$ rpki-client -vvf rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft File: lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft (raw, json) Hash identifier: j6gdKou0x/nD96aYh5ribiqoJLS3gDOUeIU6jLyx6pU= Subject key identifier: 01:92:1E:57:3E:FD:FD:EF:58:5B:32:64:BD:90:54:98:C2:84:C2:C7 Authority key identifier: 94:2D:54:1D:FE:79:82:F6:E0:1E:6B:CC:97:6D:C0:CB:84:14:E8:38 Certificate issuer: /CN=A917D7F2/serialNumber=942D541DFE7982F6E01E6BCC976DC0CB8414E838 Certificate serial: 34C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft Manifest number: 34BD Signing time: Sun 24 Aug 2025 14:36:40 +0000 Manifest this update: Sun 24 Aug 2025 14:36:40 +0000 Manifest next update: Sun 31 Aug 2025 14:36:40 +0000 Files and hashes: 1: lC1UHf55gvbgHmvMl23Ay4QU6Dg.crl (hash: b4/zvlnlKyezPb2TvNo0f96v1+mSD5G1UQ+ErA9T8NI=) 2: 35FC192C272C11ED9E64C718C4F9AE02.roa (hash: of9zh63P1E28Fw1JXMf3Mift2nJvEjjB8iXijpwTEOw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.crl rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 14:36:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13506 (0x34c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D7F2, serialNumber=942D541DFE7982F6E01E6BCC976DC0CB8414E838 Validity Not Before: Aug 24 14:36:40 2025 GMT Not After : Aug 31 14:36:40 2025 GMT Subject: CN=68ab2378-1f18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:e3:4f:e3:b7:9e:46:c3:2f:a2:00:85:09:58: e4:17:cf:ed:e4:85:d4:f1:bb:f5:01:d1:f0:25:72: 79:8d:29:af:ab:3d:1e:52:ca:7f:39:25:bf:ba:bc: 9f:66:08:ef:46:9b:ce:f2:fe:63:f2:1b:43:6d:74: cc:f2:fb:75:b1:f0:24:7e:27:35:b1:0b:26:64:79: f7:6f:5c:ad:8f:84:95:ad:4a:cd:82:e3:e1:f5:32: 60:b4:ea:83:ae:5e:45:7e:ea:7e:23:c4:b5:0e:79: f2:3a:38:40:e1:6b:0f:43:a6:44:08:ed:f3:1e:94: 14:f2:1c:9a:fb:f4:8d:8a:2a:f8:f4:3c:7f:ab:69: 1b:c8:c8:ff:75:4a:f9:12:b9:98:16:d4:e5:54:1f: 92:f2:2c:57:09:10:16:30:c0:4d:f9:40:f1:97:1a: 03:31:42:ce:80:cf:c5:3b:cd:49:35:81:64:56:7d: 5b:d5:99:03:d2:4d:88:a4:84:26:09:5a:ae:72:65: ec:1e:26:1a:d4:46:4a:d5:7d:e1:4e:6d:48:c8:65: 8e:f1:3f:c2:fe:5a:4f:ac:f3:a9:72:d7:5c:df:67: 18:f6:05:23:7c:a9:23:6d:74:3c:ad:13:e4:25:d8: b8:77:98:7d:cd:dd:17:19:e9:30:16:d9:29:63:8c: 94:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:92:1E:57:3E:FD:FD:EF:58:5B:32:64:BD:90:54:98:C2:84:C2:C7 X509v3 Authority Key Identifier: keyid:94:2D:54:1D:FE:79:82:F6:E0:1E:6B:CC:97:6D:C0:CB:84:14:E8:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:08:d0:22:e2:36:5f:76:06:d2:93:39:b8:52:41:e8:e4:96: af:72:b1:85:06:94:9c:0c:8e:c4:c7:5b:e0:15:20:9d:ad:25: cd:1e:2f:19:32:73:73:84:9d:4c:b4:2c:c8:cf:4e:c4:5b:6b: 5d:00:45:10:2e:ba:00:18:ac:d8:41:10:a7:ed:3c:c8:ca:ef: 6f:c2:db:a7:58:5d:0a:32:03:67:cc:24:f7:b1:83:f0:6e:33: bc:1d:c7:ba:57:94:8e:3a:3d:33:af:f6:66:cf:d3:d8:51:af: 3a:83:80:97:d9:9c:c0:5f:6d:c3:db:eb:b1:f2:fd:6b:ad:9d: 0e:a4:f6:88:e7:00:fb:7e:dd:c2:e5:c9:59:93:a9:10:12:f3: e5:44:07:49:e6:4d:8e:d3:cb:57:71:c0:26:2f:0f:c6:e0:a9: d7:fe:62:fe:f5:24:59:96:c8:9d:7e:eb:86:bb:9a:b5:f3:8b: 13:e6:a6:2a:7b:4a:f2:0e:ae:8b:6b:d8:76:52:3b:1e:9e:55: ed:06:ea:0d:e1:ac:01:85:99:0e:b5:84:cb:be:9e:eb:7e:be: 94:73:be:c2:3e:58:2b:c7:d5:e0:90:c9:c8:87:30:e5:c5:86: dc:79:6e:a3:a3:1e:d4:3c:6c:a2:20:03:3e:7e:fe:3a:b5:7e: f4:c0:33:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q3RjIxMTAvBgNVBAUTKDk0MkQ1NDFERkU3OTgyRjZFMDFFNkJDQzk3NkRDMENC ODQxNEU4MzgwHhcNMjUwODI0MTQzNjQwWhcNMjUwODMxMTQzNjQwWjAYMRYwFAYD VQQDEw02OGFiMjM3OC0xZjE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAseNP47eeRsMvogCFCVjkF8/t5IXU8bv1AdHwJXJ5jSmvqz0eUsp/OSW/uryf ZgjvRpvO8v5j8htDbXTM8vt1sfAkfic1sQsmZHn3b1ytj4SVrUrNguPh9TJgtOqD rl5Ffup+I8S1DnnyOjhA4WsPQ6ZECO3zHpQU8hya+/SNiir49Dx/q2kbyMj/dUr5 ErmYFtTlVB+S8ixXCRAWMMBN+UDxlxoDMULOgM/FO81JNYFkVn1b1ZkD0k2IpIQm CVqucmXsHiYa1EZK1X3hTm1IyGWO8T/C/lpPrPOpctdc32cY9gUjfKkjbXQ8rRPk Jdi4d5h9zd0XGekwFtkpY4yULQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAGSHlc+ /f3vWFsyZL2QVJjChMLHMB8GA1UdIwQYMBaAFJQtVB3+eYL24B5rzJdtwMuEFOg4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDdGMi9GMDI4OTAzQzFE OEMxMUUyQjE5RDVGRUEwOEIwMkNEMi9sQzFVSGY1NWd2YmdIbXZNbDIzQXk0UVU2 RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xDMVVIZjU1Z3ZiZ0htdk1sMjNBeTRRVTZEZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDdGMi9GMDI4OTAzQzFEOEMxMUUyQjE5RDVGRUEwOEIwMkNEMi9sQzFVSGY1NWd2 YmdIbXZNbDIzQXk0UVU2RGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAACNAi4jZfdgbSkzm4UkHo5JavcrGFBpScDI7Ex1vgFSCdrSXNHi8Z MnNzhJ1MtCzIz07EW2tdAEUQLroAGKzYQRCn7TzIyu9vwtunWF0KMgNnzCT3sYPw bjO8Hce6V5SOOj0zr/Zmz9PYUa86g4CX2ZzAX23D2+ux8v1rrZ0OpPaI5wD7ft3C 5clZk6kQEvPlRAdJ5k2O08tXccAmLw/G4KnX/mL+9SRZlsidfuuGu5q184sT5qYq e0ryDq6La9h2UjsenlXtBuoN4awBhZkOtYTLvp7rfr6Uc77CPlgrx9XgkMnIhzDl xYbceW6jox7UPGyiIAM+fv46tX70wDNQ -----END CERTIFICATE-----Generated at Sun Aug 24 22:07:07 2025 by rpki-client