$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft File: lpDF1gn85ELDW5kW1WP58Ye2itQ.mft (raw, json) Hash identifier: xPh3RKRC3J3z/tqupK5UDOkJOAa+hAc0vkBJI4Nl+WQ= Subject key identifier: A4:6D:E9:8F:61:6F:A6:6B:B4:80:F6:3B:03:DC:47:7A:19:D7:17:80 Authority key identifier: 96:90:C5:D6:09:FC:E4:42:C3:5B:99:16:D5:63:F9:F1:87:B6:8A:D4 Certificate issuer: /CN=A91D8E2C/serialNumber=9690C5D609FCE442C35B9916D563F9F187B68AD4 Certificate serial: 0E77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft Manifest number: 0E6E Signing time: Thu 18 Sep 2025 17:54:28 +0000 Manifest this update: Thu 18 Sep 2025 17:54:28 +0000 Manifest next update: Thu 25 Sep 2025 17:54:28 +0000 Files and hashes: 1: lpDF1gn85ELDW5kW1WP58Ye2itQ.crl (hash: o+2lcnFBudbP60ehPBZikiziEU+unmx8NrMO4jvRT3Y=) 2: 6C153768CE5511EB9DD80C30C4F9AE02.roa (hash: FB/I0gTgEb20qtL8a4Y3PnJsdj8cSocHpg/e5FisnJk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.crl rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 17:54:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3703 (0xe77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8E2C, serialNumber=9690C5D609FCE442C35B9916D563F9F187B68AD4 Validity Not Before: Sep 18 17:54:28 2025 GMT Not After : Sep 25 17:54:28 2025 GMT Subject: CN=68cc4754-6602 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:cd:51:b8:2e:3f:80:23:f1:8a:c2:54:59:e5: 59:d3:a0:52:8c:a3:ff:e3:4b:22:25:79:45:2a:53: 7d:f9:6d:b3:93:bc:7d:c2:cd:38:ef:25:14:92:96: 56:44:7e:cb:43:62:a3:f7:1c:9e:93:1f:65:84:f1: c9:c3:57:8a:d9:fa:db:4f:80:a4:0b:17:b7:f0:c9: 4c:85:9b:a2:f8:7e:5a:e0:3c:5e:e5:14:59:80:c2: 9e:35:86:59:1a:8a:79:ed:0b:54:62:5c:60:86:53: 28:b2:32:e9:3c:58:55:3e:6e:1c:0d:92:4a:61:d9: b7:4d:2f:ad:0a:2d:dd:06:85:29:d2:0a:b5:e9:f5: bb:cd:ec:80:f8:ed:4e:fd:81:18:67:53:0c:14:c8: e9:3b:92:8c:40:c9:48:4f:9c:96:43:db:78:01:25: 44:ed:f4:67:f2:f1:5a:b5:2d:ab:9a:b0:bf:b0:f4: 6c:54:2f:a3:ef:20:e4:e5:09:9e:e4:16:b9:d9:06: 16:8e:3c:c5:80:2f:0d:40:a5:f5:e1:8f:5e:4c:5f: 4f:17:61:7b:3c:be:9b:9e:57:07:8e:f6:9f:48:65: df:db:88:48:c4:d4:cb:ae:7a:bd:ff:d0:2b:21:67: db:0f:3f:5e:e1:ea:ba:56:64:79:a8:0d:06:26:b4: 99:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:6D:E9:8F:61:6F:A6:6B:B4:80:F6:3B:03:DC:47:7A:19:D7:17:80 X509v3 Authority Key Identifier: keyid:96:90:C5:D6:09:FC:E4:42:C3:5B:99:16:D5:63:F9:F1:87:B6:8A:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:aa:ce:e3:26:cd:44:36:fc:b4:f2:bf:78:63:28:ae:8b:5c: 33:76:89:fe:dd:58:1a:24:6b:02:a8:da:b5:d7:64:f8:df:60: df:04:3c:64:c2:ba:dc:2e:18:35:bf:88:97:40:60:93:5c:4d: 94:25:80:3d:1b:c9:65:d7:85:70:8e:58:ba:d6:d5:8b:5f:81: 02:2e:1f:55:10:8c:4a:0f:12:08:96:3e:af:da:66:c0:95:ab: 27:77:62:db:bb:4b:2d:80:20:ac:3e:ca:41:ec:8f:9a:cb:48: c2:4c:08:56:36:00:8c:41:a9:f7:ae:1c:79:27:7a:b8:19:3d: c3:28:14:bd:1a:fc:91:b1:a6:39:a6:3d:1b:94:46:db:1d:02: c6:5b:47:f4:5f:54:38:6a:50:17:f1:80:94:13:de:2d:14:1b: bb:06:f6:60:99:b8:d0:fb:0f:84:18:15:d0:23:59:b5:a4:31: 4a:ae:aa:21:36:28:b7:40:61:8c:47:e4:ae:8a:3e:b1:6a:4a: 99:56:ba:28:0d:10:9b:3d:ea:73:5b:8b:2c:94:68:7c:06:9d: bf:b2:b0:9b:d2:cf:3e:64:e7:75:be:73:56:f0:17:f0:bf:87: f5:b0:ed:13:8e:7a:ca:9c:aa:05:52:d1:5a:06:9e:8a:1e:57: d7:30:85:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDncwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhFMkMxMTAvBgNVBAUTKDk2OTBDNUQ2MDlGQ0U0NDJDMzVCOTkxNkQ1NjNGOUYx ODdCNjhBRDQwHhcNMjUwOTE4MTc1NDI4WhcNMjUwOTI1MTc1NDI4WjAYMRYwFAYD VQQDEw02OGNjNDc1NC02NjAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7M1RuC4/gCPxisJUWeVZ06BSjKP/40siJXlFKlN9+W2zk7x9ws047yUUkpZW RH7LQ2Kj9xyekx9lhPHJw1eK2frbT4CkCxe38MlMhZui+H5a4Dxe5RRZgMKeNYZZ Gop57QtUYlxghlMosjLpPFhVPm4cDZJKYdm3TS+tCi3dBoUp0gq16fW7zeyA+O1O /YEYZ1MMFMjpO5KMQMlIT5yWQ9t4ASVE7fRn8vFatS2rmrC/sPRsVC+j7yDk5Qme 5Ba52QYWjjzFgC8NQKX14Y9eTF9PF2F7PL6bnlcHjvafSGXf24hIxNTLrnq9/9Ar IWfbDz9e4eq6VmR5qA0GJrSZcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKRt6Y9h b6ZrtID2OwPcR3oZ1xeAMB8GA1UdIwQYMBaAFJaQxdYJ/ORCw1uZFtVj+fGHtorU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEUyQy8wRkUxRUQwNkEy RkIxMUU5QTUyNkE1N0VDNEY5QUUwMi9scERGMWduODVFTERXNWtXMVdQNThZZTJp dFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xwREYxZ244NUVMRFc1a1cxV1A1OFllMml0US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEUyQy8wRkUxRUQwNkEyRkIxMUU5QTUyNkE1N0VDNEY5QUUwMi9scERGMWduODVF TERXNWtXMVdQNThZZTJpdFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaqs7jJs1ENvy08r94Yyiui1wzdon+3VgaJGsCqNq112T432DfBDxk wrrcLhg1v4iXQGCTXE2UJYA9G8ll14Vwjli61tWLX4ECLh9VEIxKDxIIlj6v2mbA lasnd2Lbu0stgCCsPspB7I+ay0jCTAhWNgCMQan3rhx5J3q4GT3DKBS9GvyRsaY5 pj0blEbbHQLGW0f0X1Q4alAX8YCUE94tFBu7BvZgmbjQ+w+EGBXQI1m1pDFKrqoh Nii3QGGMR+Suij6xakqZVrooDRCbPepzW4sslGh8Bp2/srCb0s8+ZOd1vnNW8Bfw v4f1sO0TjnrKnKoFUtFaBp6KHlfXMIV8 -----END CERTIFICATE-----Generated at Fri Sep 19 00:57:56 2025 by rpki-client