$ rpki-client -vvf rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.mft File: lRKAntQ1o2QK-bdfCvspKNQWPDE.mft (raw, json) Hash identifier: Mc4jF+mlT7i5bi3DhKj86LpyZsLKL0/uVVsUWFk41pM= Subject key identifier: C9:72:3B:E4:A8:70:6E:81:C0:F8:39:9E:68:48:E3:F3:BA:09:E9:5E Authority key identifier: 95:12:80:9E:D4:35:A3:64:0A:F9:B7:5F:0A:FB:29:28:D4:16:3C:31 Certificate issuer: /CN=A91B45C0/serialNumber=9512809ED435A3640AF9B75F0AFB2928D4163C31 Certificate serial: 11FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRKAntQ1o2QK-bdfCvspKNQWPDE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.mft Manifest number: 11FB Signing time: Sat 28 Jun 2025 16:59:50 +0000 Manifest this update: Sat 28 Jun 2025 16:59:49 +0000 Manifest next update: Sat 05 Jul 2025 16:59:49 +0000 Files and hashes: 1: lRKAntQ1o2QK-bdfCvspKNQWPDE.crl (hash: UIMonp/ckLSy/WOIYDK5aQfsIpv4qK1v4LHODkvDhZM=) 2: 9995A38CFADC11EF87E86958C4F9AE02.roa (hash: K7HgxObw49ZENnGpFVCXkeOTW3f6OFaznJ55myfPQSQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.crl rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRKAntQ1o2QK-bdfCvspKNQWPDE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 16:59:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4607 (0x11ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B45C0, serialNumber=9512809ED435A3640AF9B75F0AFB2928D4163C31 Validity Not Before: Jun 28 16:59:49 2025 GMT Not After : Jul 5 16:59:49 2025 GMT Subject: CN=68601f85-7dff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:1c:60:77:56:cf:9e:0d:fb:2a:48:76:f8:c9: 08:b0:23:31:cd:40:c8:fa:8a:da:5d:d7:94:24:79: 16:0e:e5:e8:63:70:19:6c:7a:fa:91:9d:d6:36:30: 89:56:01:e4:2d:ae:b4:5b:5f:56:7d:22:13:2c:9e: 46:2b:b7:bb:de:08:c4:73:98:e4:56:85:26:41:4b: a4:02:74:20:2f:7d:13:1d:eb:2e:5f:13:4a:ab:e7: 9d:0d:69:48:1d:71:cc:75:98:58:1d:f8:a1:b1:ca: 77:1c:e8:ad:f0:1b:30:c7:8f:d2:13:92:16:84:99: ac:fd:61:f7:d7:99:fc:2d:5f:40:e3:0e:70:98:72: e4:80:30:96:47:81:76:7d:8c:36:a4:33:db:a1:e0: fc:3c:91:30:77:da:64:15:2e:71:bd:9b:21:00:bd: 7f:45:2a:29:85:16:23:c8:e3:75:70:f9:ce:c7:9e: b4:b0:82:97:d4:d3:94:85:18:ae:ce:ee:5a:75:d3: df:f6:15:41:9e:8e:c4:54:f3:37:4c:13:fa:43:ae: a9:2a:c9:0f:0c:9c:48:5d:1e:c8:2d:3e:9c:f7:60: c4:73:23:f0:69:6a:b5:5e:53:eb:00:1e:cf:cd:89: 95:7f:b8:d8:d3:98:d6:ff:75:19:69:60:22:65:c6: da:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:72:3B:E4:A8:70:6E:81:C0:F8:39:9E:68:48:E3:F3:BA:09:E9:5E X509v3 Authority Key Identifier: keyid:95:12:80:9E:D4:35:A3:64:0A:F9:B7:5F:0A:FB:29:28:D4:16:3C:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRKAntQ1o2QK-bdfCvspKNQWPDE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:09:af:fc:36:19:c9:a5:84:19:82:b0:9e:46:09:4e:1c:8e: c3:d6:9b:5c:55:92:0b:06:fb:98:31:e2:29:8c:38:66:cc:b0: ec:53:38:66:e6:ec:77:95:c3:b3:19:96:df:87:4f:7f:71:2f: 25:8c:58:c4:fb:f1:27:27:2e:38:ab:5a:a5:13:aa:3c:16:20: bb:06:23:75:26:30:fd:55:65:78:16:f8:60:b7:20:32:57:bd: 23:61:e9:c5:8f:b5:43:89:82:d4:e0:2b:4d:09:a5:f9:e2:9c: bb:82:9c:94:19:f1:a2:43:c0:6a:87:a7:11:97:13:13:23:ae: a3:d7:68:e6:39:3c:18:78:28:89:f9:89:ef:6a:e3:71:d8:8e: d6:38:9d:f9:12:0b:88:e8:2b:e4:9b:9b:cc:93:68:ec:6b:ed: 22:3f:5d:62:fd:a5:89:c3:e6:53:1c:34:8e:9f:74:a0:31:6f: ad:8f:cd:93:c0:78:d8:69:23:5b:d4:cb:b5:e8:de:17:89:c6: 32:6c:06:4c:37:84:f8:6b:ff:42:ce:e6:60:f8:48:e1:35:8c: b7:4e:69:66:b2:8a:00:98:06:4c:d7:91:28:19:29:31:97:5e: 90:4a:f6:9d:a7:d6:63:65:45:b4:37:88:38:82:f0:68:aa:5c: 77:2b:8a:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEf8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ1QzAxMTAvBgNVBAUTKDk1MTI4MDlFRDQzNUEzNjQwQUY5Qjc1RjBBRkIyOTI4 RDQxNjNDMzEwHhcNMjUwNjI4MTY1OTQ5WhcNMjUwNzA1MTY1OTQ5WjAYMRYwFAYD VQQDEw02ODYwMWY4NS03ZGZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuxxgd1bPng37Kkh2+MkIsCMxzUDI+oraXdeUJHkWDuXoY3AZbHr6kZ3WNjCJ VgHkLa60W19WfSITLJ5GK7e73gjEc5jkVoUmQUukAnQgL30THesuXxNKq+edDWlI HXHMdZhYHfihscp3HOit8Bswx4/SE5IWhJms/WH315n8LV9A4w5wmHLkgDCWR4F2 fYw2pDPboeD8PJEwd9pkFS5xvZshAL1/RSophRYjyON1cPnOx560sIKX1NOUhRiu zu5addPf9hVBno7EVPM3TBP6Q66pKskPDJxIXR7ILT6c92DEcyPwaWq1XlPrAB7P zYmVf7jY05jW/3UZaWAiZcbadQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMlyO+So cG6BwPg5nmhI4/O6CeleMB8GA1UdIwQYMBaAFJUSgJ7UNaNkCvm3Xwr7KSjUFjwx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDVDMC9CREVFNzI5QUU2 RDkxMUU4OEI4QkY3N0NDNEY5QUUwMi9sUktBbnRRMW8yUUstYmRmQ3ZzcEtOUVdQ REUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xSS0FudFExbzJRSy1iZGZDdnNwS05RV1BERS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDVDMC9CREVFNzI5QUU2RDkxMUU4OEI4QkY3N0NDNEY5QUUwMi9sUktBbnRRMW8y UUstYmRmQ3ZzcEtOUVdQREUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDICa/8NhnJpYQZgrCeRglOHI7D1ptcVZILBvuYMeIpjDhmzLDsUzhm 5ux3lcOzGZbfh09/cS8ljFjE+/EnJy44q1qlE6o8FiC7BiN1JjD9VWV4FvhgtyAy V70jYenFj7VDiYLU4CtNCaX54py7gpyUGfGiQ8Bqh6cRlxMTI66j12jmOTwYeCiJ +YnvauNx2I7WOJ35EguI6Cvkm5vMk2jsa+0iP11i/aWJw+ZTHDSOn3SgMW+tj82T wHjYaSNb1Mu16N4XicYybAZMN4T4a/9CzuZg+EjhNYy3TmlmsooAmAZM15EoGSkx l16QSvadp9ZjZUW0N4g4gvBoqlx3K4qD -----END CERTIFICATE-----Generated at Sun Jun 29 15:54:08 2025 by rpki-client