$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft File: lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft (raw, json) Hash identifier: i+AY19duxsH8Vl+ivxqjlTf6GOA4eoMgXeR8Ab1Ujuw= Subject key identifier: D2:C7:84:6E:F4:CD:44:4F:3F:F7:FC:21:02:A3:98:17:8E:30:A5:82 Authority key identifier: 95:06:8B:B3:0A:BC:7E:00:7F:D8:38:7E:4D:E0:A8:3E:FA:AD:D4:72 Certificate issuer: /CN=A91E9DF8/serialNumber=95068BB30ABC7E007FD8387E4DE0A83EFAADD472 Certificate serial: 060E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQaLswq8fgB_2Dh-TeCoPvqt1HI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft Manifest number: 0608 Signing time: Wed 20 Aug 2025 22:56:34 +0000 Manifest this update: Wed 20 Aug 2025 22:56:33 +0000 Manifest next update: Wed 27 Aug 2025 22:56:33 +0000 Files and hashes: 1: lQaLswq8fgB_2Dh-TeCoPvqt1HI.crl (hash: RLI6jmKxNN+cyZ8EvJOioymTUfGn54fSImsec92YLTM=) 2: A8086732B6DA11EBB7B67954C4F9AE02.roa (hash: ldWjzJ4l8BsIeHREFrvU51ElQcTYEq5MkB9HbZsC/bI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.crl rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQaLswq8fgB_2Dh-TeCoPvqt1HI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 22:56:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1550 (0x60e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9DF8, serialNumber=95068BB30ABC7E007FD8387E4DE0A83EFAADD472 Validity Not Before: Aug 20 22:56:33 2025 GMT Not After : Aug 27 22:56:33 2025 GMT Subject: CN=68a652a2-181b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:a9:c9:7e:82:ae:ec:73:48:70:8c:04:25:3f: f2:50:74:6b:67:33:a8:76:19:29:9a:b0:d8:a6:76: a9:72:4f:3f:e4:1b:dd:6e:68:1e:6f:8e:55:23:32: b7:12:66:ca:ba:7b:0a:da:7c:a2:dc:3f:db:04:ac: 8b:97:5c:82:5c:3f:ae:63:d1:21:92:c8:50:f6:14: 99:3a:ff:93:3c:0c:28:9b:be:53:1e:24:14:86:39: 22:0c:39:22:b9:6c:04:17:21:3e:5e:7f:bb:21:79: f7:65:72:52:ae:5b:ba:a2:f7:bb:19:8c:4a:55:69: ea:0a:5a:a3:65:e7:26:22:44:33:b1:a0:e3:c6:be: 22:eb:65:1c:c1:38:0c:14:1e:3c:16:a8:3d:d8:a4: b0:d1:4b:7b:b4:1c:99:d5:4f:e3:42:41:f7:2c:4b: d6:bb:d0:82:dd:ef:b1:7f:25:89:6b:49:11:bd:4b: 84:09:37:fe:72:67:a4:21:1a:85:dc:f6:bb:c7:f7: 71:7b:25:69:2c:53:8c:aa:9f:8c:56:b5:97:c7:d5: b1:be:3b:f5:6c:60:25:34:08:8a:bf:c1:bb:73:af: 5c:2b:da:d1:0b:79:ae:d4:a0:f8:4d:f5:c8:1a:6a: 05:d0:07:5a:de:61:8b:e5:fb:df:19:fd:d0:7d:87: 07:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:C7:84:6E:F4:CD:44:4F:3F:F7:FC:21:02:A3:98:17:8E:30:A5:82 X509v3 Authority Key Identifier: keyid:95:06:8B:B3:0A:BC:7E:00:7F:D8:38:7E:4D:E0:A8:3E:FA:AD:D4:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQaLswq8fgB_2Dh-TeCoPvqt1HI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:3f:fa:c3:f5:e9:95:76:6d:34:bf:fa:9c:ec:ed:ed:a5:38: 6e:9d:95:3c:38:cf:b7:97:ea:ee:5c:05:9c:00:13:bc:26:53: 7b:8e:7e:7c:94:c0:6d:d6:14:1c:d5:23:9f:dc:fd:20:53:1d: 4e:72:96:6b:9c:28:eb:30:11:98:77:ac:bc:53:79:15:3b:a3: 8a:bf:ae:ac:50:27:ac:cb:86:10:73:0e:e4:df:4c:01:7a:10: 5a:ce:19:f8:e2:0b:6f:e9:c5:33:13:c8:aa:2f:37:ae:74:70: 92:f7:d1:5f:38:73:13:6b:10:d8:b4:5b:29:1d:52:2d:b0:a6: 73:af:f6:4a:d2:19:0c:e0:a7:5e:a7:90:46:f0:20:ce:52:19: 1c:09:3f:c8:8b:23:0d:0b:0a:e5:09:95:0c:bd:1d:c3:22:bc: c2:9e:4f:64:3b:99:20:ab:f9:54:22:cf:5e:3b:21:67:7a:1a: 40:e0:2a:4a:68:fa:26:85:8c:e0:d4:df:e5:fc:8f:76:f9:66: 16:0c:c8:20:1d:74:fc:4d:05:b5:79:60:d0:ef:af:78:82:ee: 30:ab:25:f7:10:c9:90:c4:63:50:37:3b:07:67:71:db:bf:0e: 2a:d1:c9:9f:04:a2:1a:4b:20:aa:7e:37:94:2e:59:75:71:3f: 3a:93:ee:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBg4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlERjgxMTAvBgNVBAUTKDk1MDY4QkIzMEFCQzdFMDA3RkQ4Mzg3RTRERTBBODNF RkFBREQ0NzIwHhcNMjUwODIwMjI1NjMzWhcNMjUwODI3MjI1NjMzWjAYMRYwFAYD VQQDEw02OGE2NTJhMi0xODFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvanJfoKu7HNIcIwEJT/yUHRrZzOodhkpmrDYpnapck8/5Bvdbmgeb45VIzK3 EmbKunsK2nyi3D/bBKyLl1yCXD+uY9EhkshQ9hSZOv+TPAwom75THiQUhjkiDDki uWwEFyE+Xn+7IXn3ZXJSrlu6ove7GYxKVWnqClqjZecmIkQzsaDjxr4i62UcwTgM FB48Fqg92KSw0Ut7tByZ1U/jQkH3LEvWu9CC3e+xfyWJa0kRvUuECTf+cmekIRqF 3Pa7x/dxeyVpLFOMqp+MVrWXx9Wxvjv1bGAlNAiKv8G7c69cK9rRC3mu1KD4TfXI GmoF0Ada3mGL5fvfGf3QfYcHSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNLHhG70 zURPP/f8IQKjmBeOMKWCMB8GA1UdIwQYMBaAFJUGi7MKvH4Af9g4fk3gqD76rdRy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOURGOC80QjNCODgxRUI2 RDkxMUVCOEY4NjU1NTRDNEY5QUUwMi9sUWFMc3dxOGZnQl8yRGgtVGVDb1B2cXQx SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xRYUxzd3E4ZmdCXzJEaC1UZUNvUHZxdDFISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OURGOC80QjNCODgxRUI2RDkxMUVCOEY4NjU1NTRDNEY5QUUwMi9sUWFMc3dxOGZn Ql8yRGgtVGVDb1B2cXQxSEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXP/rD9emVdm00v/qc7O3tpThunZU8OM+3l+ruXAWcABO8JlN7jn58 lMBt1hQc1SOf3P0gUx1OcpZrnCjrMBGYd6y8U3kVO6OKv66sUCesy4YQcw7k30wB ehBazhn44gtv6cUzE8iqLzeudHCS99FfOHMTaxDYtFspHVItsKZzr/ZK0hkM4Kde p5BG8CDOUhkcCT/IiyMNCwrlCZUMvR3DIrzCnk9kO5kgq/lUIs9eOyFnehpA4CpK aPomhYzg1N/l/I92+WYWDMggHXT8TQW1eWDQ7694gu4wqyX3EMmQxGNQNzsHZ3Hb vw4q0cmfBKIaSyCqfjeULll1cT86k+42 -----END CERTIFICATE-----Generated at Fri Aug 22 16:29:53 2025 by rpki-client