$ rpki-client -vvf rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft File: l_lzn2QJyHWu4cSbtpqnQ882YRs.mft (raw, json) Hash identifier: ATg7m8xdqkNwDgGRlENo1Krdke7Me0afKVdv7q2nN/I= Subject key identifier: B0:B8:B9:39:85:A4:AD:32:FF:4C:98:C1:A8:00:6D:68:59:89:9C:37 Authority key identifier: 97:F9:73:9F:64:09:C8:75:AE:E1:C4:9B:B6:9A:A7:43:CF:36:61:1B Certificate issuer: /CN=A917047F/serialNumber=97F9739F6409C875AEE1C49BB69AA743CF36611B Certificate serial: 0E75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_lzn2QJyHWu4cSbtpqnQ882YRs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft Manifest number: 0E67 Signing time: Fri 22 Aug 2025 17:51:54 +0000 Manifest this update: Fri 22 Aug 2025 17:51:53 +0000 Manifest next update: Fri 29 Aug 2025 17:51:53 +0000 Files and hashes: 1: l_lzn2QJyHWu4cSbtpqnQ882YRs.crl (hash: d25OCgGBQsnXxkzVf4lgoo6kXTiqht7FGgYhudBr3Xs=) 2: 06FD60AAA8CE11EBBD4DB90DC4F9AE02.roa (hash: 5TUKEfy6g0GeyNMiU+/ZPkSDtLBvBaGEjV4EvzvhmZg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.crl rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_lzn2QJyHWu4cSbtpqnQ882YRs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:51:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3701 (0xe75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917047F, serialNumber=97F9739F6409C875AEE1C49BB69AA743CF36611B Validity Not Before: Aug 22 17:51:53 2025 GMT Not After : Aug 29 17:51:53 2025 GMT Subject: CN=68a8ae3a-a16f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:32:4c:1a:50:42:94:9b:b4:89:c0:bd:06:bc: 45:ef:03:c5:c8:2d:be:78:52:58:a7:16:a3:2d:fd: 6c:dc:38:8c:ca:d3:17:99:2a:3e:9d:68:4b:dc:81: 69:44:ec:1f:85:79:dd:c0:1b:d0:34:30:17:d2:da: 56:3e:f1:8e:2e:62:c5:43:d6:dc:1f:0d:cb:a1:ee: b7:6c:15:28:05:aa:ed:d8:99:dc:2e:1b:0e:99:94: 06:25:af:2b:0b:7f:cf:28:9d:0d:99:58:ae:39:3c: 00:8c:dc:b7:46:fb:83:60:6a:5b:d3:15:29:fd:0c: ff:a7:e2:bc:09:3f:22:65:ca:59:9a:51:07:6d:72: 09:62:2e:ba:4b:43:4c:06:90:8f:f2:c2:01:75:90: a0:9a:1a:fc:13:91:a1:0b:78:e1:44:5a:f6:f8:d7: 27:46:94:13:f6:62:0b:52:9a:0b:0c:2f:aa:66:bd: 88:6c:21:fe:1c:49:91:03:6d:20:17:64:9e:e2:2c: 04:1f:5c:07:ba:3b:0f:c3:95:2e:b3:b2:eb:0a:98: 0a:07:98:72:0c:a4:9d:a9:d4:d4:5a:a8:6e:5c:2f: dc:48:64:ff:fe:5a:ee:2e:31:a6:2a:79:02:f1:cf: 3d:57:5e:20:af:9f:59:9e:25:6b:f3:5b:ca:38:f2: 65:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:B8:B9:39:85:A4:AD:32:FF:4C:98:C1:A8:00:6D:68:59:89:9C:37 X509v3 Authority Key Identifier: keyid:97:F9:73:9F:64:09:C8:75:AE:E1:C4:9B:B6:9A:A7:43:CF:36:61:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_lzn2QJyHWu4cSbtpqnQ882YRs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cf:4c:e1:b1:73:e9:37:a4:b1:3b:42:31:5a:2b:15:2d:a7:52: c1:30:a2:4b:6a:04:7c:36:67:19:d7:9c:8c:a0:5b:6e:bf:82: 2b:0e:e0:64:92:79:39:19:e5:88:a3:a7:87:77:72:75:84:bc: 15:be:ef:28:e8:10:52:fb:38:2a:6e:97:fe:40:ce:61:53:8f: 97:94:d5:32:51:fe:5d:99:f8:27:d4:f0:2d:8f:dc:06:98:f8: 25:81:97:19:d5:48:c6:95:75:c8:eb:cd:b7:78:1e:fc:4a:76: bb:7b:1a:a3:f8:8c:7b:fd:09:0a:88:c3:df:00:d7:5e:12:1b: 24:b8:ba:73:95:27:ca:5b:66:e2:21:26:ce:fd:6b:8c:46:8b: f0:3b:dc:00:3e:85:6f:6c:f3:ea:c8:5e:39:76:2a:3d:00:23: 8d:3d:91:14:dc:51:97:7f:e2:9e:47:37:c6:e0:5f:31:3d:e3: f9:a5:6d:0b:32:43:45:a7:1b:46:5b:29:4d:a7:dd:0c:e2:5a: 01:98:e6:6f:fc:86:13:99:dd:46:e8:94:40:2e:6b:46:77:e2: 8a:f3:85:ed:02:09:1b:67:33:f5:94:57:1d:76:41:81:9e:9d: a0:b9:76:44:ba:1e:3a:78:43:c6:57:53:76:41:ed:45:0c:27: e8:df:d1:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDnUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA0N0YxMTAvBgNVBAUTKDk3Rjk3MzlGNjQwOUM4NzVBRUUxQzQ5QkI2OUFBNzQz Q0YzNjYxMUIwHhcNMjUwODIyMTc1MTUzWhcNMjUwODI5MTc1MTUzWjAYMRYwFAYD VQQDEw02OGE4YWUzYS1hMTZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyzJMGlBClJu0icC9BrxF7wPFyC2+eFJYpxajLf1s3DiMytMXmSo+nWhL3IFp ROwfhXndwBvQNDAX0tpWPvGOLmLFQ9bcHw3Loe63bBUoBart2JncLhsOmZQGJa8r C3/PKJ0NmViuOTwAjNy3RvuDYGpb0xUp/Qz/p+K8CT8iZcpZmlEHbXIJYi66S0NM BpCP8sIBdZCgmhr8E5GhC3jhRFr2+NcnRpQT9mILUpoLDC+qZr2IbCH+HEmRA20g F2Se4iwEH1wHujsPw5Uus7LrCpgKB5hyDKSdqdTUWqhuXC/cSGT//lruLjGmKnkC 8c89V14gr59ZniVr81vKOPJl4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLC4uTmF pK0y/0yYwagAbWhZiZw3MB8GA1UdIwQYMBaAFJf5c59kCch1ruHEm7aap0PPNmEb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDQ3Ri9GRDcyREUxNEEz QTkxMUU5OUY3NTc3N0JDNEY5QUUwMi9sX2x6bjJRSnlIV3U0Y1NidHBxblE4ODJZ UnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xfbHpuMlFKeUhXdTRjU2J0cHFuUTg4MllScy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDQ3Ri9GRDcyREUxNEEzQTkxMUU5OUY3NTc3N0JDNEY5QUUwMi9sX2x6bjJRSnlI V3U0Y1NidHBxblE4ODJZUnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDPTOGxc+k3pLE7QjFaKxUtp1LBMKJLagR8NmcZ15yMoFtuv4IrDuBk knk5GeWIo6eHd3J1hLwVvu8o6BBS+zgqbpf+QM5hU4+XlNUyUf5dmfgn1PAtj9wG mPglgZcZ1UjGlXXI6823eB78Sna7exqj+Ix7/QkKiMPfANdeEhskuLpzlSfKW2bi ISbO/WuMRovwO9wAPoVvbPPqyF45dio9ACONPZEU3FGXf+KeRzfG4F8xPeP5pW0L MkNFpxtGWylNp90M4loBmOZv/IYTmd1G6JRALmtGd+KK84XtAgkbZzP1lFcddkGB np2guXZEuh46eEPGV1N2Qe1FDCfo39En -----END CERTIFICATE-----Generated at Sat Aug 23 19:11:16 2025 by rpki-client