$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE6E8/7BCAFF02091D11EA93BD9E56C4F9AE02/limscQ0-IdWZGSjVmk22VBGpa_8.mft File: limscQ0-IdWZGSjVmk22VBGpa_8.mft (raw, json) Hash identifier: UpfCaC7HZIsAZ72j69X656HDOvC3dZOF5K4z57p6ND0= Subject key identifier: 71:AE:91:02:E0:C2:05:FE:ED:96:BE:A3:9C:AA:AA:6A:1A:80:E2:BC Authority key identifier: 96:29:AC:71:0D:3E:21:D5:99:19:28:D5:9A:4D:B6:54:11:A9:6B:FF Certificate issuer: /CN=A91EE6E8/serialNumber=9629AC710D3E21D5991928D59A4DB65411A96BFF Certificate serial: 0C63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/limscQ0-IdWZGSjVmk22VBGpa_8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE6E8/7BCAFF02091D11EA93BD9E56C4F9AE02/limscQ0-IdWZGSjVmk22VBGpa_8.mft Manifest number: 0C5A Signing time: Sun 24 Aug 2025 18:27:54 +0000 Manifest this update: Sun 24 Aug 2025 18:27:53 +0000 Manifest next update: Sun 31 Aug 2025 18:27:53 +0000 Files and hashes: 1: limscQ0-IdWZGSjVmk22VBGpa_8.crl (hash: 25DP8GHlsUdL2tKIZyviDBOZ2VMOdUDgFIQWJmqDth8=) 2: 9CDAADC2091E11EAB375615BC4F9AE02.roa (hash: cTVFkw9EC/7+0AhzRm+1VoJiYeWjlXwK0sbhIidN0dw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE6E8/7BCAFF02091D11EA93BD9E56C4F9AE02/limscQ0-IdWZGSjVmk22VBGpa_8.crl rsync://rpki.apnic.net/member_repository/A91EE6E8/7BCAFF02091D11EA93BD9E56C4F9AE02/limscQ0-IdWZGSjVmk22VBGpa_8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/limscQ0-IdWZGSjVmk22VBGpa_8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 18:27:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3171 (0xc63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE6E8, serialNumber=9629AC710D3E21D5991928D59A4DB65411A96BFF Validity Not Before: Aug 24 18:27:53 2025 GMT Not After : Aug 31 18:27:53 2025 GMT Subject: CN=68ab59aa-8975 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:d7:cc:7c:16:c6:da:98:e9:b2:09:70:14:61: f2:b5:1c:b1:22:80:02:6e:8d:4f:bc:ec:4a:29:30: d4:da:4f:7d:2b:8d:8c:67:a8:91:2c:66:96:26:20: a6:db:a5:8a:59:c7:58:7c:db:93:24:07:9d:e4:94: 03:84:a8:18:6d:fa:00:50:8b:da:b9:6e:45:2e:76: 3f:8e:e9:ec:92:dc:e0:e9:5c:da:ca:26:12:99:1b: eb:3a:09:cd:eb:35:d9:39:14:3d:9d:22:f9:d4:e0: ca:f6:a2:8a:13:3f:0e:a0:c7:7d:97:69:bd:b8:cd: c7:4c:1c:b8:11:ec:64:a1:d5:81:05:b7:2f:10:40: c7:97:2f:1e:68:a1:ae:45:b7:cd:00:c2:91:44:15: ac:47:17:33:6f:3e:9a:43:01:88:e3:31:2f:6a:54: b9:44:23:38:b3:6f:2f:ac:74:a0:60:90:38:09:0a: a1:61:04:c9:8a:9a:22:d6:83:71:d4:b7:92:6d:e2: 49:89:b8:0a:59:65:3d:c2:fc:01:05:37:12:4a:54: ce:98:2b:71:ec:df:03:ec:9f:be:9c:de:45:ff:c3: c4:8c:4d:86:29:4a:fa:f3:60:82:66:9f:29:0c:3e: cb:4b:c6:3d:9c:78:d9:17:74:e4:9f:40:68:d7:8e: 57:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:AE:91:02:E0:C2:05:FE:ED:96:BE:A3:9C:AA:AA:6A:1A:80:E2:BC X509v3 Authority Key Identifier: keyid:96:29:AC:71:0D:3E:21:D5:99:19:28:D5:9A:4D:B6:54:11:A9:6B:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE6E8/7BCAFF02091D11EA93BD9E56C4F9AE02/limscQ0-IdWZGSjVmk22VBGpa_8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/limscQ0-IdWZGSjVmk22VBGpa_8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE6E8/7BCAFF02091D11EA93BD9E56C4F9AE02/limscQ0-IdWZGSjVmk22VBGpa_8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:98:8a:a9:dd:bf:e5:2f:71:fe:e4:72:c9:01:30:5c:69:c1: 3a:b0:6a:6d:f1:a9:32:77:af:47:42:ca:ba:7a:97:ae:c9:b5: 3a:bf:eb:4b:4b:cc:89:e2:21:bf:b0:10:cf:e8:f2:c0:d1:90: 69:23:90:43:4e:7d:41:6e:24:c6:01:32:60:80:ab:aa:86:a4: 84:3d:35:a8:df:a8:bb:6e:da:3c:03:8d:9b:1d:99:7f:52:ab: de:86:4f:5b:ff:e5:57:dd:5f:47:65:dc:3a:60:f3:7e:ed:46: c9:fa:74:13:a7:90:96:78:60:05:a0:5f:1d:9d:8e:f8:76:be: 51:4f:44:d4:22:a7:71:77:02:a4:87:bf:2f:cd:9f:7e:de:cc: 99:ff:ae:1b:54:4b:9e:01:53:af:81:5a:ad:72:88:9d:47:3c: 49:fe:c1:a9:bf:16:55:f7:20:92:3f:3c:20:a8:6c:c9:83:08: 9b:da:2e:91:2c:fa:6d:35:e9:7d:c8:fb:e8:e9:01:ae:f9:ac: 03:29:48:67:ed:7c:c8:ae:8f:20:39:d7:f8:5f:d0:29:c9:cf: ef:31:ee:6d:4c:af:16:dd:ce:7c:e2:82:40:76:bf:13:b8:3d: 36:5b:36:cd:45:b5:11:b0:06:56:00:d8:19:cb:f2:e8:31:d4: 68:06:26:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU2RTgxMTAvBgNVBAUTKDk2MjlBQzcxMEQzRTIxRDU5OTE5MjhENTlBNERCNjU0 MTFBOTZCRkYwHhcNMjUwODI0MTgyNzUzWhcNMjUwODMxMTgyNzUzWjAYMRYwFAYD VQQDEw02OGFiNTlhYS04OTc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA39fMfBbG2pjpsglwFGHytRyxIoACbo1PvOxKKTDU2k99K42MZ6iRLGaWJiCm 26WKWcdYfNuTJAed5JQDhKgYbfoAUIvauW5FLnY/junsktzg6VzayiYSmRvrOgnN 6zXZORQ9nSL51ODK9qKKEz8OoMd9l2m9uM3HTBy4EexkodWBBbcvEEDHly8eaKGu RbfNAMKRRBWsRxczbz6aQwGI4zEvalS5RCM4s28vrHSgYJA4CQqhYQTJipoi1oNx 1LeSbeJJibgKWWU9wvwBBTcSSlTOmCtx7N8D7J++nN5F/8PEjE2GKUr682CCZp8p DD7LS8Y9nHjZF3Tkn0Bo145XhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHGukQLg wgX+7Za+o5yqqmoagOK8MB8GA1UdIwQYMBaAFJYprHENPiHVmRko1ZpNtlQRqWv/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTZFOC83QkNBRkYwMjA5 MUQxMUVBOTNCRDlFNTZDNEY5QUUwMi9saW1zY1EwLUlkV1pHU2pWbWsyMlZCR3Bh XzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xpbXNjUTAtSWRXWkdTalZtazIyVkJHcGFfOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTZFOC83QkNBRkYwMjA5MUQxMUVBOTNCRDlFNTZDNEY5QUUwMi9saW1zY1EwLUlk V1pHU2pWbWsyMlZCR3BhXzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcmIqp3b/lL3H+5HLJATBcacE6sGpt8akyd69HQsq6epeuybU6v+tL S8yJ4iG/sBDP6PLA0ZBpI5BDTn1BbiTGATJggKuqhqSEPTWo36i7bto8A42bHZl/ Uqvehk9b/+VX3V9HZdw6YPN+7UbJ+nQTp5CWeGAFoF8dnY74dr5RT0TUIqdxdwKk h78vzZ9+3syZ/64bVEueAVOvgVqtcoidRzxJ/sGpvxZV9yCSPzwgqGzJgwib2i6R LPptNel9yPvo6QGu+awDKUhn7XzIro8gOdf4X9Apyc/vMe5tTK8W3c584oJAdr8T uD02WzbNRbURsAZWANgZy/LoMdRoBiZi -----END CERTIFICATE-----Generated at Sun Aug 24 21:52:12 2025 by rpki-client