$ rpki-client -vvf rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.mft File: lRKAntQ1o2QK-bdfCvspKNQWPDE.mft (raw, json) Hash identifier: s1sNBuyMVjeO5L5n2D/Hrs8591v1yTWdGtM4Oy7fpaY= Subject key identifier: 51:54:EB:B0:9A:43:04:43:80:08:62:46:5E:BA:83:6A:C8:3D:38:81 Authority key identifier: 95:12:80:9E:D4:35:A3:64:0A:F9:B7:5F:0A:FB:29:28:D4:16:3C:31 Certificate issuer: /CN=A91B45C0/serialNumber=9512809ED435A3640AF9B75F0AFB2928D4163C31 Certificate serial: 121B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRKAntQ1o2QK-bdfCvspKNQWPDE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.mft Manifest number: 1217 Signing time: Fri 22 Aug 2025 17:16:17 +0000 Manifest this update: Fri 22 Aug 2025 17:16:17 +0000 Manifest next update: Fri 29 Aug 2025 17:16:17 +0000 Files and hashes: 1: lRKAntQ1o2QK-bdfCvspKNQWPDE.crl (hash: foquqVbxWXyOspukUWWpk5JFZhJTEzoSOPLiRu9mXfw=) 2: 9995A38CFADC11EF87E86958C4F9AE02.roa (hash: K7HgxObw49ZENnGpFVCXkeOTW3f6OFaznJ55myfPQSQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.crl rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRKAntQ1o2QK-bdfCvspKNQWPDE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:16:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4635 (0x121b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B45C0, serialNumber=9512809ED435A3640AF9B75F0AFB2928D4163C31 Validity Not Before: Aug 22 17:16:17 2025 GMT Not After : Aug 29 17:16:17 2025 GMT Subject: CN=68a8a5e1-3469 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:8f:0c:db:cb:b5:cd:dc:d5:47:ea:a3:26:97: 52:00:31:8c:ad:ab:d3:88:b1:cc:c8:22:c9:86:85: e0:4d:2d:49:91:4a:b6:cf:2d:de:f1:06:bb:8e:d4: ad:be:80:1d:eb:1b:92:e1:ef:e2:10:65:0b:c6:96: 58:86:48:d6:e9:f2:a4:ee:6a:9b:bf:e5:f4:f1:46: fb:20:6e:ab:ea:b8:55:a8:17:e1:a3:73:29:10:c1: 9a:25:6e:01:c6:c9:f9:54:ea:c2:8c:48:c7:3d:40: 22:a2:c4:f0:4d:d8:b6:ee:e3:e7:7e:29:14:ee:41: 4f:8e:15:10:5e:c2:0d:6f:f1:3b:89:99:25:84:3a: 32:cb:49:79:67:f5:4d:4a:08:88:aa:c0:4e:bb:50: 8d:a8:25:80:64:fe:02:bf:69:d7:40:7c:3c:39:e3: 6d:de:20:fb:e3:ce:e8:8f:40:2c:90:2a:51:3b:d3: 3f:0c:41:ac:58:0b:37:5e:55:6a:f0:2d:11:71:30: 70:6c:a7:dc:16:56:ef:5b:f3:ca:02:d1:e8:11:96: 81:eb:0f:40:9e:d0:6e:8a:39:ae:13:5a:10:c6:60: 92:3a:50:60:52:2c:50:ce:e3:11:71:98:32:0f:e4: f1:cc:af:0f:1c:5e:c6:58:2f:06:bb:23:e8:92:fb: c4:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:54:EB:B0:9A:43:04:43:80:08:62:46:5E:BA:83:6A:C8:3D:38:81 X509v3 Authority Key Identifier: keyid:95:12:80:9E:D4:35:A3:64:0A:F9:B7:5F:0A:FB:29:28:D4:16:3C:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRKAntQ1o2QK-bdfCvspKNQWPDE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:6b:d6:fc:eb:70:48:45:89:77:b5:ff:92:a1:be:de:f7:fc: f6:3f:4b:24:c8:8b:b0:70:dc:0c:40:69:f0:eb:88:24:f9:22: 6d:d8:99:23:14:a2:8e:73:61:23:1e:d3:13:3c:e7:9c:98:4f: 80:47:7d:75:ad:80:0d:c7:57:ed:fe:d4:e5:eb:0d:8a:9e:4b: 1a:70:2d:fb:84:69:ee:fb:77:9a:9f:23:f8:2f:56:ad:23:95: 9d:7a:4f:85:ce:e4:5f:8e:f9:11:6d:da:09:24:34:d9:ec:6b: c0:9f:95:2c:42:e2:1c:99:2b:ec:38:8e:e7:24:89:0b:aa:89: 71:0a:20:6f:b8:6c:3b:b6:e3:58:9e:8d:d7:2b:f5:bf:5f:3d: ba:6c:45:d3:e3:4d:82:4e:2d:65:5a:2a:42:26:76:64:b5:5f: d6:08:cb:77:cb:1f:01:d5:ba:fb:48:c1:5a:9d:31:fb:8b:55: d5:68:b5:cb:3c:91:e0:d8:f6:71:ca:14:be:c4:7b:6f:9a:e0: e7:61:91:4d:e2:8f:10:a2:83:fc:0d:d3:99:c0:07:9b:d3:ab: 8a:ce:c4:bc:e8:ed:77:c6:1b:47:66:2a:09:a2:1d:2e:ad:1f: 0b:ba:7d:86:95:da:3b:cc:b3:40:f4:54:33:77:91:36:20:0d: f4:37:3a:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEhswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ1QzAxMTAvBgNVBAUTKDk1MTI4MDlFRDQzNUEzNjQwQUY5Qjc1RjBBRkIyOTI4 RDQxNjNDMzEwHhcNMjUwODIyMTcxNjE3WhcNMjUwODI5MTcxNjE3WjAYMRYwFAYD VQQDEw02OGE4YTVlMS0zNDY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4o8M28u1zdzVR+qjJpdSADGMravTiLHMyCLJhoXgTS1JkUq2zy3e8Qa7jtSt voAd6xuS4e/iEGULxpZYhkjW6fKk7mqbv+X08Ub7IG6r6rhVqBfho3MpEMGaJW4B xsn5VOrCjEjHPUAiosTwTdi27uPnfikU7kFPjhUQXsINb/E7iZklhDoyy0l5Z/VN SgiIqsBOu1CNqCWAZP4Cv2nXQHw8OeNt3iD7487oj0AskCpRO9M/DEGsWAs3XlVq 8C0RcTBwbKfcFlbvW/PKAtHoEZaB6w9AntBuijmuE1oQxmCSOlBgUixQzuMRcZgy D+TxzK8PHF7GWC8GuyPokvvE8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFFU67Ca QwRDgAhiRl66g2rIPTiBMB8GA1UdIwQYMBaAFJUSgJ7UNaNkCvm3Xwr7KSjUFjwx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDVDMC9CREVFNzI5QUU2 RDkxMUU4OEI4QkY3N0NDNEY5QUUwMi9sUktBbnRRMW8yUUstYmRmQ3ZzcEtOUVdQ REUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xSS0FudFExbzJRSy1iZGZDdnNwS05RV1BERS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDVDMC9CREVFNzI5QUU2RDkxMUU4OEI4QkY3N0NDNEY5QUUwMi9sUktBbnRRMW8y UUstYmRmQ3ZzcEtOUVdQREUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfa9b863BIRYl3tf+Sob7e9/z2P0skyIuwcNwMQGnw64gk+SJt2Jkj FKKOc2EjHtMTPOecmE+AR311rYANx1ft/tTl6w2KnksacC37hGnu+3eanyP4L1at I5Wdek+FzuRfjvkRbdoJJDTZ7GvAn5UsQuIcmSvsOI7nJIkLqolxCiBvuGw7tuNY no3XK/W/Xz26bEXT402CTi1lWipCJnZktV/WCMt3yx8B1br7SMFanTH7i1XVaLXL PJHg2PZxyhS+xHtvmuDnYZFN4o8QooP8DdOZwAeb06uKzsS86O13xhtHZioJoh0u rR8Lun2Gldo7zLNA9FQzd5E2IA30NzqZ -----END CERTIFICATE-----Generated at Sat Aug 23 15:41:47 2025 by rpki-client