$ rpki-client -vvf rpki.apnic.net/member_repository/A91B075B/44A13B4E4C1011ECA5D2A94FC4F9AE02/lT7Cob5wJZ5qL9nOjUg72b0a4z8.mft File: lT7Cob5wJZ5qL9nOjUg72b0a4z8.mft (raw, json) Hash identifier: nLsBVWTonUmDOrDMpYLmYfSE/p3bFQ/xNTyK4DDoMgg= Subject key identifier: CB:CE:DD:72:F2:30:E8:DB:32:3A:8C:F9:A8:9F:C2:7E:E9:50:EE:4D Authority key identifier: 95:3E:C2:A1:BE:70:25:9E:6A:2F:D9:CE:8D:48:3B:D9:BD:1A:E3:3F Certificate issuer: /CN=A91B075B/serialNumber=953EC2A1BE70259E6A2FD9CE8D483BD9BD1AE33F Certificate serial: 0494 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lT7Cob5wJZ5qL9nOjUg72b0a4z8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B075B/44A13B4E4C1011ECA5D2A94FC4F9AE02/lT7Cob5wJZ5qL9nOjUg72b0a4z8.mft Manifest number: 0490 Signing time: Thu 21 Aug 2025 00:07:42 +0000 Manifest this update: Thu 21 Aug 2025 00:07:41 +0000 Manifest next update: Thu 28 Aug 2025 00:07:41 +0000 Files and hashes: 1: lT7Cob5wJZ5qL9nOjUg72b0a4z8.crl (hash: xsnIk2LhxBCaRfWuTG0/Kg56ulaBpkcgtWizuCvPvXU=) 2: 85A82A144C1311ECB5708257C4F9AE02.roa (hash: dphkC3ssGJ+iIglODQswGH04mVygF6iWdjby9ZvopB8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B075B/44A13B4E4C1011ECA5D2A94FC4F9AE02/lT7Cob5wJZ5qL9nOjUg72b0a4z8.crl rsync://rpki.apnic.net/member_repository/A91B075B/44A13B4E4C1011ECA5D2A94FC4F9AE02/lT7Cob5wJZ5qL9nOjUg72b0a4z8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lT7Cob5wJZ5qL9nOjUg72b0a4z8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 00:07:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1172 (0x494) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B075B, serialNumber=953EC2A1BE70259E6A2FD9CE8D483BD9BD1AE33F Validity Not Before: Aug 21 00:07:41 2025 GMT Not After : Aug 28 00:07:41 2025 GMT Subject: CN=68a6634e-549c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:d1:00:cb:38:e5:ba:8f:85:8e:a4:98:3b:08: 68:34:a0:92:ab:24:87:d4:4b:47:76:5b:e2:d2:27: de:96:bf:d3:fd:57:0b:62:fd:1d:5c:d4:56:2a:77: 37:1d:9e:d4:4f:f8:74:37:93:19:9a:ef:32:66:f7: af:b3:31:fe:31:f0:39:64:d1:58:a3:65:ad:7c:d0: 0e:0a:09:80:b9:3a:ff:98:90:d5:46:4f:91:03:ec: f3:99:76:69:50:78:21:51:9d:b1:50:a8:07:e0:ca: 71:3e:c3:b1:d5:8e:82:c4:a1:a2:e5:84:06:7a:e4: ab:be:91:34:cc:7f:6d:46:fd:ae:fe:61:7f:33:8f: 23:34:c7:05:3c:52:69:d3:a3:7d:73:39:ee:a0:ae: 6c:9a:1d:02:4f:79:40:e6:af:88:f1:4e:91:b9:ce: 37:53:64:07:9b:df:e9:06:69:19:86:3e:1b:84:24: 80:b3:3b:0b:7e:ab:bb:78:fe:41:4d:a0:a0:34:3a: 9f:b0:65:84:6e:c5:f4:be:ef:49:e8:a0:bb:0e:a9: 1f:e2:1e:e4:11:8a:b9:f6:36:3c:e6:ab:15:53:29: ad:65:89:9f:79:dd:0b:b6:0f:e2:7c:7b:31:83:fb: 99:01:01:9b:5b:5d:a3:23:57:bf:94:6a:65:69:b5: 2f:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:CE:DD:72:F2:30:E8:DB:32:3A:8C:F9:A8:9F:C2:7E:E9:50:EE:4D X509v3 Authority Key Identifier: keyid:95:3E:C2:A1:BE:70:25:9E:6A:2F:D9:CE:8D:48:3B:D9:BD:1A:E3:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B075B/44A13B4E4C1011ECA5D2A94FC4F9AE02/lT7Cob5wJZ5qL9nOjUg72b0a4z8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lT7Cob5wJZ5qL9nOjUg72b0a4z8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B075B/44A13B4E4C1011ECA5D2A94FC4F9AE02/lT7Cob5wJZ5qL9nOjUg72b0a4z8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:aa:89:96:18:cf:f4:0a:46:bc:32:a7:41:ee:a5:f2:e3:1c: 17:c3:09:5d:db:1f:61:db:99:60:cb:70:57:74:f2:16:b2:a2: 8e:41:46:71:a8:b5:2d:b6:32:0d:8c:53:64:b8:7f:cd:7d:0e: b9:14:ca:5f:3f:b5:d3:da:4b:e4:9d:f6:6e:a9:7f:f9:f4:db: 33:57:ba:e9:31:c2:84:56:bb:58:78:0e:69:51:09:f3:5a:0f: 74:67:5d:4d:51:4d:17:24:8a:f7:8f:b7:39:f0:e8:f3:69:95: 9e:c6:3a:b1:73:ca:a1:71:55:14:5f:c7:e3:ef:5a:e1:c7:0a: 8c:02:da:9d:45:ef:fe:3f:f3:52:ee:39:df:5e:48:96:3f:23: 0e:09:6a:c3:74:b7:38:00:0e:2a:da:0b:a3:cb:09:fe:f3:78: 5e:ab:7f:19:b5:79:f1:a5:bc:62:3e:62:64:db:b6:ac:7d:d6: 18:09:61:93:d9:bd:e1:cc:89:88:3e:e1:d6:46:9d:72:d4:b2: 84:09:c0:e7:8a:4f:1d:35:45:98:e5:fe:56:de:f6:4d:ba:88: ba:3c:01:00:8c:bd:c4:40:40:e8:cd:84:a3:7d:cb:e4:1e:d2: 31:ca:4d:a2:a3:ca:e0:05:01:f4:ec:7e:d3:8b:6e:07:4d:f7: 6b:10:ae:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjA3NUIxMTAvBgNVBAUTKDk1M0VDMkExQkU3MDI1OUU2QTJGRDlDRThENDgzQkQ5 QkQxQUUzM0YwHhcNMjUwODIxMDAwNzQxWhcNMjUwODI4MDAwNzQxWjAYMRYwFAYD VQQDEw02OGE2NjM0ZS01NDljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArdEAyzjluo+FjqSYOwhoNKCSqySH1EtHdlvi0ifelr/T/VcLYv0dXNRWKnc3 HZ7UT/h0N5MZmu8yZvevszH+MfA5ZNFYo2WtfNAOCgmAuTr/mJDVRk+RA+zzmXZp UHghUZ2xUKgH4MpxPsOx1Y6CxKGi5YQGeuSrvpE0zH9tRv2u/mF/M48jNMcFPFJp 06N9cznuoK5smh0CT3lA5q+I8U6Ruc43U2QHm9/pBmkZhj4bhCSAszsLfqu7eP5B TaCgNDqfsGWEbsX0vu9J6KC7Dqkf4h7kEYq59jY85qsVUymtZYmfed0Ltg/ifHsx g/uZAQGbW12jI1e/lGplabUvfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMvO3XLy MOjbMjqM+aifwn7pUO5NMB8GA1UdIwQYMBaAFJU+wqG+cCWeai/Zzo1IO9m9GuM/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDc1Qi80NEExM0I0RTRD MTAxMUVDQTVEMkE5NEZDNEY5QUUwMi9sVDdDb2I1d0paNXFMOW5PalVnNzJiMGE0 ejguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xUN0NvYjV3Slo1cUw5bk9qVWc3MmIwYTR6OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDc1Qi80NEExM0I0RTRDMTAxMUVDQTVEMkE5NEZDNEY5QUUwMi9sVDdDb2I1d0pa NXFMOW5PalVnNzJiMGE0ejgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxqomWGM/0Cka8MqdB7qXy4xwXwwld2x9h25lgy3BXdPIWsqKOQUZx qLUttjINjFNkuH/NfQ65FMpfP7XT2kvknfZuqX/59NszV7rpMcKEVrtYeA5pUQnz Wg90Z11NUU0XJIr3j7c58OjzaZWexjqxc8qhcVUUX8fj71rhxwqMAtqdRe/+P/NS 7jnfXkiWPyMOCWrDdLc4AA4q2gujywn+83heq38ZtXnxpbxiPmJk27asfdYYCWGT 2b3hzImIPuHWRp1y1LKECcDnik8dNUWY5f5W3vZNuoi6PAEAjL3EQEDozYSjfcvk HtIxyk2io8rgBQH07H7Ti24HTfdrEK5K -----END CERTIFICATE-----Generated at Thu Aug 21 17:01:53 2025 by rpki-client