$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB96C/4D2BA8A013A211F091EB636DC4F9AE02/lbEEDPO_7AXOhB2vqalQi3CZfxw.mft File: lbEEDPO_7AXOhB2vqalQi3CZfxw.mft (raw, json) Hash identifier: xZ1XnWyNaoTaugqiIZHNBUSs1DABgL1R1JRQeYTvo1k= Subject key identifier: F7:E5:CD:0A:FC:76:64:24:F0:49:5F:BE:7A:E4:95:57:F3:49:A1:D3 Authority key identifier: 95:B1:04:0C:F3:BF:EC:05:CE:84:1D:AF:A9:A9:50:8B:70:99:7F:1C Certificate issuer: /CN=A91EB96C/serialNumber=95B1040CF3BFEC05CE841DAFA9A9508B70997F1C Certificate serial: 54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lbEEDPO_7AXOhB2vqalQi3CZfxw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB96C/4D2BA8A013A211F091EB636DC4F9AE02/lbEEDPO_7AXOhB2vqalQi3CZfxw.mft Manifest number: 53 Signing time: Wed 17 Sep 2025 07:58:13 +0000 Manifest this update: Wed 17 Sep 2025 07:58:12 +0000 Manifest next update: Wed 24 Sep 2025 07:58:12 +0000 Files and hashes: 1: lbEEDPO_7AXOhB2vqalQi3CZfxw.crl (hash: Ie+1qyCv2IBUicf9KqMjwmoGZgBBuRixObJf7ubMyaQ=) 2: 9EDE26C813A211F095A2D46DC4F9AE02.roa (hash: 9+x+gO7VZZ27bFoPVKXDoWm28PjRwAiv38lgAILmn1U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB96C/4D2BA8A013A211F091EB636DC4F9AE02/lbEEDPO_7AXOhB2vqalQi3CZfxw.crl rsync://rpki.apnic.net/member_repository/A91EB96C/4D2BA8A013A211F091EB636DC4F9AE02/lbEEDPO_7AXOhB2vqalQi3CZfxw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lbEEDPO_7AXOhB2vqalQi3CZfxw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 07:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 84 (0x54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB96C, serialNumber=95B1040CF3BFEC05CE841DAFA9A9508B70997F1C Validity Not Before: Sep 17 07:58:12 2025 GMT Not After : Sep 24 07:58:12 2025 GMT Subject: CN=68ca6a15-678d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:25:34:5f:90:bb:42:11:cd:12:1b:40:f3:43: d7:7f:68:4b:9f:2c:d6:d3:35:9f:d9:d1:c9:9f:77: 2c:da:01:30:08:6c:2d:0a:4e:66:21:2d:91:cd:81: 3e:cf:7f:b5:88:2b:17:20:12:96:61:94:d5:1d:ad: 20:73:f2:9f:78:cd:69:02:ce:bc:23:19:dd:96:42: 93:e5:57:e2:24:d5:9b:ee:c7:6e:5a:b4:b8:31:55: d8:95:8b:f0:f1:a9:51:65:56:f9:95:f2:65:bb:92: 5f:6a:b5:37:4c:6f:3e:bb:d3:c1:76:f3:f9:8a:3c: c9:d7:07:92:e9:95:58:37:0e:bc:a2:5a:10:1e:78: 6f:5f:57:81:dd:44:11:95:6a:c0:82:c5:02:fc:60: 3a:76:58:7e:2a:96:6f:00:79:2e:ca:9d:ed:7a:00: 93:27:4f:45:0b:38:c4:7a:61:ed:67:1a:af:16:58: d0:2a:b9:a9:f3:d7:4d:aa:82:1b:34:61:cb:dd:21: 15:41:d8:02:c1:0d:8b:5d:df:bd:20:7c:07:00:0f: f7:b2:a9:33:8a:bf:28:91:e2:fe:49:b1:f8:2a:83: 84:f5:98:96:c1:a4:19:1b:27:6f:9d:7e:c1:64:3c: f4:28:4a:68:44:27:f0:96:28:18:92:b8:3f:8d:43: 65:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:E5:CD:0A:FC:76:64:24:F0:49:5F:BE:7A:E4:95:57:F3:49:A1:D3 X509v3 Authority Key Identifier: keyid:95:B1:04:0C:F3:BF:EC:05:CE:84:1D:AF:A9:A9:50:8B:70:99:7F:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB96C/4D2BA8A013A211F091EB636DC4F9AE02/lbEEDPO_7AXOhB2vqalQi3CZfxw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lbEEDPO_7AXOhB2vqalQi3CZfxw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB96C/4D2BA8A013A211F091EB636DC4F9AE02/lbEEDPO_7AXOhB2vqalQi3CZfxw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:87:94:ca:9c:c4:af:8d:95:60:1d:fe:7f:95:b9:a2:67:d3: 2f:12:e5:c7:25:6b:a6:e5:05:5e:46:97:f9:d8:8c:6e:42:eb: cd:af:2f:21:9c:88:50:0b:67:f0:b5:11:72:c6:0c:21:0f:43: b4:4b:e1:99:c7:1e:af:a7:e9:98:67:91:2e:84:f9:b0:b1:21: b9:a4:90:5b:98:65:ca:1c:f2:a8:6a:63:29:78:74:f7:1b:d2: 67:b8:87:25:e0:21:5b:93:01:ac:cc:d5:30:ea:3a:8c:17:9c: 9e:81:d1:81:76:44:fa:08:df:a4:86:ba:af:91:d9:66:3f:83: 25:02:96:23:a6:f8:ef:06:99:9e:c4:79:38:d9:a1:24:42:6a: 67:46:ff:99:8a:29:88:75:45:d5:3f:25:fd:b9:0c:54:4d:08: 68:d1:65:a4:5a:c6:0e:5c:0c:24:1b:a4:bd:c4:f2:be:9f:b7: 8b:49:4f:63:0c:0b:93:45:6a:df:db:6f:7b:1d:9c:ff:03:c4: e9:54:94:bb:21:c0:44:e9:36:21:8b:c2:b7:fe:5e:55:4c:d3: 6c:f3:1a:10:f8:25:8a:ae:50:1e:3a:1e:2b:0f:90:85:07:80: 97:ba:b1:ee:14:e3:da:30:2c:5a:c5:74:35:0a:26:56:88:7f: a5:43:c9:32 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF Qjk2QzExMC8GA1UEBRMoOTVCMTA0MENGM0JGRUMwNUNFODQxREFGQTlBOTUwOEI3 MDk5N0YxQzAeFw0yNTA5MTcwNzU4MTJaFw0yNTA5MjQwNzU4MTJaMBgxFjAUBgNV BAMTDTY4Y2E2YTE1LTY3OGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDYJTRfkLtCEc0SG0DzQ9d/aEufLNbTNZ/Z0cmfdyzaATAIbC0KTmYhLZHNgT7P f7WIKxcgEpZhlNUdrSBz8p94zWkCzrwjGd2WQpPlV+Ik1Zvux25atLgxVdiVi/Dx qVFlVvmV8mW7kl9qtTdMbz6708F28/mKPMnXB5LplVg3DryiWhAeeG9fV4HdRBGV asCCxQL8YDp2WH4qlm8AeS7Kne16AJMnT0ULOMR6Ye1nGq8WWNAquanz102qghs0 YcvdIRVB2ALBDYtd370gfAcAD/eyqTOKvyiR4v5Jsfgqg4T1mJbBpBkbJ2+dfsFk PPQoSmhEJ/CWKBiSuD+NQ2UFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU9+XNCvx2 ZCTwSV++euSVV/NJodMwHwYDVR0jBBgwFoAUlbEEDPO/7AXOhB2vqalQi3CZfxww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVCOTZDLzREMkJBOEEwMTNB MjExRjA5MUVCNjM2REM0RjlBRTAyL2xiRUVEUE9fN0FYT2hCMnZxYWxRaTNDWmZ4 dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbGJFRURQT183QVhPaEIydnFhbFFpM0NaZnh3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVC OTZDLzREMkJBOEEwMTNBMjExRjA5MUVCNjM2REM0RjlBRTAyL2xiRUVEUE9fN0FY T2hCMnZxYWxRaTNDWmZ4dy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIaHlMqcxK+NlWAd/n+VuaJn0y8S5ccla6blBV5Gl/nYjG5C682vLyGc iFALZ/C1EXLGDCEPQ7RL4ZnHHq+n6ZhnkS6E+bCxIbmkkFuYZcoc8qhqYyl4dPcb 0me4hyXgIVuTAazM1TDqOowXnJ6B0YF2RPoI36SGuq+R2WY/gyUCliOm+O8GmZ7E eTjZoSRCamdG/5mKKYh1RdU/Jf25DFRNCGjRZaRaxg5cDCQbpL3E8r6ft4tJT2MM C5NFat/bb3sdnP8DxOlUlLshwETpNiGLwrf+XlVM02zzGhD4JYquUB46HisPkIUH gJe6se4U49owLFrFdDUKJlaIf6VDyTI= -----END CERTIFICATE-----Generated at Fri Sep 19 03:52:01 2025 by rpki-client