$ rpki-client -vvf rpki.apnic.net/member_repository/A91B334D/27E861D885F711EB92081711C4F9AE02/lRaRgJV2AETnT6qlSX0GcwraXzI.mft File: lRaRgJV2AETnT6qlSX0GcwraXzI.mft (raw, json) Hash identifier: iWS/nzEFkoM2pmfcfsDs42FmaiZEuwZJVuinDUIg9QU= Subject key identifier: 27:55:BB:B4:3A:DA:9B:6E:88:F8:B3:C1:DC:D3:D6:B4:E0:F1:30:51 Authority key identifier: 95:16:91:80:95:76:00:44:E7:4F:AA:A5:49:7D:06:73:0A:DA:5F:32 Certificate issuer: /CN=A91B334D/serialNumber=9516918095760044E74FAAA5497D06730ADA5F32 Certificate serial: 0698 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRaRgJV2AETnT6qlSX0GcwraXzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B334D/27E861D885F711EB92081711C4F9AE02/lRaRgJV2AETnT6qlSX0GcwraXzI.mft Manifest number: 0691 Signing time: Thu 18 Sep 2025 22:36:58 +0000 Manifest this update: Thu 18 Sep 2025 22:36:58 +0000 Manifest next update: Thu 25 Sep 2025 22:36:58 +0000 Files and hashes: 1: lRaRgJV2AETnT6qlSX0GcwraXzI.crl (hash: KnWDsG5dwimgPvDJS1ak85qXFYZSRnhAtnRFo5tp8pU=) 2: 589FBEDC860311EBAFE18309C4F9AE02.roa (hash: QPlmMaSOgFDznMyc1xMqSWCG5G0RLk70r7GmVWThnas=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B334D/27E861D885F711EB92081711C4F9AE02/lRaRgJV2AETnT6qlSX0GcwraXzI.crl rsync://rpki.apnic.net/member_repository/A91B334D/27E861D885F711EB92081711C4F9AE02/lRaRgJV2AETnT6qlSX0GcwraXzI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRaRgJV2AETnT6qlSX0GcwraXzI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 22:36:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1688 (0x698) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B334D, serialNumber=9516918095760044E74FAAA5497D06730ADA5F32 Validity Not Before: Sep 18 22:36:58 2025 GMT Not After : Sep 25 22:36:58 2025 GMT Subject: CN=68cc898a-4ae2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:49:a5:1d:3a:f7:c9:fe:23:19:91:9e:77:f5: 58:3c:f6:8c:94:28:62:7f:ac:80:d7:49:c8:dd:db: 03:df:15:a7:85:93:3c:68:78:6f:bc:f8:01:e5:fc: 12:00:2d:b0:5b:26:47:64:ba:06:f9:6b:80:26:f0: da:9a:81:d8:d9:0e:b3:c9:79:cf:b3:a3:93:91:ec: f2:1f:3c:59:eb:4d:74:ad:25:b8:6f:d1:6f:ff:92: 2f:02:46:ed:61:c1:c0:f2:1f:5f:5a:f6:92:6c:aa: cb:e0:70:ac:8a:15:b4:77:eb:13:a4:84:cb:8c:19: 75:eb:48:41:f9:d2:d5:30:9a:f4:fe:03:45:ec:42: e8:f1:c7:99:4f:06:5a:46:3d:74:74:ff:7e:35:c7: 14:9d:57:53:9b:28:4e:5b:70:a9:81:c6:53:75:58: 9b:5c:af:e9:26:30:01:2c:5b:61:62:59:23:46:6c: 84:e9:7f:09:9e:b9:61:61:53:0a:bb:1d:8c:72:49: b4:b6:2b:d5:bb:3c:65:5c:f8:01:6f:b6:77:f0:5e: af:84:ce:7b:06:2a:dc:54:32:f1:b5:84:c6:af:41: c7:1a:80:51:9e:aa:42:96:52:2d:de:75:de:5c:2a: 99:28:91:ab:76:76:7e:37:54:50:5f:8b:ee:78:a4: c3:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:55:BB:B4:3A:DA:9B:6E:88:F8:B3:C1:DC:D3:D6:B4:E0:F1:30:51 X509v3 Authority Key Identifier: keyid:95:16:91:80:95:76:00:44:E7:4F:AA:A5:49:7D:06:73:0A:DA:5F:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B334D/27E861D885F711EB92081711C4F9AE02/lRaRgJV2AETnT6qlSX0GcwraXzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRaRgJV2AETnT6qlSX0GcwraXzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B334D/27E861D885F711EB92081711C4F9AE02/lRaRgJV2AETnT6qlSX0GcwraXzI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:9a:ce:1a:63:3d:51:eb:be:07:9b:e5:1f:45:dc:89:71:98: e9:e1:65:ca:b6:53:4f:92:e8:01:52:f9:a8:fb:66:11:2a:d6: e3:19:c2:ab:0c:7b:8a:f7:70:ab:8d:16:2f:cb:d4:e8:8a:a2: c2:69:d4:5d:76:15:61:e0:5d:0b:8e:ff:9e:3c:53:03:af:72: ea:08:51:95:83:e8:db:25:df:c8:5a:be:57:33:af:27:b6:cd: 95:15:ee:f8:ff:1c:7c:8d:32:d3:48:df:65:db:7f:68:c1:10: db:5d:88:fa:e7:af:e6:4a:83:96:b0:e1:f9:d0:76:42:d8:e8: 66:3a:e6:51:1b:72:6a:69:d1:d2:33:e4:4c:eb:9f:25:03:12: f8:38:89:da:b3:d1:38:ad:a5:dd:47:27:26:39:7d:98:63:7e: 9e:16:b5:f9:8a:d2:f5:c7:4d:63:0c:6e:09:5b:d7:ec:08:20: a3:39:71:ab:43:94:99:2e:91:be:ad:32:1e:52:79:20:d8:b6: 35:82:3e:25:b8:94:69:d4:60:45:23:92:14:12:fd:72:54:d0: 39:74:91:8a:96:56:c7:68:b3:bd:83:79:3e:77:cc:d0:17:e2: ff:97:9e:3a:a0:35:a2:7b:b5:81:7e:2d:16:94:52:56:ff:01: fe:c1:8b:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjMzNEQxMTAvBgNVBAUTKDk1MTY5MTgwOTU3NjAwNDRFNzRGQUFBNTQ5N0QwNjcz MEFEQTVGMzIwHhcNMjUwOTE4MjIzNjU4WhcNMjUwOTI1MjIzNjU4WjAYMRYwFAYD VQQDEw02OGNjODk4YS00YWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0EmlHTr3yf4jGZGed/VYPPaMlChif6yA10nI3dsD3xWnhZM8aHhvvPgB5fwS AC2wWyZHZLoG+WuAJvDamoHY2Q6zyXnPs6OTkezyHzxZ6010rSW4b9Fv/5IvAkbt YcHA8h9fWvaSbKrL4HCsihW0d+sTpITLjBl160hB+dLVMJr0/gNF7ELo8ceZTwZa Rj10dP9+NccUnVdTmyhOW3CpgcZTdVibXK/pJjABLFthYlkjRmyE6X8JnrlhYVMK ux2Mckm0tivVuzxlXPgBb7Z38F6vhM57BircVDLxtYTGr0HHGoBRnqpCllIt3nXe XCqZKJGrdnZ+N1RQX4vueKTDVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCdVu7Q6 2ptuiPizwdzT1rTg8TBRMB8GA1UdIwQYMBaAFJUWkYCVdgBE50+qpUl9BnMK2l8y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzM0RC8yN0U4NjFEODg1 RjcxMUVCOTIwODE3MTFDNEY5QUUwMi9sUmFSZ0pWMkFFVG5UNnFsU1gwR2N3cmFY ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xSYVJnSlYyQUVUblQ2cWxTWDBHY3dyYVh6SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzM0RC8yN0U4NjFEODg1RjcxMUVCOTIwODE3MTFDNEY5QUUwMi9sUmFSZ0pWMkFF VG5UNnFsU1gwR2N3cmFYekkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwms4aYz1R674Hm+UfRdyJcZjp4WXKtlNPkugBUvmo+2YRKtbjGcKr DHuK93CrjRYvy9ToiqLCadRddhVh4F0Ljv+ePFMDr3LqCFGVg+jbJd/IWr5XM68n ts2VFe74/xx8jTLTSN9l239owRDbXYj656/mSoOWsOH50HZC2OhmOuZRG3JqadHS M+RM658lAxL4OInas9E4raXdRycmOX2YY36eFrX5itL1x01jDG4JW9fsCCCjOXGr Q5SZLpG+rTIeUnkg2LY1gj4luJRp1GBFI5IUEv1yVNA5dJGKllbHaLO9g3k+d8zQ F+L/l546oDWie7WBfi0WlFJW/wH+wYuV -----END CERTIFICATE-----Generated at Fri Sep 19 04:04:26 2025 by rpki-client