$ rpki-client -vvf rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft File: l_lzn2QJyHWu4cSbtpqnQ882YRs.mft (raw, json) Hash identifier: Bk0T1q8iyJxQwBV1S6m2Ew1qd3J/gBU1cmZPNEapd7g= Subject key identifier: 39:5C:FD:D4:47:61:46:6B:0E:6F:9A:5F:73:81:18:EE:64:EF:0A:1D Authority key identifier: 97:F9:73:9F:64:09:C8:75:AE:E1:C4:9B:B6:9A:A7:43:CF:36:61:1B Certificate issuer: /CN=A917047F/serialNumber=97F9739F6409C875AEE1C49BB69AA743CF36611B Certificate serial: 0E4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_lzn2QJyHWu4cSbtpqnQ882YRs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft Manifest number: 0E40 Signing time: Tue 10 Jun 2025 17:44:00 +0000 Manifest this update: Tue 10 Jun 2025 17:43:59 +0000 Manifest next update: Tue 17 Jun 2025 17:43:59 +0000 Files and hashes: 1: l_lzn2QJyHWu4cSbtpqnQ882YRs.crl (hash: tkxeeNcojgTg/z03Cl7wlfBdE+4PWyb+zovTdzXLYCI=) 2: 06FD60AAA8CE11EBBD4DB90DC4F9AE02.roa (hash: fNpUJmaY/58+uPHYwxaUVKQVkJ1Z1JQOjKMefzdFE80=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.crl rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_lzn2QJyHWu4cSbtpqnQ882YRs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Jun 2025 17:43:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3661 (0xe4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917047F, serialNumber=97F9739F6409C875AEE1C49BB69AA743CF36611B Validity Not Before: Jun 10 17:43:59 2025 GMT Not After : Jun 17 17:43:59 2025 GMT Subject: CN=68486ee0-1357 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e6:7d:e9:93:5b:9f:d9:aa:57:19:73:d3:0b: 2b:79:e0:da:9f:b7:65:a5:b1:6f:de:79:12:d1:20: 98:a0:c0:3c:c1:ad:c1:4c:a7:d7:35:b3:01:ce:62: 02:c2:b6:cb:d7:e7:a0:9c:80:43:ed:00:f1:41:42: de:e4:27:f5:ae:ec:60:02:2a:8c:39:e9:06:4c:04: 2a:0b:ac:19:35:ba:3a:44:8a:df:93:5f:db:83:b4: 6c:3b:7a:a1:13:42:16:b0:4c:c7:b6:0f:1d:3a:47: 2b:f0:42:26:b7:25:2f:c4:cf:10:89:d5:74:b1:3f: 33:d5:49:de:b1:16:eb:47:f2:21:ac:d6:cb:a9:4e: 18:b4:6b:e6:d2:d2:2b:b9:64:3a:e3:6f:44:ed:f0: 26:84:33:21:01:b5:7f:be:60:a6:0d:98:6a:d7:55: 80:a8:d5:13:ba:d8:04:f6:c2:5f:e5:5c:5f:b7:b0: 77:73:6c:42:8b:6c:e4:58:fa:47:94:fb:a6:ab:d3: e9:df:7f:06:7f:6c:cf:d5:61:05:10:a7:b3:fd:b1: 39:fd:8c:65:a2:a3:6b:22:05:dd:bc:f1:20:c7:d6: 5c:f8:fe:9c:85:88:69:5a:12:41:e8:1a:6f:02:9e: 2f:d8:16:3e:44:96:97:de:b8:f0:c4:b7:3b:b3:d5: 1b:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:5C:FD:D4:47:61:46:6B:0E:6F:9A:5F:73:81:18:EE:64:EF:0A:1D X509v3 Authority Key Identifier: keyid:97:F9:73:9F:64:09:C8:75:AE:E1:C4:9B:B6:9A:A7:43:CF:36:61:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_lzn2QJyHWu4cSbtpqnQ882YRs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:89:60:cd:02:a6:15:77:db:0a:e3:93:d3:eb:3e:e1:d8:c1: cb:d1:2f:81:32:97:8a:c5:e6:19:44:fc:36:6d:d2:cb:45:f2: ed:09:35:20:18:59:cc:75:a7:37:1a:6a:f1:f6:94:81:c5:6f: df:33:f7:95:e6:a5:7b:a3:cb:72:b6:54:9e:f0:bf:af:42:2f: 71:21:40:ad:55:38:84:88:bc:7f:e6:00:3a:7c:f4:4f:07:a3: 72:14:5e:15:62:0c:2b:54:68:b7:46:92:f4:08:d1:2b:af:44: 2a:8e:31:f6:a3:91:f6:c0:a0:ad:ce:08:39:43:11:ec:9f:32: 78:3c:d0:a5:1e:8a:03:01:e9:f0:1e:57:73:01:0e:f8:b7:46: 90:94:98:4c:ab:61:a2:88:28:84:63:7a:56:47:9b:0a:b3:d0: 69:b1:38:ae:82:9c:3f:63:c2:6a:42:ac:37:80:5b:76:da:96: 31:7f:9b:65:f9:5d:86:fb:c7:0f:f5:9f:3e:78:42:e5:d5:e5: 64:fe:78:ee:b2:91:5a:29:5c:3d:38:9e:81:3c:ae:68:35:06: 03:bf:ac:ae:33:68:70:f3:17:51:a5:25:b4:5e:6c:a0:5a:18: 50:8f:b3:0d:5f:30:d8:d5:cc:46:d1:04:30:a4:be:b3:c1:19: b3:3a:27:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDk0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA0N0YxMTAvBgNVBAUTKDk3Rjk3MzlGNjQwOUM4NzVBRUUxQzQ5QkI2OUFBNzQz Q0YzNjYxMUIwHhcNMjUwNjEwMTc0MzU5WhcNMjUwNjE3MTc0MzU5WjAYMRYwFAYD VQQDEw02ODQ4NmVlMC0xMzU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv+Z96ZNbn9mqVxlz0wsreeDan7dlpbFv3nkS0SCYoMA8wa3BTKfXNbMBzmIC wrbL1+egnIBD7QDxQULe5Cf1ruxgAiqMOekGTAQqC6wZNbo6RIrfk1/bg7RsO3qh E0IWsEzHtg8dOkcr8EImtyUvxM8QidV0sT8z1UnesRbrR/IhrNbLqU4YtGvm0tIr uWQ6429E7fAmhDMhAbV/vmCmDZhq11WAqNUTutgE9sJf5Vxft7B3c2xCi2zkWPpH lPumq9Pp338Gf2zP1WEFEKez/bE5/YxloqNrIgXdvPEgx9Zc+P6chYhpWhJB6Bpv Ap4v2BY+RJaX3rjwxLc7s9UbLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDlc/dRH YUZrDm+aX3OBGO5k7wodMB8GA1UdIwQYMBaAFJf5c59kCch1ruHEm7aap0PPNmEb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDQ3Ri9GRDcyREUxNEEz QTkxMUU5OUY3NTc3N0JDNEY5QUUwMi9sX2x6bjJRSnlIV3U0Y1NidHBxblE4ODJZ UnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xfbHpuMlFKeUhXdTRjU2J0cHFuUTg4MllScy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDQ3Ri9GRDcyREUxNEEzQTkxMUU5OUY3NTc3N0JDNEY5QUUwMi9sX2x6bjJRSnlI V3U0Y1NidHBxblE4ODJZUnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+iWDNAqYVd9sK45PT6z7h2MHL0S+BMpeKxeYZRPw2bdLLRfLtCTUg GFnMdac3Gmrx9pSBxW/fM/eV5qV7o8tytlSe8L+vQi9xIUCtVTiEiLx/5gA6fPRP B6NyFF4VYgwrVGi3RpL0CNErr0QqjjH2o5H2wKCtzgg5QxHsnzJ4PNClHooDAenw HldzAQ74t0aQlJhMq2GiiCiEY3pWR5sKs9BpsTiugpw/Y8JqQqw3gFt22pYxf5tl +V2G+8cP9Z8+eELl1eVk/njuspFaKVw9OJ6BPK5oNQYDv6yuM2hw8xdRpSW0Xmyg WhhQj7MNXzDY1cxG0QQwpL6zwRmzOif7 -----END CERTIFICATE-----Generated at Wed Jun 11 05:01:29 2025 by rpki-client