$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft File: lX5Qp1--UC844-2_P0qq5mWuFIs.mft (raw, json) Hash identifier: 8ZMxJLsYxJkqMnpZnEmSjUOG32xQyksIuZMP3P5TIxY= Subject key identifier: B3:89:91:86:17:3C:27:4D:1E:C8:AC:F3:69:E9:80:39:DE:9B:09:57 Authority key identifier: 95:7E:50:A7:5F:BE:50:2F:38:E3:ED:BF:3F:4A:AA:E6:65:AE:14:8B Certificate issuer: /CN=A91D0B0E/serialNumber=957E50A75FBE502F38E3EDBF3F4AAAE665AE148B Certificate serial: B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lX5Qp1--UC844-2_P0qq5mWuFIs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft Manifest number: B2 Signing time: Sun 07 Sep 2025 06:31:39 +0000 Manifest this update: Sun 07 Sep 2025 06:31:39 +0000 Manifest next update: Sun 14 Sep 2025 06:31:39 +0000 Files and hashes: 1: lX5Qp1--UC844-2_P0qq5mWuFIs.crl (hash: ti+Da6sLXvjc/SC5Yq2kHH+BXaEfiRkK9xCobPgwU6c=) 2: A0A9D60C807511EFAD8C4257C4F9AE02.roa (hash: ItObitSQLkGH+talVc8PNR7Z2o8Aby5tjfREkgGvzVc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.crl rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lX5Qp1--UC844-2_P0qq5mWuFIs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 06:31:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 180 (0xb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0B0E, serialNumber=957E50A75FBE502F38E3EDBF3F4AAAE665AE148B Validity Not Before: Sep 7 06:31:39 2025 GMT Not After : Sep 14 06:31:39 2025 GMT Subject: CN=68bd26cb-2067 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:c4:b3:90:ec:8b:51:48:9a:74:b5:a0:fa:cc: 0f:36:a9:95:39:66:f8:f4:e4:14:69:b8:87:f6:90: 95:29:89:83:53:05:a5:07:97:42:6c:f2:ca:38:06: 4b:92:6d:ff:6e:08:7b:b3:f3:9d:e9:da:e0:49:b7: ba:68:64:5b:da:fc:11:4c:19:85:f3:f8:36:c0:bd: 00:52:f5:2e:ae:3f:0d:89:43:b3:26:45:25:91:24: b9:7d:ac:08:47:79:f6:b0:4b:a1:0e:65:cc:da:a6: 87:1f:d3:e1:c8:a5:5f:29:13:ee:ff:64:fc:93:96: 49:6a:64:af:08:e2:e7:43:ea:27:f8:ca:92:00:f3: 11:fb:ce:5a:4b:04:66:f3:83:f4:a5:4d:33:b8:7d: 13:fc:51:b4:60:19:83:4e:2e:22:80:b3:4b:9e:62: 54:be:e1:b9:63:e4:22:aa:f6:4d:9f:4c:27:64:01: 70:69:7d:11:2f:19:cf:5d:f9:5f:56:18:92:2d:6b: e7:4a:90:52:62:6f:db:a8:7a:ec:86:47:42:87:03: bb:2b:45:af:36:48:a6:6a:f1:ae:c8:0c:ea:5c:70: 2c:1c:2c:f9:27:67:3c:4e:b4:13:d7:8d:6e:8c:88: 0d:48:b6:1f:5e:4f:aa:c7:1d:00:36:bc:28:5a:56: d6:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:89:91:86:17:3C:27:4D:1E:C8:AC:F3:69:E9:80:39:DE:9B:09:57 X509v3 Authority Key Identifier: keyid:95:7E:50:A7:5F:BE:50:2F:38:E3:ED:BF:3F:4A:AA:E6:65:AE:14:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lX5Qp1--UC844-2_P0qq5mWuFIs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:3d:a0:e6:08:81:90:5a:b4:1b:b8:0b:10:fb:e3:95:42:1d: 1e:ff:09:49:05:75:85:6c:08:8a:07:41:fe:2f:06:43:c0:a9: f0:ba:ce:32:8e:02:b0:e6:87:bf:1a:64:0e:cc:55:78:ec:bf: 85:cd:4b:2b:c9:e1:30:76:ad:8c:0a:3c:b9:32:78:a4:1c:b2: 8b:d9:d9:45:84:0a:77:f5:4c:6a:de:2a:0d:94:eb:cc:1f:13: 4a:9c:43:f9:4d:90:92:4b:df:15:5d:e6:51:74:a4:15:47:41: 78:04:22:e9:ea:c9:e9:6e:54:91:95:fc:73:60:49:3e:2f:6f: ff:96:a3:8d:bf:fe:ba:57:ad:6b:49:16:73:0e:a1:d8:ba:ee: a8:45:2e:26:a7:88:e7:be:9f:02:34:ca:5c:05:ca:ab:42:a2: 76:b9:b0:92:77:1d:f2:65:3c:e9:6d:47:67:a3:67:14:a5:e4: 27:98:7e:40:2f:f5:0e:12:fe:45:67:4c:53:8d:03:04:45:ee: e7:44:79:10:5b:e7:4e:5e:87:0b:52:75:f0:d8:1c:3a:22:c3: a5:c4:4f:b0:a2:be:ab:41:9e:e8:a7:e8:2a:a2:a7:30:81:96: 62:b3:bb:7f:69:b9:31:d0:f8:a2:64:28:29:62:43:86:89:51: 5c:4c:bd:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBCMEUxMTAvBgNVBAUTKDk1N0U1MEE3NUZCRTUwMkYzOEUzRURCRjNGNEFBQUU2 NjVBRTE0OEIwHhcNMjUwOTA3MDYzMTM5WhcNMjUwOTE0MDYzMTM5WjAYMRYwFAYD VQQDEw02OGJkMjZjYi0yMDY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArcSzkOyLUUiadLWg+swPNqmVOWb49OQUabiH9pCVKYmDUwWlB5dCbPLKOAZL km3/bgh7s/Od6drgSbe6aGRb2vwRTBmF8/g2wL0AUvUurj8NiUOzJkUlkSS5fawI R3n2sEuhDmXM2qaHH9PhyKVfKRPu/2T8k5ZJamSvCOLnQ+on+MqSAPMR+85aSwRm 84P0pU0zuH0T/FG0YBmDTi4igLNLnmJUvuG5Y+QiqvZNn0wnZAFwaX0RLxnPXflf VhiSLWvnSpBSYm/bqHrshkdChwO7K0WvNkimavGuyAzqXHAsHCz5J2c8TrQT141u jIgNSLYfXk+qxx0ANrwoWlbWQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLOJkYYX PCdNHsis82npgDnemwlXMB8GA1UdIwQYMBaAFJV+UKdfvlAvOOPtvz9KquZlrhSL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEIwRS80RTZDQjRGNjgw NjkxMUVGODg3QjcwM0NDNEY5QUUwMi9sWDVRcDEtLVVDODQ0LTJfUDBxcTVtV3VG SXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xYNVFwMS0tVUM4NDQtMl9QMHFxNW1XdUZJcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEIwRS80RTZDQjRGNjgwNjkxMUVGODg3QjcwM0NDNEY5QUUwMi9sWDVRcDEtLVVD ODQ0LTJfUDBxcTVtV3VGSXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOPaDmCIGQWrQbuAsQ++OVQh0e/wlJBXWFbAiKB0H+LwZDwKnwus4y jgKw5oe/GmQOzFV47L+FzUsryeEwdq2MCjy5MnikHLKL2dlFhAp39Uxq3ioNlOvM HxNKnEP5TZCSS98VXeZRdKQVR0F4BCLp6snpblSRlfxzYEk+L2//lqONv/66V61r SRZzDqHYuu6oRS4mp4jnvp8CNMpcBcqrQqJ2ubCSdx3yZTzpbUdno2cUpeQnmH5A L/UOEv5FZ0xTjQMERe7nRHkQW+dOXocLUnXw2Bw6IsOlxE+wor6rQZ7op+gqoqcw gZZis7t/abkx0PiiZCgpYkOGiVFcTL0p -----END CERTIFICATE-----Generated at Tue Sep 9 05:26:20 2025 by rpki-client