$ rpki-client -vvf rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft File: l_lzn2QJyHWu4cSbtpqnQ882YRs.mft (raw, json) Hash identifier: nAlOIJJ4cEzOQb/2tGhak2G0/H2z39L1oSS/5EDx+P0= Subject key identifier: BB:75:6E:2A:D3:94:95:94:A1:16:23:DF:1A:B1:E7:9D:2D:AD:3F:61 Authority key identifier: 97:F9:73:9F:64:09:C8:75:AE:E1:C4:9B:B6:9A:A7:43:CF:36:61:1B Certificate issuer: /CN=A917047F/serialNumber=97F9739F6409C875AEE1C49BB69AA743CF36611B Certificate serial: 0E76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_lzn2QJyHWu4cSbtpqnQ882YRs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft Manifest number: 0E68 Signing time: Sun 24 Aug 2025 17:42:45 +0000 Manifest this update: Sun 24 Aug 2025 17:42:44 +0000 Manifest next update: Sun 31 Aug 2025 17:42:44 +0000 Files and hashes: 1: l_lzn2QJyHWu4cSbtpqnQ882YRs.crl (hash: 9IzatBFaSj3i6nEpf9app5nzkJ+MwTQfVrgQaMqsWq0=) 2: 06FD60AAA8CE11EBBD4DB90DC4F9AE02.roa (hash: 5TUKEfy6g0GeyNMiU+/ZPkSDtLBvBaGEjV4EvzvhmZg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.crl rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_lzn2QJyHWu4cSbtpqnQ882YRs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 17:42:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3702 (0xe76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917047F, serialNumber=97F9739F6409C875AEE1C49BB69AA743CF36611B Validity Not Before: Aug 24 17:42:44 2025 GMT Not After : Aug 31 17:42:44 2025 GMT Subject: CN=68ab4f15-ffa8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:6a:27:b6:48:c1:7b:49:6b:89:65:2d:fd:c0: 0c:8d:1d:7f:2b:59:58:8a:eb:61:b9:07:85:87:f9: 3e:43:08:bd:f0:dc:4a:29:31:af:e9:fa:65:81:49: 14:55:96:c0:89:22:83:1d:43:b2:ff:96:c2:ac:59: 8d:07:36:0e:50:90:73:1a:eb:df:7f:7e:c1:9f:00: ed:6a:39:69:f0:1e:89:d8:4e:30:01:10:8e:f4:a2: ec:65:e7:2e:35:61:68:63:c1:1c:a3:56:15:4d:56: a0:77:2f:46:ac:1f:a5:ef:d7:f6:30:b9:7b:93:6c: f5:a6:00:2f:56:45:89:74:60:3a:89:c8:ec:c2:8c: 24:fa:31:f3:56:6c:55:ea:8d:1d:d6:7d:4f:34:31: 17:2d:22:75:17:4d:74:0c:59:a6:3f:38:d3:4f:f9: 91:06:52:1f:a1:97:cb:7d:4b:f8:77:98:f1:a1:c3: f7:a1:56:aa:39:09:66:5a:f2:f3:08:dc:1a:9a:51: b2:32:8f:bc:b5:89:23:e1:8a:f9:e4:3c:3d:da:b5: 0c:96:39:66:0a:db:90:6e:c6:ee:96:d1:f1:a8:49: 5e:e4:a7:3a:99:ae:1d:f7:7c:2f:05:de:82:b2:e7: 93:c9:92:19:07:2c:26:6c:00:63:3e:39:54:25:20: 28:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:75:6E:2A:D3:94:95:94:A1:16:23:DF:1A:B1:E7:9D:2D:AD:3F:61 X509v3 Authority Key Identifier: keyid:97:F9:73:9F:64:09:C8:75:AE:E1:C4:9B:B6:9A:A7:43:CF:36:61:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_lzn2QJyHWu4cSbtpqnQ882YRs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:95:27:d5:3c:f8:ca:77:28:f5:2f:8c:5f:1a:db:7e:88:1e: b1:26:fc:ea:1b:4d:eb:8c:6c:9e:30:1f:a4:4e:11:48:68:97: 60:f5:a4:ef:49:9f:46:2c:7a:82:4a:1b:54:49:38:1e:ea:99: 02:d9:1e:11:14:90:7f:28:ee:c8:d2:5a:05:55:ee:00:f8:c8: 52:c6:af:7d:32:69:f3:83:4b:d8:20:bc:03:5b:67:2a:98:a6: b4:c1:ac:e8:31:0c:5e:79:6c:e4:14:30:d4:45:ab:8d:c1:b1: 0d:52:0b:56:4a:f3:2d:a8:04:dd:b3:b8:10:be:0c:07:25:9c: 32:28:34:84:10:90:09:e0:63:11:6e:1f:10:5b:2b:49:21:01: f6:3f:66:00:a8:76:fb:c4:88:98:05:61:49:41:02:9d:90:b2: ef:f3:dc:c5:16:9d:c8:2f:ad:1e:f1:d8:33:35:aa:ee:48:36: 18:67:39:da:c2:68:8c:d2:b9:1a:fe:a4:80:e2:35:9a:89:3e: 1e:e0:e5:52:72:96:67:d6:3f:b6:ad:26:59:89:3d:d1:71:94: 62:fb:62:32:88:03:43:d8:78:20:d9:b8:cf:0d:2e:36:16:f5: 10:89:6f:3d:3e:50:cb:04:93:9a:13:28:4d:d1:84:41:ad:0d: 3d:37:bf:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDnYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA0N0YxMTAvBgNVBAUTKDk3Rjk3MzlGNjQwOUM4NzVBRUUxQzQ5QkI2OUFBNzQz Q0YzNjYxMUIwHhcNMjUwODI0MTc0MjQ0WhcNMjUwODMxMTc0MjQ0WjAYMRYwFAYD VQQDEw02OGFiNGYxNS1mZmE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu2ontkjBe0lriWUt/cAMjR1/K1lYiuthuQeFh/k+Qwi98NxKKTGv6fplgUkU VZbAiSKDHUOy/5bCrFmNBzYOUJBzGuvff37BnwDtajlp8B6J2E4wARCO9KLsZecu NWFoY8Eco1YVTVagdy9GrB+l79f2MLl7k2z1pgAvVkWJdGA6icjswowk+jHzVmxV 6o0d1n1PNDEXLSJ1F010DFmmPzjTT/mRBlIfoZfLfUv4d5jxocP3oVaqOQlmWvLz CNwamlGyMo+8tYkj4Yr55Dw92rUMljlmCtuQbsbultHxqEle5Kc6ma4d93wvBd6C sueTyZIZBywmbABjPjlUJSAoewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLt1birT lJWUoRYj3xqx550trT9hMB8GA1UdIwQYMBaAFJf5c59kCch1ruHEm7aap0PPNmEb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDQ3Ri9GRDcyREUxNEEz QTkxMUU5OUY3NTc3N0JDNEY5QUUwMi9sX2x6bjJRSnlIV3U0Y1NidHBxblE4ODJZ UnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xfbHpuMlFKeUhXdTRjU2J0cHFuUTg4MllScy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDQ3Ri9GRDcyREUxNEEzQTkxMUU5OUY3NTc3N0JDNEY5QUUwMi9sX2x6bjJRSnlI V3U0Y1NidHBxblE4ODJZUnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIlSfVPPjKdyj1L4xfGtt+iB6xJvzqG03rjGyeMB+kThFIaJdg9aTv SZ9GLHqCShtUSTge6pkC2R4RFJB/KO7I0loFVe4A+MhSxq99Mmnzg0vYILwDW2cq mKa0wazoMQxeeWzkFDDURauNwbENUgtWSvMtqATds7gQvgwHJZwyKDSEEJAJ4GMR bh8QWytJIQH2P2YAqHb7xIiYBWFJQQKdkLLv89zFFp3IL60e8dgzNaruSDYYZzna wmiM0rka/qSA4jWaiT4e4OVScpZn1j+2rSZZiT3RcZRi+2IyiAND2Hgg2bjPDS42 FvUQiW89PlDLBJOaEyhN0YRBrQ09N78F -----END CERTIFICATE-----Generated at Sun Aug 24 22:09:20 2025 by rpki-client