$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft File: LWNAd8yEe1nUBI1D4EszCWmP5jg.mft (raw, json) Hash identifier: D5sl/3A1jTBAJ6xpJ8KQZG/3rAetVoUuAjp83jGPKss= Subject key identifier: 74:91:F6:BC:81:DF:84:5B:5B:51:73:15:A0:D1:4A:03:DB:C1:E7:51 Authority key identifier: 2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 Certificate issuer: /CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Certificate serial: 0366 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft Manifest number: 02DD Signing time: Tue 09 Sep 2025 02:33:52 +0000 Manifest this update: Tue 09 Sep 2025 02:33:51 +0000 Manifest next update: Tue 16 Sep 2025 02:33:51 +0000 Files and hashes: 1: LWNAd8yEe1nUBI1D4EszCWmP5jg.crl (hash: pieFtN9j2wgYP5rDdyoNr5TcIDbXyDPT9M2ZMLJChK4=) 2: CA1A46101A5B11EE89B07267C4F9AE02.roa (hash: AmuwqsBSe7hIWLuijSaz8cznV1ExxkSwedidAfhqBys=) 3: 94C13908C4AF11EDBCC55111C4F9AE02.roa (hash: rRStCv6LwOYU9m23O/Ra+02r0H7+4ZuKu4MCypTDG7U=) 4: FDC6A888AEB111EE9A78E132C4F9AE02.roa (hash: pHPkNw6sk+jwMGQiwSPICHgSAbGU9rT4WcKSGwmaJf8=) 5: 430E4E387CC311F0A55B2081C4F9AE02.roa (hash: gDHotda1hxuaNQN7h9M6AxxJGfzXAR/0C3RpbJSgmtE=) 6: 0B7CEEB07CC911F08411627BC4F9AE02.roa (hash: dnj6MgMu2bT8eksz/sRKoRkxxyYLeHmRQBIr9G3sHfI=) 7: FECE3C3C855711EF8E79C52BC4F9AE02.roa (hash: LLSWtZdvzPT4rXQVRRto3DLsyoR671syCJPRSB+ppjE=) 8: 755E6B82D21C11EEA166891AC4F9AE02.roa (hash: eOBcL+ti86qxxG4GZER5GjPBmSZhgS6o++eTvbnH834=) 9: E879EE7C144111EFB247B936C4F9AE02.roa (hash: kWS/r/1uvE2uh33BQhnK7TE/fxU21h0Qyka9IpjmAOo=) 10: 90647F2EA14A11ED8FFBA684C4F9AE02.roa (hash: 2BRZTVSl8BpcjXe5d2W/ue5qmKPhQHNXNMprHWOL7Cw=) 11: F9A864386AAB11EF8FEBE576C4F9AE02.roa (hash: VtJthTtz/+ABAcSwhrIYrg5dkmdk8ZYvZhD7Gwr5Rag=) 12: FD124A14CC5811EDBE5D203FC4F9AE02.roa (hash: l/w2LsKQqDZ2CCn5jWgOIAF0bJGTxkpNnwUlAl6Xl+Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 02:33:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 870 (0x366) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6587, serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Validity Not Before: Sep 9 02:33:51 2025 GMT Not After : Sep 16 02:33:51 2025 GMT Subject: CN=68bf9210-ffb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:40:0f:38:a7:5e:7e:72:45:22:dc:03:f8:41: a0:ba:df:f6:cc:5f:be:b1:35:46:d4:47:6e:2f:46: 60:4a:ed:e1:b5:e9:54:60:50:1a:6e:9f:44:0b:78: 42:3b:64:33:cf:ae:14:d2:bb:74:d9:60:39:dd:50: e5:58:22:2b:05:5b:ee:4c:65:08:6c:97:0c:f8:a8: 9e:65:e4:66:06:f1:35:9f:f0:06:ae:76:40:4e:9a: 20:12:b2:51:bb:b9:31:52:06:5a:79:a3:7a:ac:8e: 98:45:af:1c:a8:6f:65:f9:60:45:26:14:b6:a9:8d: b1:52:66:4d:72:57:1c:82:49:ce:a1:6e:ff:c9:16: 73:17:b7:fd:bf:37:a2:18:f6:67:d4:b1:3c:90:ed: 0f:fd:5d:ce:ce:3d:6e:0c:5d:e8:3d:39:59:45:a9: 2d:5b:a3:56:a1:98:ea:ad:94:c6:c1:ca:4f:f5:2f: 13:32:3e:e4:49:8d:b2:7c:39:65:2e:82:4e:a6:f7: 77:56:91:28:37:30:af:0c:69:37:b4:fb:3e:47:d4: 65:1e:5a:6c:81:37:72:04:12:15:dc:ae:1f:07:50: 74:4c:bd:72:78:48:54:ff:79:57:64:fe:27:ea:fd: 86:0d:70:d5:40:6f:d0:4c:4f:0f:00:7a:f2:e1:1a: 96:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:91:F6:BC:81:DF:84:5B:5B:51:73:15:A0:D1:4A:03:DB:C1:E7:51 X509v3 Authority Key Identifier: keyid:2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:c4:45:04:a7:cc:63:ad:0c:48:f3:df:2f:79:25:ca:d5:f3: dd:6c:5e:1f:49:45:ff:af:cd:6f:0b:5a:f3:ba:a2:5b:c5:a4: f7:bd:ce:38:eb:b1:63:00:28:ff:f8:d0:35:cd:1f:4c:d6:3f: 2b:2c:1d:fb:7f:db:e3:ba:c4:47:f2:98:ca:7b:22:dc:ef:ea: 87:96:42:02:3a:11:fd:2c:fa:a9:94:7e:b8:c7:f0:56:da:46: 6d:5c:cf:c4:75:93:83:2c:73:9e:59:c0:e3:6e:b0:e3:c5:16: b6:1a:5e:31:d0:30:70:a2:fd:83:5a:ff:0a:ec:18:9f:40:db: 6d:ff:30:fd:67:78:1e:a8:35:dc:18:c7:43:33:0f:6f:79:62: d0:ad:16:fa:32:ed:0f:c7:01:26:cb:ae:44:c7:43:e3:fe:3f: 8e:9a:c0:bf:be:cf:7f:4e:b5:ec:93:be:fc:b9:a9:6b:2a:47: 84:6f:de:18:a0:6e:96:29:6d:48:88:b3:96:41:32:90:47:1a: 3f:3a:54:1b:af:a4:39:80:90:5f:22:ab:43:9a:70:ff:92:0b: 2b:c2:7b:5d:4f:ba:51:ec:27:4e:fa:4d:a3:ef:4b:17:95:8c: ab:7b:bc:1c:39:64:35:54:cb:2e:6a:5f:f8:f0:c4:44:60:a7: c0:72:5b:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1ODcxMTAvBgNVBAUTKDJENjM0MDc3Q0M4NDdCNTlENDA0OEQ0M0UwNEIzMzA5 Njk4RkU2MzgwHhcNMjUwOTA5MDIzMzUxWhcNMjUwOTE2MDIzMzUxWjAYMRYwFAYD VQQDEw02OGJmOTIxMC1mZmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm0APOKdefnJFItwD+EGgut/2zF++sTVG1EduL0ZgSu3htelUYFAabp9EC3hC O2Qzz64U0rt02WA53VDlWCIrBVvuTGUIbJcM+KieZeRmBvE1n/AGrnZATpogErJR u7kxUgZaeaN6rI6YRa8cqG9l+WBFJhS2qY2xUmZNclccgknOoW7/yRZzF7f9vzei GPZn1LE8kO0P/V3Ozj1uDF3oPTlZRaktW6NWoZjqrZTGwcpP9S8TMj7kSY2yfDll LoJOpvd3VpEoNzCvDGk3tPs+R9RlHlpsgTdyBBIV3K4fB1B0TL1yeEhU/3lXZP4n 6v2GDXDVQG/QTE8PAHry4RqWxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHSR9ryB 34RbW1FzFaDRSgPbwedRMB8GA1UdIwQYMBaAFC1jQHfMhHtZ1ASNQ+BLMwlpj+Y4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjU4Ny80MTdENzFCNDkx ODYxMUVEQTg0QTEyNERDNEY5QUUwMi9MV05BZDh5RWUxblVCSTFENEVzekNXbVA1 amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xXTkFkOHlFZTFuVUJJMUQ0RXN6Q1dtUDVqZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjU4Ny80MTdENzFCNDkxODYxMUVEQTg0QTEyNERDNEY5QUUwMi9MV05BZDh5RWUx blVCSTFENEVzekNXbVA1amcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABxEUEp8xjrQxI898veSXK1fPdbF4fSUX/r81vC1rzuqJbxaT3vc44 67FjACj/+NA1zR9M1j8rLB37f9vjusRH8pjKeyLc7+qHlkICOhH9LPqplH64x/BW 2kZtXM/EdZODLHOeWcDjbrDjxRa2Gl4x0DBwov2DWv8K7BifQNtt/zD9Z3geqDXc GMdDMw9veWLQrRb6Mu0PxwEmy65Ex0Pj/j+OmsC/vs9/TrXsk778ualrKkeEb94Y oG6WKW1IiLOWQTKQRxo/OlQbr6Q5gJBfIqtDmnD/kgsrwntdT7pR7CdO+k2j70sX lYyre7wcOWQ1VMsual/48MREYKfAclvA -----END CERTIFICATE-----Generated at Wed Sep 10 04:17:41 2025 by rpki-client