$ rpki-client -vvf rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.mft File: lVqjNNYHfBfALW18rdIVmRIeTvo.mft (raw, json) Hash identifier: 2pEhs2RRSfRTrbVFHDq2l4cO+DstIg96gV8QpIb81KU= Subject key identifier: 0C:98:A0:00:C4:1B:A5:67:71:D4:C2:FF:D4:0A:C1:0D:37:BE:D8:B1 Authority key identifier: 95:5A:A3:34:D6:07:7C:17:C0:2D:6D:7C:AD:D2:15:99:12:1E:4E:FA Certificate issuer: /CN=A91D01AF/serialNumber=955AA334D6077C17C02D6D7CADD21599121E4EFA Certificate serial: 0816 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lVqjNNYHfBfALW18rdIVmRIeTvo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.mft Manifest number: 080E Signing time: Thu 18 Sep 2025 21:08:48 +0000 Manifest this update: Thu 18 Sep 2025 21:08:48 +0000 Manifest next update: Thu 25 Sep 2025 21:08:48 +0000 Files and hashes: 1: lVqjNNYHfBfALW18rdIVmRIeTvo.crl (hash: MC4kwolZVdpNyvAriD0B1BtyOnEpJWSJrUTkP9/UYgc=) 2: AD797FA2F17E11EAA3CC597BC4F9AE02.roa (hash: FrUF8k+q0iQX/Bos2myD8zLROjp2eOpyug9lyw9AGzE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.crl rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lVqjNNYHfBfALW18rdIVmRIeTvo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 21:08:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2070 (0x816) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D01AF, serialNumber=955AA334D6077C17C02D6D7CADD21599121E4EFA Validity Not Before: Sep 18 21:08:48 2025 GMT Not After : Sep 25 21:08:48 2025 GMT Subject: CN=68cc74e0-d904 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:04:64:1c:e1:6d:5c:78:9a:44:24:1f:44:a2: ed:b3:47:a8:1a:99:86:4e:bd:01:6b:44:38:1c:6f: c9:44:13:64:b8:e9:8b:1e:b5:cc:67:84:9c:f7:58: f6:7a:cd:58:f8:75:06:22:a1:ab:78:09:19:fd:54: 95:b5:9f:fc:e5:df:53:94:d4:ae:a6:a8:19:ed:0f: 29:58:c2:af:cc:95:b3:d8:81:83:c0:fd:7a:e0:95: 75:b3:ab:df:9e:d5:15:b0:79:15:49:b5:60:c8:f2: 03:77:82:79:1e:2c:3c:25:3a:e8:cf:79:76:60:c0: b6:5c:79:a6:bd:dc:30:94:7d:ed:ab:7f:89:a7:4f: 6c:1a:f0:4d:2e:e6:22:32:e1:58:d8:2b:1a:21:72: d3:fd:dc:42:b0:ba:ff:e3:9c:42:15:7f:ba:2b:fc: 48:40:5c:27:89:fd:2c:aa:a2:e9:8c:9c:24:af:24: a7:5a:3b:81:1c:18:36:1f:cb:96:c9:e1:1a:26:fd: 55:92:4e:00:ee:aa:7f:ae:b7:64:d8:57:b5:ea:ce: 31:32:07:e7:34:3a:8d:23:92:3f:d0:26:4b:57:97: 16:5d:7b:74:ce:3f:4b:5a:40:77:8c:15:55:40:ab: 24:01:5d:9b:4e:5e:30:40:dc:c2:bd:4c:e7:fa:60: da:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:98:A0:00:C4:1B:A5:67:71:D4:C2:FF:D4:0A:C1:0D:37:BE:D8:B1 X509v3 Authority Key Identifier: keyid:95:5A:A3:34:D6:07:7C:17:C0:2D:6D:7C:AD:D2:15:99:12:1E:4E:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lVqjNNYHfBfALW18rdIVmRIeTvo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:73:ab:64:b7:d3:85:03:57:4a:0c:af:93:bd:c1:c5:4f:e2: 98:1f:cc:cf:6b:8a:38:7e:62:92:a7:31:10:13:5f:b3:b0:0e: fa:6a:c4:7d:02:4a:58:4d:bc:9d:86:38:b4:5b:3a:df:12:4e: 3b:8d:d3:f4:82:b4:50:bd:68:54:2f:11:91:5d:00:e5:26:54: 3e:39:48:bc:cd:fa:2d:ee:b9:24:7e:b4:de:ac:0f:ee:47:d9: ee:66:b7:63:55:70:b0:88:87:71:3d:ef:be:72:e6:c7:9b:6f: fd:38:54:6a:a7:0b:5e:14:c6:eb:86:19:02:89:78:b7:5c:60: c2:c1:86:29:00:c9:70:da:2b:bb:d8:c6:db:de:36:ff:4c:66: 1e:3b:df:de:8c:93:4c:83:1e:35:32:0a:cc:ef:9a:6b:79:09: 4f:95:97:5a:95:80:f8:79:55:9d:09:59:b6:58:c5:e3:38:6a: aa:e5:2a:db:4b:59:4c:b1:86:b8:39:cb:49:11:cc:ff:5c:87: 01:97:ed:a7:0f:59:3e:db:59:61:5b:a1:c1:22:23:69:1d:7c: 9a:78:a5:35:9c:03:6b:8a:ed:b9:20:77:64:c5:b7:e4:f6:35: 4e:61:c5:1d:52:4f:a9:53:41:3e:c7:20:b7:cb:cc:ec:e3:1a: c8:93:2e:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCBYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDAxQUYxMTAvBgNVBAUTKDk1NUFBMzM0RDYwNzdDMTdDMDJENkQ3Q0FERDIxNTk5 MTIxRTRFRkEwHhcNMjUwOTE4MjEwODQ4WhcNMjUwOTI1MjEwODQ4WjAYMRYwFAYD VQQDEw02OGNjNzRlMC1kOTA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1gRkHOFtXHiaRCQfRKLts0eoGpmGTr0Ba0Q4HG/JRBNkuOmLHrXMZ4Sc91j2 es1Y+HUGIqGreAkZ/VSVtZ/85d9TlNSupqgZ7Q8pWMKvzJWz2IGDwP164JV1s6vf ntUVsHkVSbVgyPIDd4J5Hiw8JTroz3l2YMC2XHmmvdwwlH3tq3+Jp09sGvBNLuYi MuFY2CsaIXLT/dxCsLr/45xCFX+6K/xIQFwnif0sqqLpjJwkrySnWjuBHBg2H8uW yeEaJv1Vkk4A7qp/rrdk2Fe16s4xMgfnNDqNI5I/0CZLV5cWXXt0zj9LWkB3jBVV QKskAV2bTl4wQNzCvUzn+mDaawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAyYoADE G6VncdTC/9QKwQ03vtixMB8GA1UdIwQYMBaAFJVaozTWB3wXwC1tfK3SFZkSHk76 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDFBRi9DRDdFNzBEOEYx N0QxMUVBQUIzOTI1NzhDNEY5QUUwMi9sVnFqTk5ZSGZCZkFMVzE4cmRJVm1SSWVU dm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xWcWpOTllIZkJmQUxXMThyZElWbVJJZVR2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MDFBRi9DRDdFNzBEOEYxN0QxMUVBQUIzOTI1NzhDNEY5QUUwMi9sVnFqTk5ZSGZC ZkFMVzE4cmRJVm1SSWVUdm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1c6tkt9OFA1dKDK+TvcHFT+KYH8zPa4o4fmKSpzEQE1+zsA76asR9 AkpYTbydhji0WzrfEk47jdP0grRQvWhULxGRXQDlJlQ+OUi8zfot7rkkfrTerA/u R9nuZrdjVXCwiIdxPe++cubHm2/9OFRqpwteFMbrhhkCiXi3XGDCwYYpAMlw2iu7 2Mbb3jb/TGYeO9/ejJNMgx41MgrM75preQlPlZdalYD4eVWdCVm2WMXjOGqq5Srb S1lMsYa4OctJEcz/XIcBl+2nD1k+21lhW6HBIiNpHXyaeKU1nANriu25IHdkxbfk 9jVOYcUdUk+pU0E+xyC3y8zs4xrIky77 -----END CERTIFICATE-----Generated at Fri Sep 19 02:24:45 2025 by rpki-client