$ rpki-client -vvf rpki.apnic.net/member_repository/A9111EE2/420F630A1D9F11E2A72FBB8F08B02CD2/L-xEr8Mx34paY6L1hB6AnZey99A.mft File: L-xEr8Mx34paY6L1hB6AnZey99A.mft (raw, json) Hash identifier: K0yBd0yONdxvKtENvtPd10O4e+h++ok0Jysjwe9eZ0U= Subject key identifier: A2:C6:F3:1F:7C:98:B5:1C:F5:7E:B7:B2:26:2C:A0:02:A0:C6:27:39 Authority key identifier: 2F:EC:44:AF:C3:31:DF:8A:5A:63:A2:F5:84:1E:80:9D:97:B2:F7:D0 Certificate issuer: /CN=A9111EE2/serialNumber=2FEC44AFC331DF8A5A63A2F5841E809D97B2F7D0 Certificate serial: 34B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L-xEr8Mx34paY6L1hB6AnZey99A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111EE2/420F630A1D9F11E2A72FBB8F08B02CD2/L-xEr8Mx34paY6L1hB6AnZey99A.mft Manifest number: 34B1 Signing time: Sun 24 Aug 2025 15:01:33 +0000 Manifest this update: Sun 24 Aug 2025 15:01:32 +0000 Manifest next update: Sun 31 Aug 2025 15:01:32 +0000 Files and hashes: 1: L-xEr8Mx34paY6L1hB6AnZey99A.crl (hash: rxY+ASzY4G/RSbKHCkQCHKwZk1jJsu8009mDTPUwfqE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111EE2/420F630A1D9F11E2A72FBB8F08B02CD2/L-xEr8Mx34paY6L1hB6AnZey99A.crl rsync://rpki.apnic.net/member_repository/A9111EE2/420F630A1D9F11E2A72FBB8F08B02CD2/L-xEr8Mx34paY6L1hB6AnZey99A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L-xEr8Mx34paY6L1hB6AnZey99A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 15:01:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13489 (0x34b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111EE2, serialNumber=2FEC44AFC331DF8A5A63A2F5841E809D97B2F7D0 Validity Not Before: Aug 24 15:01:32 2025 GMT Not After : Aug 31 15:01:32 2025 GMT Subject: CN=68ab294d-815a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:1f:02:be:9a:85:c0:e1:af:96:4b:0c:7a:af: c2:ba:04:45:1a:6f:16:38:3c:ab:10:f0:b7:13:0a: fa:b4:fb:15:3f:6c:97:e9:12:e4:2a:29:f7:60:6a: 28:23:f0:94:c9:c6:e1:31:23:23:53:db:c6:84:b6: 53:9a:fe:cb:8e:37:c2:2d:75:53:03:3e:09:d3:81: 4e:4d:3d:09:56:f3:d2:44:d9:87:79:5b:0c:ef:1d: 3a:34:73:94:91:5f:1a:15:fe:5f:14:f1:31:f7:b4: 69:c8:c8:93:e6:bc:a7:f8:10:80:dd:3e:c9:d5:3f: 6a:9f:c1:ab:80:58:ba:f3:15:73:6b:13:6d:af:46: 71:7c:e6:46:c3:b6:a8:e6:da:89:ae:7c:00:a5:cf: ee:a4:50:ab:91:5f:7a:66:88:71:20:56:4c:ef:ab: 18:a2:c5:ca:65:7e:e9:8a:27:92:0c:1f:cc:43:94: 30:5b:c5:7d:d5:6e:e9:14:be:3a:48:e3:79:c8:2d: 69:60:81:af:18:79:92:9c:e5:75:05:b8:97:78:14: 62:5d:54:09:48:57:de:c5:ef:e0:4c:96:ee:3a:59: e7:5d:98:77:e3:98:4d:e3:00:23:9d:9f:42:7f:09: 75:06:c0:f0:77:50:47:40:52:6c:fd:40:48:16:70: 6b:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:C6:F3:1F:7C:98:B5:1C:F5:7E:B7:B2:26:2C:A0:02:A0:C6:27:39 X509v3 Authority Key Identifier: keyid:2F:EC:44:AF:C3:31:DF:8A:5A:63:A2:F5:84:1E:80:9D:97:B2:F7:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111EE2/420F630A1D9F11E2A72FBB8F08B02CD2/L-xEr8Mx34paY6L1hB6AnZey99A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L-xEr8Mx34paY6L1hB6AnZey99A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111EE2/420F630A1D9F11E2A72FBB8F08B02CD2/L-xEr8Mx34paY6L1hB6AnZey99A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:40:02:97:47:34:4e:8a:00:7d:d8:3f:e8:6d:42:03:34:c9: 23:2d:94:d1:a3:43:9e:81:16:b4:95:1c:fc:5a:0f:08:83:55: 99:ec:ab:c3:90:b9:3b:11:02:c9:ff:e7:67:f5:32:5b:31:77: ee:32:aa:bb:0e:8a:0c:03:cf:92:e4:ad:90:17:06:55:d3:53: d4:a2:45:77:79:87:38:5d:21:d6:34:c8:87:c4:15:6c:51:62: d0:c0:ff:26:5e:d2:e1:03:1e:d6:54:24:2b:97:57:55:90:c0: c5:2e:5a:83:05:ea:db:21:69:83:32:cc:0d:3b:ff:b2:04:e7: a0:58:29:bc:57:86:c1:ad:15:20:dd:f1:ed:68:00:24:41:ac: 59:03:b1:72:8b:2e:41:8b:36:f6:4e:6b:66:7a:f3:60:c7:1b: 18:18:3a:1f:69:e4:c9:57:b0:11:c3:f1:59:2c:81:24:d7:e7: 85:59:39:78:d2:ff:a1:a7:d2:ff:58:8d:e7:e9:4f:01:e8:3c: 46:8e:4a:56:18:5b:1f:9e:dd:fd:77:e4:90:72:19:2c:4e:09: 8a:75:6a:ca:21:9b:a1:31:2f:08:ad:3c:bf:60:93:60:67:23: cb:57:d7:15:6a:21:90:8f:5c:83:c6:db:49:b8:fc:a8:68:e5: 08:98:96:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTFFRTIxMTAvBgNVBAUTKDJGRUM0NEFGQzMzMURGOEE1QTYzQTJGNTg0MUU4MDlE OTdCMkY3RDAwHhcNMjUwODI0MTUwMTMyWhcNMjUwODMxMTUwMTMyWjAYMRYwFAYD VQQDEw02OGFiMjk0ZC04MTVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4h8CvpqFwOGvlksMeq/CugRFGm8WODyrEPC3Ewr6tPsVP2yX6RLkKin3YGoo I/CUycbhMSMjU9vGhLZTmv7LjjfCLXVTAz4J04FOTT0JVvPSRNmHeVsM7x06NHOU kV8aFf5fFPEx97RpyMiT5ryn+BCA3T7J1T9qn8GrgFi68xVzaxNtr0ZxfOZGw7ao 5tqJrnwApc/upFCrkV96ZohxIFZM76sYosXKZX7piieSDB/MQ5QwW8V91W7pFL46 SON5yC1pYIGvGHmSnOV1BbiXeBRiXVQJSFfexe/gTJbuOlnnXZh345hN4wAjnZ9C fwl1BsDwd1BHQFJs/UBIFnBrfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKLG8x98 mLUc9X63siYsoAKgxic5MB8GA1UdIwQYMBaAFC/sRK/DMd+KWmOi9YQegJ2XsvfQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMUVFMi80MjBGNjMwQTFE OUYxMUUyQTcyRkJCOEYwOEIwMkNEMi9MLXhFcjhNeDM0cGFZNkwxaEI2QW5aZXk5 OUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0wteEVyOE14MzRwYVk2TDFoQjZBblpleTk5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MUVFMi80MjBGNjMwQTFEOUYxMUUyQTcyRkJCOEYwOEIwMkNEMi9MLXhFcjhNeDM0 cGFZNkwxaEI2QW5aZXk5OUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxQAKXRzROigB92D/obUIDNMkjLZTRo0OegRa0lRz8Wg8Ig1WZ7KvD kLk7EQLJ/+dn9TJbMXfuMqq7DooMA8+S5K2QFwZV01PUokV3eYc4XSHWNMiHxBVs UWLQwP8mXtLhAx7WVCQrl1dVkMDFLlqDBerbIWmDMswNO/+yBOegWCm8V4bBrRUg 3fHtaAAkQaxZA7Fyiy5Bizb2TmtmevNgxxsYGDofaeTJV7ARw/FZLIEk1+eFWTl4 0v+hp9L/WI3n6U8B6DxGjkpWGFsfnt39d+SQchksTgmKdWrKIZuhMS8IrTy/YJNg ZyPLV9cVaiGQj1yDxttJuPyoaOUImJZS -----END CERTIFICATE-----Generated at Sun Aug 24 21:33:14 2025 by rpki-client