$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.mft File: lzdxMASBm2tm_Fbm7Ia-TcLijhc.mft (raw, json) Hash identifier: R/kXe1a40dMKm6r8snPFItJqZgLHdyav1ZftuyHyyzY= Subject key identifier: B2:A0:EE:60:A4:CB:74:22:48:60:14:A3:FB:64:BA:BC:1A:41:D9:73 Authority key identifier: 97:37:71:30:04:81:9B:6B:66:FC:56:E6:EC:86:BE:4D:C2:E2:8E:17 Certificate issuer: /CN=A91A1C06/serialNumber=9737713004819B6B66FC56E6EC86BE4DC2E28E17 Certificate serial: 34C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.mft Manifest number: 34B5 Signing time: Sun 20 Jul 2025 15:01:28 +0000 Manifest this update: Sun 20 Jul 2025 15:01:28 +0000 Manifest next update: Sun 27 Jul 2025 15:01:28 +0000 Files and hashes: 1: lzdxMASBm2tm_Fbm7Ia-TcLijhc.crl (hash: elVw3MJ/yY3UxEwiMLzqb4MCXkMBlh+P01sX6X0eVTc=) 2: C64C7958422411EA9CA5F423C4F9AE02.roa (hash: gJwOccgnH3xfVK9Ge3NY4ACv1N9EO/ya1L5O9ulfS9A=) 3: FB50A65027B311EFBA31BB40C4F9AE02.roa (hash: lCjcuN3RSUzDTTX5oZhMnE3axtzeaFw5cyewHimqMWM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.crl rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 15:01:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13506 (0x34c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1C06, serialNumber=9737713004819B6B66FC56E6EC86BE4DC2E28E17 Validity Not Before: Jul 20 15:01:28 2025 GMT Not After : Jul 27 15:01:28 2025 GMT Subject: CN=687d04c8-b21e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:97:6b:35:22:ad:5a:31:8e:aa:3b:06:bc:20: 7e:f7:75:82:15:7e:1f:cf:b5:f3:04:a9:fb:13:cd: 3b:30:a4:e2:61:ee:2d:59:40:12:f8:40:39:0c:22: c1:f1:71:67:5c:df:a8:c8:f6:e1:9c:36:55:4d:13: b5:d6:6c:11:db:6f:d5:30:19:d8:d4:e2:38:a6:78: 36:7a:fb:61:0a:e2:e0:9e:c6:ee:bf:b4:ad:5d:d1: 4b:cb:11:7d:11:ab:b9:71:ae:83:d3:99:1b:db:e8: 89:32:8c:b1:84:5f:9e:43:77:ad:56:78:5e:0c:d7: da:93:95:0c:31:08:30:f7:c1:0a:d6:c1:e2:74:cc: eb:3d:d6:6e:90:70:18:db:09:83:0a:64:9f:bb:9b: 92:10:1c:67:ce:a8:48:bc:52:b4:aa:85:c5:eb:a4: 86:e0:99:b0:f2:f1:f2:a3:a3:80:b5:bd:4f:f9:af: 20:e1:5a:7c:56:c5:2c:20:e8:99:ba:a2:37:10:85: e0:bf:4e:a7:8e:58:a4:cc:af:a2:b8:81:65:ea:15: b5:49:86:d6:4a:95:fb:58:90:67:b4:1d:67:85:09: de:4c:ee:34:62:76:c2:61:b5:91:e4:bb:0b:16:37: a8:4a:0b:76:50:f9:8a:b1:79:01:db:63:af:49:13: 61:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:A0:EE:60:A4:CB:74:22:48:60:14:A3:FB:64:BA:BC:1A:41:D9:73 X509v3 Authority Key Identifier: keyid:97:37:71:30:04:81:9B:6B:66:FC:56:E6:EC:86:BE:4D:C2:E2:8E:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:3e:63:59:47:ba:d3:e4:10:bc:76:c7:6f:c9:86:cf:7d:52: 2c:55:b8:22:4c:34:3c:0f:31:11:f1:8b:34:3c:33:07:c7:a4: b4:dc:68:a2:17:f4:44:95:73:6b:ab:59:28:d6:ed:96:3e:8c: 37:1f:ac:ff:20:af:2b:ff:01:ca:d8:f2:0e:8f:e1:47:f8:db: d4:0e:a8:f8:9c:2b:3a:0f:4e:e0:44:8f:09:cd:be:de:cb:8c: e5:1f:d4:32:e4:5f:6a:f7:c6:76:4f:c4:a2:4f:aa:62:64:69: 6c:f2:b9:e1:b1:98:b2:6a:73:3d:39:d1:a2:30:a4:d0:45:f9: 3a:fd:1e:21:5e:0f:e1:ec:85:4b:20:cc:cb:b2:0e:08:b1:ef: 95:ce:13:d7:6e:ed:27:fb:6c:46:44:38:10:80:9f:c2:f8:cc: 44:a1:03:25:d8:79:64:d0:af:a9:65:05:74:8c:33:41:d3:58: 16:77:1b:61:47:29:79:41:c8:0e:8b:d7:55:6c:da:03:83:15: d9:9f:c0:c6:ec:5c:ce:ad:70:f5:f2:0d:af:f7:ec:ab:1f:ac: 12:1b:99:a6:33:e7:c3:37:1d:55:2b:55:5f:a9:59:e9:3b:b4: d8:4c:bc:90:9a:ae:55:50:95:08:83:b0:c9:2e:2f:f6:48:d5: 87:86:84:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFDMDYxMTAvBgNVBAUTKDk3Mzc3MTMwMDQ4MTlCNkI2NkZDNTZFNkVDODZCRTRE QzJFMjhFMTcwHhcNMjUwNzIwMTUwMTI4WhcNMjUwNzI3MTUwMTI4WjAYMRYwFAYD VQQDEw02ODdkMDRjOC1iMjFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0JdrNSKtWjGOqjsGvCB+93WCFX4fz7XzBKn7E807MKTiYe4tWUAS+EA5DCLB 8XFnXN+oyPbhnDZVTRO11mwR22/VMBnY1OI4png2evthCuLgnsbuv7StXdFLyxF9 Eau5ca6D05kb2+iJMoyxhF+eQ3etVnheDNfak5UMMQgw98EK1sHidMzrPdZukHAY 2wmDCmSfu5uSEBxnzqhIvFK0qoXF66SG4Jmw8vHyo6OAtb1P+a8g4Vp8VsUsIOiZ uqI3EIXgv06njlikzK+iuIFl6hW1SYbWSpX7WJBntB1nhQneTO40YnbCYbWR5LsL FjeoSgt2UPmKsXkB22OvSRNhVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLKg7mCk y3QiSGAUo/tkurwaQdlzMB8GA1UdIwQYMBaAFJc3cTAEgZtrZvxW5uyGvk3C4o4X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUMwNi82REVBRTIxQzFE OUQxMUUyOEIxRkE3OEMwOEIwMkNEMi9semR4TUFTQm0ydG1fRmJtN0lhLVRjTGlq aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x6ZHhNQVNCbTJ0bV9GYm03SWEtVGNMaWpoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUMwNi82REVBRTIxQzFEOUQxMUUyOEIxRkE3OEMwOEIwMkNEMi9semR4TUFTQm0y dG1fRmJtN0lhLVRjTGlqaGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOPmNZR7rT5BC8dsdvyYbPfVIsVbgiTDQ8DzER8Ys0PDMHx6S03Gii F/RElXNrq1ko1u2WPow3H6z/IK8r/wHK2PIOj+FH+NvUDqj4nCs6D07gRI8Jzb7e y4zlH9Qy5F9q98Z2T8SiT6piZGls8rnhsZiyanM9OdGiMKTQRfk6/R4hXg/h7IVL IMzLsg4Ise+VzhPXbu0n+2xGRDgQgJ/C+MxEoQMl2Hlk0K+pZQV0jDNB01gWdxth Ryl5QcgOi9dVbNoDgxXZn8DG7FzOrXD18g2v9+yrH6wSG5mmM+fDNx1VK1VfqVnp O7TYTLyQmq5VUJUIg7DJLi/2SNWHhoRC -----END CERTIFICATE-----Generated at Tue Jul 22 00:00:19 2025 by rpki-client