$ rpki-client -vvf rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft File: loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft (raw, json) Hash identifier: UbPEyoNcdC8Y6bZGfT+iFuLOLvJsn0C4zTGvyKTzW9w= Subject key identifier: 63:C9:5A:BF:EC:A4:E1:54:FC:29:00:DF:FF:3A:12:DD:A2:A9:54:D0 Authority key identifier: 96:82:C2:AB:E2:53:23:58:07:76:B1:D0:E2:75:D2:FD:2D:69:7E:B6 Certificate issuer: /CN=A91514B1/serialNumber=9682C2ABE25323580776B1D0E275D2FD2D697EB6 Certificate serial: 0588 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft Manifest number: 056D Signing time: Fri 22 Aug 2025 23:34:40 +0000 Manifest this update: Fri 22 Aug 2025 23:34:40 +0000 Manifest next update: Fri 29 Aug 2025 23:34:40 +0000 Files and hashes: 1: loLCq-JTI1gHdrHQ4nXS_S1pfrY.crl (hash: hCcACLNdiG+hF7JVCCFYHqCLTIwpvIwTh6Tq8n0QsqM=) 2: AF0A3F14178911EC876F5F50C4F9AE02.roa (hash: KRiDfnMy2+pwD3zrIBOiDvY7T9O/jHD6MSYbIKfk0AY=) 3: F1C7A044D91E11EFAD3C7613C4F9AE02.roa (hash: cMsOBL01lB8MhNIvPe7EZWZhW2/NqYoBIP9IcsqTKSI=) 4: D3D36BE0271011ECA0D7D95AC4F9AE02.roa (hash: ToNYuKjsmNUrDjM3EopYow2kRZNQw6nwL7h9Ilwq2wI=) 5: AE8BB766178911EC876F5F50C4F9AE02.roa (hash: 9Xivq6s93mksbhu2p/H/z3gtS9/XmhNf3IMjTVy5pWY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.crl rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:34:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1416 (0x588) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91514B1, serialNumber=9682C2ABE25323580776B1D0E275D2FD2D697EB6 Validity Not Before: Aug 22 23:34:40 2025 GMT Not After : Aug 29 23:34:40 2025 GMT Subject: CN=68a8fe90-b4f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:e1:92:e9:34:22:9d:38:5e:91:b8:a9:7e:92: 21:10:ec:54:f9:03:da:0f:db:ef:df:0f:b2:70:70: 79:c2:36:c8:68:8d:ab:97:63:f0:5a:5a:82:f1:f0: 2a:87:c1:85:21:b6:98:1f:ed:7c:6b:90:cf:5b:f5: b1:bc:88:ed:4f:3a:b3:6b:36:41:f0:f6:b2:8b:4f: 0c:97:75:67:35:77:2b:4d:36:6a:4a:ac:62:be:19: 74:9e:61:cb:6d:4a:e9:14:55:8f:5f:d1:1a:0c:a9: 0b:a2:76:bc:2e:f7:84:9a:1b:f3:bb:43:38:d4:e1: fd:24:60:af:69:a4:d0:d9:a3:08:29:51:46:87:0b: fb:ff:d4:28:e0:3e:1f:fc:e1:6c:12:18:6b:6b:14: 0e:6c:84:71:b4:da:ef:13:54:3e:c1:10:b0:87:a6: c4:ad:62:04:49:5e:dd:f7:61:05:01:9c:bc:90:90: 76:60:05:1f:77:6d:56:a7:4e:47:09:7f:14:a7:96: fa:5b:54:60:d6:91:1d:7a:e5:be:da:b1:9b:95:dc: 0e:9d:9f:ec:ff:2d:79:03:5b:ae:d0:25:d8:76:71: 29:11:f7:a1:bb:e8:45:57:8d:b8:27:a3:8e:33:a9: de:22:29:80:50:1b:e9:d6:56:fa:db:67:54:aa:5f: 22:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:C9:5A:BF:EC:A4:E1:54:FC:29:00:DF:FF:3A:12:DD:A2:A9:54:D0 X509v3 Authority Key Identifier: keyid:96:82:C2:AB:E2:53:23:58:07:76:B1:D0:E2:75:D2:FD:2D:69:7E:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:f4:34:da:da:ff:67:b3:c2:54:43:e6:af:ab:03:44:b2:05: 4b:78:57:55:00:31:24:99:0d:c8:fd:a7:56:bd:8f:f2:6c:04: aa:4e:f0:95:2b:20:18:2c:66:5f:4c:02:1a:00:58:83:ec:f0: 5e:de:64:82:ff:5e:5e:bc:6b:07:ba:45:67:b5:06:ef:6e:83: 1d:1c:3d:97:f3:f3:61:19:94:5f:c6:74:0c:39:f5:2d:bc:0d: 0b:1d:5e:14:88:2f:72:f1:ea:fe:8b:2d:2d:84:87:54:e4:c2: 31:07:09:35:79:1d:04:a8:b6:d9:77:84:fb:bb:23:8d:50:0d: 26:6b:92:2a:f2:f6:56:f6:6d:16:74:af:2d:62:32:f8:b6:35: 6a:51:ed:90:0d:c8:0c:61:71:d6:7d:81:3d:d6:95:8e:10:65: 25:99:b4:20:96:06:9e:ec:bd:66:b6:f9:2c:ae:02:79:cc:0c: e3:0e:1a:1a:33:b4:7d:6b:c3:dd:20:b8:16:55:a0:e9:39:59: 8c:c7:cf:26:97:6b:14:af:50:10:31:b7:79:42:c6:98:57:1b: 2d:38:a8:bc:c9:b8:b2:0a:84:01:23:e4:b0:37:50:e3:47:3a: 51:63:e5:60:29:41:71:4b:d9:99:c5:bc:58:23:72:b1:95:2e: 5d:96:a2:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE0QjExMTAvBgNVBAUTKDk2ODJDMkFCRTI1MzIzNTgwNzc2QjFEMEUyNzVEMkZE MkQ2OTdFQjYwHhcNMjUwODIyMjMzNDQwWhcNMjUwODI5MjMzNDQwWjAYMRYwFAYD VQQDEw02OGE4ZmU5MC1iNGY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0+GS6TQinThekbipfpIhEOxU+QPaD9vv3w+ycHB5wjbIaI2rl2PwWlqC8fAq h8GFIbaYH+18a5DPW/WxvIjtTzqzazZB8Payi08Ml3VnNXcrTTZqSqxivhl0nmHL bUrpFFWPX9EaDKkLona8LveEmhvzu0M41OH9JGCvaaTQ2aMIKVFGhwv7/9Qo4D4f /OFsEhhraxQObIRxtNrvE1Q+wRCwh6bErWIESV7d92EFAZy8kJB2YAUfd21Wp05H CX8Up5b6W1Rg1pEdeuW+2rGbldwOnZ/s/y15A1uu0CXYdnEpEfehu+hFV424J6OO M6neIimAUBvp1lb622dUql8iWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGPJWr/s pOFU/CkA3/86Et2iqVTQMB8GA1UdIwQYMBaAFJaCwqviUyNYB3ax0OJ10v0taX62 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTRCMS83QTg4NjRBQ0ZC RTQxMUVCODJCNjI2NEZDNEY5QUUwMi9sb0xDcS1KVEkxZ0hkckhRNG5YU19TMXBm clkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xvTENxLUpUSTFnSGRySFE0blhTX1MxcGZyWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTRCMS83QTg4NjRBQ0ZCRTQxMUVCODJCNjI2NEZDNEY5QUUwMi9sb0xDcS1KVEkx Z0hkckhRNG5YU19TMXBmclkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBE9DTa2v9ns8JUQ+avqwNEsgVLeFdVADEkmQ3I/adWvY/ybASqTvCV KyAYLGZfTAIaAFiD7PBe3mSC/15evGsHukVntQbvboMdHD2X8/NhGZRfxnQMOfUt vA0LHV4UiC9y8er+iy0thIdU5MIxBwk1eR0EqLbZd4T7uyONUA0ma5Iq8vZW9m0W dK8tYjL4tjVqUe2QDcgMYXHWfYE91pWOEGUlmbQglgae7L1mtvksrgJ5zAzjDhoa M7R9a8PdILgWVaDpOVmMx88ml2sUr1AQMbd5QsaYVxstOKi8ybiyCoQBI+SwN1Dj RzpRY+VgKUFxS9mZxbxYI3KxlS5dlqJs -----END CERTIFICATE-----Generated at Sat Aug 23 10:57:37 2025 by rpki-client