$ rpki-client -vvf rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.mft File: LpyR9OOUpK-pdta8P2XfLZ8Hnr0.mft (raw, json) Hash identifier: xpEhX6AJgq1JZuXKAtDVz5pXh5ghtF/k96lYMHzR6XE= Subject key identifier: CF:34:75:15:4D:04:64:A1:09:65:35:2E:DA:91:C4:CE:06:CD:7F:A8 Authority key identifier: 2E:9C:91:F4:E3:94:A4:AF:A9:76:D6:BC:3F:65:DF:2D:9F:07:9E:BD Certificate issuer: /CN=A9131ABD/serialNumber=2E9C91F4E394A4AFA976D6BC3F65DF2D9F079EBD Certificate serial: 0C7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.mft Manifest number: 0C5E Signing time: Mon 30 Jun 2025 18:34:27 +0000 Manifest this update: Mon 30 Jun 2025 18:34:26 +0000 Manifest next update: Mon 07 Jul 2025 18:34:26 +0000 Files and hashes: 1: LpyR9OOUpK-pdta8P2XfLZ8Hnr0.crl (hash: eIKkmAHI83I7HyYmmWKLozzcvTktLNjvCcpwAPjFG6Y=) 2: 37FE0B120C0011EAA414FC4AC4F9AE02.roa (hash: dRoQPSF6KT1Zue8dq53bmaroAkFylgM4n0LR39Z/E84=) 3: 3726AAFA0C0011EAA414FC4AC4F9AE02.roa (hash: 14kB3SfK8FO3TDcXjwd2x1V5vnXFwADnDTKaZlPfI5E=) 4: 99191AA404E911EAA9C20A60C4F9AE02.roa (hash: /7EkCVyzyWdgaZFFu1ty8sDFh13rW+8i+NvNFe/0Rfg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.crl rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 18:34:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3194 (0xc7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131ABD, serialNumber=2E9C91F4E394A4AFA976D6BC3F65DF2D9F079EBD Validity Not Before: Jun 30 18:34:26 2025 GMT Not After : Jul 7 18:34:26 2025 GMT Subject: CN=6862d8b3-ac71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:06:c6:df:d2:bc:11:a0:71:e3:b5:20:7e:31: e4:40:82:d0:73:b3:05:ff:d3:88:e5:7d:12:1f:68: 43:1b:35:1d:d5:11:5c:86:bb:e4:7b:8a:df:ee:85: 5c:99:03:79:d5:c6:05:29:91:f2:09:2d:d2:3f:f7: 2e:42:05:f6:75:7c:ad:43:ad:7a:05:bd:86:ab:10: 85:bf:26:03:d2:43:05:2c:0e:9d:69:a4:b5:75:7e: 4a:de:19:34:9f:79:40:a0:65:90:e0:75:9b:15:c5: 49:50:fb:45:5c:d2:f0:84:f5:e7:da:0b:ea:56:e7: 5e:c0:fc:44:63:76:2d:1f:fd:50:d5:c0:6b:d3:0f: 26:17:0d:c3:b6:3b:b3:22:1e:fb:2c:58:5f:2b:b2: 2d:57:c9:0d:46:57:db:a8:42:e0:c4:88:69:ab:83: de:66:18:51:2d:c1:24:05:4e:3b:96:8e:1a:59:e2: 3d:98:f6:99:1c:0a:94:fa:e3:9e:78:3f:6a:eb:64: 33:3c:05:f7:24:26:4d:78:25:31:61:e7:6e:13:e0: 94:f5:e0:aa:54:4a:e5:9c:8e:2f:67:0f:8a:8e:7c: 07:3d:cc:7e:a6:71:bd:e8:2b:6a:87:8c:ac:89:b1: 97:e8:fd:3c:4a:14:d5:3b:84:6c:dc:98:09:f3:61: 8f:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:34:75:15:4D:04:64:A1:09:65:35:2E:DA:91:C4:CE:06:CD:7F:A8 X509v3 Authority Key Identifier: keyid:2E:9C:91:F4:E3:94:A4:AF:A9:76:D6:BC:3F:65:DF:2D:9F:07:9E:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:36:46:3e:4e:61:2b:f8:cd:c6:10:40:7d:28:49:c0:b7:22: ff:71:66:2f:71:11:8e:5f:b6:d7:54:51:d6:94:85:be:01:27: 77:fa:b8:0c:d3:1d:ab:2a:a7:8f:a0:ab:13:2c:e5:b2:8b:f7: 84:e4:54:a0:3c:89:db:f2:d1:8e:06:db:d4:35:a0:62:da:55: 44:58:83:d8:33:23:22:2c:c9:f7:23:fa:fd:90:29:0e:cf:cf: 73:db:ef:cb:64:92:f4:2f:21:23:d2:66:dc:e9:76:a9:c2:21: 6f:bf:0d:50:fd:33:ee:c9:31:8d:2f:2f:38:33:06:34:4b:f8: f5:2f:9d:b0:53:9b:67:0c:c4:a9:43:45:2b:43:a3:4a:94:64: 40:04:33:3b:6a:85:58:29:a8:c2:92:08:19:7d:34:ff:81:5f: c8:11:8c:05:b0:54:40:9c:61:02:d1:ac:d4:22:36:98:fb:bf: be:f5:a9:ea:1b:08:2c:14:05:74:56:e2:c4:2c:b4:b2:a1:17: 27:87:32:c3:ba:33:5b:bc:9e:c7:9c:4e:85:c3:be:59:e2:cc: da:a5:1c:00:b2:ea:24:3b:ed:fc:4d:d7:26:47:63:17:4c:60: ed:85:c1:25:ad:75:56:eb:cb:0f:5f:19:3c:e5:52:b8:f3:a9: 6a:24:f1:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDHowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFBQkQxMTAvBgNVBAUTKDJFOUM5MUY0RTM5NEE0QUZBOTc2RDZCQzNGNjVERjJE OUYwNzlFQkQwHhcNMjUwNjMwMTgzNDI2WhcNMjUwNzA3MTgzNDI2WjAYMRYwFAYD VQQDEw02ODYyZDhiMy1hYzcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2gbG39K8EaBx47UgfjHkQILQc7MF/9OI5X0SH2hDGzUd1RFchrvke4rf7oVc mQN51cYFKZHyCS3SP/cuQgX2dXytQ616Bb2GqxCFvyYD0kMFLA6daaS1dX5K3hk0 n3lAoGWQ4HWbFcVJUPtFXNLwhPXn2gvqVudewPxEY3YtH/1Q1cBr0w8mFw3Dtjuz Ih77LFhfK7ItV8kNRlfbqELgxIhpq4PeZhhRLcEkBU47lo4aWeI9mPaZHAqU+uOe eD9q62QzPAX3JCZNeCUxYeduE+CU9eCqVErlnI4vZw+KjnwHPcx+pnG96Ctqh4ys ibGX6P08ShTVO4Rs3JgJ82GPMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM80dRVN BGShCWU1LtqRxM4GzX+oMB8GA1UdIwQYMBaAFC6ckfTjlKSvqXbWvD9l3y2fB569 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUFCRC8yMEU4RjlBMDA0 RTkxMUVBOEQyMEVFNUZDNEY5QUUwMi9McHlSOU9PVXBLLXBkdGE4UDJYZkxaOEhu cjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xweVI5T09VcEstcGR0YThQMlhmTFo4SG5yMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUFCRC8yMEU4RjlBMDA0RTkxMUVBOEQyMEVFNUZDNEY5QUUwMi9McHlSOU9PVXBL LXBkdGE4UDJYZkxaOEhucjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLNkY+TmEr+M3GEEB9KEnAtyL/cWYvcRGOX7bXVFHWlIW+ASd3+rgM 0x2rKqePoKsTLOWyi/eE5FSgPInb8tGOBtvUNaBi2lVEWIPYMyMiLMn3I/r9kCkO z89z2+/LZJL0LyEj0mbc6XapwiFvvw1Q/TPuyTGNLy84MwY0S/j1L52wU5tnDMSp Q0UrQ6NKlGRABDM7aoVYKajCkggZfTT/gV/IEYwFsFRAnGEC0azUIjaY+7++9anq GwgsFAV0VuLELLSyoRcnhzLDujNbvJ7HnE6Fw75Z4szapRwAsuokO+38TdcmR2MX TGDthcElrXVW68sPXxk85VK486lqJPF3 -----END CERTIFICATE-----Generated at Mon Jun 30 23:45:20 2025 by rpki-client