$ rpki-client -vvf rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.mft File: L4vvSDpBiuHAMSMIGG70zXskZuU.mft (raw, json) Hash identifier: qlK//jytsPD+dTCau2php+akZ3rCrUkXOBzGTkAzoRw= Subject key identifier: 5A:24:9B:EE:2E:95:78:8D:77:79:5C:44:D9:EF:05:34:8F:2B:81:1F Authority key identifier: 2F:8B:EF:48:3A:41:8A:E1:C0:31:23:08:18:6E:F4:CD:7B:24:66:E5 Certificate issuer: /CN=A9125758/serialNumber=2F8BEF483A418AE1C0312308186EF4CD7B2466E5 Certificate serial: 0258 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4vvSDpBiuHAMSMIGG70zXskZuU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.mft Manifest number: 0254 Signing time: Sat 23 Aug 2025 02:02:40 +0000 Manifest this update: Sat 23 Aug 2025 02:02:39 +0000 Manifest next update: Sat 30 Aug 2025 02:02:39 +0000 Files and hashes: 1: L4vvSDpBiuHAMSMIGG70zXskZuU.crl (hash: 9GI7vXJgX9U00GJSr82GB6SXpUoIr7NIOmH78TS/u0c=) 2: 117300B62CDB11EDB2E1DD0DC4F9AE02.roa (hash: SvlTkdhfP2Vy/Mu+17rsFwHULfYPp5POSAbZ7IEAOKw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.crl rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4vvSDpBiuHAMSMIGG70zXskZuU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:02:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 600 (0x258) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125758, serialNumber=2F8BEF483A418AE1C0312308186EF4CD7B2466E5 Validity Not Before: Aug 23 02:02:39 2025 GMT Not After : Aug 30 02:02:39 2025 GMT Subject: CN=68a92140-2bf6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ea:20:5e:5e:06:f5:97:5b:13:ab:9f:75:5c: 9f:63:46:49:cd:41:3c:c9:96:ca:88:34:e7:0d:43: da:87:7a:12:ae:84:6b:ae:f5:a1:e7:f7:6c:27:f6: 21:64:f4:cb:03:30:1f:a9:6a:b5:5b:59:3b:3c:c2: 58:16:4e:ae:ed:35:c1:35:3f:33:cc:50:5b:7a:e7: 46:a7:2e:45:6d:6c:99:09:68:d1:e8:44:c8:25:df: 58:7f:b2:c0:38:40:1e:c1:e0:7c:30:ea:39:f0:c7: 04:67:00:70:76:25:fb:5b:af:40:49:9c:9b:05:5d: 2e:94:d6:e7:19:c4:60:ab:2a:2c:19:aa:b7:ac:76: 4e:82:b1:ab:c6:b2:fe:27:03:4b:6e:3e:e7:58:65: 9a:1a:26:b4:d0:dd:5e:9f:fa:7d:9a:b0:32:55:32: 7d:6d:95:0a:58:20:80:74:4a:73:e1:b0:68:47:b6: bb:4e:77:47:59:1f:a8:98:28:1b:46:81:ba:97:9c: d2:e0:0d:49:68:f5:99:a5:6e:2f:68:9e:06:e8:6b: 94:ae:c8:a8:f2:cb:07:e1:57:38:42:f0:f7:6c:1f: d4:c1:94:c1:53:c9:46:c4:a5:14:e7:3a:bb:48:25: 45:ef:88:17:3c:45:63:8d:5e:57:34:50:a3:e0:b6: eb:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:24:9B:EE:2E:95:78:8D:77:79:5C:44:D9:EF:05:34:8F:2B:81:1F X509v3 Authority Key Identifier: keyid:2F:8B:EF:48:3A:41:8A:E1:C0:31:23:08:18:6E:F4:CD:7B:24:66:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4vvSDpBiuHAMSMIGG70zXskZuU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:8f:13:b1:9a:8d:79:b7:2e:6e:28:c7:9d:96:db:a5:bf:83: 8f:2f:6c:fa:b6:c1:9f:82:88:bf:e1:75:ad:5b:39:bc:40:23: 70:ed:d3:7c:be:87:f8:fa:db:8e:08:bf:ca:2c:58:03:0b:ce: ee:41:11:08:4d:f2:62:27:6c:ab:1c:b3:35:26:e2:86:d8:c1: 88:7f:24:ec:d3:44:f7:3f:ec:6c:e0:b3:da:1d:db:8d:fc:1a: c0:ae:62:87:31:2b:d1:07:cb:30:e2:0b:08:6b:e7:25:75:b4: 14:5b:aa:44:71:4c:fd:a7:65:14:9d:74:a9:76:47:9d:08:ba: 59:78:40:35:42:df:7f:ab:2a:94:18:1b:21:4f:69:fe:b6:b2: 44:d3:99:e6:8f:4a:0d:b0:0a:08:37:92:09:c1:63:a8:b3:3f: fe:7c:85:c6:38:b2:77:bf:d7:3d:6a:d1:1a:8d:4a:bb:87:fc: 85:19:f6:11:1e:a9:3b:dd:c2:16:bf:68:aa:55:45:9f:aa:a4: 40:73:e3:bd:9f:3c:09:89:91:d7:aa:5a:a9:01:01:6d:85:27: 78:a1:2d:67:fe:36:8f:5a:7b:f2:78:2b:98:e0:67:b4:ed:5a: 04:b6:a9:5c:ac:64:74:55:56:47:86:cb:b1:ed:4b:e5:21:7b: c8:6b:28:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU3NTgxMTAvBgNVBAUTKDJGOEJFRjQ4M0E0MThBRTFDMDMxMjMwODE4NkVGNENE N0IyNDY2RTUwHhcNMjUwODIzMDIwMjM5WhcNMjUwODMwMDIwMjM5WjAYMRYwFAYD VQQDEw02OGE5MjE0MC0yYmY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsOogXl4G9ZdbE6ufdVyfY0ZJzUE8yZbKiDTnDUPah3oSroRrrvWh5/dsJ/Yh ZPTLAzAfqWq1W1k7PMJYFk6u7TXBNT8zzFBbeudGpy5FbWyZCWjR6ETIJd9Yf7LA OEAeweB8MOo58McEZwBwdiX7W69ASZybBV0ulNbnGcRgqyosGaq3rHZOgrGrxrL+ JwNLbj7nWGWaGia00N1en/p9mrAyVTJ9bZUKWCCAdEpz4bBoR7a7TndHWR+omCgb RoG6l5zS4A1JaPWZpW4vaJ4G6GuUrsio8ssH4Vc4QvD3bB/UwZTBU8lGxKUU5zq7 SCVF74gXPEVjjV5XNFCj4Lbr6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFokm+4u lXiNd3lcRNnvBTSPK4EfMB8GA1UdIwQYMBaAFC+L70g6QYrhwDEjCBhu9M17JGbl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTc1OC83MUVCRTdDMjJD RDcxMUVEQjAyQjFEMTlDNEY5QUUwMi9MNHZ2U0RwQml1SEFNU01JR0c3MHpYc2ta dVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0w0dnZTRHBCaXVIQU1TTUlHRzcwelhza1p1VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NTc1OC83MUVCRTdDMjJDRDcxMUVEQjAyQjFEMTlDNEY5QUUwMi9MNHZ2U0RwQml1 SEFNU01JR0c3MHpYc2tadVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApjxOxmo15ty5uKMedltulv4OPL2z6tsGfgoi/4XWtWzm8QCNw7dN8 vof4+tuOCL/KLFgDC87uQREITfJiJ2yrHLM1JuKG2MGIfyTs00T3P+xs4LPaHduN /BrArmKHMSvRB8sw4gsIa+cldbQUW6pEcUz9p2UUnXSpdkedCLpZeEA1Qt9/qyqU GBshT2n+trJE05nmj0oNsAoIN5IJwWOosz/+fIXGOLJ3v9c9atEajUq7h/yFGfYR Hqk73cIWv2iqVUWfqqRAc+O9nzwJiZHXqlqpAQFthSd4oS1n/jaPWnvyeCuY4Ge0 7VoEtqlcrGR0VVZHhsux7UvlIXvIayh8 -----END CERTIFICATE-----Generated at Sat Aug 23 21:35:30 2025 by rpki-client