$ rpki-client -vvf rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft File: lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft (raw, json) Hash identifier: u77jEWaHQhgPg9j8mrYkyuHRKWEIBwjvchStZ5uRzBU= Subject key identifier: 4F:0B:0C:45:54:51:5F:23:88:81:12:D0:E6:B3:66:1A:9C:E7:67:93 Authority key identifier: 96:B8:0C:37:C6:61:3D:14:A9:2C:DB:EC:66:28:21:64:3E:8A:F1:1B Certificate issuer: /CN=A91818BD/serialNumber=96B80C37C6613D14A92CDBEC662821643E8AF11B Certificate serial: 02E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lrgMN8ZhPRSpLNvsZighZD6K8Rs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft Manifest number: 02D9 Signing time: Tue 09 Sep 2025 01:26:58 +0000 Manifest this update: Tue 09 Sep 2025 01:26:57 +0000 Manifest next update: Tue 16 Sep 2025 01:26:57 +0000 Files and hashes: 1: lrgMN8ZhPRSpLNvsZighZD6K8Rs.crl (hash: rmQiZIu3hym+ctbie3j0XIkTHZoz6VBmV9ApNna0oAk=) 2: B83B7E0C065511EDB3E94E54C4F9AE02.roa (hash: 64ZDXa38kdxwzfpX7eFWZ9w6C5i8LC3RH5BIc5A3wCU=) 3: 481545DEFE8211ECBAB0E13FC4F9AE02.roa (hash: jEKlncyC+64UETCLm2u7esM8VX+/1LjWilEvooOzMxI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.crl rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lrgMN8ZhPRSpLNvsZighZD6K8Rs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 01:26:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 738 (0x2e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91818BD, serialNumber=96B80C37C6613D14A92CDBEC662821643E8AF11B Validity Not Before: Sep 9 01:26:57 2025 GMT Not After : Sep 16 01:26:57 2025 GMT Subject: CN=68bf8261-f93e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:3c:bd:0a:6b:29:4b:d2:6e:62:4e:a3:1e:61: 55:d2:d2:97:18:e3:51:4a:b0:73:30:43:e6:6b:99: af:69:71:12:4b:58:10:6f:ea:89:f3:c0:26:65:a5: e0:b8:0b:10:6c:9b:aa:3d:97:8d:d1:bd:f1:3c:51: 22:19:d0:43:d6:cc:e8:97:06:34:ff:87:e0:81:ef: 79:4c:10:a4:6b:54:4f:62:4c:9c:92:a1:45:03:51: 0b:02:77:aa:e5:4e:53:21:d9:da:89:a7:62:c8:a0: e0:04:13:e3:1d:46:93:ae:c2:6b:7b:ac:62:85:ca: 66:b1:80:15:dc:89:d1:d7:3d:31:e4:aa:67:ef:5e: 78:1b:62:47:35:47:93:7f:21:f3:e0:a9:6b:68:66: 12:3e:8f:39:88:c0:94:77:de:6b:cc:0a:15:51:96: 23:2a:93:1c:86:f4:c3:c0:02:93:b4:8e:21:7f:5d: 51:f8:82:c4:f8:60:80:9e:10:66:b3:f1:ff:98:3a: 1a:f5:fd:05:7c:50:89:5e:ad:5d:70:95:e6:6b:d0: 05:e6:88:51:39:54:8d:0e:8f:aa:82:e0:49:b6:5f: b2:bf:53:38:21:a3:f1:5d:91:3f:ee:c7:dd:4b:37: f3:91:26:0d:ac:b9:46:fc:91:56:e2:3c:21:d4:90: c7:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:0B:0C:45:54:51:5F:23:88:81:12:D0:E6:B3:66:1A:9C:E7:67:93 X509v3 Authority Key Identifier: keyid:96:B8:0C:37:C6:61:3D:14:A9:2C:DB:EC:66:28:21:64:3E:8A:F1:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lrgMN8ZhPRSpLNvsZighZD6K8Rs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:00:89:d4:97:42:88:50:36:66:83:f4:02:3b:ca:17:1f:7f: 6d:ca:1a:e8:9c:98:6b:ed:1d:34:c1:c3:67:dc:b8:94:54:4b: 2c:6c:bf:4e:92:19:11:50:c8:ea:4d:ef:40:bb:a7:a5:26:76: 6a:27:22:75:c6:b2:01:2b:0e:7f:f6:4b:40:79:43:7e:32:89: cb:75:c9:0c:47:de:c3:21:b3:9a:17:7a:1c:93:fe:e2:48:e3: 4d:d3:7d:6b:6a:5d:61:43:60:d1:ec:0a:33:69:4a:23:e8:17: d0:ec:7c:cc:d7:3e:5b:2c:c4:88:8b:b6:b0:99:48:65:78:3f: 74:10:ce:5f:51:b6:d8:7b:fa:a9:ed:3d:95:28:0e:9d:39:37: b4:22:58:76:9a:e5:ca:85:19:97:0b:29:49:56:82:4b:1a:7e: cf:ec:bb:e9:e2:6f:cd:70:0d:0d:af:a8:b4:19:42:2e:b0:8d: cc:3c:d6:6b:2a:71:e4:fd:5a:21:04:c5:b8:a5:4d:7b:0d:31: f0:57:aa:64:50:34:38:18:e1:6d:eb:f5:9e:30:12:fc:0c:99: d5:74:92:54:45:f7:e5:d6:86:56:f4:94:2f:3d:1f:ca:1e:6e: 74:d3:fe:4b:a6:17:43:78:08:4b:6a:f8:8b:2d:c2:34:6c:4f: 09:f3:3e:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAuIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODE4QkQxMTAvBgNVBAUTKDk2QjgwQzM3QzY2MTNEMTRBOTJDREJFQzY2MjgyMTY0 M0U4QUYxMUIwHhcNMjUwOTA5MDEyNjU3WhcNMjUwOTE2MDEyNjU3WjAYMRYwFAYD VQQDEw02OGJmODI2MS1mOTNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtDy9CmspS9JuYk6jHmFV0tKXGONRSrBzMEPma5mvaXESS1gQb+qJ88AmZaXg uAsQbJuqPZeN0b3xPFEiGdBD1szolwY0/4fgge95TBCka1RPYkyckqFFA1ELAneq 5U5TIdnaiadiyKDgBBPjHUaTrsJre6xihcpmsYAV3InR1z0x5Kpn7154G2JHNUeT fyHz4KlraGYSPo85iMCUd95rzAoVUZYjKpMchvTDwAKTtI4hf11R+ILE+GCAnhBm s/H/mDoa9f0FfFCJXq1dcJXma9AF5ohROVSNDo+qguBJtl+yv1M4IaPxXZE/7sfd SzfzkSYNrLlG/JFW4jwh1JDHkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE8LDEVU UV8jiIES0OazZhqc52eTMB8GA1UdIwQYMBaAFJa4DDfGYT0UqSzb7GYoIWQ+ivEb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MThCRC80MTRENUJEQUZF ODAxMUVDOUYzMTdBM0ZDNEY5QUUwMi9scmdNTjhaaFBSU3BMTnZzWmlnaFpENks4 UnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xyZ01OOFpoUFJTcExOdnNaaWdoWkQ2SzhScy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MThCRC80MTRENUJEQUZFODAxMUVDOUYzMTdBM0ZDNEY5QUUwMi9scmdNTjhaaFBS U3BMTnZzWmlnaFpENks4UnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1AInUl0KIUDZmg/QCO8oXH39tyhronJhr7R00wcNn3LiUVEssbL9O khkRUMjqTe9Au6elJnZqJyJ1xrIBKw5/9ktAeUN+MonLdckMR97DIbOaF3ock/7i SONN031ral1hQ2DR7AozaUoj6BfQ7HzM1z5bLMSIi7awmUhleD90EM5fUbbYe/qp 7T2VKA6dOTe0Ilh2muXKhRmXCylJVoJLGn7P7Lvp4m/NcA0Nr6i0GUIusI3MPNZr KnHk/VohBMW4pU17DTHwV6pkUDQ4GOFt6/WeMBL8DJnVdJJURffl1oZW9JQvPR/K Hm500/5LphdDeAhLaviLLcI0bE8J8z5c -----END CERTIFICATE-----Generated at Tue Sep 9 08:16:29 2025 by rpki-client