$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/lD0-ELi74Ti0dzRVS2kFMRDUW-M.mft File: lD0-ELi74Ti0dzRVS2kFMRDUW-M.mft (raw, json) Hash identifier: JKMq9vnxltOHVA/0z3iIYh83nzZ0CZSmI962cL6Wblg= Subject key identifier: 17:12:48:16:9A:E3:31:1A:1D:25:71:00:4C:EA:CA:2D:2E:8E:BB:A5 Authority key identifier: 94:3D:3E:10:B8:BB:E1:38:B4:77:34:55:4B:69:05:31:10:D4:5B:E3 Certificate issuer: /CN=A91A3E3F/serialNumber=943D3E10B8BBE138B47734554B69053110D45BE3 Certificate serial: 0217 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lD0-ELi74Ti0dzRVS2kFMRDUW-M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/lD0-ELi74Ti0dzRVS2kFMRDUW-M.mft Manifest number: 0209 Signing time: Fri 05 Sep 2025 02:39:05 +0000 Manifest this update: Fri 05 Sep 2025 02:39:04 +0000 Manifest next update: Fri 12 Sep 2025 02:39:04 +0000 Files and hashes: 1: lD0-ELi74Ti0dzRVS2kFMRDUW-M.crl (hash: 63Zdqy7e1H4D0ePmgTOpPj8p+SDQ8C9Ll1/RfF5KvoY=) 2: 0DCBAC3863C111EE9A8AA77AC4F9AE02.roa (hash: inCWlFg4eyi3SZb4mhg7QgWhnaX3zI3I9iGqmhoauLc=) 3: 9ADB02A27F4E11EDB22F3582C4F9AE02.roa (hash: 9Oyy54xhiWuTllhGlORwlpgALp6JCiYOJTYLu9JoBj0=) 4: 5420A28C7F5211ED8A16EF81C4F9AE02.roa (hash: 5EKiWHDPeMiKNhe7uJ6GnZoz2bb2Ob3eC5qrY4BOvLk=) 5: 912586FA7F4F11ED96FDE369C4F9AE02.roa (hash: vg/uug9ogWENghuoz8JvK8TWhFT7WTN1jNAJcLX1AUM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/lD0-ELi74Ti0dzRVS2kFMRDUW-M.crl rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/lD0-ELi74Ti0dzRVS2kFMRDUW-M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lD0-ELi74Ti0dzRVS2kFMRDUW-M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 02:39:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 535 (0x217) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3E3F, serialNumber=943D3E10B8BBE138B47734554B69053110D45BE3 Validity Not Before: Sep 5 02:39:04 2025 GMT Not After : Sep 12 02:39:04 2025 GMT Subject: CN=68ba4d49-2dc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:fe:83:4f:ff:ad:a0:77:85:95:c7:06:92:fc: 10:43:38:f7:e3:82:61:d3:16:38:32:cf:07:5d:3e: 61:34:43:ca:e7:bc:65:cf:7d:e2:69:a8:64:50:53: 04:02:66:35:12:92:37:9d:62:f1:85:0d:7a:94:0c: a2:e5:57:76:c4:5a:d0:8b:e0:bd:0f:57:3f:3c:c6: 9d:a8:50:aa:0a:b4:65:de:9f:d6:f4:f7:42:f1:5d: 1b:25:c2:8a:0a:b8:13:a1:5e:f5:3d:6d:23:a7:01: 87:00:f6:a0:f9:1a:6f:9e:19:49:5e:56:dc:ec:5e: 05:84:78:4f:9b:04:b8:0c:43:73:4b:45:0b:3b:8f: 90:35:39:60:dd:58:b3:ac:4a:e6:87:02:79:d8:e4: 1b:f9:08:2a:45:2f:63:f0:52:a6:a5:a8:a5:5f:0e: 61:e0:17:93:cb:ea:0b:c1:ff:ad:3a:e2:34:3a:2e: 9b:89:af:c4:b6:70:ae:6b:21:05:74:b0:8f:28:5b: 17:c7:11:8f:8b:aa:c7:00:1e:c0:5b:7c:2d:b8:4e: 98:d4:0b:3f:7d:fe:54:6e:5e:e4:25:ff:11:2d:27: 75:23:30:c6:0a:ac:a2:30:71:b2:aa:c0:67:7c:0c: d3:91:3d:4f:77:3c:72:c8:b8:28:6f:4d:78:65:c8: 4d:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:12:48:16:9A:E3:31:1A:1D:25:71:00:4C:EA:CA:2D:2E:8E:BB:A5 X509v3 Authority Key Identifier: keyid:94:3D:3E:10:B8:BB:E1:38:B4:77:34:55:4B:69:05:31:10:D4:5B:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/lD0-ELi74Ti0dzRVS2kFMRDUW-M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lD0-ELi74Ti0dzRVS2kFMRDUW-M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/lD0-ELi74Ti0dzRVS2kFMRDUW-M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:3e:21:a0:80:2f:53:eb:6a:dc:68:98:b3:ea:9e:d9:30:20: 08:ba:28:7e:a1:55:93:ee:2e:27:ab:15:46:62:7f:5e:bf:f7: 10:58:da:c9:83:3e:81:21:c8:e4:81:c6:eb:64:79:ce:51:29: 57:9f:45:18:18:18:c2:b4:5d:1a:b9:34:ac:ca:2b:ce:f8:7d: 88:6e:cf:2c:b4:e8:21:be:07:df:a1:c3:68:1e:68:ff:f2:01: 23:31:87:d0:6d:f0:ec:3c:01:84:e0:d5:ba:de:13:3a:d9:76: 3e:da:a4:3e:af:f2:dc:37:77:99:62:08:69:f3:19:50:22:c2: 6b:0d:b7:f4:34:e6:54:f2:e7:7e:54:8e:2a:5a:da:32:70:6b: b2:2a:7b:a7:93:f1:e7:99:96:67:e4:db:f7:52:39:7b:9d:a0: 32:03:e3:6f:4e:6d:cd:ba:42:69:f8:3b:19:b9:5f:e0:22:ad: 9b:63:b1:b4:b1:e6:cc:b9:f6:53:23:ae:c4:33:3c:4c:e0:65: b0:4c:2b:db:6f:1a:f9:43:57:d3:fb:c7:04:c9:ab:be:77:7e: 51:dd:34:e9:14:1d:c6:dd:03:af:12:07:66:69:e0:eb:23:1d: 29:cc:c6:1b:af:96:64:25:ec:25:24:d7:0a:b6:5f:a8:87:5c: ba:25:66:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNFM0YxMTAvBgNVBAUTKDk0M0QzRTEwQjhCQkUxMzhCNDc3MzQ1NTRCNjkwNTMx MTBENDVCRTMwHhcNMjUwOTA1MDIzOTA0WhcNMjUwOTEyMDIzOTA0WjAYMRYwFAYD VQQDEw02OGJhNGQ0OS0yZGMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArP6DT/+toHeFlccGkvwQQzj344Jh0xY4Ms8HXT5hNEPK57xlz33iaahkUFME AmY1EpI3nWLxhQ16lAyi5Vd2xFrQi+C9D1c/PMadqFCqCrRl3p/W9PdC8V0bJcKK CrgToV71PW0jpwGHAPag+RpvnhlJXlbc7F4FhHhPmwS4DENzS0ULO4+QNTlg3Viz rErmhwJ52OQb+QgqRS9j8FKmpailXw5h4BeTy+oLwf+tOuI0Oi6bia/EtnCuayEF dLCPKFsXxxGPi6rHAB7AW3wtuE6Y1As/ff5Ubl7kJf8RLSd1IzDGCqyiMHGyqsBn fAzTkT1PdzxyyLgob014ZchNaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBcSSBaa 4zEaHSVxAEzqyi0ujrulMB8GA1UdIwQYMBaAFJQ9PhC4u+E4tHc0VUtpBTEQ1Fvj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0UzRi8zMDVFQjg3NjdD REIxMUVEQUI4NDRDMTlDNEY5QUUwMi9sRDAtRUxpNzRUaTBkelJWUzJrRk1SRFVX LU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xEMC1FTGk3NFRpMGR6UlZTMmtGTVJEVVctTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB M0UzRi8zMDVFQjg3NjdDREIxMUVEQUI4NDRDMTlDNEY5QUUwMi9sRDAtRUxpNzRU aTBkelJWUzJrRk1SRFVXLU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBPiGggC9T62rcaJiz6p7ZMCAIuih+oVWT7i4nqxVGYn9ev/cQWNrJ gz6BIcjkgcbrZHnOUSlXn0UYGBjCtF0auTSsyivO+H2Ibs8stOghvgffocNoHmj/ 8gEjMYfQbfDsPAGE4NW63hM62XY+2qQ+r/LcN3eZYghp8xlQIsJrDbf0NOZU8ud+ VI4qWtoycGuyKnunk/HnmZZn5Nv3Ujl7naAyA+NvTm3NukJp+DsZuV/gIq2bY7G0 sebMufZTI67EMzxM4GWwTCvbbxr5Q1fT+8cEyau+d35R3TTpFB3G3QOvEgdmaeDr Ix0pzMYbr5ZkJewlJNcKtl+oh1y6JWbA -----END CERTIFICATE-----Generated at Fri Sep 5 11:29:33 2025 by rpki-client