$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.mft File: L2rfQq_RZAgOox4PO4M4vtbaHlk.mft (raw, json) Hash identifier: 0VqLijkuEjMes4zJ055V4ph3kW9glMTlgzxoj76Nwtk= Subject key identifier: 19:F3:E3:F7:47:71:A0:16:6B:00:1C:FC:47:59:E7:7A:C4:D2:91:8E Authority key identifier: 2F:6A:DF:42:AF:D1:64:08:0E:A3:1E:0F:3B:83:38:BE:D6:DA:1E:59 Certificate issuer: /CN=A91E7164/serialNumber=2F6ADF42AFD164080EA31E0F3B8338BED6DA1E59 Certificate serial: 09BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2rfQq_RZAgOox4PO4M4vtbaHlk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.mft Manifest number: 09B5 Signing time: Thu 24 Jul 2025 20:10:27 +0000 Manifest this update: Thu 24 Jul 2025 20:10:26 +0000 Manifest next update: Thu 31 Jul 2025 20:10:26 +0000 Files and hashes: 1: L2rfQq_RZAgOox4PO4M4vtbaHlk.crl (hash: esk+vbnx9kVM87zrWykAEKIwz9+ADQefg6jVak0NXHU=) 2: F3173EDC898C11EA97286262C4F9AE02.roa (hash: 1ZtsZNF5jFsKlAT00IrDzQyZHeqFH7iBf+N8uJoqrEE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.crl rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2rfQq_RZAgOox4PO4M4vtbaHlk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 20:10:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2491 (0x9bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7164, serialNumber=2F6ADF42AFD164080EA31E0F3B8338BED6DA1E59 Validity Not Before: Jul 24 20:10:26 2025 GMT Not After : Jul 31 20:10:26 2025 GMT Subject: CN=68829333-5916 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:dc:d2:99:de:de:65:4b:65:13:79:d1:e2:7e: 90:e8:ba:52:b8:a7:5d:07:79:4a:26:dd:58:5a:89: d8:a5:2f:16:d4:d4:ea:36:21:9c:36:9b:f1:dd:de: 1d:74:1b:61:8b:4a:e3:1f:ef:b7:45:1c:2d:d9:f9: 3e:50:9c:37:24:bb:15:28:e3:96:34:03:e6:4e:71: 6d:db:57:be:d0:6a:4c:10:a0:b1:d3:6a:50:6d:9c: a5:b9:42:6e:10:f2:f1:bd:57:9e:17:94:cf:9c:91: a2:f5:15:e2:a7:a2:45:6e:69:9d:e9:3c:c3:7f:7a: 49:18:dd:1f:94:39:8b:9b:0d:e6:21:8c:a8:e2:d1: 92:b1:10:fe:f4:b6:7b:fc:c1:70:46:1d:8b:ed:ee: 0e:10:e2:d7:c0:d5:45:e4:10:bc:d1:1f:d0:7c:61: fe:f6:1d:07:81:26:66:33:c6:18:a8:fe:66:9a:1a: 44:e4:07:b6:b0:d4:09:ef:12:db:15:41:59:dc:ee: 73:7f:1d:c8:93:da:06:46:98:37:18:e0:f7:04:c3: e5:b7:e6:32:4c:42:c1:a0:e6:83:10:38:a0:e3:57: b3:a0:7d:43:d1:41:d0:92:6e:6f:37:52:23:41:53: 26:0c:0b:c0:7f:f0:ff:b1:91:d8:33:de:10:ab:a5: 82:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:F3:E3:F7:47:71:A0:16:6B:00:1C:FC:47:59:E7:7A:C4:D2:91:8E X509v3 Authority Key Identifier: keyid:2F:6A:DF:42:AF:D1:64:08:0E:A3:1E:0F:3B:83:38:BE:D6:DA:1E:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2rfQq_RZAgOox4PO4M4vtbaHlk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:ca:25:7c:c2:61:92:48:ed:53:4a:a8:cb:5b:8a:90:3e:04: 41:fa:eb:aa:3f:3c:5e:6e:56:24:d2:8c:b5:d4:bc:4d:95:26: bc:c4:00:5a:e7:71:75:31:52:8e:78:45:b2:7b:2f:44:16:57: b3:d3:86:84:09:a7:6d:24:a4:ed:ab:25:c0:b4:f3:5d:30:89: a5:69:a4:5b:3e:bc:3c:0a:81:6b:a0:24:fe:ed:64:bd:b7:35: 37:1b:b3:d3:1d:32:03:e4:c4:1f:51:95:19:45:40:43:1f:df: 61:ca:ba:4e:fb:ca:bd:ba:31:2d:99:1b:18:11:2c:03:5c:90: 94:99:ef:b7:93:8b:79:6a:01:87:26:c4:73:8f:0d:e4:f9:ec: d9:06:64:7e:d7:e7:de:1b:68:46:d1:ff:af:3b:c3:53:54:c8: f3:b9:d3:5c:7f:5d:72:b8:32:3f:1d:3d:3a:29:52:24:b7:83: c0:b7:2b:e0:3f:12:ef:c6:8f:a0:be:b5:af:10:01:c4:5b:0c: ff:b7:6f:31:c6:dd:21:25:8d:f0:aa:e9:f5:15:84:ac:40:d7: cf:fd:67:c1:24:2a:55:17:cd:9d:10:02:02:50:8e:0f:64:df: de:c2:a6:fc:90:7b:78:c5:d2:89:71:2b:f9:b2:5e:e5:85:48: b3:70:2f:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCbswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTcxNjQxMTAvBgNVBAUTKDJGNkFERjQyQUZEMTY0MDgwRUEzMUUwRjNCODMzOEJF RDZEQTFFNTkwHhcNMjUwNzI0MjAxMDI2WhcNMjUwNzMxMjAxMDI2WjAYMRYwFAYD VQQDEw02ODgyOTMzMy01OTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv9zSmd7eZUtlE3nR4n6Q6LpSuKddB3lKJt1YWonYpS8W1NTqNiGcNpvx3d4d dBthi0rjH++3RRwt2fk+UJw3JLsVKOOWNAPmTnFt21e+0GpMEKCx02pQbZyluUJu EPLxvVeeF5TPnJGi9RXip6JFbmmd6TzDf3pJGN0flDmLmw3mIYyo4tGSsRD+9LZ7 /MFwRh2L7e4OEOLXwNVF5BC80R/QfGH+9h0HgSZmM8YYqP5mmhpE5Ae2sNQJ7xLb FUFZ3O5zfx3Ik9oGRpg3GOD3BMPlt+YyTELBoOaDEDig41ezoH1D0UHQkm5vN1Ij QVMmDAvAf/D/sZHYM94Qq6WC3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBnz4/dH caAWawAc/EdZ53rE0pGOMB8GA1UdIwQYMBaAFC9q30Kv0WQIDqMeDzuDOL7W2h5Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzE2NC8yMjhBQkY3NDg5 OEIxMUVBOTI3NTlBNUNDNEY5QUUwMi9MMnJmUXFfUlpBZ09veDRQTzRNNHZ0YmFI bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0wycmZRcV9SWkFnT294NFBPNE00dnRiYUhsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzE2NC8yMjhBQkY3NDg5OEIxMUVBOTI3NTlBNUNDNEY5QUUwMi9MMnJmUXFfUlpB Z09veDRQTzRNNHZ0YmFIbGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwyiV8wmGSSO1TSqjLW4qQPgRB+uuqPzxeblYk0oy11LxNlSa8xABa 53F1MVKOeEWyey9EFlez04aECadtJKTtqyXAtPNdMImlaaRbPrw8CoFroCT+7WS9 tzU3G7PTHTID5MQfUZUZRUBDH99hyrpO+8q9ujEtmRsYESwDXJCUme+3k4t5agGH JsRzjw3k+ezZBmR+1+feG2hG0f+vO8NTVMjzudNcf11yuDI/HT06KVIkt4PAtyvg PxLvxo+gvrWvEAHEWwz/t28xxt0hJY3wqun1FYSsQNfP/WfBJCpVF82dEAICUI4P ZN/ewqb8kHt4xdKJcSv5sl7lhUizcC/S -----END CERTIFICATE-----Generated at Sat Jul 26 01:58:05 2025 by rpki-client