$ rpki-client -vvf rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.mft File: LzabRI0hcVlrosk82-JY6vMxdZQ.mft (raw, json) Hash identifier: p6SUQPJXsmVszfsrrpzSy7LCGZXLjwHN7zQBE0CzgmM= Subject key identifier: 99:90:96:B9:19:5F:E1:79:84:75:32:E3:F3:89:63:4C:2A:9B:92:22 Authority key identifier: 2F:36:9B:44:8D:21:71:59:6B:A2:C9:3C:DB:E2:58:EA:F3:31:75:94 Certificate issuer: /CN=A9161A5A/serialNumber=2F369B448D2171596BA2C93CDBE258EAF3317594 Certificate serial: 06C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LzabRI0hcVlrosk82-JY6vMxdZQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.mft Manifest number: 06C0 Signing time: Wed 02 Jul 2025 22:25:11 +0000 Manifest this update: Wed 02 Jul 2025 22:25:10 +0000 Manifest next update: Wed 09 Jul 2025 22:25:10 +0000 Files and hashes: 1: LzabRI0hcVlrosk82-JY6vMxdZQ.crl (hash: IwSO18Ol7YYTLEa5yWdoqWFKUvEabdGRd4/NDhn200M=) 2: 79D611D265E711EBB6FD8A0DC4F9AE02.roa (hash: 8jITrnqODr3hbw+6QboJeBK8U7SJ4xuwPGHj3X5tTD4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.crl rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LzabRI0hcVlrosk82-JY6vMxdZQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 22:25:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1736 (0x6c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161A5A, serialNumber=2F369B448D2171596BA2C93CDBE258EAF3317594 Validity Not Before: Jul 2 22:25:10 2025 GMT Not After : Jul 9 22:25:10 2025 GMT Subject: CN=6865b1c6-74ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a3:58:d9:d9:a4:59:c8:02:c5:c1:c7:44:c1: 8a:83:ba:c6:74:a7:c9:0e:7d:c1:df:77:55:ee:6d: c3:ce:00:91:9a:27:fb:e8:32:26:b9:1b:93:e6:37: db:2a:3d:17:d8:5a:49:b5:e1:41:bc:0d:5a:5f:da: 7e:b6:8c:d9:0e:65:5d:65:b4:41:fe:c4:be:fb:58: 6d:13:fb:fd:2d:99:8b:71:9a:41:7e:0d:83:95:6f: aa:e6:ad:83:2a:bd:07:a9:77:f0:f1:00:10:88:b4: 6c:3e:20:06:78:cd:aa:12:21:87:9d:95:3a:59:39: 90:4d:17:b6:7f:e3:b6:bf:c4:80:69:36:9c:47:ff: 9c:32:8d:8b:d9:8f:d6:5a:5a:a7:9c:55:f8:87:fd: c4:24:33:68:ed:c0:12:ca:0a:87:4e:5d:b9:ac:ba: 23:27:c4:65:e6:c9:55:7d:1c:a1:0d:21:1e:fd:e7: 6d:45:74:9f:fb:80:b5:83:39:4d:f1:97:f8:0c:25: e5:7c:f9:62:82:f5:80:c6:94:12:a3:1a:7e:c1:4f: b6:2f:2c:7e:f6:55:9b:f8:7a:43:42:b8:5d:67:29: 62:51:c4:eb:72:fd:3b:a8:1c:31:9e:a3:93:f1:53: 79:c6:80:56:4f:8d:5f:dd:4e:72:c5:17:be:a1:a2: c3:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:90:96:B9:19:5F:E1:79:84:75:32:E3:F3:89:63:4C:2A:9B:92:22 X509v3 Authority Key Identifier: keyid:2F:36:9B:44:8D:21:71:59:6B:A2:C9:3C:DB:E2:58:EA:F3:31:75:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LzabRI0hcVlrosk82-JY6vMxdZQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:84:4b:b7:6f:04:b1:73:59:1c:b1:0d:88:00:8c:61:57:6a: 0b:b7:6e:99:6c:60:29:c6:28:a8:c1:b5:e5:17:4f:2e:30:d2: 3f:bd:f8:73:c8:50:a0:d8:ba:a1:51:15:02:28:ea:6b:32:d3: 16:33:69:39:c3:a3:a0:19:db:d5:ee:7f:d9:9b:17:99:e5:b6: 2f:1c:df:d3:48:16:69:b3:f0:0e:25:cb:34:44:88:33:ff:d0: 70:9a:e0:d1:20:0c:49:e2:d3:2f:88:fc:2a:ff:ed:5b:25:2f: 41:45:4b:cc:41:69:d0:31:dd:d3:68:d3:05:37:69:b3:c0:dd: 04:02:f1:db:e6:98:1f:b6:f2:87:e1:4d:5b:88:ef:30:c6:52: 93:e5:d2:da:e4:25:e2:83:37:8f:00:4e:06:2a:8d:69:4f:6d: 35:ed:d0:87:b6:73:35:da:14:7c:a0:1d:c5:76:d1:8e:a2:20: 5c:6c:d6:e8:37:3c:57:ed:00:1e:da:3e:7e:49:64:cb:2e:de: cb:43:57:3e:49:c0:b8:02:f3:72:65:f3:61:00:d8:80:5c:b0: a9:67:7b:f3:ab:21:a1:1c:d6:63:4e:ed:52:46:9a:31:d9:21: 34:2f:9c:a4:56:88:d4:3d:96:25:69:5a:9b:c5:d7:0a:7e:d3: 3a:a3:90:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBsgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjFBNUExMTAvBgNVBAUTKDJGMzY5QjQ0OEQyMTcxNTk2QkEyQzkzQ0RCRTI1OEVB RjMzMTc1OTQwHhcNMjUwNzAyMjIyNTEwWhcNMjUwNzA5MjIyNTEwWjAYMRYwFAYD VQQDEw02ODY1YjFjNi03NGFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtKNY2dmkWcgCxcHHRMGKg7rGdKfJDn3B33dV7m3DzgCRmif76DImuRuT5jfb Kj0X2FpJteFBvA1aX9p+tozZDmVdZbRB/sS++1htE/v9LZmLcZpBfg2DlW+q5q2D Kr0HqXfw8QAQiLRsPiAGeM2qEiGHnZU6WTmQTRe2f+O2v8SAaTacR/+cMo2L2Y/W WlqnnFX4h/3EJDNo7cASygqHTl25rLojJ8Rl5slVfRyhDSEe/edtRXSf+4C1gzlN 8Zf4DCXlfPligvWAxpQSoxp+wU+2Lyx+9lWb+HpDQrhdZyliUcTrcv07qBwxnqOT 8VN5xoBWT41f3U5yxRe+oaLDEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJmQlrkZ X+F5hHUy4/OJY0wqm5IiMB8GA1UdIwQYMBaAFC82m0SNIXFZa6LJPNviWOrzMXWU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MUE1QS9COEJCNTY4RTY1 RTUxMUVCQTI1RjkyMEJDNEY5QUUwMi9MemFiUkkwaGNWbHJvc2s4Mi1KWTZ2TXhk WlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0x6YWJSSTBoY1Zscm9zazgyLUpZNnZNeGRaUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MUE1QS9COEJCNTY4RTY1RTUxMUVCQTI1RjkyMEJDNEY5QUUwMi9MemFiUkkwaGNW bHJvc2s4Mi1KWTZ2TXhkWlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPhEu3bwSxc1kcsQ2IAIxhV2oLt26ZbGApxiiowbXlF08uMNI/vfhz yFCg2LqhURUCKOprMtMWM2k5w6OgGdvV7n/ZmxeZ5bYvHN/TSBZps/AOJcs0RIgz /9BwmuDRIAxJ4tMviPwq/+1bJS9BRUvMQWnQMd3TaNMFN2mzwN0EAvHb5pgftvKH 4U1biO8wxlKT5dLa5CXigzePAE4GKo1pT2017dCHtnM12hR8oB3FdtGOoiBcbNbo NzxX7QAe2j5+SWTLLt7LQ1c+ScC4AvNyZfNhANiAXLCpZ3vzqyGhHNZjTu1SRpox 2SE0L5ykVojUPZYlaVqbxdcKftM6o5Cb -----END CERTIFICATE-----Generated at Thu Jul 3 15:06:33 2025 by rpki-client