$ rpki-client -vvf rpki.apnic.net/member_repository/A91F20F8/B06FAE2E197C11EEBD21BB4CC4F9AE02/ljP2L_shhnbryT8cN2lknAxdhN8.mft File: ljP2L_shhnbryT8cN2lknAxdhN8.mft (raw, json) Hash identifier: hlASj0EfctXqkgrGGyVolhHCSrYyKnuifEpsn9uRGEQ= Subject key identifier: 49:1F:C2:6A:74:51:B1:FA:51:AF:12:36:7A:AB:08:3C:25:96:E8:C2 Authority key identifier: 96:33:F6:2F:FB:21:86:76:EB:C9:3F:1C:37:69:64:9C:0C:5D:84:DF Certificate issuer: /CN=A91F20F8/serialNumber=9633F62FFB218676EBC93F1C3769649C0C5D84DF Certificate serial: 017F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ljP2L_shhnbryT8cN2lknAxdhN8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F20F8/B06FAE2E197C11EEBD21BB4CC4F9AE02/ljP2L_shhnbryT8cN2lknAxdhN8.mft Manifest number: 017E Signing time: Sat 19 Jul 2025 03:49:56 +0000 Manifest this update: Sat 19 Jul 2025 03:49:55 +0000 Manifest next update: Sat 26 Jul 2025 03:49:55 +0000 Files and hashes: 1: ljP2L_shhnbryT8cN2lknAxdhN8.crl (hash: JR77Vyfg6AI24SL/d7uFG3XD4kTZ4v1sOIxwQZjkZCY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F20F8/B06FAE2E197C11EEBD21BB4CC4F9AE02/ljP2L_shhnbryT8cN2lknAxdhN8.crl rsync://rpki.apnic.net/member_repository/A91F20F8/B06FAE2E197C11EEBD21BB4CC4F9AE02/ljP2L_shhnbryT8cN2lknAxdhN8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ljP2L_shhnbryT8cN2lknAxdhN8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 03:49:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 383 (0x17f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F20F8, serialNumber=9633F62FFB218676EBC93F1C3769649C0C5D84DF Validity Not Before: Jul 19 03:49:55 2025 GMT Not After : Jul 26 03:49:55 2025 GMT Subject: CN=687b15e3-b11f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:74:74:32:d5:75:96:50:4e:76:30:e4:8f:ce: 30:0f:03:7d:fb:e0:fd:11:03:db:a9:eb:1d:a5:37: fa:92:84:d7:fd:b0:19:7d:59:b0:33:42:65:d6:1e: e9:8b:0d:46:b8:31:80:9f:aa:76:03:2a:d6:bc:1e: 33:a9:ab:8a:13:9d:27:5f:91:e1:c1:c1:32:0e:7b: f9:a0:d1:06:00:dd:cb:c7:8b:89:8b:cb:7c:1b:fa: 8f:17:ca:97:45:01:e5:91:30:70:c9:26:9c:6f:7b: 5f:d0:67:89:3c:3a:f0:d6:d5:e4:6b:2e:24:32:68: 9b:3c:21:ba:fd:34:c3:56:3f:69:3d:7e:35:f1:cb: a0:93:22:f8:6c:26:88:b0:93:4c:93:4f:2e:c7:d3: a6:d4:b1:12:0d:ef:1f:c3:15:55:2f:7c:16:78:c5: c6:b8:3d:c7:bb:f5:68:d4:05:9f:43:01:94:17:73: 9c:1b:48:4c:bd:dc:ee:96:54:47:0e:a5:73:4b:3a: ff:0c:1c:8c:f2:f8:ee:c9:91:65:e4:aa:40:ae:9b: b8:00:61:51:85:cc:e5:e8:be:d0:95:36:39:f7:77: 26:57:f1:4c:eb:c5:c1:de:ae:68:62:92:ae:9a:4d: 0d:f7:c5:07:39:88:94:72:d8:92:70:07:3a:db:0c: 7b:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:1F:C2:6A:74:51:B1:FA:51:AF:12:36:7A:AB:08:3C:25:96:E8:C2 X509v3 Authority Key Identifier: keyid:96:33:F6:2F:FB:21:86:76:EB:C9:3F:1C:37:69:64:9C:0C:5D:84:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F20F8/B06FAE2E197C11EEBD21BB4CC4F9AE02/ljP2L_shhnbryT8cN2lknAxdhN8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ljP2L_shhnbryT8cN2lknAxdhN8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F20F8/B06FAE2E197C11EEBD21BB4CC4F9AE02/ljP2L_shhnbryT8cN2lknAxdhN8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:e8:e8:8c:03:bc:2a:0b:ee:e7:d0:28:c0:36:5b:f5:23:63: f2:1b:a4:1d:ee:86:ea:f9:17:92:de:11:8b:4c:46:80:14:34: 58:67:c4:f9:88:4a:9c:47:99:2e:95:ff:d9:3d:4a:19:72:d7: 4a:6f:0e:6a:f9:7d:3f:48:1c:ec:08:9a:08:a1:58:75:87:fe: 96:65:91:cf:6e:fd:50:ea:e2:4d:6e:60:5b:8c:fb:f4:94:6a: f6:63:6b:ae:66:a5:96:52:f7:84:f2:ea:24:2c:64:d0:05:e0: dd:fb:20:b3:09:2d:bc:31:d0:7c:f1:35:2b:70:6d:13:9d:8b: 09:22:4a:97:86:24:4b:e4:d2:57:9c:25:db:39:e5:f9:47:04: ca:04:9f:48:d7:5a:24:ad:8a:06:29:e5:57:42:91:c2:35:4f: 93:61:9d:4a:c1:f0:1a:db:c8:87:fc:25:41:b1:46:8a:fc:e2: 84:bc:d3:91:2f:a8:1a:dd:98:bb:2a:31:59:1c:d3:f2:e0:5d: 68:fd:fc:19:9f:1c:58:33:37:47:26:51:7d:e5:46:a1:22:d3: 7f:ab:d0:c3:b4:43:64:60:9a:f7:38:54:15:9b:77:43:45:46: f0:f0:47:25:b9:71:8f:7a:3b:7e:f3:98:82:22:71:7a:9e:ae: 47:41:89:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAX8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjIwRjgxMTAvBgNVBAUTKDk2MzNGNjJGRkIyMTg2NzZFQkM5M0YxQzM3Njk2NDlD MEM1RDg0REYwHhcNMjUwNzE5MDM0OTU1WhcNMjUwNzI2MDM0OTU1WjAYMRYwFAYD VQQDEw02ODdiMTVlMy1iMTFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoHR0MtV1llBOdjDkj84wDwN9++D9EQPbqesdpTf6koTX/bAZfVmwM0Jl1h7p iw1GuDGAn6p2AyrWvB4zqauKE50nX5HhwcEyDnv5oNEGAN3Lx4uJi8t8G/qPF8qX RQHlkTBwySacb3tf0GeJPDrw1tXkay4kMmibPCG6/TTDVj9pPX418cugkyL4bCaI sJNMk08ux9Om1LESDe8fwxVVL3wWeMXGuD3Hu/Vo1AWfQwGUF3OcG0hMvdzullRH DqVzSzr/DByM8vjuyZFl5KpArpu4AGFRhczl6L7QlTY593cmV/FM68XB3q5oYpKu mk0N98UHOYiUctiScAc62wx79wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEkfwmp0 UbH6Ua8SNnqrCDwllujCMB8GA1UdIwQYMBaAFJYz9i/7IYZ268k/HDdpZJwMXYTf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjBGOC9CMDZGQUUyRTE5 N0MxMUVFQkQyMUJCNENDNEY5QUUwMi9salAyTF9zaGhuYnJ5VDhjTjJsa25BeGRo TjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xqUDJMX3NoaG5icnlUOGNOMmxrbkF4ZGhOOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MjBGOC9CMDZGQUUyRTE5N0MxMUVFQkQyMUJCNENDNEY5QUUwMi9salAyTF9zaGhu YnJ5VDhjTjJsa25BeGRoTjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB76OiMA7wqC+7n0CjANlv1I2PyG6Qd7obq+ReS3hGLTEaAFDRYZ8T5 iEqcR5kulf/ZPUoZctdKbw5q+X0/SBzsCJoIoVh1h/6WZZHPbv1Q6uJNbmBbjPv0 lGr2Y2uuZqWWUveE8uokLGTQBeDd+yCzCS28MdB88TUrcG0TnYsJIkqXhiRL5NJX nCXbOeX5RwTKBJ9I11okrYoGKeVXQpHCNU+TYZ1KwfAa28iH/CVBsUaK/OKEvNOR L6ga3Zi7KjFZHNPy4F1o/fwZnxxYMzdHJlF95UahItN/q9DDtENkYJr3OFQVm3dD RUbw8EcluXGPejt+85iCInF6nq5HQYlG -----END CERTIFICATE-----Generated at Sun Jul 20 07:54:20 2025 by rpki-client