$ rpki-client -vvf rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft File: l_lzn2QJyHWu4cSbtpqnQ882YRs.mft (raw, json) Hash identifier: R7haGlfwsgVAvKMoG+d14x27fxJ+H4jPWG/Vmy/JR2Y= Subject key identifier: D3:0B:82:9F:DD:E4:84:EF:0B:6D:54:A6:97:73:86:45:D4:47:C5:30 Authority key identifier: 97:F9:73:9F:64:09:C8:75:AE:E1:C4:9B:B6:9A:A7:43:CF:36:61:1B Certificate issuer: /CN=A917047F/serialNumber=97F9739F6409C875AEE1C49BB69AA743CF36611B Certificate serial: 0E5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_lzn2QJyHWu4cSbtpqnQ882YRs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft Manifest number: 0E4D Signing time: Wed 02 Jul 2025 17:59:03 +0000 Manifest this update: Wed 02 Jul 2025 17:59:02 +0000 Manifest next update: Wed 09 Jul 2025 17:59:02 +0000 Files and hashes: 1: l_lzn2QJyHWu4cSbtpqnQ882YRs.crl (hash: 3OfWesueDE+1QBqFPiAkKHuc1trSME/6G7dJ3j+7J04=) 2: 06FD60AAA8CE11EBBD4DB90DC4F9AE02.roa (hash: 5TUKEfy6g0GeyNMiU+/ZPkSDtLBvBaGEjV4EvzvhmZg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.crl rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_lzn2QJyHWu4cSbtpqnQ882YRs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:59:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3675 (0xe5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917047F, serialNumber=97F9739F6409C875AEE1C49BB69AA743CF36611B Validity Not Before: Jul 2 17:59:02 2025 GMT Not After : Jul 9 17:59:02 2025 GMT Subject: CN=68657366-10de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:03:2f:b4:8e:2c:05:d5:10:70:fb:59:3b:7a: 6e:df:ef:4a:21:b5:cb:fc:bf:7c:b5:a0:f3:b5:0b: 5a:17:d7:9c:aa:2b:d7:4c:e5:99:e1:8b:fd:c3:f7: 65:90:6c:72:db:14:f6:82:2e:b8:5b:2f:d0:ab:38: c7:2c:37:df:89:78:80:35:42:db:69:b3:9e:22:fb: 1c:76:7c:91:2f:7f:4a:30:3a:2e:06:b7:d9:f7:09: 2f:71:5f:11:67:bc:1a:85:5c:71:09:2b:54:8a:3a: bc:dc:dd:f8:e3:20:eb:c5:83:4a:01:16:8a:27:60: 3d:92:80:22:94:cf:dc:00:ab:09:88:b1:7b:e5:60: c0:54:17:52:be:51:fb:a8:8e:80:88:ed:d0:48:ea: 0b:68:8d:a9:1b:6a:53:87:84:37:59:91:78:7f:69: cd:be:e0:5c:60:bd:17:ee:81:6b:c0:a9:65:2a:6c: ff:3b:34:ad:3c:55:49:e5:3b:12:44:b9:4c:55:2d: 9d:70:49:43:db:53:0d:b6:c8:b6:9f:71:c1:e3:16: 60:d0:d5:a6:a3:cd:01:62:9c:91:97:65:60:ca:43: e6:dc:1b:d8:20:2a:1e:43:74:a5:5c:81:2a:22:ad: 82:c5:e8:60:d3:c2:fc:54:ae:8d:49:06:23:64:1d: 2b:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:0B:82:9F:DD:E4:84:EF:0B:6D:54:A6:97:73:86:45:D4:47:C5:30 X509v3 Authority Key Identifier: keyid:97:F9:73:9F:64:09:C8:75:AE:E1:C4:9B:B6:9A:A7:43:CF:36:61:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_lzn2QJyHWu4cSbtpqnQ882YRs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:bf:a4:32:de:1e:b6:d0:9e:91:cd:85:c5:41:f4:ca:71:5e: 48:a6:04:95:3f:65:34:70:53:4d:f1:f9:dc:00:b2:7d:81:96: fa:1e:2f:03:be:05:bc:81:ee:0d:fd:23:d3:53:17:6f:15:ea: 4a:69:7c:38:cc:ed:65:a7:93:21:c1:df:44:ed:a4:de:54:8f: 6e:a5:3b:94:a0:d2:c1:75:09:56:b7:71:a5:79:61:ef:1f:3c: ec:3f:22:d7:fe:75:69:d8:93:89:b1:1f:e3:24:e0:5c:44:99: 36:e6:7c:1d:f7:2c:46:d9:9c:34:aa:6c:d5:58:60:6f:36:a7: 75:fc:88:c2:e8:57:7b:92:bc:c0:20:71:a7:6c:a3:4c:93:06: 47:49:a7:d0:a4:f8:d2:47:b5:38:a5:49:b8:af:55:4e:21:30: 75:db:93:cb:15:61:ef:a1:91:bd:df:40:1a:84:92:6c:b3:7a: e4:01:19:09:73:9f:eb:95:3b:4e:86:b4:88:3a:71:c9:cf:cb: b5:72:cb:1a:0e:4b:ff:74:43:a1:1a:ef:02:e3:79:c7:40:9d: 15:12:2e:1f:54:ae:d4:8b:ff:2d:ee:62:af:fb:67:c8:2d:c3: f9:ba:b9:6e:4b:2f:21:94:3b:71:73:8d:48:cf:cb:fd:7d:8b: 61:67:16:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDlswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA0N0YxMTAvBgNVBAUTKDk3Rjk3MzlGNjQwOUM4NzVBRUUxQzQ5QkI2OUFBNzQz Q0YzNjYxMUIwHhcNMjUwNzAyMTc1OTAyWhcNMjUwNzA5MTc1OTAyWjAYMRYwFAYD VQQDEw02ODY1NzM2Ni0xMGRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApwMvtI4sBdUQcPtZO3pu3+9KIbXL/L98taDztQtaF9ecqivXTOWZ4Yv9w/dl kGxy2xT2gi64Wy/QqzjHLDffiXiANULbabOeIvscdnyRL39KMDouBrfZ9wkvcV8R Z7wahVxxCStUijq83N344yDrxYNKARaKJ2A9koAilM/cAKsJiLF75WDAVBdSvlH7 qI6AiO3QSOoLaI2pG2pTh4Q3WZF4f2nNvuBcYL0X7oFrwKllKmz/OzStPFVJ5TsS RLlMVS2dcElD21MNtsi2n3HB4xZg0NWmo80BYpyRl2VgykPm3BvYICoeQ3SlXIEq Iq2Cxehg08L8VK6NSQYjZB0rMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNMLgp/d 5ITvC21UppdzhkXUR8UwMB8GA1UdIwQYMBaAFJf5c59kCch1ruHEm7aap0PPNmEb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDQ3Ri9GRDcyREUxNEEz QTkxMUU5OUY3NTc3N0JDNEY5QUUwMi9sX2x6bjJRSnlIV3U0Y1NidHBxblE4ODJZ UnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xfbHpuMlFKeUhXdTRjU2J0cHFuUTg4MllScy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDQ3Ri9GRDcyREUxNEEzQTkxMUU5OUY3NTc3N0JDNEY5QUUwMi9sX2x6bjJRSnlI V3U0Y1NidHBxblE4ODJZUnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+v6Qy3h620J6RzYXFQfTKcV5IpgSVP2U0cFNN8fncALJ9gZb6Hi8D vgW8ge4N/SPTUxdvFepKaXw4zO1lp5Mhwd9E7aTeVI9upTuUoNLBdQlWt3GleWHv HzzsPyLX/nVp2JOJsR/jJOBcRJk25nwd9yxG2Zw0qmzVWGBvNqd1/IjC6Fd7krzA IHGnbKNMkwZHSafQpPjSR7U4pUm4r1VOITB125PLFWHvoZG930AahJJss3rkARkJ c5/rlTtOhrSIOnHJz8u1cssaDkv/dEOhGu8C43nHQJ0VEi4fVK7Ui/8t7mKv+2fI LcP5urluSy8hlDtxc41Iz8v9fYthZxYf -----END CERTIFICATE-----Generated at Wed Jul 2 22:40:46 2025 by rpki-client