$ rpki-client -vvf rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.mft File: lqeZovSzCLIlIrzkXjGNanAmKSs.mft (raw, json) Hash identifier: SAOwrJsx5EW+NuRasO7WuhHuteHrc3tMOH/Bl/rPivQ= Subject key identifier: 97:25:0C:7D:EB:B0:C5:CE:1E:88:77:C6:32:5C:8B:E5:40:1C:93:4C Authority key identifier: 96:A7:99:A2:F4:B3:08:B2:25:22:BC:E4:5E:31:8D:6A:70:26:29:2B Certificate issuer: /CN=A911BA4B/serialNumber=96A799A2F4B308B22522BCE45E318D6A7026292B Certificate serial: 11BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lqeZovSzCLIlIrzkXjGNanAmKSs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.mft Manifest number: 11AF Signing time: Sun 24 Aug 2025 17:10:45 +0000 Manifest this update: Sun 24 Aug 2025 17:10:44 +0000 Manifest next update: Sun 31 Aug 2025 17:10:44 +0000 Files and hashes: 1: lqeZovSzCLIlIrzkXjGNanAmKSs.crl (hash: Umt5FSj2FMH9IBvOmu1qLOc0RLG/fNJyLEC3PXeS6ZY=) 2: 318BC266FEA911E8BF138B59C4F9AE02.roa (hash: 33z1F9RZ3yx55dZ5+rGpqQ7gwX1OExcujk8Oepxi/pw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.crl rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lqeZovSzCLIlIrzkXjGNanAmKSs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 17:10:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4540 (0x11bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BA4B, serialNumber=96A799A2F4B308B22522BCE45E318D6A7026292B Validity Not Before: Aug 24 17:10:44 2025 GMT Not After : Aug 31 17:10:44 2025 GMT Subject: CN=68ab4795-342b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:c1:a8:20:26:00:23:e4:4b:1f:37:cd:33:03: 25:5b:2c:08:aa:52:9f:dd:24:f1:09:64:ec:46:14: 05:0e:d5:76:18:63:ba:78:c3:68:b8:4f:90:65:5d: 38:f1:95:f7:e9:a8:c1:e6:e0:5e:0f:17:44:06:b3: ea:bb:56:5b:2c:a2:53:12:69:ce:05:d6:db:58:03: 78:1a:4c:63:e2:c5:9f:8b:88:68:24:48:90:4f:7d: a0:30:fb:1c:5c:76:38:64:6d:21:be:04:bc:7c:ea: 46:35:92:9f:20:45:6d:f0:e4:6d:8c:28:b9:17:2d: 51:cb:ef:69:1b:10:8d:4b:5e:fd:f5:ef:28:5b:54: 2f:6b:5d:bd:f1:52:8c:ae:e4:1c:24:81:e4:cb:20: 8d:3f:74:82:9f:59:04:9b:2b:6b:97:9d:8a:85:46: 77:cf:b4:34:88:1f:72:18:5a:82:c4:1f:f2:a1:b4: fd:2d:44:f2:51:cb:09:26:c0:53:08:37:bd:cd:cb: e0:62:c6:fc:34:32:1b:7f:3c:11:a1:bc:64:13:42: 81:c6:20:dc:c5:ff:70:62:8e:8f:58:d1:0b:9d:94: df:b9:a0:64:f6:4e:8f:8e:ad:41:d8:94:be:05:1d: 8d:4e:f6:19:f7:a7:2b:16:cd:f2:4a:de:08:30:01: b8:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:25:0C:7D:EB:B0:C5:CE:1E:88:77:C6:32:5C:8B:E5:40:1C:93:4C X509v3 Authority Key Identifier: keyid:96:A7:99:A2:F4:B3:08:B2:25:22:BC:E4:5E:31:8D:6A:70:26:29:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lqeZovSzCLIlIrzkXjGNanAmKSs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:f5:84:e9:8b:29:64:45:c8:e2:fc:72:3e:39:f0:8c:ff:ee: ed:20:56:78:9d:d9:40:37:dd:7e:06:cd:91:1b:f1:e0:41:60: 0d:eb:f9:90:0b:a4:60:a4:09:8d:cf:80:4c:e6:00:d6:fa:38: bb:87:1f:4a:70:83:c8:e7:68:04:ef:06:b1:f7:16:02:94:a3: 46:85:ec:6a:ef:82:5b:be:0b:18:2f:a7:9e:21:24:88:78:e5: d7:a2:23:a5:17:51:30:63:4b:ef:e6:1a:a1:2f:92:8c:ac:ba: 1b:b4:fb:c4:13:d4:82:e4:6b:1a:8e:60:fe:86:fe:c0:26:0f: 56:c6:cb:8b:ce:50:4f:0d:cc:e6:50:48:ad:3a:1a:62:62:f7: 0f:8d:b4:98:56:5d:1c:90:d7:60:1e:88:c9:31:55:92:3c:c5: 00:06:35:01:03:b3:de:d9:2f:dc:0c:e4:63:45:b6:32:94:f5: 55:59:3f:0f:13:eb:ed:da:34:f2:27:84:b1:b2:56:eb:f3:41: 0c:22:11:ac:f2:dd:42:e0:47:fe:f2:93:f3:d7:d4:fa:a7:4e: 22:91:90:fc:57:c3:9c:cd:07:ab:f1:c4:b7:ce:7e:26:ed:17: 90:29:3e:39:44:d1:6d:88:0d:45:b8:fd:7d:4e:0e:aa:b2:a4: 4f:54:77:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEbwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJBNEIxMTAvBgNVBAUTKDk2QTc5OUEyRjRCMzA4QjIyNTIyQkNFNDVFMzE4RDZB NzAyNjI5MkIwHhcNMjUwODI0MTcxMDQ0WhcNMjUwODMxMTcxMDQ0WjAYMRYwFAYD VQQDEw02OGFiNDc5NS0zNDJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqMGoICYAI+RLHzfNMwMlWywIqlKf3STxCWTsRhQFDtV2GGO6eMNouE+QZV04 8ZX36ajB5uBeDxdEBrPqu1ZbLKJTEmnOBdbbWAN4Gkxj4sWfi4hoJEiQT32gMPsc XHY4ZG0hvgS8fOpGNZKfIEVt8ORtjCi5Fy1Ry+9pGxCNS1799e8oW1Qva1298VKM ruQcJIHkyyCNP3SCn1kEmytrl52KhUZ3z7Q0iB9yGFqCxB/yobT9LUTyUcsJJsBT CDe9zcvgYsb8NDIbfzwRobxkE0KBxiDcxf9wYo6PWNELnZTfuaBk9k6Pjq1B2JS+ BR2NTvYZ96crFs3ySt4IMAG4qQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJclDH3r sMXOHoh3xjJci+VAHJNMMB8GA1UdIwQYMBaAFJanmaL0swiyJSK85F4xjWpwJikr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkE0Qi9FMzc3RkQ3QUZF QTcxMUU4QTJFNEI0NTdDNEY5QUUwMi9scWVab3ZTekNMSWxJcnprWGpHTmFuQW1L U3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xxZVpvdlN6Q0xJbElyemtYakdOYW5BbUtTcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QkE0Qi9FMzc3RkQ3QUZFQTcxMUU4QTJFNEI0NTdDNEY5QUUwMi9scWVab3ZTekNM SWxJcnprWGpHTmFuQW1LU3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBm9YTpiylkRcji/HI+OfCM/+7tIFZ4ndlAN91+Bs2RG/HgQWAN6/mQ C6RgpAmNz4BM5gDW+ji7hx9KcIPI52gE7wax9xYClKNGhexq74JbvgsYL6eeISSI eOXXoiOlF1EwY0vv5hqhL5KMrLobtPvEE9SC5GsajmD+hv7AJg9WxsuLzlBPDczm UEitOhpiYvcPjbSYVl0ckNdgHojJMVWSPMUABjUBA7Pe2S/cDORjRbYylPVVWT8P E+vt2jTyJ4Sxslbr80EMIhGs8t1C4Ef+8pPz19T6p04ikZD8V8OczQer8cS3zn4m 7ReQKT45RNFtiA1FuP19Tg6qsqRPVHer -----END CERTIFICATE-----Generated at Sun Aug 24 22:04:57 2025 by rpki-client