:eb:a6:26:ee:17:2d:8c:f8:cf:78:a5:e9:ae:94: 8f:b4:bb:06:d2:7c:d9:92:26:0a:ce:54:d6:93:9d: 97:db:29:b0:ef:3c:34:b5:36:96:a4:f2:42:d8:90: 12:8d:a3:81:f0:df:b1:7d:d5:48:dd:22:5c:96:00: a7:99:74:57:3d:be:27:5e:d8:09:49:c2:65:7f:e7: 04:f4:c5:97:8a:80:d0:7a:f7:31:64:65:65:a4:d5: fc:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:3B:96:AA:0E:0C:0B:A8:47:E6:D3:5A:91:82:06:B8:1E:49:20:4F X509v3 Authority Key Identifier: keyid:97:49:58:16:D6:DB:49:DF:ED:EA:C4:C1:74:29:12:6F:E3:DF:97:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169E9B/7A53A61825A311EAA47F0527C4F9AE02/l0lYFtbbSd_t6sTBdCkSb-Pfl_s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l0lYFtbbSd_t6sTBdCkSb-Pfl_s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169E9B/7A53A61825A311EAA47F0527C4F9AE02/l0lYFtbbSd_t6sTBdCkSb-Pfl_s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:de:d4:bd:eb:f8:b6:f6:31:ea:91:de:df:a3:38:89:c6:ca: f8:de:cc:cd:d8:56:d6:d9:36:e2:be:b0:db:9c:6e:42:54:f8: 99:04:24:8f:cf:1a:7e:ac:e5:21:39:6a:2c:65:3a:83:0d:10: b6:0f:d4:8a:8d:81:4d:df:91:09:54:a2:99:aa:cb:b5:1d:24: 3e:e5:e8:7d:35:18:5d:4b:c5:82:b9:ef:95:c5:ef:3a:6c:59: 29:e8:43:49:02:8b:56:f2:0e:93:f6:98:26:97:6c:5d:6a:1f: ba:a9:b9:86:5e:ce:98:93:d2:f3:7f:f0:ef:ac:17:d0:99:4a: 17:96:d8:02:97:23:a8:95:26:04:31:57:d0:13:89:f7:76:d7: 21:f2:58:60:ff:15:a2:b0:42:2d:bf:d6:68:07:08:06:28:0a: d4:1f:68:26:78:b7:e3:b2:88:f7:9d:73:a2:e2:a0:65:ec:ec: 76:2d:19:2e:6a:37:b7:15:47:0f:b4:70:e3:10:ab:5c:23:da: 21:e3:9f:ea:a7:66:1b:e2:aa:09:79:89:43:83:b3:e8:82:98: cf:fe:4f:9e:d9:c9:bb:51:0a:96:05:e9:cc:8d:4c:44:e4:ef: 4a:38:39:79:15:4a:05:9e:f8:55:f4:89:66:39:bf:9f:3d:58: bc:41:0b:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC8owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjlFOUIxMTAvBgNVBAUTKDk3NDk1ODE2RDZEQjQ5REZFREVBQzRDMTc0MjkxMjZG RTNERjk3RkIwHhcNMjUwNzIwMTkwMTI3WhcNMjUwNzI3MTkwMTI3WjAYMRYwFAYD VQQDEw02ODdkM2QwNy03ZDcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy3sQsApSObfrK6kf9KOI0jfeDp68KpM+UC4gIRP+3en6l5uqO3L2rmFpJKdr ApF+if6WjJ9W83+EAK60FD5N1mHRDIi6AMMzK3de+xG3zjYC5PrggyHJKwBilODq fXhoAaKPxeIyHtSEAtHrVmhBu8bSMJuX4qtx9M4jzowAfQcpBAceNuOSth28JjK7 RbjHqtLx+dBAi45+rpvGSrxSxU3Zjv+766Ym7hctjPjPeKXprpSPtLsG0nzZkiYK zlTWk52X2ymw7zw0tTaWpPJC2JASjaOB8N+xfdVI3SJclgCnmXRXPb4nXtgJScJl f+cE9MWXioDQevcxZGVlpNX8dQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA07lqoO DAuoR+bTWpGCBrgeSSBPMB8GA1UdIwQYMBaAFJdJWBbW20nf7erEwXQpEm/j35f7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OUU5Qi83QTUzQTYxODI1 QTMxMUVBQTQ3RjA1MjdDNEY5QUUwMi9sMGxZRnRiYlNkX3Q2c1RCZENrU2ItUGZs X3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2wwbFlGdGJiU2RfdDZzVEJkQ2tTYi1QZmxfcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OUU5Qi83QTUzQTYxODI1QTMxMUVBQTQ3RjA1MjdDNEY5QUUwMi9sMGxZRnRiYlNk X3Q2c1RCZENrU2ItUGZsX3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCM3tS96/i29jHqkd7foziJxsr43szN2FbW2TbivrDbnG5CVPiZBCSP zxp+rOUhOWosZTqDDRC2D9SKjYFN35EJVKKZqsu1HSQ+5eh9NRhdS8WCue+Vxe86 bFkp6ENJAotW8g6T9pgml2xdah+6qbmGXs6Yk9Lzf/DvrBfQmUoXltgClyOolSYE MVfQE4n3dtch8lhg/xWisEItv9ZoBwgGKArUH2gmeLfjsoj3nXOi4qBl7Ox2LRku aje3FUcPtHDjEKtcI9oh45/qp2Yb4qoJeYlDg7PogpjP/k+e2cm7UQqWBenMjUxE 5O9KODl5FUoFnvhV9IlmOb+fPVi8QQtz -----END CERTIFICATE-----Generated at Mon Jul 21 08:06:39 2025 by rpki-client