$ rpki-client -vvf rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft File: L9JLb9eYBEVzVDhmYs4w3aOyALU.mft (raw, json) Hash identifier: MNKzXIyA09Ub1ziga4NBfbbTZ2m7i69fLsqzNAwnrJU= Subject key identifier: E0:9E:28:AA:83:BE:46:2B:EC:E5:68:DC:7D:E6:51:87:31:C2:06:88 Authority key identifier: 2F:D2:4B:6F:D7:98:04:45:73:54:38:66:62:CE:30:DD:A3:B2:00:B5 Certificate issuer: /CN=A91A29DA/serialNumber=2FD24B6FD79804457354386662CE30DDA3B200B5 Certificate serial: 0114 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft Manifest number: 0112 Signing time: Sat 23 Aug 2025 05:02:25 +0000 Manifest this update: Sat 23 Aug 2025 05:02:25 +0000 Manifest next update: Sat 30 Aug 2025 05:02:25 +0000 Files and hashes: 1: L9JLb9eYBEVzVDhmYs4w3aOyALU.crl (hash: qxkZKrPzei7fswmS2DRkvH9vBB+xY6iqi0a5pVwOgEw=) 2: AE2FD9C4DA5411EE83E9E67EC4F9AE02.roa (hash: tK5HTPbAj/ZNMX+j7tcaCGQxo/xqwq0UKtlHWscWUVg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.crl rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:02:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 276 (0x114) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A29DA, serialNumber=2FD24B6FD79804457354386662CE30DDA3B200B5 Validity Not Before: Aug 23 05:02:25 2025 GMT Not After : Aug 30 05:02:25 2025 GMT Subject: CN=68a94b61-5ed8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:6b:f5:d4:68:a3:7f:47:73:2a:89:6a:05:3e: f6:29:63:ee:aa:b2:c3:01:be:ce:76:fa:eb:1f:86: 30:9f:5e:89:6a:7b:cd:e6:ae:05:23:c7:46:a9:a0: 1c:a0:ee:17:27:34:af:c9:24:dc:78:51:eb:b3:db: 1b:56:da:f2:53:ab:e2:fe:b3:49:4c:5b:b7:2d:e6: 09:10:b1:0e:f6:d5:46:27:f1:4a:01:e6:94:18:42: ac:0a:51:47:f6:20:ed:40:93:18:70:24:a0:1f:6c: 86:e1:21:e7:e7:45:69:b5:c0:bf:d8:a3:6e:26:02: 03:41:a4:62:cc:2d:b7:b2:bc:95:67:b9:4e:7a:76: 4f:46:99:47:5b:5d:ef:27:2a:db:fe:46:39:6a:08: de:ad:6e:06:53:21:b8:45:c8:b5:61:2d:07:22:52: 7f:19:4c:0b:a8:04:26:ee:b3:c9:fd:2b:b9:a5:36: 76:6e:a9:01:0d:02:1a:7d:cb:20:7d:e4:70:4a:1f: 70:b4:19:1c:29:68:37:30:41:b9:34:a9:d5:d3:9f: d5:3c:f1:a2:4d:f5:90:67:9f:d0:c5:1e:bd:1b:a5: 66:b4:01:a9:c2:39:0a:73:f1:1c:ff:04:a6:e7:4a: 89:2d:e6:d0:cd:f4:26:1e:3b:e9:64:5b:a8:2c:54: 64:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:9E:28:AA:83:BE:46:2B:EC:E5:68:DC:7D:E6:51:87:31:C2:06:88 X509v3 Authority Key Identifier: keyid:2F:D2:4B:6F:D7:98:04:45:73:54:38:66:62:CE:30:DD:A3:B2:00:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:03:8c:7d:ba:cb:92:ed:33:92:c1:9e:ab:fe:fe:12:a9:2b: 14:e0:f3:a8:e0:d1:50:08:9b:8d:08:73:cb:0b:df:66:16:68: 9a:68:dc:07:ee:07:f4:fb:c4:24:b2:cf:1c:fc:36:e2:96:6d: da:f6:c6:c7:c4:ac:9b:d3:02:16:37:0a:0f:aa:91:6a:0f:b5: 2f:c0:41:4c:ed:dc:d9:a8:d3:10:39:40:ae:04:ea:3c:3b:b1: 2d:3e:a1:9c:3e:f5:d7:7d:8f:31:03:57:9e:36:65:91:f6:06: f3:f9:88:fe:43:eb:03:16:92:70:5d:93:af:1c:fb:ce:ac:6f: 33:0f:16:f9:93:0b:f9:2e:96:f9:d6:b9:a4:ef:71:95:44:af: bb:6f:4e:a0:4c:e2:34:32:b7:66:fa:bf:39:44:9c:d2:a0:bb: 1e:9b:d6:07:bf:6d:d1:d9:1e:98:73:0a:6a:61:e8:45:30:f0: fd:c4:33:35:f0:f3:0c:8a:29:11:26:85:5c:82:ec:e4:72:43: 9a:c8:81:5d:04:93:2e:9d:fa:ee:32:75:fa:be:e2:ee:4a:6e: 51:0c:34:f6:d0:22:b7:a9:b9:d6:4c:ab:d3:62:fc:1a:41:80: 62:96:02:2d:3f:35:57:24:39:ee:02:5d:a2:fd:58:8c:fc:60: a1:a5:b6:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTI5REExMTAvBgNVBAUTKDJGRDI0QjZGRDc5ODA0NDU3MzU0Mzg2NjYyQ0UzMERE QTNCMjAwQjUwHhcNMjUwODIzMDUwMjI1WhcNMjUwODMwMDUwMjI1WjAYMRYwFAYD VQQDEw02OGE5NGI2MS01ZWQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAumv11Gijf0dzKolqBT72KWPuqrLDAb7OdvrrH4Ywn16JanvN5q4FI8dGqaAc oO4XJzSvySTceFHrs9sbVtryU6vi/rNJTFu3LeYJELEO9tVGJ/FKAeaUGEKsClFH 9iDtQJMYcCSgH2yG4SHn50VptcC/2KNuJgIDQaRizC23sryVZ7lOenZPRplHW13v Jyrb/kY5agjerW4GUyG4Rci1YS0HIlJ/GUwLqAQm7rPJ/Su5pTZ2bqkBDQIafcsg feRwSh9wtBkcKWg3MEG5NKnV05/VPPGiTfWQZ5/QxR69G6VmtAGpwjkKc/Ec/wSm 50qJLebQzfQmHjvpZFuoLFRkXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOCeKKqD vkYr7OVo3H3mUYcxwgaIMB8GA1UdIwQYMBaAFC/SS2/XmARFc1Q4ZmLOMN2jsgC1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMjlEQS8zNEI1QjUxNERB NTQxMUVFODI3Q0E1N0RDNEY5QUUwMi9MOUpMYjllWUJFVnpWRGhtWXM0dzNhT3lB TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0w5SkxiOWVZQkVWelZEaG1ZczR3M2FPeUFMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MjlEQS8zNEI1QjUxNERBNTQxMUVFODI3Q0E1N0RDNEY5QUUwMi9MOUpMYjllWUJF VnpWRGhtWXM0dzNhT3lBTFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhA4x9usuS7TOSwZ6r/v4SqSsU4POo4NFQCJuNCHPLC99mFmiaaNwH 7gf0+8Qkss8c/Dbilm3a9sbHxKyb0wIWNwoPqpFqD7UvwEFM7dzZqNMQOUCuBOo8 O7EtPqGcPvXXfY8xA1eeNmWR9gbz+Yj+Q+sDFpJwXZOvHPvOrG8zDxb5kwv5Lpb5 1rmk73GVRK+7b06gTOI0Mrdm+r85RJzSoLsem9YHv23R2R6YcwpqYehFMPD9xDM1 8PMMiikRJoVcguzkckOayIFdBJMunfruMnX6vuLuSm5RDDT20CK3qbnWTKvTYvwa QYBilgItPzVXJDnuAl2i/ViM/GChpbZd -----END CERTIFICATE-----Generated at Sat Aug 23 12:31:50 2025 by rpki-client