$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft File: lKlQswO0aQDdWjBhAwyJpIloA68.mft (raw, json) Hash identifier: 0kSBu0pysAF60HLZKmz6JSn13oegdbOxrC2q13uqVJo= Subject key identifier: F4:C2:D0:B7:83:A9:0E:D7:F8:6B:5C:4A:66:1F:3E:F3:0F:94:AC:A0 Authority key identifier: 94:A9:50:B3:03:B4:69:00:DD:5A:30:61:03:0C:89:A4:89:68:03:AF Certificate issuer: /CN=A91BAD2D/serialNumber=94A950B303B46900DD5A3061030C89A4896803AF Certificate serial: 011A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKlQswO0aQDdWjBhAwyJpIloA68.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft Manifest number: 0117 Signing time: Tue 09 Sep 2025 04:59:13 +0000 Manifest this update: Tue 09 Sep 2025 04:59:13 +0000 Manifest next update: Tue 16 Sep 2025 04:59:12 +0000 Files and hashes: 1: lKlQswO0aQDdWjBhAwyJpIloA68.crl (hash: L56Q9waFgvf/sNXJCshj9Sz2tmD3wsfEvDaQb5iLTTk=) 2: 33B566F2E80811EEB4888B0FC4F9AE02.roa (hash: ZSDoXQLk70kw9Tv9vuIwvYTULilf6nNLQq+LER2jQIQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.crl rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKlQswO0aQDdWjBhAwyJpIloA68.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 04:59:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 282 (0x11a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAD2D, serialNumber=94A950B303B46900DD5A3061030C89A4896803AF Validity Not Before: Sep 9 04:59:13 2025 GMT Not After : Sep 16 04:59:12 2025 GMT Subject: CN=68bfb421-7d9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:4d:27:2d:83:12:94:6f:08:e5:a1:ce:5b:39: 94:6a:69:e9:8f:e2:84:48:24:62:23:c8:fc:d4:12: c2:ac:dd:f0:7c:18:0a:0d:65:50:59:2f:b5:fb:54: b5:2b:fb:bf:0e:69:8d:38:8e:ea:d8:90:2a:6f:63: a7:fb:f8:9f:9d:49:45:c1:34:ce:61:5d:4f:ae:a5: a5:fe:d2:7b:e3:9e:2e:89:ea:eb:e7:8a:46:02:be: 37:b8:46:36:60:3e:78:13:7e:db:f7:02:c4:c0:b8: 29:48:2a:6a:d6:84:ae:ba:f3:83:9a:fa:2e:33:92: 1d:f3:0d:c6:9d:64:5f:95:d8:9e:d4:a1:51:69:c9: 38:1b:b2:4b:ef:3a:7f:08:2c:43:9d:5f:9e:6e:7a: 76:5b:d9:83:fa:01:9c:6f:42:c6:df:06:9b:02:56: ec:93:75:f2:86:78:29:f5:da:7c:fa:4d:e9:79:f5: 8c:b8:68:d8:eb:b7:73:89:bb:1d:b4:e3:b2:c4:4f: 0a:17:ae:f4:e7:b7:7a:19:b9:a6:ca:bc:1e:12:b5: fe:16:47:f4:78:88:f8:22:d6:a4:f4:ff:0e:dc:14: 43:74:fd:24:c8:5a:25:a1:e9:40:f1:aa:bf:c5:e0: fe:e4:8f:0e:d3:9e:e4:2a:0c:7c:a9:11:5a:59:2b: 6f:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:C2:D0:B7:83:A9:0E:D7:F8:6B:5C:4A:66:1F:3E:F3:0F:94:AC:A0 X509v3 Authority Key Identifier: keyid:94:A9:50:B3:03:B4:69:00:DD:5A:30:61:03:0C:89:A4:89:68:03:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKlQswO0aQDdWjBhAwyJpIloA68.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:fd:45:c5:21:bd:49:68:c3:e4:af:f5:87:7a:29:61:11:fa: 69:3a:3a:1f:85:e8:cb:99:b0:db:95:ff:b2:15:41:fd:a1:2b: d5:3e:0b:45:fe:ad:06:b8:83:47:53:bd:ec:81:8c:3a:0a:f0: 61:22:a5:79:2f:3e:04:11:40:3a:85:61:7b:96:f1:21:04:47: 47:c6:b6:ef:e9:2f:eb:cb:b9:ba:65:9a:02:bf:1a:77:4b:45: 71:20:40:e8:0d:d0:96:53:e1:48:c3:26:ae:0a:bb:7f:bd:ae: 1f:d5:72:7b:7a:94:e8:d5:1a:be:1d:18:ee:cb:63:cd:87:8e: ff:ec:77:be:90:5a:e3:d8:32:0a:47:c5:4c:d9:f6:3c:47:c5: 1b:b3:99:5c:b4:01:a2:60:be:fc:a5:f0:0c:c8:2e:48:0f:e7: 52:e2:9a:db:ba:01:b6:c8:07:f2:a5:79:13:c1:7c:7e:b3:c4: ad:bb:4d:54:4f:ad:a7:eb:33:82:ed:73:29:49:ca:43:65:35: 97:c0:5d:df:d1:1a:f6:59:3a:99:59:1f:56:fc:f8:9f:5d:be: 85:7e:fe:92:ff:78:1f:f4:b5:00:e4:78:ec:51:82:47:5e:ff: 9a:4e:57:9f:92:15:d8:41:fa:e1:0d:eb:97:a6:57:b7:0c:6e: 00:91:15:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFEMkQxMTAvBgNVBAUTKDk0QTk1MEIzMDNCNDY5MDBERDVBMzA2MTAzMEM4OUE0 ODk2ODAzQUYwHhcNMjUwOTA5MDQ1OTEzWhcNMjUwOTE2MDQ1OTEyWjAYMRYwFAYD VQQDEw02OGJmYjQyMS03ZDlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+E0nLYMSlG8I5aHOWzmUamnpj+KESCRiI8j81BLCrN3wfBgKDWVQWS+1+1S1 K/u/DmmNOI7q2JAqb2On+/ifnUlFwTTOYV1PrqWl/tJ7454uierr54pGAr43uEY2 YD54E37b9wLEwLgpSCpq1oSuuvODmvouM5Id8w3GnWRfldie1KFRack4G7JL7zp/ CCxDnV+ebnp2W9mD+gGcb0LG3wabAlbsk3Xyhngp9dp8+k3pefWMuGjY67dzibsd tOOyxE8KF67057d6GbmmyrweErX+Fkf0eIj4Itak9P8O3BRDdP0kyFoloelA8aq/ xeD+5I8O057kKgx8qRFaWStvnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPTC0LeD qQ7X+GtcSmYfPvMPlKygMB8GA1UdIwQYMBaAFJSpULMDtGkA3VowYQMMiaSJaAOv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUQyRC85MDg4RUU1QUU4 MDExMUVFQUQ2QzUwMzBDNEY5QUUwMi9sS2xRc3dPMGFRRGRXakJoQXd5SnBJbG9B NjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xLbFFzd08wYVFEZFdqQmhBd3lKcElsb0E2OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUQyRC85MDg4RUU1QUU4MDExMUVFQUQ2QzUwMzBDNEY5QUUwMi9sS2xRc3dPMGFR RGRXakJoQXd5SnBJbG9BNjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBU/UXFIb1JaMPkr/WHeilhEfppOjofhejLmbDblf+yFUH9oSvVPgtF /q0GuINHU73sgYw6CvBhIqV5Lz4EEUA6hWF7lvEhBEdHxrbv6S/ry7m6ZZoCvxp3 S0VxIEDoDdCWU+FIwyauCrt/va4f1XJ7epTo1Rq+HRjuy2PNh47/7He+kFrj2DIK R8VM2fY8R8Ubs5lctAGiYL78pfAMyC5ID+dS4prbugG2yAfypXkTwXx+s8Stu01U T62n6zOC7XMpScpDZTWXwF3f0Rr2WTqZWR9W/PifXb6Ffv6S/3gf9LUA5HjsUYJH Xv+aTlefkhXYQfrhDeuXple3DG4AkRVY -----END CERTIFICATE-----Generated at Tue Sep 9 14:44:06 2025 by rpki-client