$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft File: LD0jWhshn0FmEJALADuKv9wXAqI.mft (raw, json) Hash identifier: NzGQjpJvvoXToGOXtmadsp4uZk3slPCGA/Rj39hRwEI= Subject key identifier: 8B:AA:2B:74:E3:F9:20:E1:18:03:D8:E7:F1:ED:C2:C6:39:FB:68:DD Authority key identifier: 2C:3D:23:5A:1B:21:9F:41:66:10:90:0B:00:3B:8A:BF:DC:17:02:A2 Certificate issuer: /CN=A91CEA40/serialNumber=2C3D235A1B219F416610900B003B8ABFDC1702A2 Certificate serial: 062A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft Manifest number: 061D Signing time: Fri 18 Jul 2025 23:10:32 +0000 Manifest this update: Fri 18 Jul 2025 23:10:32 +0000 Manifest next update: Fri 25 Jul 2025 23:10:32 +0000 Files and hashes: 1: LD0jWhshn0FmEJALADuKv9wXAqI.crl (hash: srysDdj7Kux9YR44XFQhhmsgDQexSKCPov5UP7qvCJk=) 2: 96F093D4BEA011EB8CAD965FC4F9AE02.roa (hash: NpLkQ/NypmNX/0X8ZR0aPK3YWZwmOShkZdvPXd4fivY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.crl rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 23:10:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1578 (0x62a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEA40, serialNumber=2C3D235A1B219F416610900B003B8ABFDC1702A2 Validity Not Before: Jul 18 23:10:32 2025 GMT Not After : Jul 25 23:10:32 2025 GMT Subject: CN=687ad468-5fdf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:57:ad:62:cb:95:47:86:30:a2:34:c9:2b:e3: e0:f4:e1:c9:e3:a7:78:e1:b3:f5:5f:c5:d3:c1:99: ba:35:20:5f:6a:1d:11:1b:39:90:e4:03:4a:45:af: 88:69:f3:fc:29:d0:55:f6:99:ff:95:8c:97:18:d0: b1:42:6f:4b:94:fd:71:42:a0:78:b6:52:78:a1:59: 63:76:c9:68:36:7e:c5:3f:72:dd:ae:e2:7a:2f:9a: b9:2f:31:01:7f:2d:dd:0f:76:23:cf:62:b0:36:35: f8:e9:8a:f8:f8:b9:7e:72:4a:00:b9:f9:5b:cf:b9: 3d:4a:9a:cc:43:e3:41:ba:a5:8a:2f:fe:48:85:7e: c3:1f:e8:27:0b:fc:68:78:2d:75:85:ae:1c:89:87: fe:86:0a:eb:3a:72:5c:05:74:d5:e9:b4:2c:23:95: 53:95:45:67:a2:dd:6e:de:d2:29:d4:e7:fb:ab:c5: c6:cf:3b:80:e5:e5:cc:33:f7:7b:2a:f3:83:6f:34: 1a:3e:5f:e1:ed:1d:55:d5:2d:c3:93:a1:9a:d7:3f: ef:e9:7f:67:17:68:07:f4:c2:41:c1:45:e5:e9:29: c9:f2:74:28:3b:5d:24:a2:97:d7:5e:91:23:7c:ee: d3:7a:a7:9d:a6:0e:99:ac:48:70:7a:76:98:82:79: bb:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:AA:2B:74:E3:F9:20:E1:18:03:D8:E7:F1:ED:C2:C6:39:FB:68:DD X509v3 Authority Key Identifier: keyid:2C:3D:23:5A:1B:21:9F:41:66:10:90:0B:00:3B:8A:BF:DC:17:02:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:22:b0:e5:f9:c6:4a:3f:9c:dc:f1:28:73:63:8c:14:0f:c8: a9:3c:2d:28:ec:14:75:0e:93:64:a1:3f:73:cd:1c:54:af:ce: 7e:bb:ea:87:a5:40:2d:dd:8f:60:9b:78:d4:7b:2f:2f:77:22: a2:b6:36:c8:54:a2:cb:46:69:a4:a6:5e:3f:06:34:7f:c4:4f: 48:6d:fd:b8:d1:b3:2f:74:41:44:44:a5:fb:67:88:30:4f:19: 77:e2:d6:74:4b:f6:97:07:21:77:71:bf:75:80:71:1f:65:0b: 10:cf:ad:4e:f5:59:a2:55:72:e1:cb:e0:40:ef:b0:1d:52:d2: e7:28:2e:af:d6:b3:d4:c8:ae:7b:ee:d0:84:fd:36:6d:0c:69: 98:13:de:a3:d9:5a:c0:30:82:ea:fd:8c:86:5e:00:01:71:84: 29:cf:b0:d7:b6:67:15:8e:93:47:99:16:d3:01:44:4e:88:a0: f8:02:78:d4:14:53:c3:d5:09:95:45:1b:2a:0e:6a:28:d2:d3: 4d:6c:99:1b:92:37:f5:4f:e5:a6:cc:85:b0:90:6d:d6:22:54: 9b:02:4f:c3:9c:9b:66:3a:a1:e1:43:cd:f7:a9:21:5e:0d:11: c8:11:5e:74:fc:77:7e:e0:e3:9a:84:8d:43:d8:db:a9:66:e2: 2d:b3:e3:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBiowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VBNDAxMTAvBgNVBAUTKDJDM0QyMzVBMUIyMTlGNDE2NjEwOTAwQjAwM0I4QUJG REMxNzAyQTIwHhcNMjUwNzE4MjMxMDMyWhcNMjUwNzI1MjMxMDMyWjAYMRYwFAYD VQQDEw02ODdhZDQ2OC01ZmRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsVetYsuVR4YwojTJK+Pg9OHJ46d44bP1X8XTwZm6NSBfah0RGzmQ5ANKRa+I afP8KdBV9pn/lYyXGNCxQm9LlP1xQqB4tlJ4oVljdsloNn7FP3LdruJ6L5q5LzEB fy3dD3Yjz2KwNjX46Yr4+Ll+ckoAuflbz7k9SprMQ+NBuqWKL/5IhX7DH+gnC/xo eC11ha4ciYf+hgrrOnJcBXTV6bQsI5VTlUVnot1u3tIp1Of7q8XGzzuA5eXMM/d7 KvODbzQaPl/h7R1V1S3Dk6Ga1z/v6X9nF2gH9MJBwUXl6SnJ8nQoO10kopfXXpEj fO7Teqedpg6ZrEhwenaYgnm7JQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIuqK3Tj +SDhGAPY5/HtwsY5+2jdMB8GA1UdIwQYMBaAFCw9I1obIZ9BZhCQCwA7ir/cFwKi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUE0MC84RTk2NEJDRUFG NzkxMUVCODQyMTdBNThDNEY5QUUwMi9MRDBqV2hzaG4wRm1FSkFMQUR1S3Y5d1hB cUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xEMGpXaHNobjBGbUVKQUxBRHVLdjl3WEFxSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUE0MC84RTk2NEJDRUFGNzkxMUVCODQyMTdBNThDNEY5QUUwMi9MRDBqV2hzaG4w Rm1FSkFMQUR1S3Y5d1hBcUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAIrDl+cZKP5zc8ShzY4wUD8ipPC0o7BR1DpNkoT9zzRxUr85+u+qH pUAt3Y9gm3jUey8vdyKitjbIVKLLRmmkpl4/BjR/xE9Ibf240bMvdEFERKX7Z4gw Txl34tZ0S/aXByF3cb91gHEfZQsQz61O9VmiVXLhy+BA77AdUtLnKC6v1rPUyK57 7tCE/TZtDGmYE96j2VrAMILq/YyGXgABcYQpz7DXtmcVjpNHmRbTAUROiKD4AnjU FFPD1QmVRRsqDmoo0tNNbJkbkjf1T+WmzIWwkG3WIlSbAk/DnJtmOqHhQ833qSFe DRHIEV50/Hd+4OOahI1D2NupZuIts+OM -----END CERTIFICATE-----Generated at Sun Jul 20 03:46:15 2025 by rpki-client