$ rpki-client -vvf rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft File: lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft (raw, json) Hash identifier: MZ2of93xiIfRM1O6Iq5qXK+bpL+IXSLQFvc5fU2qn7U= Subject key identifier: CB:84:8E:FF:C8:ED:D9:AA:10:45:10:E2:D2:E3:4E:B4:BE:16:3E:3D Authority key identifier: 94:2D:54:1D:FE:79:82:F6:E0:1E:6B:CC:97:6D:C0:CB:84:14:E8:38 Certificate issuer: /CN=A917D7F2/serialNumber=942D541DFE7982F6E01E6BCC976DC0CB8414E838 Certificate serial: 34C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft Manifest number: 34BC Signing time: Fri 22 Aug 2025 14:36:50 +0000 Manifest this update: Fri 22 Aug 2025 14:36:50 +0000 Manifest next update: Fri 29 Aug 2025 14:36:50 +0000 Files and hashes: 1: lC1UHf55gvbgHmvMl23Ay4QU6Dg.crl (hash: WFZJ1RMmAtDF/QwaXrWoWa3ljothx7rKUZRJP3WSUOA=) 2: 35FC192C272C11ED9E64C718C4F9AE02.roa (hash: of9zh63P1E28Fw1JXMf3Mift2nJvEjjB8iXijpwTEOw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.crl rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:36:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13505 (0x34c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D7F2, serialNumber=942D541DFE7982F6E01E6BCC976DC0CB8414E838 Validity Not Before: Aug 22 14:36:50 2025 GMT Not After : Aug 29 14:36:50 2025 GMT Subject: CN=68a88082-4497 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:12:33:15:b1:2c:2d:7f:19:4d:d8:0d:eb:1c: cf:be:13:4d:a7:c3:99:83:b4:f1:a1:e5:65:a7:a6: a3:23:a0:d7:33:a5:52:38:c3:2b:3f:8f:ad:2d:fb: 86:f0:98:ec:f2:ac:a0:76:30:76:71:ed:00:1e:c6: f7:90:bb:f6:4b:82:82:c9:8c:07:d5:69:c0:ab:3c: 25:db:96:0d:25:08:99:92:02:1f:c8:47:45:59:04: 06:9d:7a:bc:bf:b2:99:76:34:23:df:81:10:2f:0e: 5b:8f:c5:f1:e1:64:a8:25:60:40:5e:18:98:48:8f: 40:b1:38:f0:94:c2:0a:d3:82:bf:3b:9a:1f:ad:25: a3:08:6e:48:22:7f:74:3a:a9:24:1d:fc:9d:d1:ba: 12:da:ff:0a:a9:01:f2:66:b6:71:d4:1b:5f:71:35: c6:e9:40:15:44:39:7e:26:10:66:0d:b4:5b:e0:01: 2a:4d:9b:d6:2c:5f:cc:2f:f6:0c:23:39:9b:b3:96: 63:01:50:c3:31:16:f0:bd:19:22:86:be:0f:93:6d: 0d:7c:10:61:cb:b4:64:a9:b9:53:98:58:37:f3:d9: 54:d1:55:43:d6:af:79:6d:86:83:26:11:1a:5d:74: 4e:d3:6c:16:44:2b:b3:5a:be:00:b9:b8:1b:4d:96: db:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:84:8E:FF:C8:ED:D9:AA:10:45:10:E2:D2:E3:4E:B4:BE:16:3E:3D X509v3 Authority Key Identifier: keyid:94:2D:54:1D:FE:79:82:F6:E0:1E:6B:CC:97:6D:C0:CB:84:14:E8:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:05:30:8f:f9:a4:50:f1:66:36:64:bc:bf:3c:e5:f9:b7:9f: 3d:39:23:8c:e4:b1:d3:58:c6:5c:fd:65:6f:4e:23:50:9f:28: b9:d0:64:23:dd:74:9b:e1:36:28:9a:42:0a:57:5b:56:f3:6f: c1:7a:8f:54:5f:73:67:1a:6d:88:0d:0b:19:7c:7e:d5:ec:17: 90:8c:5c:95:dc:33:0d:f0:b7:e9:f6:11:c9:10:46:98:12:9c: 02:f8:29:3d:06:2b:54:58:97:f8:33:ea:19:dd:57:58:cd:5b: 34:f9:77:fe:81:ac:65:92:ab:1b:69:ee:94:59:41:4e:a5:3c: 0e:78:16:c6:d7:30:d6:f0:ed:45:68:a2:be:04:d7:62:37:a9: bd:7d:4a:70:43:f8:5a:fc:dd:6d:fa:f6:b0:c1:5d:21:b3:3b: ca:dd:a8:a7:08:d7:58:7c:6c:80:27:58:87:35:5f:2e:75:bf: 69:d6:2c:0f:8e:8b:3c:2e:b1:91:fb:53:a2:62:cf:8d:f4:0b: 5d:b9:a3:57:64:aa:e1:5a:1b:c1:ca:85:6d:37:27:b0:99:42: c4:f1:f7:5f:1b:13:dd:91:ee:aa:db:ad:6e:ad:30:8b:ec:e2: 3c:6f:58:5d:b4:c6:9f:03:1b:a7:de:c0:76:3f:a4:3f:ef:2b: f3:1c:96:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q3RjIxMTAvBgNVBAUTKDk0MkQ1NDFERkU3OTgyRjZFMDFFNkJDQzk3NkRDMENC ODQxNEU4MzgwHhcNMjUwODIyMTQzNjUwWhcNMjUwODI5MTQzNjUwWjAYMRYwFAYD VQQDEw02OGE4ODA4Mi00NDk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArBIzFbEsLX8ZTdgN6xzPvhNNp8OZg7TxoeVlp6ajI6DXM6VSOMMrP4+tLfuG 8Jjs8qygdjB2ce0AHsb3kLv2S4KCyYwH1WnAqzwl25YNJQiZkgIfyEdFWQQGnXq8 v7KZdjQj34EQLw5bj8Xx4WSoJWBAXhiYSI9AsTjwlMIK04K/O5ofrSWjCG5IIn90 OqkkHfyd0boS2v8KqQHyZrZx1BtfcTXG6UAVRDl+JhBmDbRb4AEqTZvWLF/ML/YM Izmbs5ZjAVDDMRbwvRkihr4Pk20NfBBhy7RkqblTmFg389lU0VVD1q95bYaDJhEa XXRO02wWRCuzWr4AubgbTZbb+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMuEjv/I 7dmqEEUQ4tLjTrS+Fj49MB8GA1UdIwQYMBaAFJQtVB3+eYL24B5rzJdtwMuEFOg4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDdGMi9GMDI4OTAzQzFE OEMxMUUyQjE5RDVGRUEwOEIwMkNEMi9sQzFVSGY1NWd2YmdIbXZNbDIzQXk0UVU2 RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xDMVVIZjU1Z3ZiZ0htdk1sMjNBeTRRVTZEZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDdGMi9GMDI4OTAzQzFEOEMxMUUyQjE5RDVGRUEwOEIwMkNEMi9sQzFVSGY1NWd2 YmdIbXZNbDIzQXk0UVU2RGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrBTCP+aRQ8WY2ZLy/POX5t589OSOM5LHTWMZc/WVvTiNQnyi50GQj 3XSb4TYomkIKV1tW82/Beo9UX3NnGm2IDQsZfH7V7BeQjFyV3DMN8Lfp9hHJEEaY EpwC+Ck9BitUWJf4M+oZ3VdYzVs0+Xf+gaxlkqsbae6UWUFOpTwOeBbG1zDW8O1F aKK+BNdiN6m9fUpwQ/ha/N1t+vawwV0hszvK3ainCNdYfGyAJ1iHNV8udb9p1iwP jos8LrGR+1OiYs+N9AtduaNXZKrhWhvByoVtNyewmULE8fdfGxPdke6q261urTCL 7OI8b1hdtMafAxun3sB2P6Q/7yvzHJZk -----END CERTIFICATE-----Generated at Sun Aug 24 03:07:47 2025 by rpki-client