$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft File: lHy2dKhYzZGupVJro2aKEeSey5M.mft (raw, json) Hash identifier: o1kJyF9xRtkZdCiFNqNb1cho7FUK+kdY++E9wBsX6e0= Subject key identifier: 65:C4:E1:D3:A2:AF:8C:97:F8:D9:07:D5:37:FF:45:E6:E7:6C:2A:21 Authority key identifier: 94:7C:B6:74:A8:58:CD:91:AE:A5:52:6B:A3:66:8A:11:E4:9E:CB:93 Certificate issuer: /CN=A91DFC30/serialNumber=947CB674A858CD91AEA5526BA3668A11E49ECB93 Certificate serial: 0414 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft Manifest number: 040B Signing time: Sun 07 Sep 2025 00:50:28 +0000 Manifest this update: Sun 07 Sep 2025 00:50:28 +0000 Manifest next update: Sun 14 Sep 2025 00:50:28 +0000 Files and hashes: 1: lHy2dKhYzZGupVJro2aKEeSey5M.crl (hash: KYxypSdOuxTEu/jIpSXPh+tvHeqwfkjcpdAE9rIuqO0=) 2: 13F5D28685B111ECB675B552C4F9AE02.roa (hash: wg979tEV/edC9z/60lEEUA1wH6+Atveb0Z20mtMK9/g=) 3: 147D51CA85B111ECB675B552C4F9AE02.roa (hash: e9cwg8d7bC8r2DHgx/kL7/A4+KHztZ7rWF6Yv+XqYD8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.crl rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 00:50:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1044 (0x414) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFC30, serialNumber=947CB674A858CD91AEA5526BA3668A11E49ECB93 Validity Not Before: Sep 7 00:50:28 2025 GMT Not After : Sep 14 00:50:28 2025 GMT Subject: CN=68bcd6d4-cf4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:38:1b:01:d0:3f:79:70:40:e1:50:ec:c5:e6: b4:01:0e:4c:a6:b0:78:00:2a:4f:95:9b:08:cb:cb: a1:72:a6:19:03:c8:33:4d:40:82:d3:66:8b:f9:66: a3:c4:79:8d:df:a4:55:db:89:90:7f:76:77:4a:54: 66:9e:90:60:6e:07:f3:01:c5:f3:a1:5f:e0:80:cd: 0d:b6:01:34:25:a1:ac:aa:4b:aa:40:16:f4:a9:59: 29:45:cd:3c:5c:9e:55:20:84:ca:b3:ef:56:5c:04: c1:a8:f9:a3:28:66:24:59:eb:21:ab:06:af:d2:fb: 51:39:f6:fa:a6:c6:56:be:a7:f1:75:ea:72:b9:52: b1:de:25:e3:a7:d4:03:24:af:88:99:fb:5a:ad:77: 0c:88:2b:e2:28:96:1d:38:ca:00:b0:c0:90:ea:0b: c0:fa:47:c0:35:2b:c3:0c:55:b3:40:f7:7a:e2:a8: 99:93:ff:29:c2:fe:af:6d:b0:e1:1b:66:c6:09:9a: 74:5b:e0:02:50:e3:7d:7e:1b:40:4d:1c:69:af:3b: 16:4e:7f:bc:76:b8:29:87:e3:bb:31:78:75:39:33: 79:fe:ed:0d:b2:18:92:46:18:cb:b8:be:8f:56:a2: c9:b0:f2:2e:f6:6b:3c:e7:5a:1c:02:7c:ce:29:d7: 76:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:C4:E1:D3:A2:AF:8C:97:F8:D9:07:D5:37:FF:45:E6:E7:6C:2A:21 X509v3 Authority Key Identifier: keyid:94:7C:B6:74:A8:58:CD:91:AE:A5:52:6B:A3:66:8A:11:E4:9E:CB:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:b0:16:8e:be:b2:49:eb:55:33:b7:5a:d7:52:aa:2f:21:9b: 60:2b:20:82:07:ec:97:0d:35:7f:3d:02:c6:3a:38:40:f1:21: c7:01:47:8e:af:2c:d8:b5:6b:c2:f2:f8:ab:e1:1f:cb:da:21: 95:43:16:15:35:dd:2f:ac:25:ea:18:6c:67:f3:97:45:8d:5c: ea:93:5e:eb:5e:a4:bd:2f:d1:a9:77:72:75:d2:30:b0:5e:ca: 3d:3f:e6:c4:fa:07:09:18:a1:50:fa:d5:f6:de:93:6a:3e:7b: 0b:43:3c:cb:11:2b:fb:b1:a6:22:ad:40:7f:76:ac:0e:af:5b: bb:9f:a7:71:db:ff:36:4b:b2:80:e2:c5:ad:75:12:39:31:7c: 39:3d:00:af:ee:41:c2:10:d1:93:49:3f:44:94:3a:08:a7:bc: a0:60:47:cf:0c:72:05:7b:cd:98:bd:17:39:eb:44:29:04:ac: cf:a8:17:c5:07:09:a1:43:a7:3d:c5:42:35:15:43:33:5f:9d: 35:76:49:e3:79:39:e1:8d:5c:66:d4:9b:3a:c3:2d:4e:72:be: d8:93:3a:7c:3d:99:7c:c7:e7:f1:d3:e2:50:4e:92:ec:d2:27: a7:16:62:17:28:fd:51:84:5f:c0:b9:24:84:c4:2b:f6:f4:66: 0b:7a:fd:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZDMzAxMTAvBgNVBAUTKDk0N0NCNjc0QTg1OENEOTFBRUE1NTI2QkEzNjY4QTEx RTQ5RUNCOTMwHhcNMjUwOTA3MDA1MDI4WhcNMjUwOTE0MDA1MDI4WjAYMRYwFAYD VQQDEw02OGJjZDZkNC1jZjRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyTgbAdA/eXBA4VDsxea0AQ5MprB4ACpPlZsIy8uhcqYZA8gzTUCC02aL+Waj xHmN36RV24mQf3Z3SlRmnpBgbgfzAcXzoV/ggM0NtgE0JaGsqkuqQBb0qVkpRc08 XJ5VIITKs+9WXATBqPmjKGYkWeshqwav0vtROfb6psZWvqfxdepyuVKx3iXjp9QD JK+ImftarXcMiCviKJYdOMoAsMCQ6gvA+kfANSvDDFWzQPd64qiZk/8pwv6vbbDh G2bGCZp0W+ACUON9fhtATRxprzsWTn+8drgph+O7MXh1OTN5/u0NshiSRhjLuL6P VqLJsPIu9ms851ocAnzOKdd2xwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGXE4dOi r4yX+NkH1Tf/RebnbCohMB8GA1UdIwQYMBaAFJR8tnSoWM2RrqVSa6NmihHknsuT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkMzMC8xMTJBRjFBQzg1 QUQxMUVDQjM2RjQxNERDNEY5QUUwMi9sSHkyZEtoWXpaR3VwVkpybzJhS0VlU2V5 NU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xIeTJkS2hZelpHdXBWSnJvMmFLRWVTZXk1TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RkMzMC8xMTJBRjFBQzg1QUQxMUVDQjM2RjQxNERDNEY5QUUwMi9sSHkyZEtoWXpa R3VwVkpybzJhS0VlU2V5NU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBusBaOvrJJ61Uzt1rXUqovIZtgKyCCB+yXDTV/PQLGOjhA8SHHAUeO ryzYtWvC8vir4R/L2iGVQxYVNd0vrCXqGGxn85dFjVzqk17rXqS9L9Gpd3J10jCw Xso9P+bE+gcJGKFQ+tX23pNqPnsLQzzLESv7saYirUB/dqwOr1u7n6dx2/82S7KA 4sWtdRI5MXw5PQCv7kHCENGTST9ElDoIp7ygYEfPDHIFe82YvRc560QpBKzPqBfF BwmhQ6c9xUI1FUMzX501dknjeTnhjVxm1Js6wy1Ocr7Ykzp8PZl8x+fx0+JQTpLs 0ienFmIXKP1RhF/AuSSExCv29GYLev2q -----END CERTIFICATE-----Generated at Mon Sep 8 17:52:39 2025 by rpki-client