$ rpki-client -vvf rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft File: lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft (raw, json) Hash identifier: lIrSbOgDy5fp+vFzykVQ594eKztZNJt6atrxk9+Mfm0= Subject key identifier: 0B:EF:FA:C0:66:EE:F0:54:33:F5:A3:AF:71:2F:BC:C9:6A:18:D5:B8 Authority key identifier: 96:B8:0C:37:C6:61:3D:14:A9:2C:DB:EC:66:28:21:64:3E:8A:F1:1B Certificate issuer: /CN=A91818BD/serialNumber=96B80C37C6613D14A92CDBEC662821643E8AF11B Certificate serial: 02D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lrgMN8ZhPRSpLNvsZighZD6K8Rs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft Manifest number: 02D0 Signing time: Sat 23 Aug 2025 01:37:54 +0000 Manifest this update: Sat 23 Aug 2025 01:37:53 +0000 Manifest next update: Sat 30 Aug 2025 01:37:53 +0000 Files and hashes: 1: lrgMN8ZhPRSpLNvsZighZD6K8Rs.crl (hash: tMa9PIpOmOWFXJm10i/vAOS5/HP2IQQ9okwlrKEQuqo=) 2: B83B7E0C065511EDB3E94E54C4F9AE02.roa (hash: 64ZDXa38kdxwzfpX7eFWZ9w6C5i8LC3RH5BIc5A3wCU=) 3: 481545DEFE8211ECBAB0E13FC4F9AE02.roa (hash: jEKlncyC+64UETCLm2u7esM8VX+/1LjWilEvooOzMxI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.crl rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lrgMN8ZhPRSpLNvsZighZD6K8Rs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:37:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 729 (0x2d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91818BD, serialNumber=96B80C37C6613D14A92CDBEC662821643E8AF11B Validity Not Before: Aug 23 01:37:53 2025 GMT Not After : Aug 30 01:37:53 2025 GMT Subject: CN=68a91b72-d958 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f6:72:d4:bc:1a:fd:8b:4e:57:88:af:db:94: 00:fe:c8:3d:77:b3:bd:05:00:87:5b:e7:bd:49:5a: 43:8d:0f:96:3a:ac:e5:46:9a:13:03:69:4b:18:9a: 4f:65:28:07:da:74:19:41:f4:5c:80:eb:ee:a3:a1: 91:bf:40:c0:a6:ad:9d:46:42:60:fd:4d:20:b6:61: a4:52:da:21:49:3a:41:f3:47:95:79:84:7f:9b:b4: 3e:80:f8:32:18:40:ac:60:5d:45:0b:43:44:e7:6d: a1:21:25:3d:c4:80:54:25:42:08:16:29:98:44:c8: cc:e2:07:8c:7a:f4:07:03:12:2f:f3:34:68:5f:da: ed:ca:51:5a:99:08:a6:6d:43:ad:a6:0b:00:b8:9b: 16:39:58:7e:00:ff:ea:bb:28:6e:23:72:db:38:43: 5b:49:b9:f4:1f:82:09:7b:e6:63:c6:76:20:38:8e: 2a:5e:87:b6:c7:85:2e:a8:6c:68:de:9e:16:26:b2: d7:c3:20:83:22:ce:2d:a3:e9:5e:86:e5:62:61:a5: 50:10:d7:66:8a:70:01:01:97:81:69:9f:a2:7e:1d: 5d:eb:41:12:4f:1a:a2:51:09:5e:7b:f8:8f:18:a7: bb:ec:3c:c9:49:43:6c:9f:a1:10:0b:e8:43:a3:39: 6f:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:EF:FA:C0:66:EE:F0:54:33:F5:A3:AF:71:2F:BC:C9:6A:18:D5:B8 X509v3 Authority Key Identifier: keyid:96:B8:0C:37:C6:61:3D:14:A9:2C:DB:EC:66:28:21:64:3E:8A:F1:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lrgMN8ZhPRSpLNvsZighZD6K8Rs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:7f:77:7d:65:0e:92:02:4d:03:6b:d1:14:88:77:81:d5:f8: 7e:27:63:a9:6a:b7:c7:88:1c:c0:87:b7:1d:2c:e8:da:fc:35: 66:bc:cb:38:9c:cd:0c:bd:9b:32:c5:1e:d1:01:31:33:09:ec: 51:df:d8:3b:26:5d:1e:fe:ab:0d:9c:40:71:5b:45:1d:50:31: 0a:2f:46:fa:e3:9d:9d:78:a2:0a:f1:ba:2d:7d:36:96:f7:f4: 82:69:d1:54:0f:41:3a:a6:c4:f2:5e:b0:c2:4c:61:1b:d2:40: 2b:7e:c5:20:10:9a:c3:ef:a2:6b:f7:70:20:d0:c0:6c:be:df: 88:50:b6:1b:43:21:5b:95:3f:82:b0:7f:7f:e2:36:af:08:38: 5a:f9:72:58:05:eb:af:f2:0c:95:1f:b3:ef:08:30:6b:13:07: 79:36:95:85:50:3b:2d:54:0b:6b:10:b7:14:7b:d1:2d:0b:f1: 81:50:10:68:df:60:5e:35:d4:85:d9:47:d2:a0:db:d3:00:0a: 79:93:1b:bc:ac:5d:fe:da:ec:eb:71:57:d2:81:58:e2:3b:e3: 61:9f:c2:1c:95:27:d7:70:0e:09:a3:e0:3a:f2:7a:76:cc:0f: b6:52:ca:00:cc:93:dc:7f:c4:34:43:82:83:ac:81:b5:3b:e3: 08:f2:ff:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODE4QkQxMTAvBgNVBAUTKDk2QjgwQzM3QzY2MTNEMTRBOTJDREJFQzY2MjgyMTY0 M0U4QUYxMUIwHhcNMjUwODIzMDEzNzUzWhcNMjUwODMwMDEzNzUzWjAYMRYwFAYD VQQDEw02OGE5MWI3Mi1kOTU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu/Zy1Lwa/YtOV4iv25QA/sg9d7O9BQCHW+e9SVpDjQ+WOqzlRpoTA2lLGJpP ZSgH2nQZQfRcgOvuo6GRv0DApq2dRkJg/U0gtmGkUtohSTpB80eVeYR/m7Q+gPgy GECsYF1FC0NE522hISU9xIBUJUIIFimYRMjM4geMevQHAxIv8zRoX9rtylFamQim bUOtpgsAuJsWOVh+AP/quyhuI3LbOENbSbn0H4IJe+ZjxnYgOI4qXoe2x4UuqGxo 3p4WJrLXwyCDIs4to+lehuViYaVQENdminABAZeBaZ+ifh1d60ESTxqiUQlee/iP GKe77DzJSUNsn6EQC+hDozlvrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAvv+sBm 7vBUM/Wjr3EvvMlqGNW4MB8GA1UdIwQYMBaAFJa4DDfGYT0UqSzb7GYoIWQ+ivEb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MThCRC80MTRENUJEQUZF ODAxMUVDOUYzMTdBM0ZDNEY5QUUwMi9scmdNTjhaaFBSU3BMTnZzWmlnaFpENks4 UnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xyZ01OOFpoUFJTcExOdnNaaWdoWkQ2SzhScy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MThCRC80MTRENUJEQUZFODAxMUVDOUYzMTdBM0ZDNEY5QUUwMi9scmdNTjhaaFBS U3BMTnZzWmlnaFpENks4UnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzf3d9ZQ6SAk0Da9EUiHeB1fh+J2OparfHiBzAh7cdLOja/DVmvMs4 nM0MvZsyxR7RATEzCexR39g7Jl0e/qsNnEBxW0UdUDEKL0b6452deKIK8botfTaW 9/SCadFUD0E6psTyXrDCTGEb0kArfsUgEJrD76Jr93Ag0MBsvt+IULYbQyFblT+C sH9/4javCDha+XJYBeuv8gyVH7PvCDBrEwd5NpWFUDstVAtrELcUe9EtC/GBUBBo 32BeNdSF2UfSoNvTAAp5kxu8rF3+2uzrcVfSgVjiO+Nhn8IclSfXcA4Jo+A68np2 zA+2UsoAzJPcf8Q0Q4KDrIG1O+MI8v/W -----END CERTIFICATE-----Generated at Sat Aug 23 17:09:52 2025 by rpki-client