$ rpki-client -vvf rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/lDuBQuFVPslGJaRyTlaYKhVY_pw.mft File: lDuBQuFVPslGJaRyTlaYKhVY_pw.mft (raw, json) Hash identifier: 9njKVzk5HZk5QqyDTpxzwXp7P5ZXJW4/wJI1Y7BoJS0= Subject key identifier: 71:70:6D:8B:45:F3:F8:88:B6:0C:44:9E:C8:81:44:8E:70:08:E5:71 Authority key identifier: 94:3B:81:42:E1:55:3E:C9:46:25:A4:72:4E:56:98:2A:15:58:FE:9C Certificate issuer: /CN=A91582D9/serialNumber=943B8142E1553EC94625A4724E56982A1558FE9C Certificate serial: 17C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lDuBQuFVPslGJaRyTlaYKhVY_pw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/lDuBQuFVPslGJaRyTlaYKhVY_pw.mft Manifest number: 1FEB Signing time: Sun 24 Aug 2025 16:33:15 +0000 Manifest this update: Sun 24 Aug 2025 16:33:15 +0000 Manifest next update: Sun 31 Aug 2025 16:33:15 +0000 Files and hashes: 1: lDuBQuFVPslGJaRyTlaYKhVY_pw.crl (hash: VgF5S7Lq7z67u8FfLyeWKqmrDNu2C0tvm5FBYZR/ZRk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/lDuBQuFVPslGJaRyTlaYKhVY_pw.crl rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/lDuBQuFVPslGJaRyTlaYKhVY_pw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lDuBQuFVPslGJaRyTlaYKhVY_pw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 16:33:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6080 (0x17c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91582D9, serialNumber=943B8142E1553EC94625A4724E56982A1558FE9C Validity Not Before: Aug 24 16:33:15 2025 GMT Not After : Aug 31 16:33:15 2025 GMT Subject: CN=68ab3ecb-c814 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:af:c6:5e:4e:76:09:04:c2:05:b8:55:fc:0e: 0e:ab:5e:fa:6d:98:75:bc:1b:c9:fc:4e:df:c8:50: 70:33:c2:18:6c:59:07:1f:44:c9:76:00:57:56:43: d4:44:bc:f9:a7:e6:3d:e2:e3:1c:b6:fd:1d:5a:e2: 89:3e:a0:a5:4d:30:9b:6f:ab:af:a7:a8:50:ef:45: a3:8c:9b:51:f8:af:a0:93:aa:ff:3e:3f:38:ea:14: 63:8f:f6:d4:b8:78:75:3e:98:83:60:7b:ab:87:85: 2c:b6:8c:98:4e:df:9c:58:e3:ab:13:9a:6c:5e:a2: 41:11:1a:3f:58:d9:62:65:ee:2f:c2:8e:a7:9b:ef: d5:0c:93:ef:ff:ee:b2:08:06:96:5f:7d:66:1a:00: c6:9b:e1:f4:54:56:bc:aa:bd:f4:30:a9:e2:01:63: bb:7c:de:f0:60:75:ce:1a:2e:db:bd:ee:c7:33:66: 5a:eb:e3:91:95:89:62:47:14:aa:8f:a5:08:1b:a0: ee:81:bd:78:29:7f:c9:94:ae:f9:43:52:71:fc:7c: 8a:a7:43:21:c2:35:52:1c:40:ea:56:74:76:64:a2: f8:c1:a9:93:62:77:e6:df:f1:16:b2:2b:df:7b:c1: 19:6c:45:94:1f:22:ac:11:76:a0:97:c6:40:8c:c7: 81:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:70:6D:8B:45:F3:F8:88:B6:0C:44:9E:C8:81:44:8E:70:08:E5:71 X509v3 Authority Key Identifier: keyid:94:3B:81:42:E1:55:3E:C9:46:25:A4:72:4E:56:98:2A:15:58:FE:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/lDuBQuFVPslGJaRyTlaYKhVY_pw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lDuBQuFVPslGJaRyTlaYKhVY_pw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/lDuBQuFVPslGJaRyTlaYKhVY_pw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:52:49:c1:e3:a1:db:3f:cd:62:ff:e9:75:fb:3a:57:1c:9e: 66:a7:da:b5:53:21:36:41:04:50:75:b7:d6:b6:c3:f3:c8:b5: ba:e1:7f:46:72:48:22:8a:a2:ca:31:47:6e:67:50:13:35:55: 2b:32:b5:c4:3a:e6:49:b1:a3:86:6a:35:d4:f0:51:56:8a:32: 14:35:ce:7d:a4:57:cf:27:22:90:43:c3:4b:c0:28:f0:54:4b: 9c:c1:7c:b5:e7:09:9e:52:90:7f:59:ba:11:89:5e:94:84:35: 04:7a:97:74:80:59:8c:a2:b1:1d:d2:2f:cc:2b:7c:ab:c9:44: a2:9b:e0:79:b9:c0:62:da:7e:05:af:fb:69:f7:b3:f6:04:4b: a2:78:1b:17:32:78:1e:df:26:bb:8a:3c:da:02:61:19:aa:e9: 28:4c:30:d6:5c:2e:d4:28:ab:6e:53:5b:68:61:39:3e:34:17: 3a:8e:38:eb:21:c7:e9:f1:5f:03:dd:d8:eb:52:dc:0b:6d:c3: d9:ca:27:14:5f:41:2a:d9:1c:40:a1:89:ee:f4:c5:ab:dc:bb: 89:f7:a0:90:f5:fa:64:bb:eb:0a:bf:38:03:71:27:05:17:4f: 14:96:75:79:d6:ce:ba:4d:48:5a:b4:03:6d:d5:78:14:c0:46: a0:53:9d:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF8AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgyRDkxMTAvBgNVBAUTKDk0M0I4MTQyRTE1NTNFQzk0NjI1QTQ3MjRFNTY5ODJB MTU1OEZFOUMwHhcNMjUwODI0MTYzMzE1WhcNMjUwODMxMTYzMzE1WjAYMRYwFAYD VQQDEw02OGFiM2VjYi1jODE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAva/GXk52CQTCBbhV/A4Oq176bZh1vBvJ/E7fyFBwM8IYbFkHH0TJdgBXVkPU RLz5p+Y94uMctv0dWuKJPqClTTCbb6uvp6hQ70WjjJtR+K+gk6r/Pj846hRjj/bU uHh1PpiDYHurh4UstoyYTt+cWOOrE5psXqJBERo/WNliZe4vwo6nm+/VDJPv/+6y CAaWX31mGgDGm+H0VFa8qr30MKniAWO7fN7wYHXOGi7bve7HM2Za6+ORlYliRxSq j6UIG6Dugb14KX/JlK75Q1Jx/HyKp0MhwjVSHEDqVnR2ZKL4wamTYnfm3/EWsivf e8EZbEWUHyKsEXagl8ZAjMeBSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHFwbYtF 8/iItgxEnsiBRI5wCOVxMB8GA1UdIwQYMBaAFJQ7gULhVT7JRiWkck5WmCoVWP6c MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODJEOS8wRURBNkQ1RUNE REExMUU3QkRFQThDMkJDNEY5QUUwMi9sRHVCUXVGVlBzbEdKYVJ5VGxhWUtoVllf cHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xEdUJRdUZWUHNsR0phUnlUbGFZS2hWWV9wdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODJEOS8wRURBNkQ1RUNEREExMUU3QkRFQThDMkJDNEY5QUUwMi9sRHVCUXVGVlBz bEdKYVJ5VGxhWUtoVllfcHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXUknB46HbP81i/+l1+zpXHJ5mp9q1UyE2QQRQdbfWtsPzyLW64X9G ckgiiqLKMUduZ1ATNVUrMrXEOuZJsaOGajXU8FFWijIUNc59pFfPJyKQQ8NLwCjw VEucwXy15wmeUpB/WboRiV6UhDUEepd0gFmMorEd0i/MK3yryUSim+B5ucBi2n4F r/tp97P2BEuieBsXMnge3ya7ijzaAmEZqukoTDDWXC7UKKtuU1toYTk+NBc6jjjr Icfp8V8D3djrUtwLbcPZyicUX0Eq2RxAoYnu9MWr3LuJ96CQ9fpku+sKvzgDcScF F08UlnV51s66TUhatANt1XgUwEagU508 -----END CERTIFICATE-----Generated at Sun Aug 24 21:29:08 2025 by rpki-client