$ rpki-client -vvf rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/lAmAjIoyxYSU2uV00F1rsiJyw1o.mft File: lAmAjIoyxYSU2uV00F1rsiJyw1o.mft (raw, json) Hash identifier: FBnSDF+nTlSSnP7eDaOIic+CHDwZkOD3fqFcItZIB/8= Subject key identifier: 52:54:8A:C9:DD:4D:B9:12:22:10:5C:DC:3B:0F:A3:E0:D8:99:3B:CE Authority key identifier: 94:09:80:8C:8A:32:C5:84:94:DA:E5:74:D0:5D:6B:B2:22:72:C3:5A Certificate issuer: /CN=A919C77D/serialNumber=9409808C8A32C58494DAE574D05D6BB22272C35A Certificate serial: 1EB6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lAmAjIoyxYSU2uV00F1rsiJyw1o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/lAmAjIoyxYSU2uV00F1rsiJyw1o.mft Manifest number: 1EA6 Signing time: Mon 08 Sep 2025 16:02:48 +0000 Manifest this update: Mon 08 Sep 2025 16:02:48 +0000 Manifest next update: Mon 15 Sep 2025 16:02:48 +0000 Files and hashes: 1: lAmAjIoyxYSU2uV00F1rsiJyw1o.crl (hash: ZZu/EmsgGbhkOHC2DM4ZcFsum9wW2ySud3lseC+WvfQ=) 2: 45865ED62B7411EF9E28ED19C4F9AE02.roa (hash: G8JFHwSz1ocsPfiu5EdB881TguSYEm9QZ2Yz9AovjhA=) 3: C7D60D34CC0611EC93451840C4F9AE02.roa (hash: 0mgkLjgKwKqnZvyXs7R0/CM7YveV0fnq5l57+ocSN+k=) 4: 4664F7042B7411EF9E28ED19C4F9AE02.roa (hash: mcsOJ/PSjF+pyGpbfB/eXtIe/0dKHqcd9NaSWEDdEYo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/lAmAjIoyxYSU2uV00F1rsiJyw1o.crl rsync://rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/lAmAjIoyxYSU2uV00F1rsiJyw1o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lAmAjIoyxYSU2uV00F1rsiJyw1o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 16:02:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7862 (0x1eb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C77D, serialNumber=9409808C8A32C58494DAE574D05D6BB22272C35A Validity Not Before: Sep 8 16:02:48 2025 GMT Not After : Sep 15 16:02:48 2025 GMT Subject: CN=68befe28-87af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:12:7f:20:3f:68:36:c2:45:be:c0:10:18:56: 7b:37:ff:39:1f:ab:9a:4e:61:01:3a:40:e4:fd:b6: b8:77:e4:b4:0b:76:d9:d9:0b:80:1b:fb:21:e2:c0: 44:52:62:4c:5e:5a:b5:3e:f9:9f:cc:de:53:3e:03: db:36:35:65:7a:28:70:b7:78:1b:be:fb:5a:28:c7: 6f:c5:a2:75:6c:34:e4:e5:96:b9:69:bc:54:62:5b: 4f:27:64:ed:26:65:8f:5b:fe:6a:d8:c3:6a:a8:d8: d1:68:c5:56:74:a6:9d:0e:2e:c8:d0:b6:3e:c7:32: ee:91:c4:7c:9a:21:6b:e0:0c:4b:29:fe:76:a9:4a: 36:5b:9f:97:de:fd:96:70:9c:ab:de:11:6d:fc:2c: 82:8a:c3:a3:94:c0:97:12:43:52:81:95:b9:51:2a: bd:9f:d8:d4:cc:0f:79:60:2d:d3:6b:ff:38:fd:1b: 9e:04:d0:6f:8e:ae:59:65:54:c8:7c:db:c5:1f:a3: 32:5b:14:83:e3:85:4a:7f:b6:a9:32:c4:1f:7a:3a: dc:95:b9:60:c7:21:42:e5:68:11:f6:cc:e0:3d:31: 0e:3b:e7:d7:09:41:25:79:37:a2:87:c6:3a:bc:dc: 09:69:a8:a8:3e:ba:a9:66:25:e7:9a:fc:cc:c3:22: 07:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:54:8A:C9:DD:4D:B9:12:22:10:5C:DC:3B:0F:A3:E0:D8:99:3B:CE X509v3 Authority Key Identifier: keyid:94:09:80:8C:8A:32:C5:84:94:DA:E5:74:D0:5D:6B:B2:22:72:C3:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/lAmAjIoyxYSU2uV00F1rsiJyw1o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lAmAjIoyxYSU2uV00F1rsiJyw1o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/lAmAjIoyxYSU2uV00F1rsiJyw1o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:28:10:56:48:f7:fb:1e:ba:da:0d:93:83:84:e3:bc:52:54: 39:f3:73:db:b0:7d:7d:3b:68:a0:62:e6:72:26:4d:fd:04:6a: de:be:de:ee:d5:8a:2d:9d:f5:fb:9e:a9:5d:0e:ce:96:de:8e: f6:be:40:ab:e7:af:81:0e:1a:1c:54:74:5f:d7:e2:09:f0:dc: 18:d7:52:2e:73:f8:33:e0:36:70:d1:f3:5c:fb:ab:2c:96:f3: cd:ab:82:e6:5e:ac:64:79:96:7a:75:76:55:0f:72:16:44:da: 04:6f:8f:1f:ab:44:21:5f:09:5a:a3:02:94:c5:15:39:9a:05: 4b:dd:d5:e1:d1:43:b2:c4:c8:81:6d:35:07:58:9f:f5:bd:dd: 34:3e:b0:6a:0c:1c:e7:6a:68:e4:26:90:28:75:06:c7:ee:d6: 1b:8f:b4:52:d5:35:1b:18:4f:31:71:80:6b:30:a8:14:c6:2f: b7:b4:6d:c1:ed:6d:59:27:d2:ca:17:3f:b2:cc:3e:7c:78:67: 2c:be:c6:66:8a:a3:7f:c1:7c:60:0f:04:ec:40:1f:06:eb:01: 64:cf:11:d0:3c:76:a1:b9:c7:7d:e1:6c:0e:97:82:19:b8:f5: ab:d5:1d:13:30:76:30:aa:0a:38:b0:98:6a:62:76:79:59:8e: ae:90:4f:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHrYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM3N0QxMTAvBgNVBAUTKDk0MDk4MDhDOEEzMkM1ODQ5NERBRTU3NEQwNUQ2QkIy MjI3MkMzNUEwHhcNMjUwOTA4MTYwMjQ4WhcNMjUwOTE1MTYwMjQ4WjAYMRYwFAYD VQQDEw02OGJlZmUyOC04N2FmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtxJ/ID9oNsJFvsAQGFZ7N/85H6uaTmEBOkDk/ba4d+S0C3bZ2QuAG/sh4sBE UmJMXlq1PvmfzN5TPgPbNjVleihwt3gbvvtaKMdvxaJ1bDTk5Za5abxUYltPJ2Tt JmWPW/5q2MNqqNjRaMVWdKadDi7I0LY+xzLukcR8miFr4AxLKf52qUo2W5+X3v2W cJyr3hFt/CyCisOjlMCXEkNSgZW5USq9n9jUzA95YC3Ta/84/RueBNBvjq5ZZVTI fNvFH6MyWxSD44VKf7apMsQfejrclblgxyFC5WgR9szgPTEOO+fXCUEleTeih8Y6 vNwJaaioPrqpZiXnmvzMwyIHywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFJUisnd TbkSIhBc3DsPo+DYmTvOMB8GA1UdIwQYMBaAFJQJgIyKMsWElNrldNBda7IicsNa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Qzc3RC83RDRCRkUwNjc0 OTkxMUU2QjAyNTJCODRDNEY5QUUwMi9sQW1BaklveXhZU1UydVYwMEYxcnNpSnl3 MW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xBbUFqSW95eFlTVTJ1VjAwRjFyc2lKeXcxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 Qzc3RC83RDRCRkUwNjc0OTkxMUU2QjAyNTJCODRDNEY5QUUwMi9sQW1BaklveXhZ U1UydVYwMEYxcnNpSnl3MW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAKBBWSPf7HrraDZODhOO8UlQ583PbsH19O2igYuZyJk39BGrevt7u 1YotnfX7nqldDs6W3o72vkCr56+BDhocVHRf1+IJ8NwY11Iuc/gz4DZw0fNc+6ss lvPNq4LmXqxkeZZ6dXZVD3IWRNoEb48fq0QhXwlaowKUxRU5mgVL3dXh0UOyxMiB bTUHWJ/1vd00PrBqDBznamjkJpAodQbH7tYbj7RS1TUbGE8xcYBrMKgUxi+3tG3B 7W1ZJ9LKFz+yzD58eGcsvsZmiqN/wXxgDwTsQB8G6wFkzxHQPHahucd94WwOl4IZ uPWr1R0TMHYwqgo4sJhqYnZ5WY6ukE9R -----END CERTIFICATE-----Generated at Tue Sep 9 13:24:28 2025 by rpki-client