$ rpki-client -vvf rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft File: lMnUO1O12FDZjg2i1e88ThwxIEU.mft (raw, json) Hash identifier: mff77J4cWfBm21Ey+QSz57RQRdkplTMjPlN+T+S4dj4= Subject key identifier: 40:79:17:53:30:83:39:1B:01:D5:35:74:C3:AE:D5:DF:1C:83:95:33 Authority key identifier: 94:C9:D4:3B:53:B5:D8:50:D9:8E:0D:A2:D5:EF:3C:4E:1C:31:20:45 Certificate issuer: /CN=A9120E21/serialNumber=94C9D43B53B5D850D98E0DA2D5EF3C4E1C312045 Certificate serial: 102F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMnUO1O12FDZjg2i1e88ThwxIEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft Manifest number: 102E Signing time: Wed 02 Jul 2025 17:37:22 +0000 Manifest this update: Wed 02 Jul 2025 17:37:22 +0000 Manifest next update: Wed 09 Jul 2025 17:37:22 +0000 Files and hashes: 1: lMnUO1O12FDZjg2i1e88ThwxIEU.crl (hash: UaMSSHR2B/HNj1eS7GjXIz7/iURAVZir+ZPFSWN/S7w=) 2: 90FBBCBEB3F311EFA5A0C630C4F9AE02.roa (hash: fjbjZHBA/FnAxnWN8e7Z/ROBTRwA1nOrCoj5zv4PAPA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.crl rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMnUO1O12FDZjg2i1e88ThwxIEU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:37:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4143 (0x102f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120E21, serialNumber=94C9D43B53B5D850D98E0DA2D5EF3C4E1C312045 Validity Not Before: Jul 2 17:37:22 2025 GMT Not After : Jul 9 17:37:22 2025 GMT Subject: CN=68656e52-c311 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:59:40:8d:f4:02:a5:8d:cf:8a:60:87:94:bb: b5:1c:11:66:c5:e0:f9:42:c1:8c:0e:ce:1c:ff:96: a3:85:43:29:b6:56:75:af:bf:27:f1:02:ea:49:a2: 9d:70:c7:40:48:02:02:86:53:18:dd:90:cd:cf:e4: 94:ca:70:06:d0:13:dd:f1:3e:84:a0:50:8b:5f:da: 3b:68:30:3c:71:d5:fc:40:8b:3b:c3:2e:1e:ee:33: d0:d3:e0:7a:4c:da:c5:bb:75:43:8d:d9:ae:d4:9c: 2a:fb:5e:1d:c8:db:74:0a:70:d3:14:62:d6:8f:6b: 21:a4:e8:08:86:6b:78:4d:ca:74:3c:9d:85:1c:84: dd:79:96:8a:fd:29:e6:6a:c9:f9:00:bf:36:6d:03: bb:8d:08:ca:29:3f:0a:17:a7:3a:73:fe:d0:13:83: 34:23:4c:1a:38:0d:c2:ed:70:5d:3c:41:9e:db:9a: 69:d3:87:e0:4b:7f:18:c6:38:c6:51:20:29:5d:ae: 48:e9:dc:13:4a:90:7e:22:91:ac:4a:aa:cb:ac:a0: a0:e8:60:64:a7:a1:ad:db:f9:7b:68:80:07:a6:09: 16:74:8d:2a:22:84:bd:ee:fa:79:f4:2c:42:7a:8f: a3:60:c9:12:64:89:0e:6c:2b:55:d6:89:18:f8:01: 80:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:79:17:53:30:83:39:1B:01:D5:35:74:C3:AE:D5:DF:1C:83:95:33 X509v3 Authority Key Identifier: keyid:94:C9:D4:3B:53:B5:D8:50:D9:8E:0D:A2:D5:EF:3C:4E:1C:31:20:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMnUO1O12FDZjg2i1e88ThwxIEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:ee:a7:25:04:3c:4d:5b:d8:96:3a:1b:31:e2:9f:57:03:e4: 2a:db:01:95:f0:b4:63:ef:a3:80:1d:58:58:c4:fc:a2:1d:65: 9f:0c:fc:04:84:d5:c7:92:de:ce:bd:2f:4c:ea:84:a8:6e:c6: 60:88:22:65:2f:21:5b:56:4b:fb:0a:5d:db:3f:7e:c0:1d:85: cc:1c:56:72:e6:ac:79:73:09:71:0d:76:90:29:2b:db:59:c6: 6a:f7:79:04:23:47:9d:4c:09:ae:98:78:da:69:d8:f1:04:38: 76:ce:37:91:a8:87:eb:dc:89:a0:d5:67:b6:d0:5e:81:ee:eb: 54:0a:d6:3d:98:fe:6d:90:80:e5:10:8f:98:f7:6a:08:3f:1c: 2a:5d:08:a2:f2:9d:a3:8a:e9:66:e5:5e:0e:b0:10:76:43:4b: 43:e6:e4:0c:2c:81:7e:ac:a7:dd:ef:41:68:dc:ca:a4:af:e2: bd:e3:98:ad:01:62:5c:57:21:2b:a2:52:e5:e8:35:59:8b:d0: a4:8c:61:40:fb:4d:b4:6c:9f:69:5f:69:5e:a3:6f:f8:eb:65: 28:f8:e0:be:88:93:b7:bf:ef:61:8e:a7:67:24:6f:7b:87:30: 3e:81:2d:94:d8:01:2b:08:2f:85:fa:85:a0:39:64:89:04:25: fe:82:65:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEC8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBFMjExMTAvBgNVBAUTKDk0QzlENDNCNTNCNUQ4NTBEOThFMERBMkQ1RUYzQzRF MUMzMTIwNDUwHhcNMjUwNzAyMTczNzIyWhcNMjUwNzA5MTczNzIyWjAYMRYwFAYD VQQDEw02ODY1NmU1Mi1jMzExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2llAjfQCpY3PimCHlLu1HBFmxeD5QsGMDs4c/5ajhUMptlZ1r78n8QLqSaKd cMdASAIChlMY3ZDNz+SUynAG0BPd8T6EoFCLX9o7aDA8cdX8QIs7wy4e7jPQ0+B6 TNrFu3VDjdmu1Jwq+14dyNt0CnDTFGLWj2shpOgIhmt4Tcp0PJ2FHITdeZaK/Snm asn5AL82bQO7jQjKKT8KF6c6c/7QE4M0I0waOA3C7XBdPEGe25pp04fgS38YxjjG USApXa5I6dwTSpB+IpGsSqrLrKCg6GBkp6Gt2/l7aIAHpgkWdI0qIoS97vp59CxC eo+jYMkSZIkObCtV1okY+AGAeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEB5F1Mw gzkbAdU1dMOu1d8cg5UzMB8GA1UdIwQYMBaAFJTJ1DtTtdhQ2Y4NotXvPE4cMSBF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEUyMS9BNUU5NTBENDQy NzMxMUU5QkFDMDAwNjVDNEY5QUUwMi9sTW5VTzFPMTJGRFpqZzJpMWU4OFRod3hJ RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xNblVPMU8xMkZEWmpnMmkxZTg4VGh3eElFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEUyMS9BNUU5NTBENDQyNzMxMUU5QkFDMDAwNjVDNEY5QUUwMi9sTW5VTzFPMTJG RFpqZzJpMWU4OFRod3hJRVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB97qclBDxNW9iWOhsx4p9XA+Qq2wGV8LRj76OAHVhYxPyiHWWfDPwE hNXHkt7OvS9M6oSobsZgiCJlLyFbVkv7Cl3bP37AHYXMHFZy5qx5cwlxDXaQKSvb WcZq93kEI0edTAmumHjaadjxBDh2zjeRqIfr3Img1We20F6B7utUCtY9mP5tkIDl EI+Y92oIPxwqXQii8p2jiulm5V4OsBB2Q0tD5uQMLIF+rKfd70Fo3Mqkr+K945it AWJcVyErolLl6DVZi9CkjGFA+020bJ9pX2leo2/462Uo+OC+iJO3v+9hjqdnJG97 hzA+gS2U2AErCC+F+oWgOWSJBCX+gmVP -----END CERTIFICATE-----Generated at Thu Jul 3 14:18:27 2025 by rpki-client