$ rpki-client -vvf rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft File: lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft (raw, json) Hash identifier: xn0fXwXYeUq6Il/DAZT+UcWD58hFRCWbpAuqrmRSLU4= Subject key identifier: 00:E7:C2:BB:C0:C7:44:B8:A9:5B:60:3B:CA:10:9B:A2:3C:56:F8:9A Authority key identifier: 95:24:EA:9B:82:3C:20:FA:78:92:3B:E6:66:7E:14:F6:C4:C3:B4:7E Certificate issuer: /CN=A9185D6E/serialNumber=9524EA9B823C20FA78923BE6667E14F6C4C3B47E Certificate serial: 05BB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft Manifest number: 05AC Signing time: Tue 02 Sep 2025 23:29:27 +0000 Manifest this update: Tue 02 Sep 2025 23:29:26 +0000 Manifest next update: Tue 09 Sep 2025 23:29:26 +0000 Files and hashes: 1: lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl (hash: S5h4czY0Hz2d1fIDcKKaD7L/aoERWG8blxNEmxul9Dg=) 2: 37F43E66A27311EFA8731822C4F9AE02.roa (hash: nZqxDtZBd3TKtOg41uHIOH+ht6vmrzVcqsB/4sKS7Lw=) 3: 229CD24AF9FB11EB8CFF5E7DC4F9AE02.roa (hash: Ad+xO92l20yDnJAF1r+RTCORzADKmBcytCe/7+C9evg=) 4: 53BCB840EA4211EB846B8757C4F9AE02.roa (hash: Qq7xLdmh4FD2aD1wbY5We4EWUzMXM2X7Q61tiyGnpuI=) 5: 368F5308A27311EFA8731822C4F9AE02.roa (hash: nF3bhaPZagyNLULkvS1a5+uROKF0zNPyL/4XlBSqH9Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 23:29:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1467 (0x5bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185D6E, serialNumber=9524EA9B823C20FA78923BE6667E14F6C4C3B47E Validity Not Before: Sep 2 23:29:26 2025 GMT Not After : Sep 9 23:29:26 2025 GMT Subject: CN=68b77dd7-7cb8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:38:2d:71:4c:46:0e:46:6a:24:af:49:ed:78: 81:3a:eb:dc:e7:9a:51:ca:c9:1b:26:55:7e:27:5b: 74:4e:fd:81:b1:26:43:65:c3:c3:a4:64:96:d9:87: 26:48:6d:5b:bb:a4:96:0c:7d:f4:ee:1e:3a:74:ea: 0e:f6:47:e0:2e:b3:da:a9:3b:a0:62:0e:7b:5e:10: 13:cf:52:22:9e:2d:81:bf:b9:a0:fc:86:d7:e3:1c: 76:e8:59:27:2b:92:a9:74:a0:b1:c5:7c:ac:a2:11: 51:66:3f:0f:31:9c:42:8e:ad:d2:42:2c:c8:59:bd: f2:a8:7d:30:b8:2d:3e:06:eb:90:a6:b7:50:c6:2e: 84:16:f3:d3:90:8d:32:98:0c:ed:a3:d8:2f:8d:86: f8:b8:e5:74:ca:bf:ac:f1:29:96:4c:d4:9e:9b:68: 41:e2:a7:fa:60:af:52:c5:cc:22:eb:93:6d:f8:37: df:05:64:2a:78:12:d7:5a:ef:9e:54:8d:91:c6:d6: 59:80:83:ea:4a:a5:8b:78:82:f4:e5:2e:bd:2f:a1: 3b:b3:d7:08:e4:48:20:d4:8a:0b:5b:e2:f9:65:56: 28:35:68:55:04:27:09:ac:af:dd:01:4a:9c:f4:8d: 8a:a7:d2:fa:5e:c0:79:a4:f9:60:65:ce:54:5b:43: cb:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:E7:C2:BB:C0:C7:44:B8:A9:5B:60:3B:CA:10:9B:A2:3C:56:F8:9A X509v3 Authority Key Identifier: keyid:95:24:EA:9B:82:3C:20:FA:78:92:3B:E6:66:7E:14:F6:C4:C3:B4:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:86:3d:ee:7f:b1:39:2a:af:6c:3b:9a:69:73:fa:ae:92:da: 79:b7:10:75:10:5f:d8:d1:9f:55:ad:84:88:af:4f:a5:f7:5a: e5:f3:fb:eb:33:1d:75:ee:9c:cf:73:01:c4:74:e1:60:7f:5c: b0:37:5f:44:2a:de:f4:64:be:92:ef:d6:34:f4:39:ee:e5:09: 5b:12:a4:8f:96:25:c4:01:54:8b:b2:0a:1c:1f:f2:72:ea:9d: 86:e3:cd:76:7e:79:8a:44:12:9e:82:1a:7d:9e:99:ad:b6:20: 11:7b:e0:a0:d4:31:14:ba:6d:c6:df:02:de:f5:3f:8d:9f:41: 72:71:a2:52:4e:c0:07:66:3a:df:76:29:73:43:6b:1c:90:2c: 5f:f3:18:8d:2e:9e:ea:56:d3:34:15:b6:94:72:4e:46:56:ae: 01:69:e4:a3:0f:74:69:3e:d7:09:df:a0:bf:45:f4:86:41:3e: c9:2a:0a:a6:7a:ef:e5:1d:ae:cc:6e:12:ef:32:ab:0b:93:ea: 2b:7c:4f:67:85:83:a5:5b:68:99:10:7a:48:52:70:49:ff:b1: f7:dc:49:47:7f:07:55:9b:4e:7a:92:3e:e0:98:cf:00:bf:73: 0d:24:13:bb:e9:d0:b6:88:d7:4b:76:1d:56:8e:b4:86:ae:0f: d3:e7:81:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBbswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVENkUxMTAvBgNVBAUTKDk1MjRFQTlCODIzQzIwRkE3ODkyM0JFNjY2N0UxNEY2 QzRDM0I0N0UwHhcNMjUwOTAyMjMyOTI2WhcNMjUwOTA5MjMyOTI2WjAYMRYwFAYD VQQDEw02OGI3N2RkNy03Y2I4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnTgtcUxGDkZqJK9J7XiBOuvc55pRyskbJlV+J1t0Tv2BsSZDZcPDpGSW2Ycm SG1bu6SWDH307h46dOoO9kfgLrPaqTugYg57XhATz1Iini2Bv7mg/IbX4xx26Fkn K5KpdKCxxXysohFRZj8PMZxCjq3SQizIWb3yqH0wuC0+BuuQprdQxi6EFvPTkI0y mAzto9gvjYb4uOV0yr+s8SmWTNSem2hB4qf6YK9Sxcwi65Nt+DffBWQqeBLXWu+e VI2RxtZZgIPqSqWLeIL05S69L6E7s9cI5Egg1IoLW+L5ZVYoNWhVBCcJrK/dAUqc 9I2Kp9L6XsB5pPlgZc5UW0PLRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFADnwrvA x0S4qVtgO8oQm6I8VviaMB8GA1UdIwQYMBaAFJUk6puCPCD6eJI75mZ+FPbEw7R+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUQ2RS80Q0JGRjRBRURG RjExMUVCODk0RjMwNjdDNEY5QUUwMi9sU1RxbTRJOElQcDRranZtWm40VTlzVER0 SDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xTVHFtNEk4SVBwNGtqdm1abjRVOXNURHRINC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUQ2RS80Q0JGRjRBRURGRjExMUVCODk0RjMwNjdDNEY5QUUwMi9sU1RxbTRJOElQ cDRranZtWm40VTlzVER0SDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAphj3uf7E5Kq9sO5ppc/quktp5txB1EF/Y0Z9VrYSIr0+l91rl8/vr Mx117pzPcwHEdOFgf1ywN19EKt70ZL6S79Y09Dnu5QlbEqSPliXEAVSLsgocH/Jy 6p2G4812fnmKRBKeghp9npmttiARe+Cg1DEUum3G3wLe9T+Nn0FycaJSTsAHZjrf dilzQ2sckCxf8xiNLp7qVtM0FbaUck5GVq4BaeSjD3RpPtcJ36C/RfSGQT7JKgqm eu/lHa7MbhLvMqsLk+orfE9nhYOlW2iZEHpIUnBJ/7H33ElHfwdVm056kj7gmM8A v3MNJBO76dC2iNdLdh1WjrSGrg/T54Gk -----END CERTIFICATE-----Generated at Thu Sep 4 13:59:04 2025 by rpki-client