$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft File: lKlQswO0aQDdWjBhAwyJpIloA68.mft (raw, json) Hash identifier: BpDFqhU2e10c3vgFA/BL6i0plg4L+5KHKiEQ5VC0u0I= Subject key identifier: 1F:C2:8A:E9:67:94:F6:FC:10:A5:F0:46:90:4B:EC:03:E9:03:72:A4 Authority key identifier: 94:A9:50:B3:03:B4:69:00:DD:5A:30:61:03:0C:89:A4:89:68:03:AF Certificate issuer: /CN=A91BAD2D/serialNumber=94A950B303B46900DD5A3061030C89A4896803AF Certificate serial: 0111 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKlQswO0aQDdWjBhAwyJpIloA68.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft Manifest number: 010E Signing time: Sat 23 Aug 2025 05:09:26 +0000 Manifest this update: Sat 23 Aug 2025 05:09:25 +0000 Manifest next update: Sat 30 Aug 2025 05:09:25 +0000 Files and hashes: 1: lKlQswO0aQDdWjBhAwyJpIloA68.crl (hash: TSXoVuHUQGbR7OHwyS47D6WS1RYcNo4Ld4Mopr5zV6Y=) 2: 33B566F2E80811EEB4888B0FC4F9AE02.roa (hash: ZSDoXQLk70kw9Tv9vuIwvYTULilf6nNLQq+LER2jQIQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.crl rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKlQswO0aQDdWjBhAwyJpIloA68.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:09:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 273 (0x111) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAD2D, serialNumber=94A950B303B46900DD5A3061030C89A4896803AF Validity Not Before: Aug 23 05:09:25 2025 GMT Not After : Aug 30 05:09:25 2025 GMT Subject: CN=68a94d06-7e66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:38:9d:00:c9:d8:77:89:19:44:20:87:be:7f: fb:7b:0e:47:ef:41:77:68:a9:df:8d:87:44:67:33: ce:28:1d:9f:61:97:b3:cd:f6:a2:5d:b9:86:1d:e6: 88:82:56:ac:35:bc:15:8d:be:a6:b6:59:01:a5:57: 6a:3c:86:a0:11:63:8b:86:7c:5d:0e:b4:89:8a:17: 38:9a:dd:ee:f9:8f:4c:11:39:94:af:c5:71:03:14: 34:0b:2c:84:dd:6b:08:20:b5:53:30:b9:1f:5b:da: f0:c5:b8:4a:02:94:c6:45:5d:90:e5:bc:b7:da:a1: 92:05:84:05:c5:3b:ef:10:d1:66:3b:7f:b0:78:3c: 74:52:87:1c:5e:78:fc:97:86:05:0e:de:eb:63:b9: bb:6d:19:61:5a:b7:cb:ee:5b:03:99:ef:a8:2d:34: 5f:80:5c:3a:e0:51:55:f4:07:2d:2f:35:20:0d:a4: c1:66:84:04:ff:bb:4c:d3:74:33:7a:36:d7:87:51: e7:87:45:a5:86:91:f5:af:04:fa:64:42:4d:82:49: 7d:f2:08:11:45:25:72:2f:0b:ae:05:a5:2c:1b:bd: 88:7e:30:00:c9:3e:b5:1c:47:5d:6f:80:40:cf:73: 35:18:ae:cc:2e:c7:39:11:d0:f7:b7:72:9d:b8:02: 19:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:C2:8A:E9:67:94:F6:FC:10:A5:F0:46:90:4B:EC:03:E9:03:72:A4 X509v3 Authority Key Identifier: keyid:94:A9:50:B3:03:B4:69:00:DD:5A:30:61:03:0C:89:A4:89:68:03:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKlQswO0aQDdWjBhAwyJpIloA68.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:41:46:0f:e2:db:3b:66:98:2f:65:98:02:66:36:7e:36:d4: e1:90:10:a2:62:0c:72:18:8b:76:99:ed:e8:9a:a1:78:c3:e1: 1f:3c:03:65:fc:4f:d8:55:1d:4f:51:20:e2:03:cd:f2:a2:e2: 2e:d9:c4:33:0b:f1:17:28:dd:19:92:6f:50:4d:e4:51:77:dd: 8d:92:e6:3b:42:1b:99:b2:96:2e:dc:fa:a3:cc:c7:0b:19:58: 5b:1d:13:58:03:ab:20:ed:a4:f5:4a:80:1f:84:a3:7e:d4:d6: a5:d4:9b:4e:93:30:82:5b:1a:0a:ab:27:a9:69:e2:2f:ab:e4: 59:cd:a3:c9:7a:ae:1b:6b:b7:9d:e5:b8:f2:b2:b2:7f:54:73: bb:96:9d:ad:8d:a0:13:8d:4f:4f:8a:aa:b5:2c:30:6b:69:ed: 86:6e:ea:fd:14:66:0e:74:d1:d3:a1:50:13:73:be:83:f8:52: ee:f9:a9:bb:59:e4:22:51:91:73:11:1a:ce:fb:8e:0f:a2:df: 94:89:95:31:e2:fb:ec:41:49:c2:b7:7e:29:cd:54:b5:ec:3b: d9:2e:e2:60:82:72:8b:ac:a8:f1:f4:ef:d5:79:47:81:3a:61: 77:3b:de:91:91:4a:db:75:9d:2f:cd:9c:09:62:59:65:41:53: c1:26:2e:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFEMkQxMTAvBgNVBAUTKDk0QTk1MEIzMDNCNDY5MDBERDVBMzA2MTAzMEM4OUE0 ODk2ODAzQUYwHhcNMjUwODIzMDUwOTI1WhcNMjUwODMwMDUwOTI1WjAYMRYwFAYD VQQDEw02OGE5NGQwNi03ZTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuDidAMnYd4kZRCCHvn/7ew5H70F3aKnfjYdEZzPOKB2fYZezzfaiXbmGHeaI glasNbwVjb6mtlkBpVdqPIagEWOLhnxdDrSJihc4mt3u+Y9METmUr8VxAxQ0CyyE 3WsIILVTMLkfW9rwxbhKApTGRV2Q5by32qGSBYQFxTvvENFmO3+weDx0UoccXnj8 l4YFDt7rY7m7bRlhWrfL7lsDme+oLTRfgFw64FFV9ActLzUgDaTBZoQE/7tM03Qz ejbXh1Hnh0WlhpH1rwT6ZEJNgkl98ggRRSVyLwuuBaUsG72IfjAAyT61HEddb4BA z3M1GK7MLsc5EdD3t3KduAIZlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB/Ciuln lPb8EKXwRpBL7APpA3KkMB8GA1UdIwQYMBaAFJSpULMDtGkA3VowYQMMiaSJaAOv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUQyRC85MDg4RUU1QUU4 MDExMUVFQUQ2QzUwMzBDNEY5QUUwMi9sS2xRc3dPMGFRRGRXakJoQXd5SnBJbG9B NjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xLbFFzd08wYVFEZFdqQmhBd3lKcElsb0E2OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUQyRC85MDg4RUU1QUU4MDExMUVFQUQ2QzUwMzBDNEY5QUUwMi9sS2xRc3dPMGFR RGRXakJoQXd5SnBJbG9BNjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNQUYP4ts7ZpgvZZgCZjZ+NtThkBCiYgxyGIt2me3omqF4w+EfPANl /E/YVR1PUSDiA83youIu2cQzC/EXKN0Zkm9QTeRRd92NkuY7QhuZspYu3PqjzMcL GVhbHRNYA6sg7aT1SoAfhKN+1Nal1JtOkzCCWxoKqyepaeIvq+RZzaPJeq4ba7ed 5bjysrJ/VHO7lp2tjaATjU9Piqq1LDBrae2Gbur9FGYOdNHToVATc76D+FLu+am7 WeQiUZFzERrO+44Pot+UiZUx4vvsQUnCt34pzVS17DvZLuJggnKLrKjx9O/VeUeB OmF3O96RkUrbdZ0vzZwJYlllQVPBJi4K -----END CERTIFICATE-----Generated at Sat Aug 23 20:24:19 2025 by rpki-client