$ rpki-client -vvf rpki.apnic.net/member_repository/A91203EB/F3622E74976911EBABC77486C4F9AE02/LyZbDIAkcwlJJokKhRJOIbEJ2jw.mft File: LyZbDIAkcwlJJokKhRJOIbEJ2jw.mft (raw, json) Hash identifier: RRpH/srTQCHEN7CZ81DqBeXudpAGjdbZH6jhBkUQFTE= Subject key identifier: C2:03:DE:72:6D:05:01:23:8E:6E:6B:5C:84:52:2C:75:F2:E0:6B:25 Authority key identifier: 2F:26:5B:0C:80:24:73:09:49:26:89:0A:85:12:4E:21:B1:09:DA:3C Certificate issuer: /CN=A91203EB/serialNumber=2F265B0C802473094926890A85124E21B109DA3C Certificate serial: 067F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LyZbDIAkcwlJJokKhRJOIbEJ2jw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91203EB/F3622E74976911EBABC77486C4F9AE02/LyZbDIAkcwlJJokKhRJOIbEJ2jw.mft Manifest number: 0670 Signing time: Thu 18 Sep 2025 22:50:06 +0000 Manifest this update: Thu 18 Sep 2025 22:50:05 +0000 Manifest next update: Thu 25 Sep 2025 22:50:05 +0000 Files and hashes: 1: LyZbDIAkcwlJJokKhRJOIbEJ2jw.crl (hash: AECed0dssjWhOKjuCatNQRQWAjFcQl2XEGs+5bOpH9A=) 2: 579FE34A0BF211EF8B0F9C81C4F9AE02.roa (hash: vh0GgYCDzl5MpyGfL9qB9BZe6rjSGvbzU8V9PATHokg=) 3: 8CBE17540BCF11EF80BE8E0CC4F9AE02.roa (hash: GBfQ8G2LgiRk7mNMod65ctHAM+9Xqf2dlYgMPWmItHk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91203EB/F3622E74976911EBABC77486C4F9AE02/LyZbDIAkcwlJJokKhRJOIbEJ2jw.crl rsync://rpki.apnic.net/member_repository/A91203EB/F3622E74976911EBABC77486C4F9AE02/LyZbDIAkcwlJJokKhRJOIbEJ2jw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LyZbDIAkcwlJJokKhRJOIbEJ2jw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 22:50:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1663 (0x67f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91203EB, serialNumber=2F265B0C802473094926890A85124E21B109DA3C Validity Not Before: Sep 18 22:50:05 2025 GMT Not After : Sep 25 22:50:05 2025 GMT Subject: CN=68cc8c9e-fc92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:7c:9a:04:49:82:df:b0:dd:1b:8f:be:41:de: 4c:ae:fa:1e:0c:a6:62:97:22:33:58:f3:ae:ef:51: 8a:83:b1:0a:9a:0f:6b:fb:8a:94:de:b3:c3:56:f9: cd:0c:9f:b3:f5:db:ce:ac:6c:48:54:38:53:69:25: c7:a3:7e:7d:37:c3:4a:bd:a6:fd:cf:cc:b4:c6:3e: 73:b4:70:a6:4b:62:8e:01:f4:e7:35:e8:13:1d:51: 2b:74:bc:c3:5f:5e:f3:51:cf:6e:93:79:e7:26:85: f2:73:e3:cb:73:6f:39:7b:64:8e:57:c3:eb:0b:3e: a0:f7:80:e4:d2:a5:e6:ff:17:3d:96:62:9a:fd:3b: a8:f0:e5:c2:07:bf:e0:d8:0b:72:2b:35:3a:a5:2a: f6:60:46:4c:86:ae:48:3f:c4:cb:2e:59:0d:e8:6f: 6c:91:53:6e:28:ec:2a:80:d8:04:f7:35:0c:e4:d6: b1:7d:c5:84:d4:a3:5f:ac:8c:04:05:1e:b7:f1:e1: 17:22:c2:6a:fc:7a:20:b1:fc:3b:d8:95:18:90:33: 61:7b:c0:2e:f6:2d:61:4c:f6:e0:cb:1e:6a:69:af: bf:ab:de:8c:31:6c:4c:ac:10:78:3e:36:da:01:d7: 58:8a:d8:da:5b:61:fb:1c:2e:ab:09:76:aa:36:a5: 56:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:03:DE:72:6D:05:01:23:8E:6E:6B:5C:84:52:2C:75:F2:E0:6B:25 X509v3 Authority Key Identifier: keyid:2F:26:5B:0C:80:24:73:09:49:26:89:0A:85:12:4E:21:B1:09:DA:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91203EB/F3622E74976911EBABC77486C4F9AE02/LyZbDIAkcwlJJokKhRJOIbEJ2jw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LyZbDIAkcwlJJokKhRJOIbEJ2jw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91203EB/F3622E74976911EBABC77486C4F9AE02/LyZbDIAkcwlJJokKhRJOIbEJ2jw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:eb:52:14:9a:8a:aa:e8:b0:b6:b9:82:3e:62:a1:6c:bb:1c: 6e:14:b1:e0:b8:28:38:ed:28:f7:bc:d8:94:f1:00:dc:f6:a2: 93:4f:50:a7:14:84:8f:43:33:1e:8f:25:cb:c2:b5:04:a8:8d: 2e:60:45:bd:9c:43:58:c2:f9:e0:49:24:cc:75:30:a8:d9:af: 07:4f:13:06:b4:19:41:68:a5:4f:42:b7:04:87:16:4d:5d:11: a0:2d:3b:31:07:37:78:82:73:f2:bd:ae:12:ad:6e:aa:d1:96: e0:a9:47:fa:09:71:d7:21:a5:d1:bc:3e:5e:1d:2e:da:4f:83: 74:b5:be:bb:52:40:a9:81:5b:08:1b:52:55:d5:3a:43:d6:63: f2:ea:61:24:a2:39:e6:90:80:76:6e:b4:e1:c9:c0:76:5d:81: c5:d9:96:98:53:71:90:f8:59:7d:cb:ab:ca:f9:3a:11:32:ac: 75:c4:43:26:dc:3c:fa:24:9e:da:1f:00:70:89:91:89:1e:50: 1e:56:60:6a:56:27:c1:51:7f:9a:96:53:2a:7a:15:54:e6:18: 60:b6:66:56:52:be:70:8b:2f:1f:da:bc:84:30:75:04:33:77: 86:10:40:60:b1:17:72:f8:e4:b0:a2:8f:bf:fc:6b:2d:c8:fe: 5f:f7:7c:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBn8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjAzRUIxMTAvBgNVBAUTKDJGMjY1QjBDODAyNDczMDk0OTI2ODkwQTg1MTI0RTIx QjEwOURBM0MwHhcNMjUwOTE4MjI1MDA1WhcNMjUwOTI1MjI1MDA1WjAYMRYwFAYD VQQDEw02OGNjOGM5ZS1mYzkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxXyaBEmC37DdG4++Qd5MrvoeDKZilyIzWPOu71GKg7EKmg9r+4qU3rPDVvnN DJ+z9dvOrGxIVDhTaSXHo359N8NKvab9z8y0xj5ztHCmS2KOAfTnNegTHVErdLzD X17zUc9uk3nnJoXyc+PLc285e2SOV8PrCz6g94Dk0qXm/xc9lmKa/Tuo8OXCB7/g 2AtyKzU6pSr2YEZMhq5IP8TLLlkN6G9skVNuKOwqgNgE9zUM5NaxfcWE1KNfrIwE BR638eEXIsJq/Hogsfw72JUYkDNhe8Au9i1hTPbgyx5qaa+/q96MMWxMrBB4Pjba AddYitjaW2H7HC6rCXaqNqVWOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMID3nJt BQEjjm5rXIRSLHXy4GslMB8GA1UdIwQYMBaAFC8mWwyAJHMJSSaJCoUSTiGxCdo8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDNFQi9GMzYyMkU3NDk3 NjkxMUVCQUJDNzc0ODZDNEY5QUUwMi9MeVpiRElBa2N3bEpKb2tLaFJKT0liRUoy ancuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0x5WmJESUFrY3dsSkpva0toUkpPSWJFSjJqdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MDNFQi9GMzYyMkU3NDk3NjkxMUVCQUJDNzc0ODZDNEY5QUUwMi9MeVpiRElBa2N3 bEpKb2tLaFJKT0liRUoyancubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJ61IUmoqq6LC2uYI+YqFsuxxuFLHguCg47Sj3vNiU8QDc9qKTT1Cn FISPQzMejyXLwrUEqI0uYEW9nENYwvngSSTMdTCo2a8HTxMGtBlBaKVPQrcEhxZN XRGgLTsxBzd4gnPyva4SrW6q0ZbgqUf6CXHXIaXRvD5eHS7aT4N0tb67UkCpgVsI G1JV1TpD1mPy6mEkojnmkIB2brThycB2XYHF2ZaYU3GQ+Fl9y6vK+ToRMqx1xEMm 3Dz6JJ7aHwBwiZGJHlAeVmBqVifBUX+allMqehVU5hhgtmZWUr5wiy8f2ryEMHUE M3eGEEBgsRdy+OSwoo+//GstyP5f93yX -----END CERTIFICATE-----Generated at Fri Sep 19 15:15:51 2025 by rpki-client