$ rpki-client -vvf rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft File: lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft (raw, json) Hash identifier: KxPLW7daj5gZmgZKIXvaQ3mE/GNe03g7pWbksooaFH4= Subject key identifier: FE:14:A8:18:A7:5E:62:D7:90:C8:98:CE:EE:CC:2E:EB:19:C9:3B:A8 Authority key identifier: 96:4D:08:72:7D:AE:DA:C7:40:37:AB:9C:43:A5:08:BA:DB:CF:DA:FD Certificate issuer: /CN=A914E0FE/serialNumber=964D08727DAEDAC74037AB9C43A508BADBCFDAFD Certificate serial: 95 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lk0Icn2u2sdAN6ucQ6UIutvP2v0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft Manifest number: 90 Signing time: Sat 23 Aug 2025 06:47:02 +0000 Manifest this update: Sat 23 Aug 2025 06:47:01 +0000 Manifest next update: Sat 30 Aug 2025 06:47:01 +0000 Files and hashes: 1: lk0Icn2u2sdAN6ucQ6UIutvP2v0.crl (hash: 8FMLo5HPxsA01TaO657tNDCXqPN97Svw54rJxwUUC/0=) 2: 9C9FACF6502411F093EA9419C4F9AE02.roa (hash: 3kK2PgqZkvV+Tke5YJ6lRXtuJEdURQG3ApvWLdCTm0Q=) 3: C5D7AFBA502411F0881DEB19C4F9AE02.roa (hash: Ti8eJO2oAD+cInPnRMrFT32zgx0G9iPebdag3c53iUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.crl rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lk0Icn2u2sdAN6ucQ6UIutvP2v0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:47:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 149 (0x95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E0FE, serialNumber=964D08727DAEDAC74037AB9C43A508BADBCFDAFD Validity Not Before: Aug 23 06:47:01 2025 GMT Not After : Aug 30 06:47:01 2025 GMT Subject: CN=68a963e5-6944 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:5e:1e:1e:60:46:ad:be:1a:17:c5:74:78:71: 07:3e:32:d2:1d:ca:67:d9:f4:8e:f9:e6:cb:f7:ae: 03:7a:1e:36:4e:10:73:e6:c7:2a:3f:eb:9c:5e:f2: 07:4a:f0:3b:50:f9:6a:90:33:ee:97:4f:e6:17:85: ff:2c:a1:14:a8:5c:c2:31:70:f3:b1:ea:8a:3a:b2: 42:cb:3a:70:b5:5e:07:f2:01:62:de:4d:c6:c2:de: 80:9a:2a:f2:12:85:fc:6a:87:d7:87:62:8e:f7:61: 35:47:9a:ba:f4:50:4a:c8:c8:f9:54:0a:3c:3d:5c: 58:c3:70:5d:24:72:b7:d5:f3:09:45:c8:8f:52:89: 73:18:44:f6:e8:c7:d4:f0:af:bd:de:4e:de:fc:59: 20:46:ee:6f:a8:25:ec:7f:85:19:72:33:d1:60:d8: 6a:28:14:f4:62:d2:9d:bf:b5:e2:a6:ad:75:10:88: a4:ad:0a:85:8a:67:a9:11:0c:10:8c:86:d0:29:79: 6d:f3:a1:fe:69:29:63:80:11:e7:09:f7:71:89:b5: 16:0a:3c:99:7c:2e:34:30:f5:6c:0a:88:4a:79:e6: 00:92:2d:4b:81:c3:d6:76:17:f0:43:f9:b2:9c:2d: b2:da:59:70:c6:a3:4f:d9:09:b1:4f:b9:15:52:be: 86:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:14:A8:18:A7:5E:62:D7:90:C8:98:CE:EE:CC:2E:EB:19:C9:3B:A8 X509v3 Authority Key Identifier: keyid:96:4D:08:72:7D:AE:DA:C7:40:37:AB:9C:43:A5:08:BA:DB:CF:DA:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lk0Icn2u2sdAN6ucQ6UIutvP2v0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:ac:61:64:9b:dc:5d:9b:02:dc:fd:ad:61:95:f1:cd:1f:c4: 11:a0:20:1b:68:3d:5d:dc:1f:03:fe:48:89:ea:b0:fe:16:17: 24:20:6a:ee:12:7a:b7:9b:05:cd:f2:58:6d:e4:cd:c0:2a:43: dd:1c:69:72:ff:c7:d8:2e:3a:cd:eb:ab:a0:3a:47:09:fb:f5: 23:0b:f2:6a:2e:6c:e8:81:fb:e5:d0:6e:69:10:ec:2c:d7:d6: fe:80:2d:af:7a:25:e0:fc:5d:de:a6:f5:6a:2e:b3:fc:46:ab: 9e:ca:35:4f:2e:2a:d3:62:9a:ea:e2:5a:83:b2:5d:8f:8c:4a: 74:3e:6b:7c:32:8b:e4:4a:e0:be:4d:67:13:a3:47:fe:84:e4: 48:4a:e6:e5:60:86:1c:48:48:ec:e2:24:58:3f:dd:cc:f1:57: 8f:ac:af:ba:db:a3:3e:cf:30:21:05:55:4a:b7:73:f7:e3:d0: ce:ca:67:cd:89:d7:a9:96:cc:e2:ef:17:36:e9:0a:62:dc:7d: eb:46:24:30:a9:fe:cd:41:87:50:fc:18:ed:62:a7:91:64:a2: 30:ad:26:1a:58:24:aa:07:66:35:6e:0e:3b:bf:ef:b3:04:af: 7f:e9:91:5e:83:35:92:60:68:b0:b9:78:ad:fd:0c:47:26:c5: c3:cd:7e:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUwRkUxMTAvBgNVBAUTKDk2NEQwODcyN0RBRURBQzc0MDM3QUI5QzQzQTUwOEJB REJDRkRBRkQwHhcNMjUwODIzMDY0NzAxWhcNMjUwODMwMDY0NzAxWjAYMRYwFAYD VQQDEw02OGE5NjNlNS02OTQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8F4eHmBGrb4aF8V0eHEHPjLSHcpn2fSO+ebL964Deh42ThBz5scqP+ucXvIH SvA7UPlqkDPul0/mF4X/LKEUqFzCMXDzseqKOrJCyzpwtV4H8gFi3k3Gwt6Amiry EoX8aofXh2KO92E1R5q69FBKyMj5VAo8PVxYw3BdJHK31fMJRciPUolzGET26MfU 8K+93k7e/FkgRu5vqCXsf4UZcjPRYNhqKBT0YtKdv7Xipq11EIikrQqFimepEQwQ jIbQKXlt86H+aSljgBHnCfdxibUWCjyZfC40MPVsCohKeeYAki1LgcPWdhfwQ/my nC2y2llwxqNP2QmxT7kVUr6GKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP4UqBin XmLXkMiYzu7MLusZyTuoMB8GA1UdIwQYMBaAFJZNCHJ9rtrHQDernEOlCLrbz9r9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTBGRS8yRjJCNkZFMkFC Q0ExMUVGQTk5NEQxMjlDNEY5QUUwMi9sazBJY24ydTJzZEFONnVjUTZVSXV0dlAy djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xrMEljbjJ1MnNkQU42dWNRNlVJdXR2UDJ2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTBGRS8yRjJCNkZFMkFCQ0ExMUVGQTk5NEQxMjlDNEY5QUUwMi9sazBJY24ydTJz ZEFONnVjUTZVSXV0dlAydjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2rGFkm9xdmwLc/a1hlfHNH8QRoCAbaD1d3B8D/kiJ6rD+FhckIGru Enq3mwXN8lht5M3AKkPdHGly/8fYLjrN66ugOkcJ+/UjC/JqLmzogfvl0G5pEOws 19b+gC2veiXg/F3epvVqLrP8RqueyjVPLirTYprq4lqDsl2PjEp0Pmt8MovkSuC+ TWcTo0f+hORISublYIYcSEjs4iRYP93M8VePrK+626M+zzAhBVVKt3P349DOymfN ideplszi7xc26Qpi3H3rRiQwqf7NQYdQ/BjtYqeRZKIwrSYaWCSqB2Y1bg47v++z BK9/6ZFegzWSYGiwuXit/QxHJsXDzX43 -----END CERTIFICATE-----Generated at Sat Aug 23 17:04:35 2025 by rpki-client