$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB001/83D54E52574811ECA77E5D86C4F9AE02/ltGlmUmhu3ombXKg8S_81fUFnxc.mft File: ltGlmUmhu3ombXKg8S_81fUFnxc.mft (raw, json) Hash identifier: rOLMaR6inh5ZjW5WdFwADwZ36qUIhqKrUeXPPtjNo4Y= Subject key identifier: 00:96:89:79:5A:CE:F3:4E:A5:FF:6C:B3:17:3A:82:11:F6:A3:6A:43 Authority key identifier: 96:D1:A5:99:49:A1:BB:7A:26:6D:72:A0:F1:2F:FC:D5:F5:05:9F:17 Certificate issuer: /CN=A91AB001/serialNumber=96D1A59949A1BB7A266D72A0F12FFCD5F5059F17 Certificate serial: 047A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ltGlmUmhu3ombXKg8S_81fUFnxc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB001/83D54E52574811ECA77E5D86C4F9AE02/ltGlmUmhu3ombXKg8S_81fUFnxc.mft Manifest number: 0475 Signing time: Sat 23 Aug 2025 00:20:17 +0000 Manifest this update: Sat 23 Aug 2025 00:20:17 +0000 Manifest next update: Sat 30 Aug 2025 00:20:17 +0000 Files and hashes: 1: ltGlmUmhu3ombXKg8S_81fUFnxc.crl (hash: GSJpUTAtJy6L/SwQB8vBkimc7eQTUiI8Gzun+7ko364=) 2: 5BD4372457DE11EC88BC6713C4F9AE02.roa (hash: 8wyGVainQ6D893xesOuFf+FM10EglgdmC+4yeYmYJKU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB001/83D54E52574811ECA77E5D86C4F9AE02/ltGlmUmhu3ombXKg8S_81fUFnxc.crl rsync://rpki.apnic.net/member_repository/A91AB001/83D54E52574811ECA77E5D86C4F9AE02/ltGlmUmhu3ombXKg8S_81fUFnxc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ltGlmUmhu3ombXKg8S_81fUFnxc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:20:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1146 (0x47a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB001, serialNumber=96D1A59949A1BB7A266D72A0F12FFCD5F5059F17 Validity Not Before: Aug 23 00:20:17 2025 GMT Not After : Aug 30 00:20:17 2025 GMT Subject: CN=68a90941-188b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:a3:87:14:70:41:ce:0e:36:08:4a:4d:c8:cf: a2:b1:88:44:71:6e:00:6a:79:59:24:91:76:2c:62: 35:9a:69:bb:5e:f5:a9:64:4d:70:ab:71:71:b3:0e: f7:31:82:1c:a8:63:f5:e2:c4:60:da:ac:9d:ec:14: 93:1b:82:e1:ca:32:73:4e:87:54:40:3a:34:b0:9f: b1:50:49:72:d4:57:41:4f:7c:53:9e:4c:3e:40:c7: 21:d9:50:d8:19:00:82:79:a8:9a:d9:bf:98:a5:2d: 4a:c6:2d:d6:db:7b:4f:aa:07:a1:7d:63:23:1d:35: 9e:57:7e:01:21:88:eb:78:8c:4e:a4:a7:a4:af:59: 4d:a3:80:3e:b1:47:c5:21:6b:b3:0e:2b:6a:4c:d2: 68:a2:85:3c:fb:55:1e:c2:fc:05:d5:93:45:09:4f: 00:a2:df:a9:ad:37:46:86:34:13:78:4e:06:ce:d1: d2:14:3e:c2:9a:ee:d2:75:f8:ee:98:bf:4b:8d:b8: 4e:df:45:a3:5e:31:29:35:3f:ed:35:16:fc:85:24: a3:a2:4f:54:be:4b:23:54:c6:df:2d:de:1b:79:37: a3:af:f8:6d:47:a9:b9:60:44:3f:37:61:ef:af:e2: 8e:bf:b7:81:dd:e8:39:8a:b6:ca:89:c4:58:bc:46: f4:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:96:89:79:5A:CE:F3:4E:A5:FF:6C:B3:17:3A:82:11:F6:A3:6A:43 X509v3 Authority Key Identifier: keyid:96:D1:A5:99:49:A1:BB:7A:26:6D:72:A0:F1:2F:FC:D5:F5:05:9F:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB001/83D54E52574811ECA77E5D86C4F9AE02/ltGlmUmhu3ombXKg8S_81fUFnxc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ltGlmUmhu3ombXKg8S_81fUFnxc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB001/83D54E52574811ECA77E5D86C4F9AE02/ltGlmUmhu3ombXKg8S_81fUFnxc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:3f:44:0e:29:f6:bf:36:aa:55:f7:b2:75:62:7a:53:71:c6: 4b:0e:fa:38:57:2b:d1:e6:d5:83:85:6d:26:b9:fb:ec:11:90: c8:b0:e3:30:e8:d8:02:fe:5c:20:a8:61:af:28:6c:8e:e4:97: dd:cb:0e:4d:95:03:bb:d8:33:9d:9d:b4:41:c5:3b:17:9c:af: e1:b2:d6:0a:cb:7e:92:54:35:36:6e:7c:8d:4f:69:ed:aa:71: cd:91:f0:5f:25:9b:4c:d6:62:d7:dc:95:1f:06:4e:62:e7:f6: b6:cd:60:be:d8:50:77:49:01:96:7f:44:b4:10:32:d4:17:53: 72:42:87:f3:6b:07:8d:b8:ea:78:66:73:68:a0:30:7d:48:7a: 70:6f:90:c5:15:a1:79:d7:fd:5f:97:d4:71:c2:c7:19:dd:5c: d1:9c:a4:0a:58:4d:10:2b:62:c0:82:9f:2f:4d:3c:b6:e0:c2: 5b:c6:06:5a:44:a7:28:82:59:35:86:59:89:d2:80:8b:e2:8d: 72:8e:c5:e3:30:e1:42:0f:30:9f:0a:fb:1e:10:27:3a:86:3c: 63:2e:78:eb:8e:e6:0f:6a:ae:3c:1c:b8:d9:ad:98:a3:33:cf: 59:10:18:5a:fd:97:ae:c2:3c:aa:d0:be:f5:cc:2d:88:0a:95: e8:6c:ce:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIwMDExMTAvBgNVBAUTKDk2RDFBNTk5NDlBMUJCN0EyNjZENzJBMEYxMkZGQ0Q1 RjUwNTlGMTcwHhcNMjUwODIzMDAyMDE3WhcNMjUwODMwMDAyMDE3WjAYMRYwFAYD VQQDEw02OGE5MDk0MS0xODhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzKOHFHBBzg42CEpNyM+isYhEcW4AanlZJJF2LGI1mmm7XvWpZE1wq3Fxsw73 MYIcqGP14sRg2qyd7BSTG4LhyjJzTodUQDo0sJ+xUEly1FdBT3xTnkw+QMch2VDY GQCCeaia2b+YpS1Kxi3W23tPqgehfWMjHTWeV34BIYjreIxOpKekr1lNo4A+sUfF IWuzDitqTNJoooU8+1UewvwF1ZNFCU8Aot+prTdGhjQTeE4GztHSFD7Cmu7Sdfju mL9LjbhO30WjXjEpNT/tNRb8hSSjok9UvksjVMbfLd4beTejr/htR6m5YEQ/N2Hv r+KOv7eB3eg5irbKicRYvEb0dwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFACWiXla zvNOpf9ssxc6ghH2o2pDMB8GA1UdIwQYMBaAFJbRpZlJobt6Jm1yoPEv/NX1BZ8X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjAwMS84M0Q1NEU1MjU3 NDgxMUVDQTc3RTVEODZDNEY5QUUwMi9sdEdsbVVtaHUzb21iWEtnOFNfODFmVUZu eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x0R2xtVW1odTNvbWJYS2c4U184MWZVRm54Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjAwMS84M0Q1NEU1MjU3NDgxMUVDQTc3RTVEODZDNEY5QUUwMi9sdEdsbVVtaHUz b21iWEtnOFNfODFmVUZueGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBP0QOKfa/NqpV97J1YnpTccZLDvo4VyvR5tWDhW0mufvsEZDIsOMw 6NgC/lwgqGGvKGyO5Jfdyw5NlQO72DOdnbRBxTsXnK/hstYKy36SVDU2bnyNT2nt qnHNkfBfJZtM1mLX3JUfBk5i5/a2zWC+2FB3SQGWf0S0EDLUF1NyQofzaweNuOp4 ZnNooDB9SHpwb5DFFaF51/1fl9RxwscZ3VzRnKQKWE0QK2LAgp8vTTy24MJbxgZa RKcoglk1hlmJ0oCL4o1yjsXjMOFCDzCfCvseECc6hjxjLnjrjuYPaq48HLjZrZij M89ZEBha/Zeuwjyq0L71zC2ICpXobM7b -----END CERTIFICATE-----Generated at Sun Aug 24 00:44:43 2025 by rpki-client