$ rpki-client -vvf rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.mft File: lSpNx8TWEJWYvu5awKIG0nuFxWo.mft (raw, json) Hash identifier: NQZC0PWjZB1VTW67O0MEaze3tlAcN//nqSjgQZVSsz4= Subject key identifier: D4:49:B6:97:09:B4:50:CD:68:11:F4:0A:89:58:5D:54:B9:F7:EC:7A Authority key identifier: 95:2A:4D:C7:C4:D6:10:95:98:BE:EE:5A:C0:A2:06:D2:7B:85:C5:6A Certificate issuer: /CN=A912D71D/serialNumber=952A4DC7C4D6109598BEEE5AC0A206D27B85C56A Certificate serial: 17 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSpNx8TWEJWYvu5awKIG0nuFxWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.mft Manifest number: 16 Signing time: Thu 03 Jul 2025 08:15:10 +0000 Manifest this update: Thu 03 Jul 2025 08:15:10 +0000 Manifest next update: Thu 10 Jul 2025 08:15:10 +0000 Files and hashes: 1: lSpNx8TWEJWYvu5awKIG0nuFxWo.crl (hash: zGwdu+qx4tFQZ97PUO6wWDQETN0Bv076//Kjqk+YmYk=) 2: 4002AE6236CF11F0AA705D26C4F9AE02.roa (hash: mqzypacDD7xIbwYv9NK8trW6oiDHkBTrKySSx1uZLFU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.crl rsync://rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSpNx8TWEJWYvu5awKIG0nuFxWo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23 (0x17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D71D, serialNumber=952A4DC7C4D6109598BEEE5AC0A206D27B85C56A Validity Not Before: Jul 3 08:15:10 2025 GMT Not After : Jul 10 08:15:10 2025 GMT Subject: CN=68663c0e-d5f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:af:08:2b:c6:e1:e6:98:c4:99:2c:02:93:36: 98:53:9d:80:92:e3:e0:3e:b0:57:2b:03:f2:ce:11: 30:ce:8b:fd:39:6d:7c:2c:b6:0a:37:a6:e1:2c:b1: 47:35:c4:b2:53:b9:ee:4a:d4:88:29:3b:7c:0e:a9: 66:31:49:bc:a4:af:57:aa:65:6f:2d:bf:2c:61:bf: 12:4e:84:ec:59:fe:10:7c:a5:d3:32:e7:ef:c6:84: e3:61:b4:29:80:4e:18:ad:ed:34:e0:a0:df:d4:45: e8:f4:b2:a4:13:3a:7c:24:da:90:f5:cc:17:24:73: 74:f1:ee:32:d7:98:6b:8b:74:11:97:aa:d1:2b:ea: 5b:cc:47:49:ab:f8:d1:90:0f:9b:60:5b:e8:a8:12: a0:09:15:1b:cc:a5:8c:62:b8:cc:d5:e2:4c:b9:48: bb:99:0a:68:80:e5:dc:32:66:c2:51:36:4c:c4:50: cf:d0:07:ba:91:fe:25:e6:1c:f6:c0:22:17:da:26: 9f:81:a8:62:e1:c1:60:63:e0:15:06:6d:fe:09:54: 02:31:b3:a7:e8:92:c1:b1:5c:2f:6b:bc:56:5a:c4: 10:2a:d7:76:a1:80:85:c8:c6:a2:b8:08:19:77:8d: a7:bc:e5:6d:1b:cd:6e:7a:08:9a:90:5c:39:fc:b9: 56:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:49:B6:97:09:B4:50:CD:68:11:F4:0A:89:58:5D:54:B9:F7:EC:7A X509v3 Authority Key Identifier: keyid:95:2A:4D:C7:C4:D6:10:95:98:BE:EE:5A:C0:A2:06:D2:7B:85:C5:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSpNx8TWEJWYvu5awKIG0nuFxWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:dd:91:cf:cb:bb:3c:95:d6:d6:13:2e:75:12:04:83:06:ac: 49:cb:df:2d:5c:ed:52:af:ef:75:c2:8c:ed:fe:9f:eb:00:2a: b2:9d:ec:c6:f8:69:92:9c:03:d7:04:8d:f9:91:ef:2f:c7:54: 25:8e:4e:f1:57:25:cd:c2:0a:46:1e:76:72:5b:30:f6:9a:c7: c5:c1:54:ae:ee:2f:4a:d1:5d:7f:fb:97:4c:91:cb:3e:c0:d2: a4:d6:54:fd:05:0a:15:9c:4b:e7:88:1f:8f:a6:51:44:bf:77: cf:76:53:61:66:ae:46:8e:cc:24:a0:dd:9f:97:ae:bc:00:97: 13:7c:70:0e:2d:5b:43:f4:ba:83:6e:69:33:be:db:25:ca:37: c3:c7:58:d0:ea:90:53:28:e3:7c:3c:7f:43:3c:45:82:28:74: 34:40:a2:95:53:c6:db:96:59:39:ca:cc:bf:51:87:1d:70:af: b1:61:25:f3:72:a9:6d:da:3b:31:fd:b9:5a:a7:19:fc:f8:a4: 24:6d:6e:1f:f6:06:8f:2f:7c:d5:4e:c0:1b:8f:e5:91:03:4e: e5:4f:80:29:31:9a:ec:62:e8:d8:2d:d9:34:e4:bb:9b:e3:91: fa:0b:14:7e:2c:90:99:d4:a1:b1:75:54:a3:e0:0a:1b:a4:75: 15:8d:63:56 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy RDcxRDExMC8GA1UEBRMoOTUyQTREQzdDNEQ2MTA5NTk4QkVFRTVBQzBBMjA2RDI3 Qjg1QzU2QTAeFw0yNTA3MDMwODE1MTBaFw0yNTA3MTAwODE1MTBaMBgxFjAUBgNV BAMTDTY4NjYzYzBlLWQ1ZjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8rwgrxuHmmMSZLAKTNphTnYCS4+A+sFcrA/LOETDOi/05bXwstgo3puEssUc1 xLJTue5K1IgpO3wOqWYxSbykr1eqZW8tvyxhvxJOhOxZ/hB8pdMy5+/GhONhtCmA Thit7TTgoN/URej0sqQTOnwk2pD1zBckc3Tx7jLXmGuLdBGXqtEr6lvMR0mr+NGQ D5tgW+ioEqAJFRvMpYxiuMzV4ky5SLuZCmiA5dwyZsJRNkzEUM/QB7qR/iXmHPbA IhfaJp+BqGLhwWBj4BUGbf4JVAIxs6foksGxXC9rvFZaxBAq13ahgIXIxqK4CBl3 jae85W0bzW56CJqQXDn8uVaJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU1Em2lwm0 UM1oEfQKiVhdVLn37HowHwYDVR0jBBgwFoAUlSpNx8TWEJWYvu5awKIG0nuFxWow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJENzFELzFFMEY5OTJFMzZD RTExRjBBMkE2OUMxRkM0RjlBRTAyL2xTcE54OFRXRUpXWXZ1NWF3S0lHMG51RnhX by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvbFNwTng4VFdFSldZdnU1YXdLSUcwbnVGeFdvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJE NzFELzFFMEY5OTJFMzZDRTExRjBBMkE2OUMxRkM0RjlBRTAyL2xTcE54OFRXRUpX WXZ1NWF3S0lHMG51RnhXby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJ7dkc/LuzyV1tYTLnUSBIMGrEnL3y1c7VKv73XCjO3+n+sAKrKd7Mb4 aZKcA9cEjfmR7y/HVCWOTvFXJc3CCkYednJbMPaax8XBVK7uL0rRXX/7l0yRyz7A 0qTWVP0FChWcS+eIH4+mUUS/d892U2FmrkaOzCSg3Z+XrrwAlxN8cA4tW0P0uoNu aTO+2yXKN8PHWNDqkFMo43w8f0M8RYIodDRAopVTxtuWWTnKzL9Rhx1wr7FhJfNy qW3aOzH9uVqnGfz4pCRtbh/2Bo8vfNVOwBuP5ZEDTuVPgCkxmuxi6Ngt2TTku5vj kfoLFH4skJnUobF1VKPgChukdRWNY1Y= -----END CERTIFICATE-----Generated at Fri Jul 4 18:53:06 2025 by rpki-client