$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.mft File: L2rfQq_RZAgOox4PO4M4vtbaHlk.mft (raw, json) Hash identifier: AVlTJllPFTF1NgdBu8fkmywIjqD1Vild8HLUkEt/plM= Subject key identifier: 98:90:C2:65:B7:0D:F5:EA:5B:34:FA:A6:91:47:7E:17:DA:02:A1:7F Authority key identifier: 2F:6A:DF:42:AF:D1:64:08:0E:A3:1E:0F:3B:83:38:BE:D6:DA:1E:59 Certificate issuer: /CN=A91E7164/serialNumber=2F6ADF42AFD164080EA31E0F3B8338BED6DA1E59 Certificate serial: 09BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2rfQq_RZAgOox4PO4M4vtbaHlk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.mft Manifest number: 09B4 Signing time: Tue 22 Jul 2025 20:15:47 +0000 Manifest this update: Tue 22 Jul 2025 20:15:47 +0000 Manifest next update: Tue 29 Jul 2025 20:15:47 +0000 Files and hashes: 1: L2rfQq_RZAgOox4PO4M4vtbaHlk.crl (hash: w2b5LC9X28Gp7xiRwpotY9Pz5w02mRcfeoDKMoR3zcY=) 2: F3173EDC898C11EA97286262C4F9AE02.roa (hash: 1ZtsZNF5jFsKlAT00IrDzQyZHeqFH7iBf+N8uJoqrEE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.crl rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2rfQq_RZAgOox4PO4M4vtbaHlk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 20:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2490 (0x9ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7164, serialNumber=2F6ADF42AFD164080EA31E0F3B8338BED6DA1E59 Validity Not Before: Jul 22 20:15:47 2025 GMT Not After : Jul 29 20:15:47 2025 GMT Subject: CN=687ff173-68b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:9b:47:2d:57:ab:9e:35:ea:f3:c3:7f:e1:2e: 4c:7c:63:7b:09:59:b6:20:69:ea:09:08:42:6f:86: 33:06:2e:73:ae:5d:39:31:18:1b:78:82:cc:bb:8a: e5:bd:4b:5c:07:c1:86:a0:e1:69:d0:b5:0a:99:d5: ce:47:12:ac:10:e9:a9:68:ce:84:97:9b:51:bd:e0: fc:12:2e:6a:8a:84:b8:cb:f2:e5:2a:1e:fb:41:9d: 2c:31:0c:9d:7b:ad:83:eb:85:59:d9:14:6f:43:5b: 54:e3:a9:40:e5:e0:29:57:35:7c:70:58:4a:f0:ff: ed:3d:7e:16:65:a6:90:a1:f5:7b:7e:66:c5:f5:57: e5:ed:08:28:f1:cc:99:16:1e:39:c5:50:a5:b1:83: 6c:f3:b1:0a:2b:45:e1:b4:03:31:81:7a:07:16:f0: 75:cc:36:1d:d8:90:f2:30:fe:d9:e5:34:1b:f3:f8: ab:66:1b:2f:14:fa:6a:df:67:21:5a:2f:6f:bb:37: 87:5a:ce:3a:40:91:ea:0f:53:86:bb:4e:ea:ca:23: 40:9f:88:02:fe:7c:bc:c9:6c:8b:4c:8a:bd:b6:58: 5a:80:52:33:34:e7:56:11:ef:0f:2a:d2:5c:d5:34: 8d:0c:b4:4a:8c:13:fe:80:21:56:e9:b7:30:23:fb: 09:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:90:C2:65:B7:0D:F5:EA:5B:34:FA:A6:91:47:7E:17:DA:02:A1:7F X509v3 Authority Key Identifier: keyid:2F:6A:DF:42:AF:D1:64:08:0E:A3:1E:0F:3B:83:38:BE:D6:DA:1E:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2rfQq_RZAgOox4PO4M4vtbaHlk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:3d:c0:5d:df:75:7a:18:aa:f2:67:96:9b:9e:0f:6d:b8:e6: 7c:3b:a1:03:d5:a7:16:bb:37:93:fa:8c:21:5c:35:4d:47:64: 9b:ec:38:88:cc:d3:07:cc:c8:cd:dd:48:6f:74:28:c1:5f:8b: 92:47:3f:09:bd:19:70:cc:2d:19:68:d7:7e:ef:e1:52:f0:84: 34:cb:8c:a9:08:a6:98:01:8e:31:5a:27:fa:c0:76:4a:aa:4e: 96:07:59:9d:fc:b8:34:18:58:ea:a4:5a:b1:fb:2d:b6:50:01: 41:5b:76:de:28:3d:af:5c:40:e3:d5:a4:e7:3d:76:b8:58:8a: aa:dc:05:28:17:d5:89:94:6d:7e:ef:4d:67:8b:68:ab:a4:48: e4:87:60:ed:95:73:28:c9:53:c7:02:83:17:70:77:48:f7:f7: c4:a4:d6:02:07:cb:30:0f:0e:a8:15:e3:61:69:5b:b6:ab:bf: 7d:5d:0a:5f:ab:99:46:de:cd:86:fc:3a:73:27:24:d0:38:12: ae:99:ff:6c:68:be:89:51:bb:46:05:c5:cd:0e:7a:d5:5a:2a: e7:ed:b5:d8:c5:7c:fc:18:2c:9e:c4:7f:a2:b2:13:ff:e0:54: 8c:d5:48:c1:2b:a8:45:d8:b9:17:d9:37:68:b7:87:d9:39:54: 29:46:b8:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCbowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTcxNjQxMTAvBgNVBAUTKDJGNkFERjQyQUZEMTY0MDgwRUEzMUUwRjNCODMzOEJF RDZEQTFFNTkwHhcNMjUwNzIyMjAxNTQ3WhcNMjUwNzI5MjAxNTQ3WjAYMRYwFAYD VQQDEw02ODdmZjE3My02OGIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoptHLVernjXq88N/4S5MfGN7CVm2IGnqCQhCb4YzBi5zrl05MRgbeILMu4rl vUtcB8GGoOFp0LUKmdXORxKsEOmpaM6El5tRveD8Ei5qioS4y/LlKh77QZ0sMQyd e62D64VZ2RRvQ1tU46lA5eApVzV8cFhK8P/tPX4WZaaQofV7fmbF9Vfl7Qgo8cyZ Fh45xVClsYNs87EKK0XhtAMxgXoHFvB1zDYd2JDyMP7Z5TQb8/irZhsvFPpq32ch Wi9vuzeHWs46QJHqD1OGu07qyiNAn4gC/ny8yWyLTIq9tlhagFIzNOdWEe8PKtJc 1TSNDLRKjBP+gCFW6bcwI/sJwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJiQwmW3 DfXqWzT6ppFHfhfaAqF/MB8GA1UdIwQYMBaAFC9q30Kv0WQIDqMeDzuDOL7W2h5Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzE2NC8yMjhBQkY3NDg5 OEIxMUVBOTI3NTlBNUNDNEY5QUUwMi9MMnJmUXFfUlpBZ09veDRQTzRNNHZ0YmFI bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0wycmZRcV9SWkFnT294NFBPNE00dnRiYUhsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzE2NC8yMjhBQkY3NDg5OEIxMUVBOTI3NTlBNUNDNEY5QUUwMi9MMnJmUXFfUlpB Z09veDRQTzRNNHZ0YmFIbGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9PcBd33V6GKryZ5abng9tuOZ8O6ED1acWuzeT+owhXDVNR2Sb7DiI zNMHzMjN3UhvdCjBX4uSRz8JvRlwzC0ZaNd+7+FS8IQ0y4ypCKaYAY4xWif6wHZK qk6WB1md/Lg0GFjqpFqx+y22UAFBW3beKD2vXEDj1aTnPXa4WIqq3AUoF9WJlG1+ 701ni2irpEjkh2DtlXMoyVPHAoMXcHdI9/fEpNYCB8swDw6oFeNhaVu2q799XQpf q5lG3s2G/DpzJyTQOBKumf9saL6JUbtGBcXNDnrVWirn7bXYxXz8GCyexH+ishP/ 4FSM1UjBK6hF2LkX2Tdot4fZOVQpRriX -----END CERTIFICATE-----Generated at Wed Jul 23 02:31:02 2025 by rpki-client