$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.mft File: ldQuwvRot-OPlYyPupMYARfcJuA.mft (raw, json) Hash identifier: z5oFZ/sxb8+D2QyKFcjlVrhkCmpoPUXhCxYUzAahmw8= Subject key identifier: FB:AC:23:C9:2B:81:C9:F4:72:F7:5F:EF:33:BB:A8:F1:97:56:F8:D6 Authority key identifier: 95:D4:2E:C2:F4:68:B7:E3:8F:95:8C:8F:BA:93:18:01:17:DC:26:E0 Certificate issuer: /CN=A91A7F6A/serialNumber=95D42EC2F468B7E38F958C8FBA93180117DC26E0 Certificate serial: 6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldQuwvRot-OPlYyPupMYARfcJuA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.mft Manifest number: 61 Signing time: Tue 09 Sep 2025 07:22:28 +0000 Manifest this update: Tue 09 Sep 2025 07:22:28 +0000 Manifest next update: Tue 16 Sep 2025 07:22:28 +0000 Files and hashes: 1: ldQuwvRot-OPlYyPupMYARfcJuA.crl (hash: c0P9hafQ8Wn4G+IAq+jmahzqPbeEiYj0JMXCQuO6zaI=) 2: 4210D4508CD711F0A2DFAA45C4F9AE02.roa (hash: 2JnfU/Mgp4zZ19X7p0k0eCs4HoUbNZM1uROYF0brrz8=) 3: B3849A9A359311F09B54926FC4F9AE02.roa (hash: Y+aC1xM6nmmoKwU/+TkwylgFTc7TBvkghCXTXAy84ng=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.crl rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldQuwvRot-OPlYyPupMYARfcJuA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 07:22:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 106 (0x6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7F6A, serialNumber=95D42EC2F468B7E38F958C8FBA93180117DC26E0 Validity Not Before: Sep 9 07:22:28 2025 GMT Not After : Sep 16 07:22:28 2025 GMT Subject: CN=68bfd5b4-77d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:8b:ba:f1:bc:e3:05:ac:a6:9d:d7:12:34:dc: f7:3e:ce:ff:ae:b5:75:13:a7:ff:b6:21:7a:ce:78: f5:a5:07:88:e4:f6:02:3d:31:86:da:86:bf:5c:be: 0b:76:51:35:d0:fb:b6:88:ea:6e:dc:4a:d4:b2:64: bd:b8:c3:51:67:0c:f1:1e:ca:58:d1:b9:fd:2a:eb: cf:7d:2d:c7:e9:6b:ab:3c:b5:40:f4:8b:25:34:93: b6:c1:59:92:b3:26:f2:d2:cf:04:71:2c:a0:1e:23: 2a:bb:a2:e5:95:0a:d8:19:ce:1d:6b:1c:80:b3:08: 82:da:e0:21:f3:85:85:65:92:a8:56:69:3b:be:a5: 17:89:0a:9f:c2:ce:18:80:ba:95:e0:09:68:4f:4e: 10:c0:7d:70:99:cb:34:20:06:16:72:7d:2a:31:f3: 82:f0:de:f8:ef:a9:fb:d5:65:c3:f4:ad:7a:b6:d9: a2:04:b4:4f:0b:9c:36:06:56:19:8c:9a:f0:c3:ad: e9:bd:96:e2:49:cf:06:63:dc:09:83:7b:b6:91:bc: 08:52:ed:99:9e:45:12:c9:67:96:bb:a4:b7:c6:dc: 65:21:d6:69:89:ee:60:15:62:da:af:89:cf:f4:c5: 6a:2c:08:0b:33:14:7b:66:86:a8:4f:1a:9e:ed:1f: 4a:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:AC:23:C9:2B:81:C9:F4:72:F7:5F:EF:33:BB:A8:F1:97:56:F8:D6 X509v3 Authority Key Identifier: keyid:95:D4:2E:C2:F4:68:B7:E3:8F:95:8C:8F:BA:93:18:01:17:DC:26:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldQuwvRot-OPlYyPupMYARfcJuA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:3b:2a:7a:d1:6c:e1:5d:a9:3c:fa:dd:d4:41:e1:03:12:ca: 2e:e9:a7:49:cc:84:00:b9:a0:f9:1b:d0:d1:0f:5e:90:27:67: 57:56:89:f1:f8:72:0a:a3:f7:ec:64:b8:de:54:0a:f3:5b:3c: 23:6d:a4:10:31:a1:d5:52:16:53:78:e0:f1:7a:6d:91:1f:1f: d9:ea:c1:00:2e:73:b8:98:41:8a:e3:93:13:b2:4a:5a:38:f7: e5:aa:3f:f6:ce:c0:46:50:9a:dc:87:22:2c:8a:79:05:25:21: 34:84:7d:e9:07:5b:f9:8b:70:67:6b:4b:ea:8e:14:43:df:bf: 5b:d8:87:1b:cd:d7:c2:2a:cd:26:62:1f:2b:c9:50:ca:c0:e1: 3a:54:73:4f:cc:45:27:61:b0:66:36:62:a8:fb:13:07:05:a5: 89:2b:b1:ac:f6:ac:d0:f8:a6:a5:0c:c5:73:5a:65:47:65:13: f8:0a:95:c6:62:54:9f:ee:61:45:56:35:85:80:94:ef:5c:7d: 3f:15:d3:91:85:8e:21:98:6d:26:06:3f:9a:fb:93:0f:ab:12: b7:61:5f:96:d3:18:d8:41:1b:f8:c7:27:cd:7f:3d:08:ed:64: 4b:bf:60:fe:63:dc:d5:0c:43:0d:6c:c0:2f:a9:2c:4a:6d:a5: 19:bd:2c:72 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBajANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB N0Y2QTExMC8GA1UEBRMoOTVENDJFQzJGNDY4QjdFMzhGOTU4QzhGQkE5MzE4MDEx N0RDMjZFMDAeFw0yNTA5MDkwNzIyMjhaFw0yNTA5MTYwNzIyMjhaMBgxFjAUBgNV BAMTDTY4YmZkNWI0LTc3ZDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKi7rxvOMFrKad1xI03Pc+zv+utXUTp/+2IXrOePWlB4jk9gI9MYbahr9cvgt2 UTXQ+7aI6m7cStSyZL24w1FnDPEeyljRuf0q6899Lcfpa6s8tUD0iyU0k7bBWZKz JvLSzwRxLKAeIyq7ouWVCtgZzh1rHICzCILa4CHzhYVlkqhWaTu+pReJCp/CzhiA upXgCWhPThDAfXCZyzQgBhZyfSox84Lw3vjvqfvVZcP0rXq22aIEtE8LnDYGVhmM mvDDrem9luJJzwZj3AmDe7aRvAhS7ZmeRRLJZ5a7pLfG3GUh1mmJ7mAVYtqvic/0 xWosCAszFHtmhqhPGp7tH0oVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU+6wjySuB yfRy91/vM7uo8ZdW+NYwHwYDVR0jBBgwFoAUldQuwvRot+OPlYyPupMYARfcJuAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE3RjZBLzdBNTI5ODc2MEFG MDExRjA4NTMxRDQzQ0M0RjlBRTAyL2xkUXV3dlJvdC1PUGxZeVB1cE1ZQVJmY0p1 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbGRRdXd2Um90LU9QbFl5UHVwTVlBUmZjSnVBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE3 RjZBLzdBNTI5ODc2MEFGMDExRjA4NTMxRDQzQ0M0RjlBRTAyL2xkUXV3dlJvdC1P UGxZeVB1cE1ZQVJmY0p1QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADA7KnrRbOFdqTz63dRB4QMSyi7pp0nMhAC5oPkb0NEPXpAnZ1dWifH4 cgqj9+xkuN5UCvNbPCNtpBAxodVSFlN44PF6bZEfH9nqwQAuc7iYQYrjkxOySlo4 9+WqP/bOwEZQmtyHIiyKeQUlITSEfekHW/mLcGdrS+qOFEPfv1vYhxvN18IqzSZi HyvJUMrA4TpUc0/MRSdhsGY2Yqj7EwcFpYkrsaz2rND4pqUMxXNaZUdlE/gKlcZi VJ/uYUVWNYWAlO9cfT8V05GFjiGYbSYGP5r7kw+rErdhX5bTGNhBG/jHJ81/PQjt ZEu/YP5j3NUMQw1swC+pLEptpRm9LHI= -----END CERTIFICATE-----Generated at Tue Sep 9 17:33:56 2025 by rpki-client