$ rpki-client -vvf rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft File: L9JLb9eYBEVzVDhmYs4w3aOyALU.mft (raw, json) Hash identifier: ESYRWWDEhEe800p5+Wc9p12HgWj/lUdxe/TS/dWPFDg= Subject key identifier: 78:AB:32:87:FC:E1:47:78:73:87:C3:C8:CE:F0:10:46:6E:D9:E5:C9 Authority key identifier: 2F:D2:4B:6F:D7:98:04:45:73:54:38:66:62:CE:30:DD:A3:B2:00:B5 Certificate issuer: /CN=A91A29DA/serialNumber=2FD24B6FD79804457354386662CE30DDA3B200B5 Certificate serial: FA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft Manifest number: F8 Signing time: Thu 03 Jul 2025 05:22:19 +0000 Manifest this update: Thu 03 Jul 2025 05:22:19 +0000 Manifest next update: Thu 10 Jul 2025 05:22:19 +0000 Files and hashes: 1: L9JLb9eYBEVzVDhmYs4w3aOyALU.crl (hash: TLvf31RaqYXgKTAvoZdK/Zu2DUxFdymvo2cfroYi8bM=) 2: AE2FD9C4DA5411EE83E9E67EC4F9AE02.roa (hash: tK5HTPbAj/ZNMX+j7tcaCGQxo/xqwq0UKtlHWscWUVg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.crl rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 250 (0xfa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A29DA, serialNumber=2FD24B6FD79804457354386662CE30DDA3B200B5 Validity Not Before: Jul 3 05:22:19 2025 GMT Not After : Jul 10 05:22:19 2025 GMT Subject: CN=6866138b-f68c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:59:5a:77:08:6d:e6:b8:76:ae:34:c0:09:a5: 57:37:a9:da:86:b3:22:09:37:7c:ec:98:20:7f:d3: 02:3a:a3:85:d1:a7:9d:0e:20:06:57:9f:de:31:f5: 33:22:c6:99:d6:29:41:16:c3:eb:26:35:9e:1c:67: 75:c2:f8:93:17:0b:1b:56:8d:92:60:81:dc:13:73: 12:e0:c9:78:59:0e:27:b1:6f:cf:62:6e:cc:18:af: e9:02:9a:15:69:25:0a:10:a8:ce:02:13:1b:92:4e: 4b:77:81:c5:b0:93:b8:18:00:ef:af:1b:4a:72:eb: 21:b5:8c:3d:0a:ad:8b:94:0b:03:ec:ab:59:ec:66: 5c:01:45:56:11:dc:11:44:08:bf:8a:f9:33:94:fe: 0d:33:a2:cd:67:c4:33:ba:c7:f9:54:18:2a:eb:27: db:9f:e5:af:e2:ed:2f:34:63:9b:ea:86:ca:1b:8a: 93:31:66:28:4f:e2:73:36:59:30:a0:80:c3:53:77: 8e:0f:08:6e:83:35:ff:73:10:2e:43:e4:36:c2:da: 9f:f8:b2:8a:07:ea:b3:c1:f4:06:c8:74:1b:9d:24: ed:e7:15:5e:a8:7d:f5:eb:9f:d8:86:a6:35:a9:3d: f7:64:d8:f2:32:9b:aa:ec:b1:f7:03:bb:90:39:3c: 0b:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:AB:32:87:FC:E1:47:78:73:87:C3:C8:CE:F0:10:46:6E:D9:E5:C9 X509v3 Authority Key Identifier: keyid:2F:D2:4B:6F:D7:98:04:45:73:54:38:66:62:CE:30:DD:A3:B2:00:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:3a:76:76:51:02:0f:e3:41:57:4b:a9:6e:c9:44:e5:95:b2: 83:54:d0:06:6d:e6:27:d3:3d:f5:f3:3f:eb:f2:9a:4b:ed:1b: 78:dd:ef:2c:b2:6f:ba:d4:49:c5:72:d8:9c:93:84:32:b8:d8: 02:18:86:92:32:58:83:9c:7e:44:aa:ea:10:6d:7c:48:7e:d8: bd:c7:85:a9:4f:fa:80:41:ec:7a:f8:c2:e7:4b:e8:cf:c2:5e: d5:cf:d0:5f:c9:08:d3:c7:ed:af:92:c5:21:8c:1e:c7:ae:21: aa:a8:84:f1:d1:bf:8d:59:59:c5:ca:49:aa:92:68:aa:f2:3e: 79:2e:92:92:0b:5d:e2:64:05:bf:4b:48:9a:4d:65:4d:b7:4c: 40:74:83:0a:dc:48:e6:17:11:9d:a7:7e:bc:b9:13:95:29:1f: 0a:b2:e7:7e:d5:0b:2e:ed:8f:94:c0:e3:b9:5e:50:e7:e8:a2: 0a:cb:a0:2b:60:d3:ff:77:f9:41:79:58:60:85:9e:98:a7:33: 8e:a3:99:62:02:66:39:48:95:75:dc:64:3d:76:e2:bf:75:e9: 09:72:d4:70:48:2b:f7:66:55:2b:bd:48:8f:66:9d:3f:78:fc: ff:48:ce:40:20:3b:78:59:13:b0:d8:70:2c:58:04:1a:2e:58: d0:a0:2f:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTI5REExMTAvBgNVBAUTKDJGRDI0QjZGRDc5ODA0NDU3MzU0Mzg2NjYyQ0UzMERE QTNCMjAwQjUwHhcNMjUwNzAzMDUyMjE5WhcNMjUwNzEwMDUyMjE5WjAYMRYwFAYD VQQDEw02ODY2MTM4Yi1mNjhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqVladwht5rh2rjTACaVXN6nahrMiCTd87Jggf9MCOqOF0aedDiAGV5/eMfUz IsaZ1ilBFsPrJjWeHGd1wviTFwsbVo2SYIHcE3MS4Ml4WQ4nsW/PYm7MGK/pApoV aSUKEKjOAhMbkk5Ld4HFsJO4GADvrxtKcushtYw9Cq2LlAsD7KtZ7GZcAUVWEdwR RAi/ivkzlP4NM6LNZ8Qzusf5VBgq6yfbn+Wv4u0vNGOb6obKG4qTMWYoT+JzNlkw oIDDU3eODwhugzX/cxAuQ+Q2wtqf+LKKB+qzwfQGyHQbnSTt5xVeqH3165/YhqY1 qT33ZNjyMpuq7LH3A7uQOTwLswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHirMof8 4Ud4c4fDyM7wEEZu2eXJMB8GA1UdIwQYMBaAFC/SS2/XmARFc1Q4ZmLOMN2jsgC1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMjlEQS8zNEI1QjUxNERB NTQxMUVFODI3Q0E1N0RDNEY5QUUwMi9MOUpMYjllWUJFVnpWRGhtWXM0dzNhT3lB TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0w5SkxiOWVZQkVWelZEaG1ZczR3M2FPeUFMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MjlEQS8zNEI1QjUxNERBNTQxMUVFODI3Q0E1N0RDNEY5QUUwMi9MOUpMYjllWUJF VnpWRGhtWXM0dzNhT3lBTFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGOnZ2UQIP40FXS6luyUTllbKDVNAGbeYn0z318z/r8ppL7Rt43e8s sm+61EnFctick4QyuNgCGIaSMliDnH5EquoQbXxIfti9x4WpT/qAQex6+MLnS+jP wl7Vz9BfyQjTx+2vksUhjB7HriGqqITx0b+NWVnFykmqkmiq8j55LpKSC13iZAW/ S0iaTWVNt0xAdIMK3EjmFxGdp368uROVKR8Ksud+1Qsu7Y+UwOO5XlDn6KIKy6Ar YNP/d/lBeVhghZ6YpzOOo5liAmY5SJV13GQ9duK/dekJctRwSCv3ZlUrvUiPZp0/ ePz/SM5AIDt4WROw2HAsWAQaLljQoC+e -----END CERTIFICATE-----Generated at Thu Jul 3 23:11:40 2025 by rpki-client