$ rpki-client -vvf rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.mft File: lVqjNNYHfBfALW18rdIVmRIeTvo.mft (raw, json) Hash identifier: /byNtTI5uublKPnL9Ai4/+uU6NbF7deCxSAigZPcwiw= Subject key identifier: 2C:07:83:41:92:99:D5:B1:62:04:BF:59:27:AD:C6:D7:F8:46:85:99 Authority key identifier: 95:5A:A3:34:D6:07:7C:17:C0:2D:6D:7C:AD:D2:15:99:12:1E:4E:FA Certificate issuer: /CN=A91D01AF/serialNumber=955AA334D6077C17C02D6D7CADD21599121E4EFA Certificate serial: 07F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lVqjNNYHfBfALW18rdIVmRIeTvo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.mft Manifest number: 07ED Signing time: Sun 20 Jul 2025 21:04:57 +0000 Manifest this update: Sun 20 Jul 2025 21:04:56 +0000 Manifest next update: Sun 27 Jul 2025 21:04:56 +0000 Files and hashes: 1: lVqjNNYHfBfALW18rdIVmRIeTvo.crl (hash: vdHeBinguVp+a+QgADc4hNCXZnIlpLjD0srVic1Qc20=) 2: AD797FA2F17E11EAA3CC597BC4F9AE02.roa (hash: h5ITx5pXE/9NCEhkkWyRU4Y7R0J0MFf0GXuloXcx21g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.crl rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lVqjNNYHfBfALW18rdIVmRIeTvo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 21:04:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2036 (0x7f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D01AF, serialNumber=955AA334D6077C17C02D6D7CADD21599121E4EFA Validity Not Before: Jul 20 21:04:56 2025 GMT Not After : Jul 27 21:04:56 2025 GMT Subject: CN=687d59f8-ed3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:be:54:07:a6:36:47:dd:65:e2:9a:82:cc:15: 08:a5:7c:6d:29:e9:bc:2f:cf:b8:d6:20:72:55:24: 68:0e:95:7d:14:35:33:20:02:5f:50:a1:6b:0c:08: dc:57:d2:d5:27:ca:9f:75:57:5e:3f:2f:8a:31:c4: 8f:ef:d9:ac:b6:a2:af:a1:5f:9e:af:2f:ff:b0:f8: 5f:c0:ea:61:cb:b3:ee:80:47:f5:9c:71:29:ad:81: 67:29:33:8d:84:b9:bf:51:a4:c4:ff:03:b1:c1:d1: 36:e3:36:ae:ea:7d:d6:8a:98:b5:8d:e1:1a:6c:57: 26:b8:c2:14:f9:63:43:59:75:a8:3d:62:f3:83:d2: 51:98:30:c3:d8:d3:be:80:88:c1:eb:c0:6a:6f:5e: df:77:fe:35:43:ef:88:46:4d:23:0a:12:33:06:8c: fe:f1:31:87:8d:09:f1:25:d2:1b:b0:d1:d7:56:ce: 5d:73:a7:d7:95:9b:39:f8:01:b5:08:8a:12:7c:2f: b8:b6:b4:ff:48:3a:cf:75:60:0d:ed:8d:3d:21:1a: ec:9f:bb:4c:73:1d:82:9f:de:09:da:6b:77:08:4d: 68:5e:59:63:18:cd:39:6d:c1:e9:f2:8b:0c:63:f0: b9:a2:3d:c1:39:03:e0:9e:ca:d4:f9:68:3b:f0:00: f5:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:07:83:41:92:99:D5:B1:62:04:BF:59:27:AD:C6:D7:F8:46:85:99 X509v3 Authority Key Identifier: keyid:95:5A:A3:34:D6:07:7C:17:C0:2D:6D:7C:AD:D2:15:99:12:1E:4E:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lVqjNNYHfBfALW18rdIVmRIeTvo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:85:f1:4b:e3:5a:49:56:28:c5:93:d2:b2:de:09:8a:10:84: 91:9d:ba:53:e4:70:e1:7f:6e:e0:a4:66:24:74:e4:24:35:76: e3:df:65:18:8e:c8:c2:ca:ba:e0:f9:02:d5:7f:91:de:5a:06: 57:10:d3:7e:bf:66:09:c6:ca:2f:ae:5a:bd:41:ee:b7:84:29: 4e:e3:28:db:8e:58:60:65:50:2e:d6:b8:e5:6c:32:e7:c1:90: 04:0c:22:49:02:2f:6c:82:e3:31:3b:4a:a8:b0:7a:6a:dc:c4: 5c:77:f8:ea:bf:41:8c:f1:dd:34:0f:e4:60:50:6b:9b:66:21: 98:b3:0c:30:71:d3:ba:f0:76:be:89:63:1c:75:a4:aa:20:e9: 4a:f2:19:7d:22:57:4a:23:f0:7a:39:b5:39:42:e8:62:ee:e9: fb:57:e0:d9:5a:51:ac:64:2f:ed:0e:c4:62:23:72:4d:d6:49: 1f:6d:7a:49:bb:96:8c:88:8a:21:61:11:e3:93:89:a9:c7:cb: da:76:e0:60:ab:4a:31:ac:fc:6f:63:78:70:21:8b:04:39:01: 43:b5:9e:ae:3f:7c:19:c5:70:38:93:86:66:29:65:57:b5:23: 6a:41:b0:14:cb:7e:ba:b7:67:f0:cc:36:05:00:19:a2:34:1a: 1b:88:dc:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDAxQUYxMTAvBgNVBAUTKDk1NUFBMzM0RDYwNzdDMTdDMDJENkQ3Q0FERDIxNTk5 MTIxRTRFRkEwHhcNMjUwNzIwMjEwNDU2WhcNMjUwNzI3MjEwNDU2WjAYMRYwFAYD VQQDEw02ODdkNTlmOC1lZDNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxr5UB6Y2R91l4pqCzBUIpXxtKem8L8+41iByVSRoDpV9FDUzIAJfUKFrDAjc V9LVJ8qfdVdePy+KMcSP79mstqKvoV+ery//sPhfwOphy7PugEf1nHEprYFnKTON hLm/UaTE/wOxwdE24zau6n3Wipi1jeEabFcmuMIU+WNDWXWoPWLzg9JRmDDD2NO+ gIjB68Bqb17fd/41Q++IRk0jChIzBoz+8TGHjQnxJdIbsNHXVs5dc6fXlZs5+AG1 CIoSfC+4trT/SDrPdWAN7Y09IRrsn7tMcx2Cn94J2mt3CE1oXlljGM05bcHp8osM Y/C5oj3BOQPgnsrU+Wg78AD1yQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCwHg0GS mdWxYgS/WSetxtf4RoWZMB8GA1UdIwQYMBaAFJVaozTWB3wXwC1tfK3SFZkSHk76 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDFBRi9DRDdFNzBEOEYx N0QxMUVBQUIzOTI1NzhDNEY5QUUwMi9sVnFqTk5ZSGZCZkFMVzE4cmRJVm1SSWVU dm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xWcWpOTllIZkJmQUxXMThyZElWbVJJZVR2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MDFBRi9DRDdFNzBEOEYxN0QxMUVBQUIzOTI1NzhDNEY5QUUwMi9sVnFqTk5ZSGZC ZkFMVzE4cmRJVm1SSWVUdm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFhfFL41pJVijFk9Ky3gmKEISRnbpT5HDhf27gpGYkdOQkNXbj32UY jsjCyrrg+QLVf5HeWgZXENN+v2YJxsovrlq9Qe63hClO4yjbjlhgZVAu1rjlbDLn wZAEDCJJAi9sguMxO0qosHpq3MRcd/jqv0GM8d00D+RgUGubZiGYswwwcdO68Ha+ iWMcdaSqIOlK8hl9IldKI/B6ObU5Quhi7un7V+DZWlGsZC/tDsRiI3JN1kkfbXpJ u5aMiIohYRHjk4mpx8vaduBgq0oxrPxvY3hwIYsEOQFDtZ6uP3wZxXA4k4ZmKWVX tSNqQbAUy366t2fwzDYFABmiNBobiNwa -----END CERTIFICATE-----Generated at Mon Jul 21 05:45:18 2025 by rpki-client