$ rpki-client -vvf rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft File: lfCdXluLzW9LTWm1yTbJEvd9LP0.mft (raw, json) Hash identifier: 3EXVoF6mktlwIURHowP35G359NX8VKsDDr8VCVh2u+k= Subject key identifier: E7:72:DE:89:D7:0D:7F:38:52:2C:74:3F:B7:90:41:04:CB:90:06:A1 Authority key identifier: 95:F0:9D:5E:5B:8B:CD:6F:4B:4D:69:B5:C9:36:C9:12:F7:7D:2C:FD Certificate issuer: /CN=A91D44BE/serialNumber=95F09D5E5B8BCD6F4B4D69B5C936C912F77D2CFD Certificate serial: C8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lfCdXluLzW9LTWm1yTbJEvd9LP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft Manifest number: C4 Signing time: Fri 05 Sep 2025 06:19:40 +0000 Manifest this update: Fri 05 Sep 2025 06:19:39 +0000 Manifest next update: Fri 12 Sep 2025 06:19:39 +0000 Files and hashes: 1: lfCdXluLzW9LTWm1yTbJEvd9LP0.crl (hash: 2UPE/8hp2aJYY7o7o3QsuIfNTbyzHvKAPgO7eRfA4aU=) 2: B23569E2756511EFB018F20DC4F9AE02.roa (hash: gjYfNXF3GpcKnZuP/+eurz+VLiW4skkCjGj8XhdhHuU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.crl rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lfCdXluLzW9LTWm1yTbJEvd9LP0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 06:19:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 200 (0xc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D44BE, serialNumber=95F09D5E5B8BCD6F4B4D69B5C936C912F77D2CFD Validity Not Before: Sep 5 06:19:39 2025 GMT Not After : Sep 12 06:19:39 2025 GMT Subject: CN=68ba80fb-b6ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:1c:49:83:be:38:3e:95:b1:e7:1d:ad:8b:d4: dc:56:65:f9:62:45:a7:3d:c3:6c:58:ae:b9:dd:14: b4:35:65:5f:7c:ce:87:19:56:bb:2a:d1:cd:6d:67: ef:f8:08:3d:9c:f9:ec:a2:90:46:95:7c:29:0c:99: 22:34:dd:74:24:b3:47:28:6e:36:0d:77:34:77:b2: ad:65:6e:5e:9e:1b:2e:45:9c:27:56:65:f5:a0:01: ef:1d:46:e2:30:f4:17:d9:14:38:3d:73:8a:1d:c1: 04:ca:02:0c:f7:7c:26:ec:42:1a:ff:ec:c0:a6:35: bb:fe:2a:d9:50:99:93:71:1f:8d:28:8a:cd:af:20: ce:74:05:4c:fd:b1:b7:0e:a8:50:20:8f:89:67:7b: 52:7f:d3:11:2f:76:b6:05:15:f5:f1:92:f4:b3:67: c0:8c:19:e1:09:08:a7:fd:54:ee:d1:3c:e4:e0:e6: 37:2c:88:57:5f:fe:b4:0e:0e:ba:2d:f8:fb:b0:85: ee:38:12:20:1f:a3:cb:5a:3b:a9:5b:53:50:25:88: 5e:e1:9c:b2:eb:3a:c3:32:56:ae:1d:51:6a:4d:e5: 38:54:7c:8f:d8:14:2f:37:c1:60:30:34:59:e3:65: 3e:a1:9a:00:36:cf:64:8d:23:cd:f0:a4:9c:57:52: e9:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:72:DE:89:D7:0D:7F:38:52:2C:74:3F:B7:90:41:04:CB:90:06:A1 X509v3 Authority Key Identifier: keyid:95:F0:9D:5E:5B:8B:CD:6F:4B:4D:69:B5:C9:36:C9:12:F7:7D:2C:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lfCdXluLzW9LTWm1yTbJEvd9LP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:66:dd:5a:a7:a5:36:ab:ad:b6:d1:d0:5b:48:b7:e8:8b:0f: 6e:23:f2:ac:e3:f3:b8:5d:8b:cf:9f:5f:9d:a6:52:6b:60:6e: 33:35:9d:41:98:b8:74:d8:59:dc:0a:b7:55:e2:d9:2e:46:e9: 78:5a:9a:d1:4a:59:29:dd:fe:88:1a:d7:99:e1:ce:7f:34:6f: 54:88:58:be:fa:67:cc:d8:99:02:95:b2:83:01:4a:e0:08:ee: 04:b5:d5:43:7c:40:71:79:87:df:37:a3:b8:1b:7f:e9:fd:7b: 48:f9:19:d6:5b:24:a6:1e:a2:9d:ad:c6:78:7b:47:e5:56:1b: 66:05:91:35:8a:a6:42:ed:3c:16:8c:5e:a6:68:b4:a1:fd:0f: 83:a5:8f:96:8a:25:d8:59:1a:36:50:64:ef:59:f9:d8:f2:6b: bc:f9:d6:32:85:b5:24:0b:e8:d4:1e:aa:ec:3b:1b:ac:cd:1e: 70:b5:84:41:b0:f9:6b:1b:bc:55:30:71:43:14:02:80:91:37: 63:3a:90:ce:98:50:a1:84:63:d1:82:b3:5a:02:97:76:a0:69: 34:5b:8a:79:cc:db:8f:f8:99:11:02:85:ee:a4:21:53:79:27: 70:3e:8a:35:89:b3:a3:78:1f:52:30:6b:a0:57:d2:ac:39:6e: 4c:39:cb:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ0QkUxMTAvBgNVBAUTKDk1RjA5RDVFNUI4QkNENkY0QjRENjlCNUM5MzZDOTEy Rjc3RDJDRkQwHhcNMjUwOTA1MDYxOTM5WhcNMjUwOTEyMDYxOTM5WjAYMRYwFAYD VQQDEw02OGJhODBmYi1iNmNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuBxJg744PpWx5x2ti9TcVmX5YkWnPcNsWK653RS0NWVffM6HGVa7KtHNbWfv +Ag9nPnsopBGlXwpDJkiNN10JLNHKG42DXc0d7KtZW5enhsuRZwnVmX1oAHvHUbi MPQX2RQ4PXOKHcEEygIM93wm7EIa/+zApjW7/irZUJmTcR+NKIrNryDOdAVM/bG3 DqhQII+JZ3tSf9MRL3a2BRX18ZL0s2fAjBnhCQin/VTu0Tzk4OY3LIhXX/60Dg66 Lfj7sIXuOBIgH6PLWjupW1NQJYhe4Zyy6zrDMlauHVFqTeU4VHyP2BQvN8FgMDRZ 42U+oZoANs9kjSPN8KScV1LpjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOdy3onX DX84Uix0P7eQQQTLkAahMB8GA1UdIwQYMBaAFJXwnV5bi81vS01ptck2yRL3fSz9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDRCRS8wMjhBQkU0MjY5 MjIxMUVGQkY4N0JCMEVDNEY5QUUwMi9sZkNkWGx1THpXOUxUV20xeVRiSkV2ZDlM UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xmQ2RYbHVMelc5TFRXbTF5VGJKRXZkOUxQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDRCRS8wMjhBQkU0MjY5MjIxMUVGQkY4N0JCMEVDNEY5QUUwMi9sZkNkWGx1THpX OUxUV20xeVRiSkV2ZDlMUDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByZt1ap6U2q6220dBbSLfoiw9uI/Ks4/O4XYvPn1+dplJrYG4zNZ1B mLh02FncCrdV4tkuRul4WprRSlkp3f6IGteZ4c5/NG9UiFi++mfM2JkClbKDAUrg CO4EtdVDfEBxeYffN6O4G3/p/XtI+RnWWySmHqKdrcZ4e0flVhtmBZE1iqZC7TwW jF6maLSh/Q+DpY+WiiXYWRo2UGTvWfnY8mu8+dYyhbUkC+jUHqrsOxuszR5wtYRB sPlrG7xVMHFDFAKAkTdjOpDOmFChhGPRgrNaApd2oGk0W4p5zNuP+JkRAoXupCFT eSdwPoo1ibOjeB9SMGugV9KsOW5MOcsV -----END CERTIFICATE-----Generated at Sat Sep 6 21:05:06 2025 by rpki-client