$ rpki-client -vvf rpki.apnic.net/member_repository/A916B7B2/0E632194FB7B11ECA87A872EC4F9AE02/lRKEJmSsUb9nhVvG5PRr41UaTaM.mft File: lRKEJmSsUb9nhVvG5PRr41UaTaM.mft (raw, json) Hash identifier: nPiVbSjvpPKnsYHoQIZOt8IPM3QClKCB7XYHXpAr/wI= Subject key identifier: 92:74:62:9A:54:12:40:C4:E4:05:BB:89:A3:AB:AD:01:6B:15:55:0A Authority key identifier: 95:12:84:26:64:AC:51:BF:67:85:5B:C6:E4:F4:6B:E3:55:1A:4D:A3 Certificate issuer: /CN=A916B7B2/serialNumber=9512842664AC51BF67855BC6E4F46BE3551A4DA3 Certificate serial: 02EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRKEJmSsUb9nhVvG5PRr41UaTaM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B7B2/0E632194FB7B11ECA87A872EC4F9AE02/lRKEJmSsUb9nhVvG5PRr41UaTaM.mft Manifest number: 02E3 Signing time: Tue 09 Sep 2025 01:25:31 +0000 Manifest this update: Tue 09 Sep 2025 01:25:31 +0000 Manifest next update: Tue 16 Sep 2025 01:25:31 +0000 Files and hashes: 1: lRKEJmSsUb9nhVvG5PRr41UaTaM.crl (hash: dXaaiAlM9eVwHmuTq0sHJuj9r81MlwI4n7GSuexDuBk=) 2: 2A4EA10EFB7F11EC8FB58E4AC4F9AE02.roa (hash: OoPJ9LoUgq0tc4y12+mstCxI2lyn1TigiiywxuD8Tjs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B7B2/0E632194FB7B11ECA87A872EC4F9AE02/lRKEJmSsUb9nhVvG5PRr41UaTaM.crl rsync://rpki.apnic.net/member_repository/A916B7B2/0E632194FB7B11ECA87A872EC4F9AE02/lRKEJmSsUb9nhVvG5PRr41UaTaM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRKEJmSsUb9nhVvG5PRr41UaTaM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 01:25:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 747 (0x2eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B7B2, serialNumber=9512842664AC51BF67855BC6E4F46BE3551A4DA3 Validity Not Before: Sep 9 01:25:31 2025 GMT Not After : Sep 16 01:25:31 2025 GMT Subject: CN=68bf820b-f8dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:0b:62:75:48:18:d5:2f:e3:ab:1f:ea:0b:6c: fb:fc:4f:62:36:a9:9e:e9:bd:d7:97:c7:1f:ac:19: dd:f6:eb:bd:eb:a0:b3:da:72:6e:a1:12:90:d4:f5: f6:44:4c:d5:e5:11:8a:7a:11:00:3c:9f:59:79:d6: ad:3e:36:28:6a:7f:19:0a:fd:5e:2b:b3:d1:38:e3: e7:3c:2b:aa:ec:9c:02:ba:f5:34:89:82:6e:18:9c: 9a:02:c7:c9:00:e9:18:94:a2:66:7f:0f:64:28:dc: c7:6a:52:a4:c9:d8:e8:e1:73:cb:6a:b9:23:52:e1: bc:3a:4e:ba:1f:a7:92:89:79:ae:98:b3:4e:5d:67: 76:7a:a4:2b:9f:71:f9:f3:76:7e:e2:3f:9a:3d:00: ac:cf:52:e3:29:08:b8:fc:c6:c0:31:73:23:0e:49: d6:c5:de:c5:83:13:ba:59:00:3f:ab:e7:fa:78:a6: 8f:d4:57:7c:dd:67:c7:c4:9c:dd:d4:af:f9:35:72: 23:5d:50:5b:1f:de:2c:fc:a6:8a:4a:20:83:15:55: f4:b8:ee:9f:51:a7:c5:d1:f7:38:dd:fb:3d:55:2d: 29:5d:e5:de:15:2a:d0:3b:08:e7:3b:11:07:c4:22: b7:91:3e:28:13:39:09:73:f0:5a:e8:f9:8a:8f:1c: 9c:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:74:62:9A:54:12:40:C4:E4:05:BB:89:A3:AB:AD:01:6B:15:55:0A X509v3 Authority Key Identifier: keyid:95:12:84:26:64:AC:51:BF:67:85:5B:C6:E4:F4:6B:E3:55:1A:4D:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B7B2/0E632194FB7B11ECA87A872EC4F9AE02/lRKEJmSsUb9nhVvG5PRr41UaTaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRKEJmSsUb9nhVvG5PRr41UaTaM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B7B2/0E632194FB7B11ECA87A872EC4F9AE02/lRKEJmSsUb9nhVvG5PRr41UaTaM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:b8:93:02:9b:bf:e5:82:1b:4c:5b:0e:09:05:20:0f:94:fc: d4:75:f2:da:ac:4d:95:20:19:82:fa:c2:b9:a1:ea:c3:68:d6: 26:34:ea:d9:bc:34:bb:10:75:e0:dc:4f:91:38:ba:e7:f1:c1: f6:ce:0d:37:32:8c:21:07:dd:62:aa:fe:78:c2:3f:fc:3c:fb: 10:e2:60:4c:3d:b0:2a:98:6a:b8:15:cd:de:85:9d:ee:84:f4: 0a:80:93:be:9d:09:73:e1:96:da:ba:b4:d1:60:c8:23:99:5b: 7c:8d:7f:fb:91:bb:6c:74:cf:e2:44:a0:7a:4b:63:42:9d:ca: 3b:29:9f:60:91:e0:d9:c1:3a:69:1c:05:ed:4c:e6:45:f8:d4: cd:07:72:40:30:19:b9:0c:59:a0:0a:43:fe:0e:9e:18:d2:69: c3:28:40:bd:ec:80:e7:6c:e9:6e:de:27:ae:b8:ec:07:39:cb: ff:23:c4:8f:30:d3:84:99:a2:d3:c3:74:d7:4a:7e:21:9f:a8: 77:98:5f:45:76:2f:d8:fc:dd:e9:6f:6d:39:26:96:e3:42:a8: fe:df:c2:2b:2c:d8:69:bd:71:22:5a:b7:cd:e2:02:79:5d:f6: cc:03:3b:7f:8f:1f:88:19:89:82:0d:cd:fc:09:a7:fd:e3:f6: 49:a2:98:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAuswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI3QjIxMTAvBgNVBAUTKDk1MTI4NDI2NjRBQzUxQkY2Nzg1NUJDNkU0RjQ2QkUz NTUxQTREQTMwHhcNMjUwOTA5MDEyNTMxWhcNMjUwOTE2MDEyNTMxWjAYMRYwFAYD VQQDEw02OGJmODIwYi1mOGRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4wtidUgY1S/jqx/qC2z7/E9iNqme6b3Xl8cfrBnd9uu966Cz2nJuoRKQ1PX2 REzV5RGKehEAPJ9ZedatPjYoan8ZCv1eK7PROOPnPCuq7JwCuvU0iYJuGJyaAsfJ AOkYlKJmfw9kKNzHalKkydjo4XPLarkjUuG8Ok66H6eSiXmumLNOXWd2eqQrn3H5 83Z+4j+aPQCsz1LjKQi4/MbAMXMjDknWxd7FgxO6WQA/q+f6eKaP1Fd83WfHxJzd 1K/5NXIjXVBbH94s/KaKSiCDFVX0uO6fUafF0fc43fs9VS0pXeXeFSrQOwjnOxEH xCK3kT4oEzkJc/Ba6PmKjxycawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJJ0YppU EkDE5AW7iaOrrQFrFVUKMB8GA1UdIwQYMBaAFJUShCZkrFG/Z4VbxuT0a+NVGk2j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjdCMi8wRTYzMjE5NEZC N0IxMUVDQTg3QTg3MkVDNEY5QUUwMi9sUktFSm1Tc1ViOW5oVnZHNVBScjQxVWFU YU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xSS0VKbVNzVWI5bmhWdkc1UFJyNDFVYVRhTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjdCMi8wRTYzMjE5NEZCN0IxMUVDQTg3QTg3MkVDNEY5QUUwMi9sUktFSm1Tc1Vi OW5oVnZHNVBScjQxVWFUYU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAduJMCm7/lghtMWw4JBSAPlPzUdfLarE2VIBmC+sK5oerDaNYmNOrZ vDS7EHXg3E+ROLrn8cH2zg03MowhB91iqv54wj/8PPsQ4mBMPbAqmGq4Fc3ehZ3u hPQKgJO+nQlz4ZbaurTRYMgjmVt8jX/7kbtsdM/iRKB6S2NCnco7KZ9gkeDZwTpp HAXtTOZF+NTNB3JAMBm5DFmgCkP+Dp4Y0mnDKEC97IDnbOlu3ieuuOwHOcv/I8SP MNOEmaLTw3TXSn4hn6h3mF9Fdi/Y/N3pb205JpbjQqj+38IrLNhpvXEiWrfN4gJ5 XfbMAzt/jx+IGYmCDc38Caf94/ZJopi7 -----END CERTIFICATE-----Generated at Tue Sep 9 13:28:04 2025 by rpki-client