$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft File: LD0jWhshn0FmEJALADuKv9wXAqI.mft (raw, json) Hash identifier: YSx051IcLP+f45INn242+uq0LgAykJt8AcnpRe6n9FI= Subject key identifier: 85:48:57:F4:00:FE:E4:C0:8A:E4:8C:AE:D1:C5:43:04:23:94:CB:57 Authority key identifier: 2C:3D:23:5A:1B:21:9F:41:66:10:90:0B:00:3B:8A:BF:DC:17:02:A2 Certificate issuer: /CN=A91CEA40/serialNumber=2C3D235A1B219F416610900B003B8ABFDC1702A2 Certificate serial: 064A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft Manifest number: 063D Signing time: Thu 18 Sep 2025 23:03:46 +0000 Manifest this update: Thu 18 Sep 2025 23:03:45 +0000 Manifest next update: Thu 25 Sep 2025 23:03:45 +0000 Files and hashes: 1: LD0jWhshn0FmEJALADuKv9wXAqI.crl (hash: 2XdkNICVZ+4Tsgf1qqOdbQ8fmQekOMnrU2ZdVF2E0KY=) 2: 96F093D4BEA011EB8CAD965FC4F9AE02.roa (hash: NpLkQ/NypmNX/0X8ZR0aPK3YWZwmOShkZdvPXd4fivY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.crl rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 23:03:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1610 (0x64a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEA40, serialNumber=2C3D235A1B219F416610900B003B8ABFDC1702A2 Validity Not Before: Sep 18 23:03:45 2025 GMT Not After : Sep 25 23:03:45 2025 GMT Subject: CN=68cc8fd2-aa48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:45:d7:f9:7d:12:b6:59:b3:2c:03:0c:ca:c6: f3:7d:80:4f:28:5f:3f:30:0b:ab:5a:74:6a:39:18: fd:90:34:80:e3:78:8a:fc:38:69:31:8b:23:7b:b4: a5:16:bb:86:e9:af:d0:f1:69:14:aa:d8:13:d9:fe: 19:d4:f1:cd:73:11:d3:3d:e3:bd:ed:0d:c1:79:1e: 92:37:8c:f6:b2:2e:46:87:ee:4c:92:a8:ef:86:2b: 12:fc:8c:c0:7e:05:86:7c:cc:54:73:92:de:de:e5: 1a:66:01:e5:36:b9:68:ad:01:b6:0c:40:92:82:5d: 6b:35:a1:84:bc:74:8b:78:d1:df:e2:e7:bb:89:b5: 82:bf:81:21:c1:67:30:3e:b1:96:36:5c:23:46:9a: 86:35:4d:7e:f4:0d:52:ba:1c:77:ee:da:a7:0a:14: 43:31:17:1c:6f:86:1c:d1:a9:5e:d9:54:b8:17:ed: 54:e5:9c:19:ae:c5:26:24:b5:83:2e:ed:03:68:2a: 1a:06:40:9e:90:c9:e8:3a:98:bf:b1:ad:d7:77:4f: cb:9a:7f:1d:fd:4c:0f:44:ed:53:fe:e6:d5:f0:90: f7:1d:19:a0:04:8b:02:2e:98:7b:ab:60:8e:05:37: d5:ed:be:d7:01:a5:16:1b:38:f6:03:43:80:a2:9d: ed:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:48:57:F4:00:FE:E4:C0:8A:E4:8C:AE:D1:C5:43:04:23:94:CB:57 X509v3 Authority Key Identifier: keyid:2C:3D:23:5A:1B:21:9F:41:66:10:90:0B:00:3B:8A:BF:DC:17:02:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:52:92:60:10:50:7c:ad:a2:8c:5a:11:85:49:89:1a:a8:3a: f9:f5:45:7d:eb:77:a5:88:4a:f3:49:fc:b0:00:22:2e:d6:d0: df:ca:70:97:36:43:c5:f8:e0:30:06:45:b3:72:12:bc:a2:fa: 66:8b:44:91:cf:61:2d:27:1b:9c:31:1b:d1:ff:08:28:fe:21: da:b3:b0:33:da:1b:f7:04:9f:94:5c:5d:f1:34:fa:3f:d4:d2: 47:e6:9b:ff:f9:01:d3:9c:b5:ed:22:ab:8b:ce:37:7c:24:db: 06:08:37:2a:3f:72:97:2b:fe:b1:97:b4:6d:ea:94:e6:33:7a: b2:8e:43:35:9a:52:d7:f3:6f:61:4d:b4:50:8a:43:fa:1c:84: 5d:26:8f:cb:a9:d9:bc:db:a3:ac:e7:86:17:72:f8:cf:b2:6a: a4:92:80:71:66:5a:e7:9c:55:13:65:78:d6:46:20:df:7b:c0: 2a:b3:23:5f:41:3e:00:8c:a4:8c:0a:d1:28:40:63:7c:a2:db: c2:d3:22:87:22:1b:3a:cc:a1:24:44:4b:76:c0:f8:1e:76:53: ef:a0:36:3b:a4:82:35:53:3b:93:23:4f:5b:bf:88:0a:ac:b0: 16:92:b8:a0:a3:49:e5:41:0c:f1:53:f7:da:de:08:e8:e2:c0: df:b3:02:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VBNDAxMTAvBgNVBAUTKDJDM0QyMzVBMUIyMTlGNDE2NjEwOTAwQjAwM0I4QUJG REMxNzAyQTIwHhcNMjUwOTE4MjMwMzQ1WhcNMjUwOTI1MjMwMzQ1WjAYMRYwFAYD VQQDEw02OGNjOGZkMi1hYTQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw0XX+X0StlmzLAMMysbzfYBPKF8/MAurWnRqORj9kDSA43iK/DhpMYsje7Sl FruG6a/Q8WkUqtgT2f4Z1PHNcxHTPeO97Q3BeR6SN4z2si5Gh+5MkqjvhisS/IzA fgWGfMxUc5Le3uUaZgHlNrlorQG2DECSgl1rNaGEvHSLeNHf4ue7ibWCv4EhwWcw PrGWNlwjRpqGNU1+9A1Suhx37tqnChRDMRccb4Yc0ale2VS4F+1U5ZwZrsUmJLWD Lu0DaCoaBkCekMnoOpi/sa3Xd0/Lmn8d/UwPRO1T/ubV8JD3HRmgBIsCLph7q2CO BTfV7b7XAaUWGzj2A0OAop3tAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIVIV/QA /uTAiuSMrtHFQwQjlMtXMB8GA1UdIwQYMBaAFCw9I1obIZ9BZhCQCwA7ir/cFwKi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUE0MC84RTk2NEJDRUFG NzkxMUVCODQyMTdBNThDNEY5QUUwMi9MRDBqV2hzaG4wRm1FSkFMQUR1S3Y5d1hB cUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xEMGpXaHNobjBGbUVKQUxBRHVLdjl3WEFxSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUE0MC84RTk2NEJDRUFGNzkxMUVCODQyMTdBNThDNEY5QUUwMi9MRDBqV2hzaG4w Rm1FSkFMQUR1S3Y5d1hBcUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnUpJgEFB8raKMWhGFSYkaqDr59UV963eliErzSfywACIu1tDfynCX NkPF+OAwBkWzchK8ovpmi0SRz2EtJxucMRvR/wgo/iHas7Az2hv3BJ+UXF3xNPo/ 1NJH5pv/+QHTnLXtIquLzjd8JNsGCDcqP3KXK/6xl7Rt6pTmM3qyjkM1mlLX829h TbRQikP6HIRdJo/Lqdm826Os54YXcvjPsmqkkoBxZlrnnFUTZXjWRiDfe8AqsyNf QT4AjKSMCtEoQGN8otvC0yKHIhs6zKEkREt2wPgedlPvoDY7pII1UzuTI09bv4gK rLAWkrigo0nlQQzxU/fa3gjo4sDfswKI -----END CERTIFICATE-----Generated at Fri Sep 19 04:23:53 2025 by rpki-client