$ rpki-client -vvf rpki.apnic.net/member_repository/A9155688/9D5629A0814211EBBD8C4284C4F9AE02/luWqcIJLjRPdz-YfzJogytZeYME.mft File: luWqcIJLjRPdz-YfzJogytZeYME.mft (raw, json) Hash identifier: UCov/n3vvAMOPki01Qa4DUPlL8MAo5xC/9KlWgfpkP4= Subject key identifier: 20:65:BF:12:85:72:1F:04:22:B3:74:95:54:16:22:E8:95:70:22:56 Authority key identifier: 96:E5:AA:70:82:4B:8D:13:DD:CF:E6:1F:CC:9A:20:CA:D6:5E:60:C1 Certificate issuer: /CN=A9155688/serialNumber=96E5AA70824B8D13DDCFE61FCC9A20CAD65E60C1 Certificate serial: 067F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/luWqcIJLjRPdz-YfzJogytZeYME.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155688/9D5629A0814211EBBD8C4284C4F9AE02/luWqcIJLjRPdz-YfzJogytZeYME.mft Manifest number: 0677 Signing time: Wed 02 Jul 2025 22:41:20 +0000 Manifest this update: Wed 02 Jul 2025 22:41:20 +0000 Manifest next update: Wed 09 Jul 2025 22:41:20 +0000 Files and hashes: 1: luWqcIJLjRPdz-YfzJogytZeYME.crl (hash: ufs7kJzzq2KsUO4rQbszEQKH2anX/CRwGNUqeTKiYdU=) 2: 6656B366814C11EB913AEC78C4F9AE02.roa (hash: hWmIjVl3wq2WAFI85MCQWSOZgmGgPc2bb2Ktcia7bs0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155688/9D5629A0814211EBBD8C4284C4F9AE02/luWqcIJLjRPdz-YfzJogytZeYME.crl rsync://rpki.apnic.net/member_repository/A9155688/9D5629A0814211EBBD8C4284C4F9AE02/luWqcIJLjRPdz-YfzJogytZeYME.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/luWqcIJLjRPdz-YfzJogytZeYME.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 22:41:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1663 (0x67f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155688, serialNumber=96E5AA70824B8D13DDCFE61FCC9A20CAD65E60C1 Validity Not Before: Jul 2 22:41:20 2025 GMT Not After : Jul 9 22:41:20 2025 GMT Subject: CN=6865b590-e8e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:bf:36:0b:12:38:36:ed:a1:ac:57:d7:f3:6f: ee:0e:5f:8c:e5:11:29:ea:15:4f:be:c4:c9:47:50: 65:69:d6:f8:dc:c2:e7:86:a4:4c:2d:57:5f:48:49: e0:65:6f:fd:b8:ab:e0:5d:2a:89:27:0a:40:d4:39: 79:7c:ec:65:ba:8d:cc:13:76:b6:18:91:b3:c0:86: ee:aa:a5:eb:48:e5:e3:d2:27:3c:ac:fc:75:61:47: 9c:87:25:aa:da:05:3d:b5:86:01:13:ac:79:31:79: 90:54:32:92:fe:d1:1a:6e:da:a6:cf:ca:01:71:a1: 42:00:5d:c0:19:39:07:a8:eb:fc:68:4d:7a:2b:c7: 26:78:71:47:66:e9:21:f4:df:c4:8b:cb:10:b9:c6: 80:41:aa:5d:3a:59:11:4d:ae:2e:d3:9e:ea:d1:e3: c5:0c:3f:cd:5b:39:0b:cc:86:2e:54:50:9a:5b:f1: f0:19:b6:ec:47:f9:66:32:40:55:c4:a2:8c:d2:ea: a0:dd:ae:13:6f:04:0f:29:01:e0:7a:61:71:9c:82: 72:e8:f4:a5:5c:be:80:90:ef:92:bf:0e:2d:d6:51: 53:7e:a9:f3:b4:1c:6f:00:23:25:b9:26:2d:d1:14: 95:a0:8d:32:54:d5:d3:3b:f4:de:0f:b5:03:e4:c3: 09:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:65:BF:12:85:72:1F:04:22:B3:74:95:54:16:22:E8:95:70:22:56 X509v3 Authority Key Identifier: keyid:96:E5:AA:70:82:4B:8D:13:DD:CF:E6:1F:CC:9A:20:CA:D6:5E:60:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155688/9D5629A0814211EBBD8C4284C4F9AE02/luWqcIJLjRPdz-YfzJogytZeYME.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/luWqcIJLjRPdz-YfzJogytZeYME.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155688/9D5629A0814211EBBD8C4284C4F9AE02/luWqcIJLjRPdz-YfzJogytZeYME.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:0e:a2:09:e1:23:5a:00:34:fe:6c:e6:4a:fb:59:30:18:55: a4:f4:5c:09:81:a3:a5:df:37:cf:11:80:48:41:16:2c:c6:56: 41:df:07:e8:0c:73:c9:64:e1:2c:8e:6d:c9:b2:0c:6c:c5:85: 56:a0:ff:7c:dd:d5:5f:09:62:c2:64:92:d0:bf:9c:64:9c:32: 37:cd:29:5f:35:3e:fa:f1:07:d1:94:ab:a8:8e:89:92:0b:ee: fd:e4:6d:0f:21:3e:76:c8:3f:6b:12:27:95:de:d8:39:b7:53: 11:2a:f8:e7:0d:a2:83:06:01:5e:45:e9:8e:e0:d5:02:e3:01: 80:0b:89:4c:79:c9:61:16:a7:b8:99:5a:b5:ad:a9:49:ab:9a: ed:f3:fd:5b:4e:ed:bf:dc:43:65:ba:95:50:ea:45:53:25:4a: 72:98:bb:4d:44:e5:ae:c8:86:95:7b:7a:9d:0f:91:00:c9:16: cf:c6:f4:c8:42:99:3c:80:84:d3:cd:19:f0:b1:01:56:b8:9e: d5:8c:89:a7:d6:c2:e3:39:df:91:bd:ed:0a:ee:7e:38:5c:17: 6c:d5:5b:45:8a:b7:cd:f0:af:9d:e8:d0:e6:49:a3:15:47:90: 47:d1:f5:e1:67:69:56:7e:b1:11:f4:02:9b:90:03:bb:61:99: fe:71:71:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBn8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU2ODgxMTAvBgNVBAUTKDk2RTVBQTcwODI0QjhEMTNERENGRTYxRkNDOUEyMENB RDY1RTYwQzEwHhcNMjUwNzAyMjI0MTIwWhcNMjUwNzA5MjI0MTIwWjAYMRYwFAYD VQQDEw02ODY1YjU5MC1lOGU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5782CxI4Nu2hrFfX82/uDl+M5REp6hVPvsTJR1Bladb43MLnhqRMLVdfSEng ZW/9uKvgXSqJJwpA1Dl5fOxluo3ME3a2GJGzwIbuqqXrSOXj0ic8rPx1YUechyWq 2gU9tYYBE6x5MXmQVDKS/tEabtqmz8oBcaFCAF3AGTkHqOv8aE16K8cmeHFHZukh 9N/Ei8sQucaAQapdOlkRTa4u057q0ePFDD/NWzkLzIYuVFCaW/HwGbbsR/lmMkBV xKKM0uqg3a4TbwQPKQHgemFxnIJy6PSlXL6AkO+Svw4t1lFTfqnztBxvACMluSYt 0RSVoI0yVNXTO/TeD7UD5MMJZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCBlvxKF ch8EIrN0lVQWIuiVcCJWMB8GA1UdIwQYMBaAFJblqnCCS40T3c/mH8yaIMrWXmDB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTY4OC85RDU2MjlBMDgx NDIxMUVCQkQ4QzQyODRDNEY5QUUwMi9sdVdxY0lKTGpSUGR6LVlmekpvZ3l0WmVZ TUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x1V3FjSUpMalJQZHotWWZ6Sm9neXRaZVlNRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTY4OC85RDU2MjlBMDgxNDIxMUVCQkQ4QzQyODRDNEY5QUUwMi9sdVdxY0lKTGpS UGR6LVlmekpvZ3l0WmVZTUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcDqIJ4SNaADT+bOZK+1kwGFWk9FwJgaOl3zfPEYBIQRYsxlZB3wfo DHPJZOEsjm3JsgxsxYVWoP983dVfCWLCZJLQv5xknDI3zSlfNT768QfRlKuojomS C+795G0PIT52yD9rEieV3tg5t1MRKvjnDaKDBgFeRemO4NUC4wGAC4lMeclhFqe4 mVq1ralJq5rt8/1bTu2/3ENlupVQ6kVTJUpymLtNROWuyIaVe3qdD5EAyRbPxvTI Qpk8gITTzRnwsQFWuJ7VjImn1sLjOd+Rve0K7n44XBds1VtFirfN8K+d6NDmSaMV R5BH0fXhZ2lWfrER9AKbkAO7YZn+cXG9 -----END CERTIFICATE-----Generated at Fri Jul 4 08:13:28 2025 by rpki-client