$ rpki-client -vvf rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.mft File: LpyR9OOUpK-pdta8P2XfLZ8Hnr0.mft (raw, json) Hash identifier: ZadMXJoN+Xi8alqWXFym8TE+NlYzP+swCA6Fku9Zths= Subject key identifier: 0A:B6:F0:2F:DC:CF:83:9E:A7:BF:D5:0F:20:00:58:BB:D4:02:8D:1E Authority key identifier: 2E:9C:91:F4:E3:94:A4:AF:A9:76:D6:BC:3F:65:DF:2D:9F:07:9E:BD Certificate issuer: /CN=A9131ABD/serialNumber=2E9C91F4E394A4AFA976D6BC3F65DF2D9F079EBD Certificate serial: 0C95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.mft Manifest number: 0C79 Signing time: Fri 22 Aug 2025 18:27:25 +0000 Manifest this update: Fri 22 Aug 2025 18:27:25 +0000 Manifest next update: Fri 29 Aug 2025 18:27:25 +0000 Files and hashes: 1: LpyR9OOUpK-pdta8P2XfLZ8Hnr0.crl (hash: D9sNXszAOi9h9Yh8rAMSjtuhPVQUMAYACkkpoH/t2qk=) 2: 37FE0B120C0011EAA414FC4AC4F9AE02.roa (hash: dRoQPSF6KT1Zue8dq53bmaroAkFylgM4n0LR39Z/E84=) 3: 3726AAFA0C0011EAA414FC4AC4F9AE02.roa (hash: 14kB3SfK8FO3TDcXjwd2x1V5vnXFwADnDTKaZlPfI5E=) 4: 99191AA404E911EAA9C20A60C4F9AE02.roa (hash: /7EkCVyzyWdgaZFFu1ty8sDFh13rW+8i+NvNFe/0Rfg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.crl rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:27:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3221 (0xc95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131ABD, serialNumber=2E9C91F4E394A4AFA976D6BC3F65DF2D9F079EBD Validity Not Before: Aug 22 18:27:25 2025 GMT Not After : Aug 29 18:27:25 2025 GMT Subject: CN=68a8b68d-574f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:58:2e:c1:d9:2c:ee:3a:21:a7:9a:53:4d:06: ce:59:c1:cc:20:79:47:5d:61:ab:60:19:d4:c9:61: 99:b9:f6:18:ce:04:de:57:5f:53:bb:8f:62:64:af: 93:c2:99:82:71:f7:6b:a5:44:0d:09:45:4d:bb:34: ed:34:79:f9:af:e7:f8:c3:30:f6:5a:b8:ab:d7:e2: d6:a4:1a:5f:44:ba:3d:45:b7:4c:cc:30:8d:72:38: b4:84:33:7b:25:97:c0:5d:86:cf:3c:65:17:2e:52: d5:c7:cc:03:9f:5b:3f:ce:38:f0:2a:bc:0c:a7:de: fc:de:c0:22:fc:f2:2e:a8:79:e1:c8:61:6b:6f:b5: 82:52:cd:2f:21:8b:8f:50:22:b9:38:4a:b2:48:12: 51:a2:ba:e4:2f:9d:64:6c:2b:67:e5:e1:fe:7c:87: b2:3b:c8:8a:73:a6:a6:e3:4e:df:ad:7f:ad:4a:d3: f9:b0:23:b4:c5:4c:4e:4c:40:ce:c8:eb:32:68:57: b8:6d:91:16:8a:d0:fd:ff:50:33:be:be:66:7c:0f: 7e:01:61:51:1c:a3:d0:d6:31:30:c0:e0:68:db:04: b2:06:75:e1:b3:92:02:66:1d:23:7b:c3:b7:84:db: 47:a2:66:00:49:9c:95:0c:fe:8d:fe:d5:60:1b:4d: 29:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:B6:F0:2F:DC:CF:83:9E:A7:BF:D5:0F:20:00:58:BB:D4:02:8D:1E X509v3 Authority Key Identifier: keyid:2E:9C:91:F4:E3:94:A4:AF:A9:76:D6:BC:3F:65:DF:2D:9F:07:9E:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:23:c0:01:ec:d2:65:e0:05:28:4b:41:17:b6:b5:66:77:ea: 6e:b2:25:75:e5:74:c7:23:39:d5:b4:97:64:ef:09:6b:01:a2: 0d:cb:42:f7:71:a4:77:6b:8c:4a:70:f8:79:ff:d2:52:1f:0c: 07:06:7a:95:20:db:ed:f6:d0:76:fa:da:49:94:eb:a9:d1:d0: d6:ab:d8:6e:f4:64:61:c2:3f:75:4a:32:7b:53:91:50:15:f2: 6b:6b:91:21:97:85:85:3e:e3:66:b3:9b:33:82:48:a8:3e:8b: 3c:07:6a:09:be:6b:bf:03:c8:4a:82:60:24:27:45:d6:0f:56: 21:04:f9:85:1d:d6:fd:0c:b4:50:de:43:c1:8a:ef:30:51:bc: a3:79:41:a8:5a:3c:4c:d0:30:00:48:f8:0e:36:bd:14:04:7e: 43:28:b7:69:0c:15:bb:7b:07:75:43:5e:03:38:d6:ff:ce:f4: c2:28:67:00:73:72:eb:6c:dc:fc:21:d1:95:5d:f1:d2:d8:09: 53:de:d1:ad:a5:63:2f:cc:d3:84:12:81:a6:49:44:13:97:e9: 6a:8c:19:49:ad:93:09:75:0c:64:cd:89:a7:34:29:76:a0:59: 16:a7:69:9d:74:38:47:5e:05:b2:ac:af:cf:46:a1:28:8f:72: 98:be:ba:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFBQkQxMTAvBgNVBAUTKDJFOUM5MUY0RTM5NEE0QUZBOTc2RDZCQzNGNjVERjJE OUYwNzlFQkQwHhcNMjUwODIyMTgyNzI1WhcNMjUwODI5MTgyNzI1WjAYMRYwFAYD VQQDEw02OGE4YjY4ZC01NzRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0lguwdks7johp5pTTQbOWcHMIHlHXWGrYBnUyWGZufYYzgTeV19Tu49iZK+T wpmCcfdrpUQNCUVNuzTtNHn5r+f4wzD2Wrir1+LWpBpfRLo9RbdMzDCNcji0hDN7 JZfAXYbPPGUXLlLVx8wDn1s/zjjwKrwMp9783sAi/PIuqHnhyGFrb7WCUs0vIYuP UCK5OEqySBJRorrkL51kbCtn5eH+fIeyO8iKc6am407frX+tStP5sCO0xUxOTEDO yOsyaFe4bZEWitD9/1Azvr5mfA9+AWFRHKPQ1jEwwOBo2wSyBnXhs5ICZh0je8O3 hNtHomYASZyVDP6N/tVgG00ptwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAq28C/c z4Oep7/VDyAAWLvUAo0eMB8GA1UdIwQYMBaAFC6ckfTjlKSvqXbWvD9l3y2fB569 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUFCRC8yMEU4RjlBMDA0 RTkxMUVBOEQyMEVFNUZDNEY5QUUwMi9McHlSOU9PVXBLLXBkdGE4UDJYZkxaOEhu cjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xweVI5T09VcEstcGR0YThQMlhmTFo4SG5yMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUFCRC8yMEU4RjlBMDA0RTkxMUVBOEQyMEVFNUZDNEY5QUUwMi9McHlSOU9PVXBL LXBkdGE4UDJYZkxaOEhucjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpI8AB7NJl4AUoS0EXtrVmd+pusiV15XTHIznVtJdk7wlrAaINy0L3 caR3a4xKcPh5/9JSHwwHBnqVINvt9tB2+tpJlOup0dDWq9hu9GRhwj91SjJ7U5FQ FfJra5Ehl4WFPuNms5szgkioPos8B2oJvmu/A8hKgmAkJ0XWD1YhBPmFHdb9DLRQ 3kPBiu8wUbyjeUGoWjxM0DAASPgONr0UBH5DKLdpDBW7ewd1Q14DONb/zvTCKGcA c3LrbNz8IdGVXfHS2AlT3tGtpWMvzNOEEoGmSUQTl+lqjBlJrZMJdQxkzYmnNCl2 oFkWp2mddDhHXgWyrK/PRqEoj3KYvroA -----END CERTIFICATE-----Generated at Sat Aug 23 20:16:09 2025 by rpki-client