$ rpki-client -vvf rpki.apnic.net/member_repository/A91144C9/842F98940EC911F0A26FF144C4F9AE02/lXRSk8iKJybhClfVj0LMMWm3ySI.mft File: lXRSk8iKJybhClfVj0LMMWm3ySI.mft (raw, json) Hash identifier: IlJNwgNu+6+lX7dmR4N9u5eKIVcAl6FwXlYbsIRh6pc= Subject key identifier: 3F:0F:3B:E1:8B:C2:DF:8F:B0:72:78:C7:AD:5A:4A:90:75:1E:49:CC Authority key identifier: 95:74:52:93:C8:8A:27:26:E1:0A:57:D5:8F:42:CC:31:69:B7:C9:22 Certificate issuer: /CN=A91144C9/serialNumber=95745293C88A2726E10A57D58F42CC3169B7C922 Certificate serial: 6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lXRSk8iKJybhClfVj0LMMWm3ySI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91144C9/842F98940EC911F0A26FF144C4F9AE02/lXRSk8iKJybhClfVj0LMMWm3ySI.mft Manifest number: 61 Signing time: Thu 11 Sep 2025 07:43:52 +0000 Manifest this update: Thu 11 Sep 2025 07:43:51 +0000 Manifest next update: Thu 18 Sep 2025 07:43:51 +0000 Files and hashes: 1: lXRSk8iKJybhClfVj0LMMWm3ySI.crl (hash: IKKDe/r8wbnzpOp0EuPwVMEbNrMxwZDrZrGGkTp0aZ4=) 2: 98DD71780ECC11F0B8E48170C4F9AE02.roa (hash: Hq759PuHcjxrqDO6XDqBKqYrfjX30gMufng1UMG6yPI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91144C9/842F98940EC911F0A26FF144C4F9AE02/lXRSk8iKJybhClfVj0LMMWm3ySI.crl rsync://rpki.apnic.net/member_repository/A91144C9/842F98940EC911F0A26FF144C4F9AE02/lXRSk8iKJybhClfVj0LMMWm3ySI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lXRSk8iKJybhClfVj0LMMWm3ySI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Sep 2025 07:43:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 107 (0x6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91144C9, serialNumber=95745293C88A2726E10A57D58F42CC3169B7C922 Validity Not Before: Sep 11 07:43:51 2025 GMT Not After : Sep 18 07:43:51 2025 GMT Subject: CN=68c27db8-50cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:db:7f:a6:e9:95:38:72:c8:24:75:54:b7:1f: 7b:b7:cd:1c:3b:14:3f:d4:51:6a:ec:33:a4:53:ce: 46:ed:10:79:d9:24:64:a5:a1:2d:06:6b:c4:4b:ea: 87:29:1c:03:0f:e3:73:00:bb:42:14:be:7a:f8:6e: 57:dc:94:ab:a7:c2:60:49:d1:89:8c:ef:7c:e7:28: 8b:5f:85:29:41:9b:83:4f:23:ec:63:42:2c:14:da: 77:28:49:6c:4b:2d:d5:97:8b:81:e8:95:78:be:d8: ed:49:72:fa:a9:e3:da:be:6a:d9:d9:33:1c:02:9d: 00:60:86:ae:8e:3f:62:29:b1:c0:9a:31:4d:d1:0b: 09:59:86:de:2d:3d:ce:50:4c:98:63:e4:73:f9:3d: e3:c5:38:c3:91:10:5c:43:17:f4:72:08:51:b7:c2: 19:a2:08:da:90:27:37:41:55:90:36:2b:65:fd:49: 9d:ea:0d:35:f0:67:b9:01:31:22:14:e0:18:71:af: 72:22:b5:73:d8:77:a2:65:0a:d4:42:e7:f4:92:d7: d5:ed:f9:29:05:b3:a9:61:b4:72:24:fe:6f:aa:50: d9:53:e9:97:41:8f:3c:e9:6c:e3:32:4e:04:15:86: d4:6a:7f:5b:2a:99:f7:92:45:0f:a1:02:b0:b6:b6: 43:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:0F:3B:E1:8B:C2:DF:8F:B0:72:78:C7:AD:5A:4A:90:75:1E:49:CC X509v3 Authority Key Identifier: keyid:95:74:52:93:C8:8A:27:26:E1:0A:57:D5:8F:42:CC:31:69:B7:C9:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91144C9/842F98940EC911F0A26FF144C4F9AE02/lXRSk8iKJybhClfVj0LMMWm3ySI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lXRSk8iKJybhClfVj0LMMWm3ySI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91144C9/842F98940EC911F0A26FF144C4F9AE02/lXRSk8iKJybhClfVj0LMMWm3ySI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:74:10:f8:9f:f6:49:44:b2:31:a9:fb:e2:5d:62:81:40:91: a6:cd:24:b1:f4:c3:07:d0:27:f5:28:fc:a2:05:f2:cc:fe:55: d7:00:66:58:de:75:c9:9a:9c:8d:2b:71:c8:04:dc:6c:79:86: eb:26:45:9d:8b:2d:7c:1b:a8:8f:c1:38:41:6b:80:b5:1e:47: f7:8f:29:94:95:49:31:44:8c:65:01:80:c7:86:5d:75:d1:37: da:81:ba:86:49:fc:f2:e4:39:78:6f:23:9b:34:4d:ca:fb:11: 99:5e:41:08:a9:4b:16:53:93:98:94:a9:f3:c0:fe:e2:75:99: 69:d2:de:29:b9:64:a6:4a:bc:c0:2a:35:86:7a:9d:1d:18:5f: 1e:e0:ca:4f:ce:2e:be:a8:6c:6b:d8:20:2e:e9:88:84:6d:8e: 1e:23:5b:24:dd:3f:50:67:ee:02:e3:63:99:cd:00:e4:c0:fc: 0a:a6:dc:c6:a2:b1:c2:ee:45:e0:03:75:98:0e:f5:ee:87:9e: ec:ca:11:f1:f7:e7:60:c2:3d:39:82:1c:25:84:85:1a:6f:9e: dc:c4:4d:3b:f6:86:9d:57:fd:88:8c:75:a1:5c:fa:ad:20:ba: db:ab:53:f3:e6:8b:76:e8:df:02:70:c4:05:51:9a:ed:ee:b3: ff:c6:94:1a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBazANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NDRDOTExMC8GA1UEBRMoOTU3NDUyOTNDODhBMjcyNkUxMEE1N0Q1OEY0MkNDMzE2 OUI3QzkyMjAeFw0yNTA5MTEwNzQzNTFaFw0yNTA5MTgwNzQzNTFaMBgxFjAUBgNV BAMTDTY4YzI3ZGI4LTUwY2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDA23+m6ZU4csgkdVS3H3u3zRw7FD/UUWrsM6RTzkbtEHnZJGSloS0Ga8RL6ocp HAMP43MAu0IUvnr4blfclKunwmBJ0YmM73znKItfhSlBm4NPI+xjQiwU2ncoSWxL LdWXi4HolXi+2O1Jcvqp49q+atnZMxwCnQBghq6OP2IpscCaMU3RCwlZht4tPc5Q TJhj5HP5PePFOMOREFxDF/RyCFG3whmiCNqQJzdBVZA2K2X9SZ3qDTXwZ7kBMSIU 4Bhxr3IitXPYd6JlCtRC5/SS19Xt+SkFs6lhtHIk/m+qUNlT6ZdBjzzpbOMyTgQV htRqf1sqmfeSRQ+hArC2tkOdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUPw874YvC 34+wcnjHrVpKkHUeScwwHwYDVR0jBBgwFoAUlXRSk8iKJybhClfVj0LMMWm3ySIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0NEM5Lzg0MkY5ODk0MEVD OTExRjBBMjZGRjE0NEM0RjlBRTAyL2xYUlNrOGlLSnliaENsZlZqMExNTVdtM3lT SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbFhSU2s4aUtKeWJoQ2xmVmowTE1NV20zeVNJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0 NEM5Lzg0MkY5ODk0MEVDOTExRjBBMjZGRjE0NEM0RjlBRTAyL2xYUlNrOGlLSnli aENsZlZqMExNTVdtM3lTSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADF0EPif9klEsjGp++JdYoFAkabNJLH0wwfQJ/Uo/KIF8sz+VdcAZlje dcmanI0rccgE3Gx5husmRZ2LLXwbqI/BOEFrgLUeR/ePKZSVSTFEjGUBgMeGXXXR N9qBuoZJ/PLkOXhvI5s0Tcr7EZleQQipSxZTk5iUqfPA/uJ1mWnS3im5ZKZKvMAq NYZ6nR0YXx7gyk/OLr6obGvYIC7piIRtjh4jWyTdP1Bn7gLjY5nNAOTA/Aqm3Mai scLuReADdZgO9e6HnuzKEfH352DCPTmCHCWEhRpvntzETTv2hp1X/YiMdaFc+q0g uturU/Pmi3bo3wJwxAVRmu3us//GlBo= -----END CERTIFICATE-----Generated at Thu Sep 11 12:17:25 2025 by rpki-client