$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft File: lpDF1gn85ELDW5kW1WP58Ye2itQ.mft (raw, json) Hash identifier: y9JhAmo6F+QpYfj8inApjIx2/S2ZjHG5EgysWJERoio= Subject key identifier: D5:67:81:5C:E7:09:3C:0B:45:D5:D8:A6:EA:8F:01:AA:D0:1A:52:F5 Authority key identifier: 96:90:C5:D6:09:FC:E4:42:C3:5B:99:16:D5:63:F9:F1:87:B6:8A:D4 Certificate issuer: /CN=A91D8E2C/serialNumber=9690C5D609FCE442C35B9916D563F9F187B68AD4 Certificate serial: 0E57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft Manifest number: 0E4E Signing time: Fri 18 Jul 2025 17:55:35 +0000 Manifest this update: Fri 18 Jul 2025 17:55:34 +0000 Manifest next update: Fri 25 Jul 2025 17:55:34 +0000 Files and hashes: 1: lpDF1gn85ELDW5kW1WP58Ye2itQ.crl (hash: V32tdq2/qxfK7M+kGxHbNJA+bOdtil2+TT8SN3AIIqQ=) 2: 6C153768CE5511EB9DD80C30C4F9AE02.roa (hash: FB/I0gTgEb20qtL8a4Y3PnJsdj8cSocHpg/e5FisnJk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.crl rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 17:55:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3671 (0xe57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8E2C, serialNumber=9690C5D609FCE442C35B9916D563F9F187B68AD4 Validity Not Before: Jul 18 17:55:34 2025 GMT Not After : Jul 25 17:55:34 2025 GMT Subject: CN=687a8a97-31e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:ed:05:a3:25:31:07:a5:46:ca:6d:87:dd:8c: 1c:07:56:00:14:16:80:2e:dc:62:4c:42:26:5b:6f: 18:93:f5:22:4b:16:2e:95:0d:2f:ed:ed:84:05:90: 43:63:8a:a3:71:e6:61:36:a9:b0:d7:3a:91:8f:3b: 05:4e:e3:a7:7a:8e:ec:b4:0b:e8:dc:12:be:79:a0: f8:de:11:d8:e8:ac:5a:df:5c:e7:13:75:82:0b:2d: f7:a4:96:cb:59:4a:d0:ba:18:65:86:3c:56:d8:c8: ee:3b:b2:63:3c:30:a7:58:99:5d:8e:9b:97:4b:bf: ff:05:10:28:46:c3:ea:d8:f0:e8:10:1e:08:d8:93: b6:75:b3:6c:ab:15:63:cb:a0:0a:53:95:02:bd:bb: a9:a6:84:a8:2c:6e:b0:17:01:68:ad:03:1e:7a:04: b2:22:fc:af:75:2c:49:76:ea:1f:7b:d6:50:86:cf: fd:5a:e3:25:c1:85:bc:82:2c:13:b6:e2:0d:9d:9a: 97:96:f5:25:8c:47:9f:de:cc:08:58:7c:3a:83:c4: 15:9a:e4:f8:02:c3:3e:e0:79:83:5a:5d:f9:3b:4f: cf:eb:94:a8:7c:27:24:d1:3b:5c:1f:a3:8a:20:ca: f9:75:aa:ae:ef:a0:52:87:e1:0e:f1:0b:2a:03:25: ce:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:67:81:5C:E7:09:3C:0B:45:D5:D8:A6:EA:8F:01:AA:D0:1A:52:F5 X509v3 Authority Key Identifier: keyid:96:90:C5:D6:09:FC:E4:42:C3:5B:99:16:D5:63:F9:F1:87:B6:8A:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:5b:57:48:48:df:64:62:ee:70:20:f5:c6:8b:ab:14:28:b9: 32:e8:78:7d:8a:83:0d:79:29:3f:9c:2e:eb:27:1b:60:58:8a: 77:32:9d:a3:96:e5:43:0d:b5:0e:2d:6d:75:ef:0d:53:2b:2d: 91:69:6f:b5:e6:8e:8a:7d:cc:77:1b:99:a1:00:b9:35:2a:d0: eb:aa:0f:6a:57:69:65:08:2a:bb:fa:5f:5a:9c:19:f8:78:22: 20:8c:b3:5b:c5:b0:d9:67:fb:3d:b7:ce:07:99:be:3a:28:e7: 27:ce:eb:71:2a:31:22:ab:75:d9:fc:0e:ea:9d:e6:3a:37:0f: a8:0a:2e:3b:a4:13:e8:79:a4:31:b1:f1:15:d3:46:95:a3:8c: d2:61:40:0c:32:46:bd:86:58:a9:d7:5a:8f:fe:89:36:a6:fc: 54:d5:ef:ae:1a:cf:f1:9e:9b:99:e0:f8:cd:3e:58:f9:7c:96: ee:a6:46:ae:71:b3:84:03:3f:a6:c2:b1:c3:9d:1a:e5:66:4e: c1:fb:05:7a:80:51:e7:b3:a5:95:ce:d9:3c:07:61:06:9a:4b: 22:78:d7:05:92:3d:f5:90:08:93:45:ed:7c:a9:f2:fc:0c:34: 2d:1e:f0:8b:17:00:0d:50:21:1f:92:0c:01:d2:57:47:57:6c: 02:8d:95:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDlcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhFMkMxMTAvBgNVBAUTKDk2OTBDNUQ2MDlGQ0U0NDJDMzVCOTkxNkQ1NjNGOUYx ODdCNjhBRDQwHhcNMjUwNzE4MTc1NTM0WhcNMjUwNzI1MTc1NTM0WjAYMRYwFAYD VQQDEw02ODdhOGE5Ny0zMWU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1e0FoyUxB6VGym2H3YwcB1YAFBaALtxiTEImW28Yk/UiSxYulQ0v7e2EBZBD Y4qjceZhNqmw1zqRjzsFTuOneo7stAvo3BK+eaD43hHY6Kxa31znE3WCCy33pJbL WUrQuhhlhjxW2MjuO7JjPDCnWJldjpuXS7//BRAoRsPq2PDoEB4I2JO2dbNsqxVj y6AKU5UCvbuppoSoLG6wFwForQMeegSyIvyvdSxJduofe9ZQhs/9WuMlwYW8giwT tuINnZqXlvUljEef3swIWHw6g8QVmuT4AsM+4HmDWl35O0/P65SofCck0TtcH6OK IMr5daqu76BSh+EO8QsqAyXO9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNVngVzn CTwLRdXYpuqPAarQGlL1MB8GA1UdIwQYMBaAFJaQxdYJ/ORCw1uZFtVj+fGHtorU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEUyQy8wRkUxRUQwNkEy RkIxMUU5QTUyNkE1N0VDNEY5QUUwMi9scERGMWduODVFTERXNWtXMVdQNThZZTJp dFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xwREYxZ244NUVMRFc1a1cxV1A1OFllMml0US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEUyQy8wRkUxRUQwNkEyRkIxMUU5QTUyNkE1N0VDNEY5QUUwMi9scERGMWduODVF TERXNWtXMVdQNThZZTJpdFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByW1dISN9kYu5wIPXGi6sUKLky6Hh9ioMNeSk/nC7rJxtgWIp3Mp2j luVDDbUOLW117w1TKy2RaW+15o6Kfcx3G5mhALk1KtDrqg9qV2llCCq7+l9anBn4 eCIgjLNbxbDZZ/s9t84Hmb46KOcnzutxKjEiq3XZ/A7qneY6Nw+oCi47pBPoeaQx sfEV00aVo4zSYUAMMka9hlip11qP/ok2pvxU1e+uGs/xnpuZ4PjNPlj5fJbupkau cbOEAz+mwrHDnRrlZk7B+wV6gFHns6WVztk8B2EGmksieNcFkj31kAiTRe18qfL8 DDQtHvCLFwANUCEfkgwB0ldHV2wCjZV9 -----END CERTIFICATE-----Generated at Sun Jul 20 07:23:21 2025 by rpki-client