$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft File: lHy2dKhYzZGupVJro2aKEeSey5M.mft (raw, json) Hash identifier: ML8de0q4EPLvSFjvBKYomt+ZjqSrDv5auuD/2runUl4= Subject key identifier: 5F:D3:84:2C:5B:FC:D3:9D:2A:88:A3:D4:FE:FC:BA:C4:A0:72:09:20 Authority key identifier: 94:7C:B6:74:A8:58:CD:91:AE:A5:52:6B:A3:66:8A:11:E4:9E:CB:93 Certificate issuer: /CN=A91DFC30/serialNumber=947CB674A858CD91AEA5526BA3668A11E49ECB93 Certificate serial: 03FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft Manifest number: 03F1 Signing time: Sat 19 Jul 2025 00:56:15 +0000 Manifest this update: Sat 19 Jul 2025 00:56:14 +0000 Manifest next update: Sat 26 Jul 2025 00:56:14 +0000 Files and hashes: 1: lHy2dKhYzZGupVJro2aKEeSey5M.crl (hash: WnGj3Pa7WTO5Eu97nVrceVsCisOdG+ZLakcHRffqytU=) 2: 13F5D28685B111ECB675B552C4F9AE02.roa (hash: wg979tEV/edC9z/60lEEUA1wH6+Atveb0Z20mtMK9/g=) 3: 147D51CA85B111ECB675B552C4F9AE02.roa (hash: e9cwg8d7bC8r2DHgx/kL7/A4+KHztZ7rWF6Yv+XqYD8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.crl rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 00:56:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1018 (0x3fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFC30, serialNumber=947CB674A858CD91AEA5526BA3668A11E49ECB93 Validity Not Before: Jul 19 00:56:14 2025 GMT Not After : Jul 26 00:56:14 2025 GMT Subject: CN=687aed2f-fd73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:8e:d8:87:a2:17:e4:42:b4:3b:e5:4e:6b:27: 53:ab:80:f8:cd:4f:e1:23:1d:a6:bf:70:bb:50:9a: cc:ad:ef:fd:47:c0:f6:38:0d:df:57:13:1e:98:96: a4:f3:4d:9b:97:eb:57:b7:8a:f0:78:ff:86:c7:f4: d0:25:d0:0a:2a:6d:eb:b3:83:a8:06:61:8e:eb:09: 75:1e:ed:c6:0a:36:cd:83:81:3d:44:b6:bb:c7:72: fa:93:5f:7b:9e:e6:a9:aa:91:da:8e:71:88:9b:55: 90:f2:30:b8:f6:43:f6:23:31:e9:25:aa:36:7e:4f: 3f:11:51:d3:50:c1:5d:1e:eb:2d:c1:13:ca:76:30: 36:7a:9f:1b:85:f0:af:1c:03:25:04:db:3c:55:11: 3d:b3:33:92:49:c2:b1:78:b3:e4:ea:d0:1c:cb:18: da:36:e4:05:ee:18:35:ec:87:90:5e:2e:41:3a:70: 85:00:85:6c:12:bc:85:eb:8e:9c:e0:6b:87:4f:7f: 59:c5:19:4c:2e:1a:1e:1c:e9:c0:f1:cb:27:6e:45: 77:f4:11:e6:c5:eb:44:65:4a:b8:b7:91:ef:27:2e: af:d8:78:aa:0b:df:58:1c:28:50:d9:53:71:29:10: c4:ee:48:3a:42:de:30:74:46:21:ba:3c:9a:61:ce: 53:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:D3:84:2C:5B:FC:D3:9D:2A:88:A3:D4:FE:FC:BA:C4:A0:72:09:20 X509v3 Authority Key Identifier: keyid:94:7C:B6:74:A8:58:CD:91:AE:A5:52:6B:A3:66:8A:11:E4:9E:CB:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:d4:f8:ea:26:9f:6b:22:f5:cd:e4:16:e4:28:2e:f8:54:61: cb:01:21:9e:e8:b6:52:4a:a2:9d:7c:08:ef:37:0b:56:c1:43: 25:72:ae:9c:74:c8:d2:07:e9:52:c7:cf:43:1f:ae:d8:5c:b7: b4:3a:c2:80:fe:a0:28:c2:04:4e:bb:ce:be:09:55:42:fd:35: c4:45:4f:3e:6f:57:31:2f:ec:a6:03:f6:f6:67:1a:0b:b0:c0: 60:38:74:7e:b6:bd:0c:c3:81:a0:9b:dc:83:09:b2:0c:00:ea: ba:d3:f8:d0:c4:06:0e:6b:7e:3d:7b:1e:9f:79:90:b7:8f:e2: 9a:00:05:7b:3f:c4:98:a2:fa:85:9b:fa:c8:15:a2:1e:6a:5d: 7f:48:06:b8:b9:19:ab:0e:b5:15:52:e0:c6:65:2b:10:df:0e: 6c:62:f2:bc:99:78:c3:2f:cc:b1:c6:27:37:24:0d:29:7d:bb: 3f:aa:9d:42:cc:5d:6e:7c:58:99:8b:61:2c:55:37:d9:2b:b8: 7c:14:82:dc:ae:b8:db:4e:cc:da:fc:7e:eb:72:60:ec:8d:fa: 9f:8f:c6:c4:85:c9:ce:08:00:e4:d1:5f:9a:da:7f:93:46:0b: 64:ff:fa:71:12:b2:26:7a:2f:f5:24:e7:91:a0:3c:23:b0:1e: 69:35:4a:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZDMzAxMTAvBgNVBAUTKDk0N0NCNjc0QTg1OENEOTFBRUE1NTI2QkEzNjY4QTEx RTQ5RUNCOTMwHhcNMjUwNzE5MDA1NjE0WhcNMjUwNzI2MDA1NjE0WjAYMRYwFAYD VQQDEw02ODdhZWQyZi1mZDczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr47Yh6IX5EK0O+VOaydTq4D4zU/hIx2mv3C7UJrMre/9R8D2OA3fVxMemJak 802bl+tXt4rweP+Gx/TQJdAKKm3rs4OoBmGO6wl1Hu3GCjbNg4E9RLa7x3L6k197 nuapqpHajnGIm1WQ8jC49kP2IzHpJao2fk8/EVHTUMFdHustwRPKdjA2ep8bhfCv HAMlBNs8VRE9szOSScKxeLPk6tAcyxjaNuQF7hg17IeQXi5BOnCFAIVsEryF646c 4GuHT39ZxRlMLhoeHOnA8csnbkV39BHmxetEZUq4t5HvJy6v2HiqC99YHChQ2VNx KRDE7kg6Qt4wdEYhujyaYc5TOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF/ThCxb /NOdKoij1P78usSgcgkgMB8GA1UdIwQYMBaAFJR8tnSoWM2RrqVSa6NmihHknsuT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkMzMC8xMTJBRjFBQzg1 QUQxMUVDQjM2RjQxNERDNEY5QUUwMi9sSHkyZEtoWXpaR3VwVkpybzJhS0VlU2V5 NU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xIeTJkS2hZelpHdXBWSnJvMmFLRWVTZXk1TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RkMzMC8xMTJBRjFBQzg1QUQxMUVDQjM2RjQxNERDNEY5QUUwMi9sSHkyZEtoWXpa R3VwVkpybzJhS0VlU2V5NU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAo1PjqJp9rIvXN5BbkKC74VGHLASGe6LZSSqKdfAjvNwtWwUMlcq6c dMjSB+lSx89DH67YXLe0OsKA/qAowgROu86+CVVC/TXERU8+b1cxL+ymA/b2ZxoL sMBgOHR+tr0Mw4Ggm9yDCbIMAOq60/jQxAYOa349ex6feZC3j+KaAAV7P8SYovqF m/rIFaIeal1/SAa4uRmrDrUVUuDGZSsQ3w5sYvK8mXjDL8yxxic3JA0pfbs/qp1C zF1ufFiZi2EsVTfZK7h8FILcrrjbTsza/H7rcmDsjfqfj8bEhcnOCADk0V+a2n+T Rgtk//pxErImei/1JOeRoDwjsB5pNUpe -----END CERTIFICATE-----Generated at Sun Jul 20 06:13:38 2025 by rpki-client