$ rpki-client -vvf rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft File: lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft (raw, json) Hash identifier: IBDY4SW78cQfX61myr5P6A7lqxHz1SK/GFpAxLZJCyc= Subject key identifier: B5:CC:7D:33:FA:F7:B2:C6:AA:D0:97:F6:28:5D:71:03:0B:75:85:A6 Authority key identifier: 96:B8:0C:37:C6:61:3D:14:A9:2C:DB:EC:66:28:21:64:3E:8A:F1:1B Certificate issuer: /CN=A91818BD/serialNumber=96B80C37C6613D14A92CDBEC662821643E8AF11B Certificate serial: 02BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lrgMN8ZhPRSpLNvsZighZD6K8Rs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft Manifest number: 02B3 Signing time: Tue 01 Jul 2025 02:08:15 +0000 Manifest this update: Tue 01 Jul 2025 02:08:14 +0000 Manifest next update: Tue 08 Jul 2025 02:08:14 +0000 Files and hashes: 1: lrgMN8ZhPRSpLNvsZighZD6K8Rs.crl (hash: S6+AiEKNp6ObdzbbUNw9TvKWtGxYKd3LcKBtd66DrCI=) 2: B83B7E0C065511EDB3E94E54C4F9AE02.roa (hash: tal6R2lkJBoeIIUyi6mdxCD2dqzkhyqrKbW//gzTT04=) 3: 481545DEFE8211ECBAB0E13FC4F9AE02.roa (hash: Qlo4+mbKJCym2bywU9/+B9nSR/lgPkj3tiR7WBd3VEs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.crl rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lrgMN8ZhPRSpLNvsZighZD6K8Rs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 02:08:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 698 (0x2ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91818BD, serialNumber=96B80C37C6613D14A92CDBEC662821643E8AF11B Validity Not Before: Jul 1 02:08:14 2025 GMT Not After : Jul 8 02:08:14 2025 GMT Subject: CN=6863430e-1420 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:8b:f1:82:47:c7:9c:cc:42:2a:ea:af:64:37: 14:06:99:b3:15:c7:b2:87:67:82:aa:1d:6b:59:2e: 14:e2:c3:4a:2d:2f:11:66:c2:27:06:87:6c:fe:4f: db:d2:07:3b:7f:6c:bd:a0:5f:d1:82:60:ce:67:23: 69:ad:0a:1f:9d:47:e8:c8:43:14:c4:f0:30:d3:a9: 4c:86:05:99:e2:e2:7c:d7:5b:90:96:bf:d1:ad:8b: 95:e4:66:51:1a:a3:77:30:e4:65:8f:ab:c9:6f:9c: a3:c8:da:ac:84:c0:ac:39:42:97:7b:f4:6e:2c:80: 75:df:0d:c7:e3:56:ce:9d:49:19:6f:3d:0f:89:1b: eb:01:b0:86:ba:49:cd:e8:d9:fb:7e:e0:4b:a2:64: 6c:f1:42:26:9e:42:17:86:94:e8:00:36:df:31:49: 0c:85:05:db:1a:c7:8a:c8:ba:07:5f:54:57:74:fb: e2:41:3d:fe:4b:73:fd:a9:25:f0:47:d7:91:08:71: ff:2f:66:2f:d1:aa:42:de:18:7c:20:a6:ed:d8:05: e6:40:c3:a0:a0:6a:eb:2e:b7:d9:fe:d7:10:f3:77: 7d:90:9d:18:e1:bd:17:a0:06:c8:39:25:15:82:62: af:bb:b3:57:88:6e:e3:3d:6d:79:41:55:f9:c9:00: a8:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:CC:7D:33:FA:F7:B2:C6:AA:D0:97:F6:28:5D:71:03:0B:75:85:A6 X509v3 Authority Key Identifier: keyid:96:B8:0C:37:C6:61:3D:14:A9:2C:DB:EC:66:28:21:64:3E:8A:F1:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lrgMN8ZhPRSpLNvsZighZD6K8Rs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:c3:d8:22:2e:a5:e4:64:ba:4c:78:f0:d3:ff:dd:ac:e5:ce: 73:fd:ca:83:a6:03:f4:e8:da:ad:03:72:f1:a5:92:d4:51:83: a6:c2:64:90:c4:2c:cf:d5:03:56:ea:3e:42:e6:87:1c:03:9f: b2:83:a6:fc:9f:2c:d6:e6:61:6d:21:73:74:68:e5:09:43:3d: ee:9e:42:1c:7c:de:f0:f5:d4:46:e2:e5:b4:d7:49:76:e2:aa: 96:8a:b2:30:d1:bc:70:55:93:bc:44:08:82:91:bc:c0:02:a1: 4e:f2:60:c7:6f:09:8c:14:79:a3:ba:d0:03:00:e6:94:f5:58: c7:dd:96:41:59:b6:f3:c4:3e:b3:7c:69:5d:f6:3c:02:04:f9: f4:2f:1e:fe:56:b0:1a:ed:63:c8:69:9c:bf:65:40:55:c2:d2: 34:87:07:a8:9c:21:7f:c4:64:81:f6:18:8a:a2:61:f8:c4:80: 67:ae:83:92:52:0a:2f:f1:68:8f:50:9a:80:c6:6d:e5:31:80: ae:96:fe:c2:01:ed:e6:cf:13:0e:1c:34:b1:65:9d:3a:42:ab: 01:9a:4b:38:09:3f:39:61:b7:74:28:f5:8a:f1:d0:80:4f:d8: 8c:68:ec:48:9e:7d:8f:09:8c:b3:d1:5b:85:29:92:0b:0b:3d: b3:df:59:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODE4QkQxMTAvBgNVBAUTKDk2QjgwQzM3QzY2MTNEMTRBOTJDREJFQzY2MjgyMTY0 M0U4QUYxMUIwHhcNMjUwNzAxMDIwODE0WhcNMjUwNzA4MDIwODE0WjAYMRYwFAYD VQQDEw02ODYzNDMwZS0xNDIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo4vxgkfHnMxCKuqvZDcUBpmzFceyh2eCqh1rWS4U4sNKLS8RZsInBods/k/b 0gc7f2y9oF/RgmDOZyNprQofnUfoyEMUxPAw06lMhgWZ4uJ811uQlr/RrYuV5GZR GqN3MORlj6vJb5yjyNqshMCsOUKXe/RuLIB13w3H41bOnUkZbz0PiRvrAbCGuknN 6Nn7fuBLomRs8UImnkIXhpToADbfMUkMhQXbGseKyLoHX1RXdPviQT3+S3P9qSXw R9eRCHH/L2Yv0apC3hh8IKbt2AXmQMOgoGrrLrfZ/tcQ83d9kJ0Y4b0XoAbIOSUV gmKvu7NXiG7jPW15QVX5yQCoWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLXMfTP6 97LGqtCX9ihdcQMLdYWmMB8GA1UdIwQYMBaAFJa4DDfGYT0UqSzb7GYoIWQ+ivEb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MThCRC80MTRENUJEQUZF ODAxMUVDOUYzMTdBM0ZDNEY5QUUwMi9scmdNTjhaaFBSU3BMTnZzWmlnaFpENks4 UnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xyZ01OOFpoUFJTcExOdnNaaWdoWkQ2SzhScy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MThCRC80MTRENUJEQUZFODAxMUVDOUYzMTdBM0ZDNEY5QUUwMi9scmdNTjhaaFBS U3BMTnZzWmlnaFpENks4UnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCyw9giLqXkZLpMePDT/92s5c5z/cqDpgP06NqtA3LxpZLUUYOmwmSQ xCzP1QNW6j5C5occA5+yg6b8nyzW5mFtIXN0aOUJQz3unkIcfN7w9dRG4uW010l2 4qqWirIw0bxwVZO8RAiCkbzAAqFO8mDHbwmMFHmjutADAOaU9VjH3ZZBWbbzxD6z fGld9jwCBPn0Lx7+VrAa7WPIaZy/ZUBVwtI0hweonCF/xGSB9hiKomH4xIBnroOS Ugov8WiPUJqAxm3lMYCulv7CAe3mzxMOHDSxZZ06QqsBmks4CT85Ybd0KPWK8dCA T9iMaOxInn2PCYyz0VuFKZILCz2z31lg -----END CERTIFICATE-----Generated at Wed Jul 2 16:04:46 2025 by rpki-client