$ rpki-client -vvf rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.mft File: llSi8IRZeiuRrAAqdgfhPBXQlJE.mft (raw, json) Hash identifier: SB0PbhhxcRx1Uo2jlx/fuqEBovHCgUyjxiOX28PQR4s= Subject key identifier: 0B:05:EC:A5:86:56:70:1E:66:1B:8D:CF:B7:20:21:29:43:6B:27:06 Authority key identifier: 96:54:A2:F0:84:59:7A:2B:91:AC:00:2A:76:07:E1:3C:15:D0:94:91 Certificate issuer: /CN=A9153303/serialNumber=9654A2F084597A2B91AC002A7607E13C15D09491 Certificate serial: C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/llSi8IRZeiuRrAAqdgfhPBXQlJE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.mft Manifest number: C1 Signing time: Fri 25 Jul 2025 06:06:24 +0000 Manifest this update: Fri 25 Jul 2025 06:06:24 +0000 Manifest next update: Fri 01 Aug 2025 06:06:24 +0000 Files and hashes: 1: llSi8IRZeiuRrAAqdgfhPBXQlJE.crl (hash: tGqDSYOs9KiNb48pIv2ywhGTH4XmGOIRUIHM8XQ7rkc=) 2: 29A436623FE111EFB5A50814C4F9AE02.roa (hash: i8BI9IvwuikO1+xMVefOXZH2ufnANITPzuMSdPax+Fg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.crl rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/llSi8IRZeiuRrAAqdgfhPBXQlJE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 01 Aug 2025 06:06:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 194 (0xc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153303, serialNumber=9654A2F084597A2B91AC002A7607E13C15D09491 Validity Not Before: Jul 25 06:06:24 2025 GMT Not After : Aug 1 06:06:24 2025 GMT Subject: CN=68831ee0-55ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:9f:a8:fd:0a:63:81:1b:46:cd:bc:bd:9e:c0: 66:85:e0:f8:f7:b3:3a:a7:40:77:a5:2e:e9:78:0a: 67:52:47:8c:9a:07:7a:04:82:24:86:9e:8c:b7:4e: 39:36:41:a7:1b:6d:39:33:6e:c1:53:16:e2:a8:f0: 38:a9:36:25:c0:ca:d5:87:4e:a3:e1:f8:a7:97:be: b2:da:19:48:8d:ff:b2:f2:55:86:a2:ce:79:b3:e5: 78:63:3f:38:cd:36:d3:70:61:9b:cf:a7:96:84:81: 66:b3:6f:ce:01:6a:15:b0:f7:e6:b7:79:d5:4e:bf: f7:ec:85:fb:3e:38:c0:14:eb:2a:c4:82:9e:4a:17: 26:0e:ff:de:aa:5d:57:4b:aa:26:5f:78:8c:33:b3: 86:1c:bb:8c:b8:33:9a:59:49:62:81:3f:41:33:84: 33:7b:04:ce:18:9a:66:e5:29:60:77:95:57:5d:19: bc:22:0e:e9:4f:08:c2:2e:21:60:09:fa:70:f4:25: 3e:73:63:b6:2e:ec:39:b9:1e:c7:d9:19:6d:d8:2c: 90:19:ae:c7:32:f2:7c:b2:31:6d:90:44:1b:9d:07: c5:0a:05:9a:0a:db:02:d7:56:ad:13:d9:bc:28:4c: 81:b2:30:24:9a:18:c9:96:1a:67:bf:25:15:51:55: 2f:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:05:EC:A5:86:56:70:1E:66:1B:8D:CF:B7:20:21:29:43:6B:27:06 X509v3 Authority Key Identifier: keyid:96:54:A2:F0:84:59:7A:2B:91:AC:00:2A:76:07:E1:3C:15:D0:94:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/llSi8IRZeiuRrAAqdgfhPBXQlJE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:f9:85:dc:4d:89:c9:ec:16:81:e9:09:b0:5a:09:03:6b:da: 30:10:a7:23:4f:14:41:16:aa:4f:2c:5d:5a:68:90:97:2b:e0: 95:16:df:74:e7:0c:4b:34:31:fd:90:46:de:e0:05:71:7c:92: 5f:03:1b:e1:9d:ad:7c:36:86:28:d6:f7:c4:60:0e:77:c6:67: d4:6a:08:5c:52:bb:6e:ec:7c:40:db:e9:16:3d:49:19:e4:2f: 74:8f:64:80:27:21:d2:38:b0:a7:dd:27:1f:1e:7c:dc:07:28: e3:aa:cd:e4:19:6e:78:b0:2b:d4:c5:83:e8:3c:d5:de:d0:39: 05:fb:3d:77:96:df:b9:1d:4b:15:c0:29:a3:f3:de:9f:d9:d2: 7d:fd:a9:49:c0:f6:1e:85:be:f3:b8:95:b0:0e:cc:31:83:b2: d7:8c:47:8c:02:9c:ce:22:7c:0b:9b:ca:9f:98:33:ee:ce:ca: 73:72:66:52:27:ce:54:7c:f6:af:40:b2:3d:4e:bf:4b:39:4a: 2d:19:c4:6d:99:d3:a4:29:4e:c2:a4:f6:10:ec:23:ab:76:aa: 34:9a:81:f5:dc:a8:60:b6:a4:98:59:39:26:9f:bf:ed:23:5a: 9b:56:13:6e:d3:28:e2:8d:95:4d:1f:a8:94:fc:ca:7c:05:51: af:e6:20:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTMzMDMxMTAvBgNVBAUTKDk2NTRBMkYwODQ1OTdBMkI5MUFDMDAyQTc2MDdFMTND MTVEMDk0OTEwHhcNMjUwNzI1MDYwNjI0WhcNMjUwODAxMDYwNjI0WjAYMRYwFAYD VQQDEw02ODgzMWVlMC01NWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvJ+o/QpjgRtGzby9nsBmheD497M6p0B3pS7peApnUkeMmgd6BIIkhp6Mt045 NkGnG205M27BUxbiqPA4qTYlwMrVh06j4finl76y2hlIjf+y8lWGos55s+V4Yz84 zTbTcGGbz6eWhIFms2/OAWoVsPfmt3nVTr/37IX7PjjAFOsqxIKeShcmDv/eql1X S6omX3iMM7OGHLuMuDOaWUligT9BM4QzewTOGJpm5Slgd5VXXRm8Ig7pTwjCLiFg Cfpw9CU+c2O2Luw5uR7H2Rlt2CyQGa7HMvJ8sjFtkEQbnQfFCgWaCtsC11atE9m8 KEyBsjAkmhjJlhpnvyUVUVUvkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAsF7KWG VnAeZhuNz7cgISlDaycGMB8GA1UdIwQYMBaAFJZUovCEWXorkawAKnYH4TwV0JSR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzMwMy84MEJGMUE2MjNG RTAxMUVGODYzNUQ3MTJDNEY5QUUwMi9sbFNpOElSWmVpdVJyQUFxZGdmaFBCWFFs SkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xsU2k4SVJaZWl1UnJBQXFkZ2ZoUEJYUWxKRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzMwMy84MEJGMUE2MjNGRTAxMUVGODYzNUQ3MTJDNEY5QUUwMi9sbFNpOElSWmVp dVJyQUFxZGdmaFBCWFFsSkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAb+YXcTYnJ7BaB6QmwWgkDa9owEKcjTxRBFqpPLF1aaJCXK+CVFt90 5wxLNDH9kEbe4AVxfJJfAxvhna18NoYo1vfEYA53xmfUaghcUrtu7HxA2+kWPUkZ 5C90j2SAJyHSOLCn3ScfHnzcByjjqs3kGW54sCvUxYPoPNXe0DkF+z13lt+5HUsV wCmj896f2dJ9/alJwPYehb7zuJWwDswxg7LXjEeMApzOInwLm8qfmDPuzspzcmZS J85UfPavQLI9Tr9LOUotGcRtmdOkKU7CpPYQ7COrdqo0moH13KhgtqSYWTkmn7/t I1qbVhNu0yjijZVNH6iU/Mp8BVGv5iBw -----END CERTIFICATE-----Generated at Fri Jul 25 07:37:20 2025 by rpki-client