$ rpki-client -vvf rpki.apnic.net/member_repository/A9167278/2AE0AD603B3711EBA75B4D77C4F9AE02/LT7zlg0opT_PYOmNAXAy6Sjqezk.mft File: LT7zlg0opT_PYOmNAXAy6Sjqezk.mft (raw, json) Hash identifier: v7uYbHOe92P3Ln/gB3IzG+tm+ViR/QiWZGlPybAHFbI= Subject key identifier: 14:CC:8F:3C:E7:CA:9E:12:C7:AF:22:31:20:88:0E:42:7A:99:D6:B0 Authority key identifier: 2D:3E:F3:96:0D:28:A5:3F:CF:60:E9:8D:01:70:32:E9:28:EA:7B:39 Certificate issuer: /CN=A9167278/serialNumber=2D3EF3960D28A53FCF60E98D017032E928EA7B39 Certificate serial: 075A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LT7zlg0opT_PYOmNAXAy6Sjqezk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167278/2AE0AD603B3711EBA75B4D77C4F9AE02/LT7zlg0opT_PYOmNAXAy6Sjqezk.mft Manifest number: 0753 Signing time: Thu 18 Sep 2025 21:57:31 +0000 Manifest this update: Thu 18 Sep 2025 21:57:31 +0000 Manifest next update: Thu 25 Sep 2025 21:57:30 +0000 Files and hashes: 1: LT7zlg0opT_PYOmNAXAy6Sjqezk.crl (hash: 3iX0CZebi5pMsThE6nVuZO8diucF/16eZ9HamrZ8AEQ=) 2: 1C017B163B3811EBB3FC7A77C4F9AE02.roa (hash: if2Ty+xI9lsixRtkfYJ2DrsSLWOZeEaMUkbkKLpKeBo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167278/2AE0AD603B3711EBA75B4D77C4F9AE02/LT7zlg0opT_PYOmNAXAy6Sjqezk.crl rsync://rpki.apnic.net/member_repository/A9167278/2AE0AD603B3711EBA75B4D77C4F9AE02/LT7zlg0opT_PYOmNAXAy6Sjqezk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LT7zlg0opT_PYOmNAXAy6Sjqezk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 21:57:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1882 (0x75a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167278, serialNumber=2D3EF3960D28A53FCF60E98D017032E928EA7B39 Validity Not Before: Sep 18 21:57:31 2025 GMT Not After : Sep 25 21:57:30 2025 GMT Subject: CN=68cc804b-4f11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:e1:e1:d1:5a:4c:a8:e0:bf:6d:55:7d:fb:de: 19:21:15:31:47:9e:a7:5f:6a:ec:d3:c4:9f:c8:ec: 05:bb:9e:5d:13:c1:38:dc:95:61:9f:b0:d2:36:7d: b8:5b:c0:90:0c:2d:11:dc:3b:3a:81:ee:b7:df:35: 14:81:a0:de:5b:1a:96:0e:16:6b:67:08:0a:25:53: 9a:9e:64:05:37:da:64:75:02:eb:af:18:50:00:d9: 32:4e:b1:dc:d4:14:54:2c:c2:a2:d0:19:10:fe:5e: 92:ed:53:4a:bd:c5:5b:76:ad:27:ae:8f:12:15:7b: ab:ca:68:69:06:76:d6:86:88:38:df:22:2e:67:b3: 45:74:44:c8:87:9b:cf:04:79:23:b7:91:fc:0e:42: 97:61:d4:c2:97:27:c1:4b:83:54:2a:e9:fc:20:07: 30:55:ee:c6:58:46:93:8b:41:63:f1:5a:57:0b:37: e6:b9:38:58:53:b4:42:e1:37:e5:65:97:b9:29:08: cd:9e:72:3d:ba:b3:02:d9:97:d2:5c:96:c4:43:ef: 61:80:93:d9:64:f6:06:ec:59:9e:3d:c9:85:8e:7c: a2:73:16:3d:23:b1:74:e3:30:c7:78:d8:e0:2f:fa: d9:7d:41:0a:ba:ec:4a:3d:41:28:37:54:da:58:54: ee:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:CC:8F:3C:E7:CA:9E:12:C7:AF:22:31:20:88:0E:42:7A:99:D6:B0 X509v3 Authority Key Identifier: keyid:2D:3E:F3:96:0D:28:A5:3F:CF:60:E9:8D:01:70:32:E9:28:EA:7B:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167278/2AE0AD603B3711EBA75B4D77C4F9AE02/LT7zlg0opT_PYOmNAXAy6Sjqezk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LT7zlg0opT_PYOmNAXAy6Sjqezk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167278/2AE0AD603B3711EBA75B4D77C4F9AE02/LT7zlg0opT_PYOmNAXAy6Sjqezk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:07:fa:fc:5d:8a:64:93:57:1c:cd:4e:ea:f2:5e:b9:ff:5d: ad:05:4b:c0:aa:96:51:12:bc:92:72:5f:1e:b3:10:4b:13:40: 88:93:40:f8:07:1b:3a:1e:a2:89:3c:40:91:1f:2c:49:b2:00: e2:e8:29:46:c1:ad:69:65:10:f9:cb:44:65:38:54:71:77:12: f5:6a:2c:9a:08:d7:05:d2:bb:89:20:b1:12:58:8a:f4:95:ec: 71:28:1c:88:37:bc:d0:72:58:28:0f:cc:7a:d5:9c:9e:57:1c: 54:60:c6:d3:a9:12:51:51:50:71:85:d4:52:40:91:b1:e0:be: 0a:65:99:6b:3f:bf:42:b4:e0:fd:34:05:70:e7:96:a5:3b:88: 5b:b5:9f:3b:a8:39:ae:04:44:18:5f:6f:86:92:f4:38:f1:f1: 57:6d:28:18:d4:8a:6f:16:2e:f5:13:c9:95:d2:ec:ca:48:4b: c8:81:8e:12:60:0e:42:fc:00:12:f7:a2:85:12:ca:1f:af:34: 6a:17:8a:74:b0:23:f8:32:33:b1:38:a3:87:f3:a8:bb:ed:ef: 19:02:26:89:1f:e8:2f:8b:ca:b2:36:32:b0:3d:8d:17:87:f4: ba:b6:32:9f:f7:76:47:dd:cf:43:19:5f:a0:26:7f:10:ba:86: a9:55:31:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB1owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjcyNzgxMTAvBgNVBAUTKDJEM0VGMzk2MEQyOEE1M0ZDRjYwRTk4RDAxNzAzMkU5 MjhFQTdCMzkwHhcNMjUwOTE4MjE1NzMxWhcNMjUwOTI1MjE1NzMwWjAYMRYwFAYD VQQDEw02OGNjODA0Yi00ZjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0eHh0VpMqOC/bVV9+94ZIRUxR56nX2rs08SfyOwFu55dE8E43JVhn7DSNn24 W8CQDC0R3Ds6ge633zUUgaDeWxqWDhZrZwgKJVOanmQFN9pkdQLrrxhQANkyTrHc 1BRULMKi0BkQ/l6S7VNKvcVbdq0nro8SFXurymhpBnbWhog43yIuZ7NFdETIh5vP BHkjt5H8DkKXYdTClyfBS4NUKun8IAcwVe7GWEaTi0Fj8VpXCzfmuThYU7RC4Tfl ZZe5KQjNnnI9urMC2ZfSXJbEQ+9hgJPZZPYG7FmePcmFjnyicxY9I7F04zDHeNjg L/rZfUEKuuxKPUEoN1TaWFTuaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBTMjzzn yp4Sx68iMSCIDkJ6mdawMB8GA1UdIwQYMBaAFC0+85YNKKU/z2DpjQFwMuko6ns5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NzI3OC8yQUUwQUQ2MDNC MzcxMUVCQTc1QjRENzdDNEY5QUUwMi9MVDd6bGcwb3BUX1BZT21OQVhBeTZTanFl emsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xUN3psZzBvcFRfUFlPbU5BWEF5NlNqcWV6ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NzI3OC8yQUUwQUQ2MDNCMzcxMUVCQTc1QjRENzdDNEY5QUUwMi9MVDd6bGcwb3BU X1BZT21OQVhBeTZTanFlemsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiB/r8XYpkk1cczU7q8l65/12tBUvAqpZREryScl8esxBLE0CIk0D4 Bxs6HqKJPECRHyxJsgDi6ClGwa1pZRD5y0RlOFRxdxL1aiyaCNcF0ruJILESWIr0 lexxKByIN7zQclgoD8x61ZyeVxxUYMbTqRJRUVBxhdRSQJGx4L4KZZlrP79CtOD9 NAVw55alO4hbtZ87qDmuBEQYX2+GkvQ48fFXbSgY1IpvFi71E8mV0uzKSEvIgY4S YA5C/AAS96KFEsofrzRqF4p0sCP4MjOxOKOH86i77e8ZAiaJH+gvi8qyNjKwPY0X h/S6tjKf93ZH3c9DGV+gJn8QuoapVTEH -----END CERTIFICATE-----Generated at Thu Sep 18 23:49:15 2025 by rpki-client