$ rpki-client -vvf rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft File: lfCdXluLzW9LTWm1yTbJEvd9LP0.mft (raw, json) Hash identifier: r/18lLsiQ5ded8NEQ7kn1rTnELvnYKjUQveNuFiWM4s= Subject key identifier: F9:04:91:94:DC:2F:F5:90:EB:A4:19:F0:2C:81:55:A1:90:89:D3:F5 Authority key identifier: 95:F0:9D:5E:5B:8B:CD:6F:4B:4D:69:B5:C9:36:C9:12:F7:7D:2C:FD Certificate issuer: /CN=A91D44BE/serialNumber=95F09D5E5B8BCD6F4B4D69B5C936C912F77D2CFD Certificate serial: AD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lfCdXluLzW9LTWm1yTbJEvd9LP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft Manifest number: AA Signing time: Mon 21 Jul 2025 06:21:13 +0000 Manifest this update: Mon 21 Jul 2025 06:21:12 +0000 Manifest next update: Mon 28 Jul 2025 06:21:12 +0000 Files and hashes: 1: lfCdXluLzW9LTWm1yTbJEvd9LP0.crl (hash: yIBXlBTy9iqTizYZ8SKp5FMpSmr4L8jNfGmuK2Xn5vU=) 2: B23569E2756511EFB018F20DC4F9AE02.roa (hash: r6mTJvt8SukGGtNb+WgynqBgaxV1KBCRpaFxjoCbFH8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.crl rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lfCdXluLzW9LTWm1yTbJEvd9LP0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 06:21:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 173 (0xad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D44BE, serialNumber=95F09D5E5B8BCD6F4B4D69B5C936C912F77D2CFD Validity Not Before: Jul 21 06:21:12 2025 GMT Not After : Jul 28 06:21:12 2025 GMT Subject: CN=687ddc58-4a20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:85:68:c7:2e:b2:aa:30:3a:db:5b:50:ee:30: 59:32:e5:9f:d2:4d:db:9d:c1:82:67:bd:ff:89:31: 63:cc:b1:14:35:9a:65:dd:ae:68:60:e5:7e:a0:06: 16:bf:44:72:80:36:d7:04:2c:8e:6f:d2:39:74:b7: 99:0c:4f:36:67:d8:ac:8e:04:e6:ba:fb:71:94:f3: d5:e9:21:bd:aa:62:02:85:88:ca:45:7e:b8:0b:75: 54:7d:24:a6:0f:bf:4b:4d:02:78:dd:12:1a:a0:20: ed:82:c4:cc:d8:69:77:19:b4:de:3f:2a:f9:00:3e: e3:8a:1a:fb:f0:eb:50:c2:25:45:fc:11:7c:2b:7a: e7:01:54:70:96:a9:9a:20:9a:91:b3:42:71:ce:8c: 6a:27:e3:6e:bb:fa:6b:aa:21:a3:28:dc:5f:6b:f4: d9:b3:2d:be:71:68:1e:7e:1c:3d:72:24:97:90:04: 7f:ba:b0:ba:07:84:92:47:02:c0:4a:7a:cb:4b:29: 2f:21:f9:d9:cb:e8:4f:72:18:d6:55:03:3e:09:48: fb:5c:00:25:db:87:ad:51:a4:00:a9:b6:f3:1d:cd: 66:1c:70:24:55:ca:50:56:26:f7:0a:48:ce:77:ae: e9:d5:ff:2b:bb:f9:b6:e7:40:2a:a6:ca:21:d1:73: af:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:04:91:94:DC:2F:F5:90:EB:A4:19:F0:2C:81:55:A1:90:89:D3:F5 X509v3 Authority Key Identifier: keyid:95:F0:9D:5E:5B:8B:CD:6F:4B:4D:69:B5:C9:36:C9:12:F7:7D:2C:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lfCdXluLzW9LTWm1yTbJEvd9LP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:8c:45:07:e9:26:bc:c4:0d:24:1b:72:45:0b:2a:88:14:bf: aa:02:0f:63:b8:81:ac:fc:a7:c7:4b:6f:02:69:09:c3:58:0b: d4:77:fc:66:a5:66:d7:5a:af:95:f2:09:b1:c9:56:3f:23:f8: d9:ab:49:3d:c6:3a:e0:4c:f6:29:05:89:4e:36:be:b2:de:cd: 9b:96:24:76:90:12:09:ba:3d:41:57:e9:33:ec:67:83:72:d8: 44:18:1d:30:90:15:ab:62:6b:42:1d:e7:3f:f2:59:83:12:85: f1:0e:2a:ec:cc:bd:05:a0:85:19:30:d9:15:6f:be:53:cf:6d: 8c:c6:39:c9:66:31:d6:ab:8f:6f:8c:16:16:7e:5e:cb:75:6e: da:24:48:b6:5e:78:86:92:97:25:9b:3e:ef:15:0c:8e:d6:9d: 13:bf:a1:95:8d:63:a9:6c:50:73:68:3e:cb:17:42:77:5e:2b: 07:b6:6f:f5:95:a5:d7:18:49:1c:cb:b2:1e:9d:69:66:85:e8: 85:9a:ac:59:fd:3e:44:f4:d9:87:93:40:0a:e4:1f:55:bc:4e: 9c:fb:44:b5:7d:c7:03:81:7d:a1:77:a7:bc:85:65:9c:a2:ae: 2c:12:1d:60:07:3b:9a:13:9d:de:55:ae:76:8c:2c:2d:1a:48: 54:92:2d:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ0QkUxMTAvBgNVBAUTKDk1RjA5RDVFNUI4QkNENkY0QjRENjlCNUM5MzZDOTEy Rjc3RDJDRkQwHhcNMjUwNzIxMDYyMTEyWhcNMjUwNzI4MDYyMTEyWjAYMRYwFAYD VQQDEw02ODdkZGM1OC00YTIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsYVoxy6yqjA621tQ7jBZMuWf0k3bncGCZ73/iTFjzLEUNZpl3a5oYOV+oAYW v0RygDbXBCyOb9I5dLeZDE82Z9isjgTmuvtxlPPV6SG9qmIChYjKRX64C3VUfSSm D79LTQJ43RIaoCDtgsTM2Gl3GbTePyr5AD7jihr78OtQwiVF/BF8K3rnAVRwlqma IJqRs0JxzoxqJ+Nuu/prqiGjKNxfa/TZsy2+cWgefhw9ciSXkAR/urC6B4SSRwLA SnrLSykvIfnZy+hPchjWVQM+CUj7XAAl24etUaQAqbbzHc1mHHAkVcpQVib3CkjO d67p1f8ru/m250Aqpsoh0XOvlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPkEkZTc L/WQ66QZ8CyBVaGQidP1MB8GA1UdIwQYMBaAFJXwnV5bi81vS01ptck2yRL3fSz9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDRCRS8wMjhBQkU0MjY5 MjIxMUVGQkY4N0JCMEVDNEY5QUUwMi9sZkNkWGx1THpXOUxUV20xeVRiSkV2ZDlM UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xmQ2RYbHVMelc5TFRXbTF5VGJKRXZkOUxQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDRCRS8wMjhBQkU0MjY5MjIxMUVGQkY4N0JCMEVDNEY5QUUwMi9sZkNkWGx1THpX OUxUV20xeVRiSkV2ZDlMUDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVjEUH6Sa8xA0kG3JFCyqIFL+qAg9juIGs/KfHS28CaQnDWAvUd/xm pWbXWq+V8gmxyVY/I/jZq0k9xjrgTPYpBYlONr6y3s2bliR2kBIJuj1BV+kz7GeD cthEGB0wkBWrYmtCHec/8lmDEoXxDirszL0FoIUZMNkVb75Tz22MxjnJZjHWq49v jBYWfl7LdW7aJEi2XniGkpclmz7vFQyO1p0Tv6GVjWOpbFBzaD7LF0J3XisHtm/1 laXXGEkcy7IenWlmheiFmqxZ/T5E9NmHk0AK5B9VvE6c+0S1fccDgX2hd6e8hWWc oq4sEh1gBzuaE53eVa52jCwtGkhUki16 -----END CERTIFICATE-----Generated at Mon Jul 21 12:47:54 2025 by rpki-client