$ rpki-client -vvf rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.mft File: lEN-3cyNBpieCVAFQ8kb3w0_SOU.mft (raw, json) Hash identifier: XUu9J4ggFheUVgWtgTKcVlerQ4PVzFe3lFqIBZh57ng= Subject key identifier: 04:18:73:3A:AD:E6:DC:3B:CF:42:9A:7D:FB:34:DB:77:0C:8C:92:22 Authority key identifier: 94:43:7E:DD:CC:8D:06:98:9E:09:50:05:43:C9:1B:DF:0D:3F:48:E5 Certificate issuer: /CN=A917DD85/serialNumber=94437EDDCC8D06989E09500543C91BDF0D3F48E5 Certificate serial: 0167 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lEN-3cyNBpieCVAFQ8kb3w0_SOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.mft Manifest number: 0161 Signing time: Sat 19 Jul 2025 04:11:02 +0000 Manifest this update: Sat 19 Jul 2025 04:11:01 +0000 Manifest next update: Sat 26 Jul 2025 04:11:01 +0000 Files and hashes: 1: lEN-3cyNBpieCVAFQ8kb3w0_SOU.crl (hash: 4F8qDPR9fe8akG8/AJ57z2C+Xuu3S5q1pHCjrok6HJw=) 2: A155911C4BCA11EEBC8C8B82C4F9AE02.roa (hash: hWNFLgRLV5rq9DJdXOOCkETTtq81cKwNe+EsCM4by08=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.crl rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lEN-3cyNBpieCVAFQ8kb3w0_SOU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 04:11:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 359 (0x167) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DD85, serialNumber=94437EDDCC8D06989E09500543C91BDF0D3F48E5 Validity Not Before: Jul 19 04:11:01 2025 GMT Not After : Jul 26 04:11:01 2025 GMT Subject: CN=687b1ad5-6a12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:24:bc:40:58:e2:29:23:47:aa:23:6c:8a:1c: 45:83:b3:b5:91:a1:8a:4f:8b:0f:87:df:7c:12:5b: 0f:dc:fd:dd:80:45:b8:27:1d:40:c9:da:97:e3:ff: bd:e5:24:46:8e:bc:0e:0e:10:e2:68:3a:22:13:7f: d9:50:1a:be:37:a5:61:c7:71:b4:a0:6c:a8:02:d2: ad:d8:5c:34:fd:b5:28:91:95:6a:05:b6:f4:05:37: 1d:57:38:ea:cc:cc:6c:2a:b6:4f:61:41:f5:12:93: 54:fd:d9:8d:63:97:8a:e4:f9:95:51:28:f0:c6:bd: cd:0d:e6:32:41:bc:f4:39:06:d3:94:a5:95:8f:66: c0:a9:60:2a:b6:1f:24:2c:51:8c:ec:b8:66:7d:45: 02:1d:2d:1e:d5:a4:8f:b2:c7:ce:c3:fb:b2:f2:d6: 8a:a4:d7:c1:61:2a:96:c0:57:41:c7:47:2c:ca:4e: b0:6b:f5:21:3b:82:ca:3d:65:bb:17:d1:f9:b8:6b: b4:a0:19:11:30:13:35:c6:79:94:15:36:d7:70:4e: fe:f3:94:ce:16:05:25:c4:f4:41:a2:7b:c1:ec:d0: d8:ed:ab:e4:62:43:29:0a:5e:46:1d:bc:f7:9d:64: ae:4b:97:7f:2d:7f:90:ea:1a:00:c1:2c:c9:f3:aa: 6c:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:18:73:3A:AD:E6:DC:3B:CF:42:9A:7D:FB:34:DB:77:0C:8C:92:22 X509v3 Authority Key Identifier: keyid:94:43:7E:DD:CC:8D:06:98:9E:09:50:05:43:C9:1B:DF:0D:3F:48:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lEN-3cyNBpieCVAFQ8kb3w0_SOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:2c:e1:af:9f:e2:dc:15:79:12:ae:ca:93:a3:cd:47:e8:55: 8f:e2:cd:b4:46:50:bb:17:27:9f:8c:4f:3b:b9:9d:28:b3:5a: 54:86:2f:4b:5d:bb:02:73:21:27:ce:e6:31:8f:17:2e:bc:f9: 3f:ab:a7:e3:bb:33:94:41:26:62:e7:74:1a:28:55:a2:07:1e: 10:6d:69:18:8e:8a:a8:8c:30:84:b8:dc:e9:09:39:fb:7b:cc: 0d:d7:f4:a1:53:f6:14:85:76:e7:6a:1f:d8:c4:c9:f8:f4:81: c1:66:1b:df:3b:3a:0e:ea:cb:a3:7f:77:19:72:ed:d2:62:a2: c3:03:f0:ba:99:32:61:f1:2b:c8:01:b2:09:04:1f:df:52:2f: 91:78:5b:9e:46:fe:9e:13:a4:bc:4e:89:fb:4d:42:97:2d:96: d7:93:bc:ce:37:bd:41:06:95:54:db:f4:6a:b4:18:d4:de:87: 2d:57:02:f6:dd:34:df:3e:a3:5a:bf:69:b7:7b:b7:60:04:6d: 79:a0:73:ba:9a:d8:da:25:74:76:18:92:6d:2d:10:fe:4e:eb: 4f:f6:52:ea:c0:95:0a:ca:6b:d2:05:7a:43:38:5c:32:fd:4a: ba:53:d9:fd:b8:4e:e2:c2:4d:51:48:14:d1:9c:a0:5b:7d:a0: b3:7f:77:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0REODUxMTAvBgNVBAUTKDk0NDM3RUREQ0M4RDA2OTg5RTA5NTAwNTQzQzkxQkRG MEQzRjQ4RTUwHhcNMjUwNzE5MDQxMTAxWhcNMjUwNzI2MDQxMTAxWjAYMRYwFAYD VQQDEw02ODdiMWFkNS02YTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArCS8QFjiKSNHqiNsihxFg7O1kaGKT4sPh998ElsP3P3dgEW4Jx1AydqX4/+9 5SRGjrwODhDiaDoiE3/ZUBq+N6Vhx3G0oGyoAtKt2Fw0/bUokZVqBbb0BTcdVzjq zMxsKrZPYUH1EpNU/dmNY5eK5PmVUSjwxr3NDeYyQbz0OQbTlKWVj2bAqWAqth8k LFGM7LhmfUUCHS0e1aSPssfOw/uy8taKpNfBYSqWwFdBx0csyk6wa/UhO4LKPWW7 F9H5uGu0oBkRMBM1xnmUFTbXcE7+85TOFgUlxPRBonvB7NDY7avkYkMpCl5GHbz3 nWSuS5d/LX+Q6hoAwSzJ86psLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAQYczqt 5tw7z0Kaffs023cMjJIiMB8GA1UdIwQYMBaAFJRDft3MjQaYnglQBUPJG98NP0jl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REQ4NS84NDZGNEE2ODRC QzMxMUVFOEM2NTczMTlDNEY5QUUwMi9sRU4tM2N5TkJwaWVDVkFGUThrYjN3MF9T T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xFTi0zY3lOQnBpZUNWQUZROGtiM3cwX1NPVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 REQ4NS84NDZGNEE2ODRCQzMxMUVFOEM2NTczMTlDNEY5QUUwMi9sRU4tM2N5TkJw aWVDVkFGUThrYjN3MF9TT1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPLOGvn+LcFXkSrsqTo81H6FWP4s20RlC7FyefjE87uZ0os1pUhi9L XbsCcyEnzuYxjxcuvPk/q6fjuzOUQSZi53QaKFWiBx4QbWkYjoqojDCEuNzpCTn7 e8wN1/ShU/YUhXbnah/YxMn49IHBZhvfOzoO6sujf3cZcu3SYqLDA/C6mTJh8SvI AbIJBB/fUi+ReFueRv6eE6S8Ton7TUKXLZbXk7zON71BBpVU2/RqtBjU3octVwL2 3TTfPqNav2m3e7dgBG15oHO6mtjaJXR2GJJtLRD+TutP9lLqwJUKymvSBXpDOFwy /Uq6U9n9uE7iwk1RSBTRnKBbfaCzf3fB -----END CERTIFICATE-----Generated at Sun Jul 20 07:40:45 2025 by rpki-client