$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.mft File: R-lr-DG7PMQ7TweEJj5ylYddVRY.mft (raw, json) Hash identifier: a//i+5s47Tr49kbZpSvR9BovV7mClzsWh7z2SxXQhOw= Subject key identifier: D9:7C:C6:B8:ED:10:AF:0D:C3:D4:B2:A4:06:11:CF:F1:26:07:66:BE Authority key identifier: 47:E9:6B:F8:31:BB:3C:C4:3B:4F:07:84:26:3E:72:95:87:5D:55:16 Certificate issuer: /CN=A91C4204/serialNumber=47E96BF831BB3CC43B4F0784263E7295875D5516 Certificate serial: 37 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R-lr-DG7PMQ7TweEJj5ylYddVRY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.mft Manifest number: 35 Signing time: Thu 21 Aug 2025 07:49:47 +0000 Manifest this update: Thu 21 Aug 2025 07:49:47 +0000 Manifest next update: Thu 28 Aug 2025 07:49:46 +0000 Files and hashes: 1: R-lr-DG7PMQ7TweEJj5ylYddVRY.crl (hash: VSm7dGnlJorOzhMcgv9XE4PN3bt4mcDaQ5BvTmdUtRU=) 2: CA2D4952300911F0AB675D3EC4F9AE02.roa (hash: wSACUp5c4PrWddzrJcvj1KCwEmCFzuB6DHldOTgXN4E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.crl rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R-lr-DG7PMQ7TweEJj5ylYddVRY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 07:49:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55 (0x37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4204, serialNumber=47E96BF831BB3CC43B4F0784263E7295875D5516 Validity Not Before: Aug 21 07:49:47 2025 GMT Not After : Aug 28 07:49:46 2025 GMT Subject: CN=68a6cf9b-2f5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:41:54:58:c5:d0:aa:c9:33:8d:4f:6c:65:56: 67:b4:3d:35:e0:a7:43:20:6c:e6:2a:81:7b:30:ac: 3e:7e:72:85:b4:fc:bd:d5:01:ca:30:47:7d:c7:7a: 3e:9e:51:41:ea:c2:ab:d0:27:62:a0:47:98:35:78: bd:85:69:46:62:8e:e0:23:37:a6:89:a3:1b:0c:fb: 97:7c:00:13:c6:2b:b8:71:09:29:2d:5c:b3:66:eb: eb:75:2b:8e:f7:8f:b4:dc:cc:c5:e2:e4:2f:c9:2c: cb:2b:c3:bf:d5:bf:2f:8e:38:d8:6c:09:88:eb:95: 46:60:d2:75:88:e0:71:c2:b0:77:78:ed:a5:4f:85: 3e:a0:80:77:02:5c:14:16:b2:0b:0f:84:56:27:4b: 71:07:43:48:fb:bb:85:96:45:20:56:8f:78:b0:ee: 08:5d:70:33:b8:c4:28:b9:a7:df:2b:92:87:c8:10: 70:4c:bb:2e:b6:ad:d4:79:b7:1d:b7:a6:a7:7f:05: f3:65:35:4e:ad:90:bc:3b:7c:27:e1:cd:ec:55:69: 99:4c:69:91:71:21:f5:24:a3:11:de:2a:c4:a7:8d: 34:65:6a:77:c8:4d:e3:69:b7:7c:09:30:fc:3d:13: 52:e2:62:cf:c8:dc:d3:7a:b2:1c:f9:d8:2d:54:0b: 6e:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:7C:C6:B8:ED:10:AF:0D:C3:D4:B2:A4:06:11:CF:F1:26:07:66:BE X509v3 Authority Key Identifier: keyid:47:E9:6B:F8:31:BB:3C:C4:3B:4F:07:84:26:3E:72:95:87:5D:55:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R-lr-DG7PMQ7TweEJj5ylYddVRY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:30:20:a2:69:eb:e5:cf:60:1c:ef:fe:8a:4a:f2:28:94:6d: 23:57:ac:51:5e:f3:c6:85:b9:db:be:e0:11:d6:b6:a2:3b:f5: cb:e5:34:5b:d3:ef:3c:35:9c:e4:3a:34:72:9b:2d:c7:5c:51: 4f:33:6c:42:24:09:37:3e:03:8c:22:c8:c2:65:b1:ea:48:de: 7c:26:bb:3d:cb:3d:bf:6c:29:a6:af:27:5c:82:ac:18:74:c9: fc:96:81:81:16:cb:33:8d:d7:63:ef:79:8b:4f:5c:8d:30:fb: 10:04:f7:1f:e5:f6:6f:14:a2:29:1f:76:c8:55:a4:a0:e5:eb: 24:1d:4f:fd:92:d7:59:d3:51:c2:7a:ec:4d:1d:51:da:11:0a: c8:87:d4:f8:bd:76:91:44:db:df:9a:6e:b2:84:e8:88:0d:d1: 86:ee:5c:de:fd:4e:49:11:11:dc:32:d8:03:c0:df:97:ce:61: 3a:54:96:f8:eb:92:10:42:fd:02:70:53:b3:0e:13:a7:fa:d1: 5e:71:db:04:da:b3:d6:34:02:a4:c9:17:f8:61:8a:d9:7e:61: 97:3d:e5:24:75:50:29:75:07:b9:ee:63:ad:ae:6e:25:32:f3: 80:22:6b:c2:80:83:45:a1:52:52:89:66:1f:91:58:20:ef:a0: 8a:64:fd:f5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NDIwNDExMC8GA1UEBRMoNDdFOTZCRjgzMUJCM0NDNDNCNEYwNzg0MjYzRTcyOTU4 NzVENTUxNjAeFw0yNTA4MjEwNzQ5NDdaFw0yNTA4MjgwNzQ5NDZaMBgxFjAUBgNV BAMTDTY4YTZjZjliLTJmNWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKQVRYxdCqyTONT2xlVme0PTXgp0MgbOYqgXswrD5+coW0/L3VAcowR33Hej6e UUHqwqvQJ2KgR5g1eL2FaUZijuAjN6aJoxsM+5d8ABPGK7hxCSktXLNm6+t1K473 j7TczMXi5C/JLMsrw7/Vvy+OONhsCYjrlUZg0nWI4HHCsHd47aVPhT6ggHcCXBQW sgsPhFYnS3EHQ0j7u4WWRSBWj3iw7ghdcDO4xCi5p98rkofIEHBMuy62rdR5tx23 pqd/BfNlNU6tkLw7fCfhzexVaZlMaZFxIfUkoxHeKsSnjTRlanfITeNpt3wJMPw9 E1LiYs/I3NN6shz52C1UC27/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU2XzGuO0Q rw3D1LKkBhHP8SYHZr4wHwYDVR0jBBgwFoAUR+lr+DG7PMQ7TweEJj5ylYddVRYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM0MjA0LzQ0MUI1MDUyMzAw OTExRjBBMEFBN0QzREM0RjlBRTAyL1ItbHItREc3UE1RN1R3ZUVKajV5bFlkZFZS WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUi1sci1ERzdQTVE3VHdlRUpqNXlsWWRkVlJZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM0 MjA0LzQ0MUI1MDUyMzAwOTExRjBBMEFBN0QzREM0RjlBRTAyL1ItbHItREc3UE1R N1R3ZUVKajV5bFlkZFZSWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAG4wIKJp6+XPYBzv/opK8iiUbSNXrFFe88aFudu+4BHWtqI79cvlNFvT 7zw1nOQ6NHKbLcdcUU8zbEIkCTc+A4wiyMJlsepI3nwmuz3LPb9sKaavJ1yCrBh0 yfyWgYEWyzON12PveYtPXI0w+xAE9x/l9m8UoikfdshVpKDl6yQdT/2S11nTUcJ6 7E0dUdoRCsiH1Pi9dpFE29+abrKE6IgN0YbuXN79TkkREdwy2APA35fOYTpUlvjr khBC/QJwU7MOE6f60V5x2wTas9Y0AqTJF/hhitl+YZc95SR1UCl1B7nuY62ubiUy 84Aia8KAg0WhUlKJZh+RWCDvoIpk/fU= -----END CERTIFICATE-----Generated at Sat Aug 23 08:30:27 2025 by rpki-client