$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.mft File: lzdxMASBm2tm_Fbm7Ia-TcLijhc.mft (raw, json) Hash identifier: 9dolusxzpDR3iyxJ4N0pdtEPBKfP0kU6GI/qq+BqPRA= Subject key identifier: 71:BE:0D:D0:25:A8:96:33:E5:F0:C9:10:27:13:42:DD:96:AE:D4:26 Authority key identifier: 97:37:71:30:04:81:9B:6B:66:FC:56:E6:EC:86:BE:4D:C2:E2:8E:17 Certificate issuer: /CN=A91A1C06/serialNumber=9737713004819B6B66FC56E6EC86BE4DC2E28E17 Certificate serial: 34B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.mft Manifest number: 34AC Signing time: Wed 02 Jul 2025 15:02:49 +0000 Manifest this update: Wed 02 Jul 2025 15:02:48 +0000 Manifest next update: Wed 09 Jul 2025 15:02:48 +0000 Files and hashes: 1: lzdxMASBm2tm_Fbm7Ia-TcLijhc.crl (hash: IPzK0hN5sKWo09Dc1DtgGSp47qRTRwhVKAM35kmLLBc=) 2: C64C7958422411EA9CA5F423C4F9AE02.roa (hash: gJwOccgnH3xfVK9Ge3NY4ACv1N9EO/ya1L5O9ulfS9A=) 3: FB50A65027B311EFBA31BB40C4F9AE02.roa (hash: lCjcuN3RSUzDTTX5oZhMnE3axtzeaFw5cyewHimqMWM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.crl rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 15:02:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13497 (0x34b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1C06, serialNumber=9737713004819B6B66FC56E6EC86BE4DC2E28E17 Validity Not Before: Jul 2 15:02:48 2025 GMT Not After : Jul 9 15:02:48 2025 GMT Subject: CN=68654a19-61f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:82:8f:47:39:f7:c3:0f:9a:2c:e8:3d:7b:ee: 76:80:c0:a5:61:fa:7f:19:0c:12:dc:02:fc:67:db: 6d:90:99:7e:a9:c5:9b:c7:cd:55:3b:33:4e:0f:6c: 32:0f:8e:a9:b6:b8:4d:e8:e8:c3:e2:bf:55:06:bd: b0:b6:95:4f:f8:c4:42:23:3b:4b:bb:c6:21:62:30: df:ec:01:3a:52:4d:5b:a2:7d:2b:3b:61:dc:4a:a3: 32:1d:9e:3e:e1:4a:23:c8:92:8b:a3:ee:88:14:ad: 56:46:f7:30:58:33:ed:16:f8:59:1d:75:3e:05:d7: 35:ef:13:ff:af:a0:1b:23:05:23:e6:a6:42:34:73: 51:7e:bf:1f:18:c9:08:d9:3d:f3:bd:d1:77:f2:b6: 47:69:ee:2d:51:3e:b1:ea:03:39:a1:b5:a4:dc:72: 79:d6:07:21:af:86:5b:b5:8b:9f:b4:69:0b:76:32: 1a:e0:94:80:cd:24:49:59:dc:99:fe:4a:18:87:1e: e5:c7:0a:62:8e:b1:29:87:a3:b9:c8:b0:e6:b5:b2: 29:c2:b4:9f:96:b7:16:6b:87:eb:90:e9:55:1c:f5: 2c:d0:ba:3c:1e:1a:9c:68:23:3d:d5:74:54:67:6c: 73:17:c2:cb:7e:1e:92:9f:dc:93:db:bf:be:a6:ac: b2:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:BE:0D:D0:25:A8:96:33:E5:F0:C9:10:27:13:42:DD:96:AE:D4:26 X509v3 Authority Key Identifier: keyid:97:37:71:30:04:81:9B:6B:66:FC:56:E6:EC:86:BE:4D:C2:E2:8E:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:b5:1a:8d:13:30:67:5e:52:e1:19:a6:96:2b:d2:a5:ff:8a: c6:ae:58:cd:47:03:81:79:4b:bc:d1:7e:b6:56:91:f7:fc:d5: 38:2b:f7:c9:a6:97:09:5c:f2:01:13:90:9f:57:6f:f6:6a:cb: c6:9f:32:25:d1:23:93:17:e2:72:89:8e:8a:87:22:af:40:c5: a8:32:28:ef:ee:80:15:c3:7c:3f:63:6d:cc:07:b8:db:d4:b4: 43:c2:54:d8:25:23:24:0b:8c:42:49:4d:73:35:07:16:ac:9e: 04:a1:43:0f:7e:1f:65:6e:fb:22:a0:6c:3c:d5:b9:b6:11:99: 15:88:78:b4:e4:21:f1:77:77:b7:c2:b5:71:15:7c:8c:dc:22: 43:da:51:b8:d1:13:1b:c0:7c:4e:e9:2b:b8:4f:59:e4:a3:a6: 16:5d:11:01:24:50:b3:66:c2:d2:a9:0e:df:84:b0:b8:3b:b3: 59:b9:64:3c:13:76:66:61:f2:a2:44:83:3d:c3:8f:3d:c8:89: 83:b2:27:8c:f3:d0:f2:1c:8e:35:70:dc:1c:a9:b8:2f:f1:98: 5e:17:1f:24:69:33:c8:48:15:4f:0e:46:14:4d:20:b9:ca:92: d3:63:28:75:dc:25:cb:47:3f:f1:28:83:17:82:ea:ac:aa:ce: ca:3c:11:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFDMDYxMTAvBgNVBAUTKDk3Mzc3MTMwMDQ4MTlCNkI2NkZDNTZFNkVDODZCRTRE QzJFMjhFMTcwHhcNMjUwNzAyMTUwMjQ4WhcNMjUwNzA5MTUwMjQ4WjAYMRYwFAYD VQQDEw02ODY1NGExOS02MWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwYKPRzn3ww+aLOg9e+52gMClYfp/GQwS3AL8Z9ttkJl+qcWbx81VOzNOD2wy D46ptrhN6OjD4r9VBr2wtpVP+MRCIztLu8YhYjDf7AE6Uk1bon0rO2HcSqMyHZ4+ 4UojyJKLo+6IFK1WRvcwWDPtFvhZHXU+Bdc17xP/r6AbIwUj5qZCNHNRfr8fGMkI 2T3zvdF38rZHae4tUT6x6gM5obWk3HJ51gchr4ZbtYuftGkLdjIa4JSAzSRJWdyZ /koYhx7lxwpijrEph6O5yLDmtbIpwrSflrcWa4frkOlVHPUs0Lo8HhqcaCM91XRU Z2xzF8LLfh6Sn9yT27++pqyyQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHG+DdAl qJYz5fDJECcTQt2WrtQmMB8GA1UdIwQYMBaAFJc3cTAEgZtrZvxW5uyGvk3C4o4X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUMwNi82REVBRTIxQzFE OUQxMUUyOEIxRkE3OEMwOEIwMkNEMi9semR4TUFTQm0ydG1fRmJtN0lhLVRjTGlq aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x6ZHhNQVNCbTJ0bV9GYm03SWEtVGNMaWpoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUMwNi82REVBRTIxQzFEOUQxMUUyOEIxRkE3OEMwOEIwMkNEMi9semR4TUFTQm0y dG1fRmJtN0lhLVRjTGlqaGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJtRqNEzBnXlLhGaaWK9Kl/4rGrljNRwOBeUu80X62VpH3/NU4K/fJ ppcJXPIBE5CfV2/2asvGnzIl0SOTF+JyiY6KhyKvQMWoMijv7oAVw3w/Y23MB7jb 1LRDwlTYJSMkC4xCSU1zNQcWrJ4EoUMPfh9lbvsioGw81bm2EZkViHi05CHxd3e3 wrVxFXyM3CJD2lG40RMbwHxO6Su4T1nko6YWXREBJFCzZsLSqQ7fhLC4O7NZuWQ8 E3ZmYfKiRIM9w489yImDsieM89DyHI41cNwcqbgv8ZheFx8kaTPISBVPDkYUTSC5 ypLTYyh13CXLRz/xKIMXguqsqs7KPBFd -----END CERTIFICATE-----Generated at Fri Jul 4 07:58:41 2025 by rpki-client