$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.mft File: lzdxMASBm2tm_Fbm7Ia-TcLijhc.mft (raw, json) Hash identifier: OPYPRFuZcEbDh1go8ElnobsLfXHgPxPyFTIXF5waep4= Subject key identifier: 07:A1:9D:E2:D2:58:8E:5E:2E:A7:22:6D:3F:C7:7F:0E:50:8F:E1:38 Authority key identifier: 97:37:71:30:04:81:9B:6B:66:FC:56:E6:EC:86:BE:4D:C2:E2:8E:17 Certificate issuer: /CN=A91A1C06/serialNumber=9737713004819B6B66FC56E6EC86BE4DC2E28E17 Certificate serial: 34D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.mft Manifest number: 34C6 Signing time: Fri 22 Aug 2025 15:01:31 +0000 Manifest this update: Fri 22 Aug 2025 15:01:31 +0000 Manifest next update: Fri 29 Aug 2025 15:01:31 +0000 Files and hashes: 1: lzdxMASBm2tm_Fbm7Ia-TcLijhc.crl (hash: EcPWlSAqQ8X+MzCGO8haUMTjnY4YdU0BvZeErhZ1Dnc=) 2: C64C7958422411EA9CA5F423C4F9AE02.roa (hash: gJwOccgnH3xfVK9Ge3NY4ACv1N9EO/ya1L5O9ulfS9A=) 3: FB50A65027B311EFBA31BB40C4F9AE02.roa (hash: lCjcuN3RSUzDTTX5oZhMnE3axtzeaFw5cyewHimqMWM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.crl rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:01:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13523 (0x34d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1C06, serialNumber=9737713004819B6B66FC56E6EC86BE4DC2E28E17 Validity Not Before: Aug 22 15:01:31 2025 GMT Not After : Aug 29 15:01:31 2025 GMT Subject: CN=68a8864b-4683 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:3f:a3:6e:f6:6b:c8:e4:47:3b:70:8d:06:ab: 2c:9c:34:b5:c9:cd:9b:04:89:da:3f:b5:46:89:f7: 91:c9:fc:a3:7c:ab:e2:ea:23:e2:58:40:25:cb:7f: 73:51:42:36:ad:d4:a9:8a:86:1c:88:39:78:b2:9a: ec:34:28:26:32:71:61:88:11:85:6f:71:60:47:6a: 92:52:e7:e9:bb:55:d5:62:5f:f4:b9:84:e8:ec:37: 7f:9a:fc:76:24:4c:ed:57:0d:81:bb:e9:29:d5:b8: 5c:ba:b5:47:eb:d6:bd:0d:cb:2b:f7:dc:e2:f4:bd: 01:dd:bb:46:b7:49:fc:12:37:51:3a:d6:ef:de:3f: a6:47:85:06:26:49:d6:6c:11:3b:5d:15:54:85:5a: 37:33:5d:1c:3c:6a:4b:4a:45:cb:54:e1:ce:b7:92: b1:a6:c2:13:91:d4:b6:42:b9:00:2c:7d:75:e7:53: 5a:52:31:e7:98:20:36:31:ae:9c:47:47:7e:3e:b1: a7:ad:fd:fc:b7:24:ac:58:22:a7:a6:05:3a:07:e4: fe:5e:33:0d:b4:d7:ab:73:41:ae:ff:d3:8b:30:6c: c9:06:94:f8:24:54:43:37:c3:42:30:a9:d5:3c:cb: 04:59:b8:26:a7:5a:80:10:72:eb:19:88:dc:3d:a3: ad:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:A1:9D:E2:D2:58:8E:5E:2E:A7:22:6D:3F:C7:7F:0E:50:8F:E1:38 X509v3 Authority Key Identifier: keyid:97:37:71:30:04:81:9B:6B:66:FC:56:E6:EC:86:BE:4D:C2:E2:8E:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:ea:dd:1c:c2:ca:b3:8a:21:5a:d7:92:5e:26:c1:ad:d0:bd: 38:af:13:f0:67:59:28:0d:c4:eb:e5:e1:e6:48:6c:50:5c:39: 76:00:af:9b:39:27:4d:ac:d8:a2:a7:9c:1d:c9:d4:38:8a:86: 00:ba:cd:20:a6:76:e8:c0:47:1a:c3:ad:71:ff:c1:4d:6c:45: bb:ee:25:03:16:35:b7:d4:09:ce:5d:36:8f:3d:a8:30:bc:a1: 90:ed:88:2b:37:39:de:2b:52:07:4d:7b:d4:ba:25:7e:10:23: f2:08:5c:cc:19:2e:81:91:20:7e:cf:06:ab:fa:59:db:56:44: 9e:7f:80:17:b9:58:ba:ed:b9:0d:ec:38:d4:2e:c2:bd:15:66: b8:60:4d:14:df:c9:a4:d2:2f:1e:91:fa:6a:98:5b:76:b8:f4: 89:da:de:99:2c:56:97:aa:40:b3:3a:9c:32:7b:1a:03:b2:ac: f6:18:0e:e8:bb:ee:1f:80:e5:8b:c8:63:1f:af:8e:f4:29:8a: ec:4d:39:ac:0e:fe:b8:6b:14:2c:4a:9f:05:a9:02:e2:d2:d5: fe:88:67:97:eb:84:71:17:96:30:01:19:b1:68:04:bf:ed:f6: 53:01:90:12:f0:08:e1:ce:6e:be:fa:e9:d0:d2:e0:f2:a5:8b: 35:11:57:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFDMDYxMTAvBgNVBAUTKDk3Mzc3MTMwMDQ4MTlCNkI2NkZDNTZFNkVDODZCRTRE QzJFMjhFMTcwHhcNMjUwODIyMTUwMTMxWhcNMjUwODI5MTUwMTMxWjAYMRYwFAYD VQQDEw02OGE4ODY0Yi00NjgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsj+jbvZryORHO3CNBqssnDS1yc2bBInaP7VGifeRyfyjfKvi6iPiWEAly39z UUI2rdSpioYciDl4sprsNCgmMnFhiBGFb3FgR2qSUufpu1XVYl/0uYTo7Dd/mvx2 JEztVw2Bu+kp1bhcurVH69a9Dcsr99zi9L0B3btGt0n8EjdROtbv3j+mR4UGJknW bBE7XRVUhVo3M10cPGpLSkXLVOHOt5KxpsITkdS2QrkALH1151NaUjHnmCA2Ma6c R0d+PrGnrf38tySsWCKnpgU6B+T+XjMNtNerc0Gu/9OLMGzJBpT4JFRDN8NCMKnV PMsEWbgmp1qAEHLrGYjcPaOtcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAehneLS WI5eLqcibT/Hfw5Qj+E4MB8GA1UdIwQYMBaAFJc3cTAEgZtrZvxW5uyGvk3C4o4X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUMwNi82REVBRTIxQzFE OUQxMUUyOEIxRkE3OEMwOEIwMkNEMi9semR4TUFTQm0ydG1fRmJtN0lhLVRjTGlq aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x6ZHhNQVNCbTJ0bV9GYm03SWEtVGNMaWpoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUMwNi82REVBRTIxQzFEOUQxMUUyOEIxRkE3OEMwOEIwMkNEMi9semR4TUFTQm0y dG1fRmJtN0lhLVRjTGlqaGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC26t0cwsqziiFa15JeJsGt0L04rxPwZ1koDcTr5eHmSGxQXDl2AK+b OSdNrNiip5wdydQ4ioYAus0gpnbowEcaw61x/8FNbEW77iUDFjW31AnOXTaPPagw vKGQ7YgrNzneK1IHTXvUuiV+ECPyCFzMGS6BkSB+zwar+lnbVkSef4AXuVi67bkN 7DjULsK9FWa4YE0U38mk0i8ekfpqmFt2uPSJ2t6ZLFaXqkCzOpwyexoDsqz2GA7o u+4fgOWLyGMfr470KYrsTTmsDv64axQsSp8FqQLi0tX+iGeX64RxF5YwARmxaAS/ 7fZTAZAS8Ajhzm6++unQ0uDypYs1EVfn -----END CERTIFICATE-----Generated at Sat Aug 23 19:38:43 2025 by rpki-client