$ rpki-client -vvf rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft File: lufMd6OOPhgL91JrodlTIYBONeY.mft (raw, json) Hash identifier: TLeyH1R2Bt4Jp+hy3Zrc6d+DPkgjViFZyUlpWxpIqAg= Subject key identifier: EB:F7:54:50:F5:1C:8A:D3:6C:16:76:5B:5C:C4:B5:DB:6A:97:03:DC Authority key identifier: 96:E7:CC:77:A3:8E:3E:18:0B:F7:52:6B:A1:D9:53:21:80:4E:35:E6 Certificate issuer: /CN=A916C4FA/serialNumber=96E7CC77A38E3E180BF7526BA1D95321804E35E6 Certificate serial: 01DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lufMd6OOPhgL91JrodlTIYBONeY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft Manifest number: 0553 Signing time: Sat 23 Aug 2025 01:07:45 +0000 Manifest this update: Sat 23 Aug 2025 01:07:44 +0000 Manifest next update: Sat 30 Aug 2025 01:07:44 +0000 Files and hashes: 1: lufMd6OOPhgL91JrodlTIYBONeY.crl (hash: e+OMwt8OvAaJZRbQ5FRUOww2L2eKH6lWfPhtETf+NC4=) 2: C310EE5AACD311ED84BAA06EC4F9AE02.roa (hash: NPYNnjaBYs2qmRUfu8/y0KOBedXU4EghxnWja8r1cbI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.crl rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lufMd6OOPhgL91JrodlTIYBONeY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:07:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 476 (0x1dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C4FA, serialNumber=96E7CC77A38E3E180BF7526BA1D95321804E35E6 Validity Not Before: Aug 23 01:07:44 2025 GMT Not After : Aug 30 01:07:44 2025 GMT Subject: CN=68a91460-429b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:1c:70:01:1e:e4:6e:de:16:d2:5d:b2:2f:59: 3b:76:52:8c:c1:53:eb:62:5f:cf:38:fd:38:f3:97: e9:6c:40:4b:2c:07:31:ab:d3:a1:6f:c5:90:50:e0: 84:73:db:6d:38:9f:5d:ed:c7:fd:f4:5f:8c:08:60: 77:e9:2d:3e:df:f3:41:5b:ab:96:a3:3e:ab:a1:e4: 97:d2:67:9c:a9:f9:80:e5:1b:56:45:f4:96:66:33: 81:71:e4:9c:45:7d:1b:42:48:97:c0:b9:07:2d:96: cf:ef:7c:12:4c:1b:b5:43:d6:8f:80:9b:8b:0b:c4: 37:55:3a:2c:10:c2:88:9e:92:6c:b1:76:59:18:db: 56:62:52:65:01:00:7c:9d:2a:36:dd:b8:41:cd:5c: ad:90:5b:2c:10:48:09:a7:cd:92:f4:b6:ef:14:df: da:c1:17:e9:ee:f5:a7:f2:9d:97:a7:b2:8a:65:fb: fd:97:49:b8:e7:a6:d7:80:80:b0:d7:65:81:33:48: e3:1b:0d:f9:ea:46:dd:f1:0b:23:73:94:2b:00:f4: 9b:76:80:75:01:07:ef:95:0d:5d:2f:f1:75:1f:10: e1:86:b3:31:3e:f0:e6:a2:30:6e:79:fd:42:67:6e: d9:50:fa:76:a8:1c:cb:a4:36:f1:d9:58:ad:b2:7c: 0a:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:F7:54:50:F5:1C:8A:D3:6C:16:76:5B:5C:C4:B5:DB:6A:97:03:DC X509v3 Authority Key Identifier: keyid:96:E7:CC:77:A3:8E:3E:18:0B:F7:52:6B:A1:D9:53:21:80:4E:35:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lufMd6OOPhgL91JrodlTIYBONeY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:ed:48:5d:f0:36:a4:97:23:e5:38:04:30:fb:c8:31:bf:82: 22:be:64:89:34:c0:86:0e:fd:3d:00:23:af:81:4f:05:78:85: 6e:24:3a:1e:d1:fc:f2:83:30:8c:ee:23:66:f0:f4:95:31:75: 33:06:4b:49:45:d1:c2:0f:74:7d:d0:cb:fb:d8:79:45:36:20: 11:ce:f4:ae:7e:3b:c0:61:03:e0:4a:f0:54:cb:7c:ee:27:1e: a0:bb:b9:1d:a5:34:16:3c:29:ba:e8:73:9e:67:e3:9e:de:c8: 36:16:b1:23:de:c6:5f:28:4d:90:63:88:00:fb:b6:00:fe:d6: f9:f2:ac:8b:e2:3a:68:5f:45:eb:f5:ad:ce:e7:ad:34:34:82: b7:01:0d:42:53:a5:75:90:2e:17:6f:fd:8f:86:52:5e:c5:fc: cd:d7:73:aa:a9:a8:ec:b8:0d:ec:96:9c:28:34:93:c6:84:21: af:90:37:1a:08:6d:9f:51:ac:b7:71:f6:1f:58:5d:89:71:c9: c7:8d:01:da:ee:eb:11:aa:bc:b6:4e:37:fb:12:23:58:ac:66: 3b:d5:7b:03:8c:43:26:83:28:c2:23:03:9b:e9:d6:ff:d4:56: 2d:d1:12:44:a2:42:8e:af:d3:43:50:79:49:4c:cf:54:ab:3a: 53:b5:91:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM0RkExMTAvBgNVBAUTKDk2RTdDQzc3QTM4RTNFMTgwQkY3NTI2QkExRDk1MzIx ODA0RTM1RTYwHhcNMjUwODIzMDEwNzQ0WhcNMjUwODMwMDEwNzQ0WjAYMRYwFAYD VQQDEw02OGE5MTQ2MC00MjliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvBxwAR7kbt4W0l2yL1k7dlKMwVPrYl/POP0485fpbEBLLAcxq9Ohb8WQUOCE c9ttOJ9d7cf99F+MCGB36S0+3/NBW6uWoz6roeSX0mecqfmA5RtWRfSWZjOBceSc RX0bQkiXwLkHLZbP73wSTBu1Q9aPgJuLC8Q3VTosEMKInpJssXZZGNtWYlJlAQB8 nSo23bhBzVytkFssEEgJp82S9LbvFN/awRfp7vWn8p2Xp7KKZfv9l0m456bXgICw 12WBM0jjGw356kbd8Qsjc5QrAPSbdoB1AQfvlQ1dL/F1HxDhhrMxPvDmojBuef1C Z27ZUPp2qBzLpDbx2VitsnwKrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOv3VFD1 HIrTbBZ2W1zEtdtqlwPcMB8GA1UdIwQYMBaAFJbnzHejjj4YC/dSa6HZUyGATjXm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzRGQS9CODlCQ0JGNEJB NkExMUVDODJBQzA3ODdDNEY5QUUwMi9sdWZNZDZPT1BoZ0w5MUpyb2RsVElZQk9O ZVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x1Zk1kNk9PUGhnTDkxSnJvZGxUSVlCT05lWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzRGQS9CODlCQ0JGNEJBNkExMUVDODJBQzA3ODdDNEY5QUUwMi9sdWZNZDZPT1Bo Z0w5MUpyb2RsVElZQk9OZVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBg7Uhd8DaklyPlOAQw+8gxv4IivmSJNMCGDv09ACOvgU8FeIVuJDoe 0fzygzCM7iNm8PSVMXUzBktJRdHCD3R90Mv72HlFNiARzvSufjvAYQPgSvBUy3zu Jx6gu7kdpTQWPCm66HOeZ+Oe3sg2FrEj3sZfKE2QY4gA+7YA/tb58qyL4jpoX0Xr 9a3O5600NIK3AQ1CU6V1kC4Xb/2PhlJexfzN13OqqajsuA3slpwoNJPGhCGvkDca CG2fUay3cfYfWF2JccnHjQHa7usRqry2Tjf7EiNYrGY71XsDjEMmgyjCIwOb6db/ 1FYt0RJEokKOr9NDUHlJTM9UqzpTtZGc -----END CERTIFICATE-----Generated at Sun Aug 24 22:14:35 2025 by rpki-client