$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA1D4/5545E21CA93611EE884AB159C4F9AE02/LCxcmnhfLqc0B5wUDjpHGbOG04M.mft File: LCxcmnhfLqc0B5wUDjpHGbOG04M.mft (raw, json) Hash identifier: ZeAFN9RTvjw6xz/B0dGLSadZeeTzQ/5Ws0csyLQBmGI= Subject key identifier: AA:D0:2A:10:CA:0C:8E:EF:AB:51:81:93:FF:46:A5:E8:7D:1B:51:6C Authority key identifier: 2C:2C:5C:9A:78:5F:2E:A7:34:07:9C:14:0E:3A:47:19:B3:86:D3:83 Certificate issuer: /CN=A91BA1D4/serialNumber=2C2C5C9A785F2EA734079C140E3A4719B386D383 Certificate serial: 012F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LCxcmnhfLqc0B5wUDjpHGbOG04M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA1D4/5545E21CA93611EE884AB159C4F9AE02/LCxcmnhfLqc0B5wUDjpHGbOG04M.mft Manifest number: 012A Signing time: Mon 21 Jul 2025 04:46:51 +0000 Manifest this update: Mon 21 Jul 2025 04:46:50 +0000 Manifest next update: Mon 28 Jul 2025 04:46:50 +0000 Files and hashes: 1: LCxcmnhfLqc0B5wUDjpHGbOG04M.crl (hash: CdD05OWM9A8DxFW1IesvH43i4W4cBy8Lk27ExJ1yTDw=) 2: 28FC424AA93711EE91871F0AC4F9AE02.roa (hash: g8Elzlw4tRoXrBliL3a4u/fyR/SHOUoxq/RpKAIAzgk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA1D4/5545E21CA93611EE884AB159C4F9AE02/LCxcmnhfLqc0B5wUDjpHGbOG04M.crl rsync://rpki.apnic.net/member_repository/A91BA1D4/5545E21CA93611EE884AB159C4F9AE02/LCxcmnhfLqc0B5wUDjpHGbOG04M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LCxcmnhfLqc0B5wUDjpHGbOG04M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 04:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 303 (0x12f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA1D4, serialNumber=2C2C5C9A785F2EA734079C140E3A4719B386D383 Validity Not Before: Jul 21 04:46:50 2025 GMT Not After : Jul 28 04:46:50 2025 GMT Subject: CN=687dc63b-4fb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:0b:9e:81:d4:74:dc:77:51:c5:b2:43:60:ba: c2:e8:d7:9a:7f:77:04:57:07:04:9a:da:f1:32:40: 75:aa:27:47:7e:60:59:ab:a6:5d:60:40:05:c7:ad: 45:b6:13:89:b4:6e:2e:5d:42:68:80:73:c8:cc:b9: 2e:88:5a:47:f5:bb:b7:df:e9:fc:34:e0:21:17:2e: 75:8b:29:80:86:d0:bf:ac:aa:82:0d:7a:e8:85:33: cd:07:e9:40:a4:cb:7d:fc:df:91:06:6e:b8:bd:fe: 83:c5:a6:f9:17:d1:c5:fd:96:a3:43:c1:0a:1b:0b: c3:f7:7a:27:f3:73:c4:1f:cc:da:3b:95:95:44:33: f9:31:a8:58:6d:06:5c:b9:a8:59:52:83:73:0a:80: b1:8a:ec:78:43:62:93:b5:d3:5c:c9:e7:8f:fb:ed: 23:a9:75:01:cc:28:0e:27:43:7e:64:36:54:fa:bc: fc:f9:bb:da:c0:15:ea:e2:9c:84:53:20:0c:52:8d: 26:46:fc:78:7e:28:bf:19:fc:6c:d5:80:bf:40:c7: b4:10:ab:e3:a7:28:5e:c2:4d:c3:26:83:ed:1e:9e: 17:5b:15:f8:cc:fe:8f:42:c5:d8:2a:b1:5e:e2:09: 3c:66:29:44:91:e4:1a:d4:5c:ea:f8:29:ee:81:16: 7d:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:D0:2A:10:CA:0C:8E:EF:AB:51:81:93:FF:46:A5:E8:7D:1B:51:6C X509v3 Authority Key Identifier: keyid:2C:2C:5C:9A:78:5F:2E:A7:34:07:9C:14:0E:3A:47:19:B3:86:D3:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA1D4/5545E21CA93611EE884AB159C4F9AE02/LCxcmnhfLqc0B5wUDjpHGbOG04M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LCxcmnhfLqc0B5wUDjpHGbOG04M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA1D4/5545E21CA93611EE884AB159C4F9AE02/LCxcmnhfLqc0B5wUDjpHGbOG04M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:22:3b:b2:31:39:c9:58:eb:3a:ae:e0:27:64:7e:0d:47:f6: 32:78:29:ef:f0:30:a5:6d:ce:65:bb:b9:81:69:97:53:4c:df: 26:c0:15:f1:13:07:0b:c7:07:e7:9f:ef:1c:c8:5b:d5:cb:ca: 67:aa:83:9c:30:ad:f9:4c:7b:a3:00:3a:92:53:62:b0:23:7d: ef:b6:3a:fd:2e:a0:18:7b:c1:07:ab:27:21:79:e4:c8:d3:12: e7:0b:f9:10:06:75:8c:9e:73:71:08:54:63:6d:0f:3a:af:59: e1:ee:7a:5b:eb:b7:c2:d1:b1:b9:80:24:28:61:fc:78:99:f0: 6b:9e:f7:df:9c:19:76:84:dd:44:0b:6b:67:61:bf:8a:7d:9f: cb:34:e4:2a:83:b4:16:46:66:51:e5:5f:ec:c6:6e:09:09:45: 21:68:25:ee:b7:30:73:82:ba:a7:02:af:9b:43:37:fc:b4:59: e7:77:40:18:fb:28:98:a8:df:c1:74:cc:69:d8:b4:2b:0e:1e: 79:d3:62:b2:80:83:d6:d6:97:84:0e:40:5a:30:4b:d2:6d:0d: 93:35:b8:a0:1c:c2:19:98:76:86:e9:14:43:42:e6:8c:58:93: c7:60:6c:31:3c:25:95:c2:88:95:ae:04:29:77:24:1d:28:c7: c6:40:ae:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkExRDQxMTAvBgNVBAUTKDJDMkM1QzlBNzg1RjJFQTczNDA3OUMxNDBFM0E0NzE5 QjM4NkQzODMwHhcNMjUwNzIxMDQ0NjUwWhcNMjUwNzI4MDQ0NjUwWjAYMRYwFAYD VQQDEw02ODdkYzYzYi00ZmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsguegdR03HdRxbJDYLrC6Neaf3cEVwcEmtrxMkB1qidHfmBZq6ZdYEAFx61F thOJtG4uXUJogHPIzLkuiFpH9bu33+n8NOAhFy51iymAhtC/rKqCDXrohTPNB+lA pMt9/N+RBm64vf6Dxab5F9HF/ZajQ8EKGwvD93on83PEH8zaO5WVRDP5MahYbQZc uahZUoNzCoCxiux4Q2KTtdNcyeeP++0jqXUBzCgOJ0N+ZDZU+rz8+bvawBXq4pyE UyAMUo0mRvx4fii/Gfxs1YC/QMe0EKvjpyhewk3DJoPtHp4XWxX4zP6PQsXYKrFe 4gk8ZilEkeQa1Fzq+CnugRZ9AQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKrQKhDK DI7vq1GBk/9Gpeh9G1FsMB8GA1UdIwQYMBaAFCwsXJp4Xy6nNAecFA46RxmzhtOD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTFENC81NTQ1RTIxQ0E5 MzYxMUVFODg0QUIxNTlDNEY5QUUwMi9MQ3hjbW5oZkxxYzBCNXdVRGpwSEdiT0cw NE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xDeGNtbmhmTHFjMEI1d1VEanBIR2JPRzA0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTFENC81NTQ1RTIxQ0E5MzYxMUVFODg0QUIxNTlDNEY5QUUwMi9MQ3hjbW5oZkxx YzBCNXdVRGpwSEdiT0cwNE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4IjuyMTnJWOs6ruAnZH4NR/YyeCnv8DClbc5lu7mBaZdTTN8mwBXx EwcLxwfnn+8cyFvVy8pnqoOcMK35THujADqSU2KwI33vtjr9LqAYe8EHqycheeTI 0xLnC/kQBnWMnnNxCFRjbQ86r1nh7npb67fC0bG5gCQoYfx4mfBrnvffnBl2hN1E C2tnYb+KfZ/LNOQqg7QWRmZR5V/sxm4JCUUhaCXutzBzgrqnAq+bQzf8tFnnd0AY +yiYqN/BdMxp2LQrDh5502KygIPW1peEDkBaMEvSbQ2TNbigHMIZmHaG6RRDQuaM WJPHYGwxPCWVwoiVrgQpdyQdKMfGQK5y -----END CERTIFICATE-----Generated at Wed Jul 23 02:17:44 2025 by rpki-client