$ rpki-client -vvf rpki.apnic.net/member_repository/A91CDBF5/5E9C4BB0CB5111EF90400D17C4F9AE02/mAzlu_LPNdYK47ByGKtcqRAULJA.mft File: mAzlu_LPNdYK47ByGKtcqRAULJA.mft (raw, json) Hash identifier: Mr5d6+nKob9veSU/nPK2S0GG4/IpuSu2/NHxLuhlI5E= Subject key identifier: EA:7F:50:B1:D0:FC:FA:C2:A1:7F:46:A7:70:43:31:B2:14:EC:0C:8C Authority key identifier: 98:0C:E5:BB:F2:CF:35:D6:0A:E3:B0:72:18:AB:5C:A9:10:14:2C:90 Certificate issuer: /CN=A91CDBF5/serialNumber=980CE5BBF2CF35D60AE3B07218AB5CA910142C90 Certificate serial: 77 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mAzlu_LPNdYK47ByGKtcqRAULJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CDBF5/5E9C4BB0CB5111EF90400D17C4F9AE02/mAzlu_LPNdYK47ByGKtcqRAULJA.mft Manifest number: 76 Signing time: Sat 23 Aug 2025 07:00:45 +0000 Manifest this update: Sat 23 Aug 2025 07:00:44 +0000 Manifest next update: Sat 30 Aug 2025 07:00:44 +0000 Files and hashes: 1: mAzlu_LPNdYK47ByGKtcqRAULJA.crl (hash: RXFWgYrm/SuCmeAQuw3MpmL37MjJozx0tGru7+NZxYA=) 2: EA8CF7A8CB5311EF91F1081BC4F9AE02.roa (hash: GSX0pyaiwOS5Abzctg8JuUZl0TI6LV3O2e6/wEsG5kM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CDBF5/5E9C4BB0CB5111EF90400D17C4F9AE02/mAzlu_LPNdYK47ByGKtcqRAULJA.crl rsync://rpki.apnic.net/member_repository/A91CDBF5/5E9C4BB0CB5111EF90400D17C4F9AE02/mAzlu_LPNdYK47ByGKtcqRAULJA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mAzlu_LPNdYK47ByGKtcqRAULJA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 119 (0x77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CDBF5, serialNumber=980CE5BBF2CF35D60AE3B07218AB5CA910142C90 Validity Not Before: Aug 23 07:00:44 2025 GMT Not After : Aug 30 07:00:44 2025 GMT Subject: CN=68a9671c-7fd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:1d:b0:29:05:e3:38:59:4e:b2:43:df:ff:7a: de:ed:43:6e:f3:67:b4:15:ca:59:97:fc:87:90:33: 59:61:b7:7e:2c:94:82:6a:6d:56:0e:45:a5:ed:98: fa:66:c4:2b:06:79:f5:e7:3a:6d:7d:28:3e:62:2c: 01:35:a8:d9:ec:0a:f2:82:2d:8d:3a:2a:06:00:ff: 86:a4:bf:b1:62:23:cb:13:56:52:fc:60:09:96:1c: 92:be:c8:6c:61:53:91:2a:36:8e:22:1d:f2:96:a5: 20:24:f3:e9:52:01:b4:86:6c:e8:01:74:e8:de:99: 23:6f:c8:6f:47:af:2b:10:6c:54:9b:37:ab:46:fd: 78:8f:d7:34:1e:0b:f8:43:2e:0d:81:a3:21:5d:18: 37:0d:ee:00:ba:ee:20:99:6b:d2:8c:7d:40:b4:59: f4:ef:4f:ef:d6:16:9d:d5:dc:01:99:4b:7e:2b:01: fc:ca:d4:b5:f5:71:90:93:27:ce:ef:cc:34:34:ab: ae:8f:43:45:63:e9:55:df:4c:1b:77:a2:47:85:1d: d1:7f:14:5b:de:94:64:bc:0d:44:43:58:f5:bb:5a: 84:0b:13:24:a9:2b:99:ef:4f:17:0c:f3:98:1a:d3: 58:db:14:c4:ae:50:56:2a:b1:64:37:1a:2d:bb:3f: 6b:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:7F:50:B1:D0:FC:FA:C2:A1:7F:46:A7:70:43:31:B2:14:EC:0C:8C X509v3 Authority Key Identifier: keyid:98:0C:E5:BB:F2:CF:35:D6:0A:E3:B0:72:18:AB:5C:A9:10:14:2C:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CDBF5/5E9C4BB0CB5111EF90400D17C4F9AE02/mAzlu_LPNdYK47ByGKtcqRAULJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mAzlu_LPNdYK47ByGKtcqRAULJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CDBF5/5E9C4BB0CB5111EF90400D17C4F9AE02/mAzlu_LPNdYK47ByGKtcqRAULJA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:87:66:55:17:83:a5:95:b8:59:13:02:a8:6d:40:fe:09:61: fc:43:87:af:16:a3:ea:54:17:46:b7:33:8b:d6:14:c2:39:e5: d3:21:3e:23:78:c3:28:7c:01:69:b0:cf:bd:f7:ab:56:d5:2f: ff:b9:c9:59:87:91:66:4c:03:97:7f:33:94:80:1e:cd:be:a4: a3:5d:3b:20:cf:f2:b0:ae:a6:f9:9d:2b:5f:06:88:fb:56:56: c0:98:78:44:67:61:94:90:2c:4b:cd:1a:b1:db:d9:5f:5e:31: cc:85:86:3a:ba:46:a7:c0:99:de:f9:9c:83:59:10:20:74:a7: 20:eb:4c:5b:a3:04:bc:c2:a4:d0:ff:b0:33:f5:29:87:2a:cb: c3:72:d2:ab:30:f2:38:22:24:3a:be:a5:18:92:ab:9c:c0:e9: 6f:df:3a:ee:db:13:95:78:3e:e6:a4:b0:47:b4:3e:a8:25:36: d6:8f:69:fe:4f:a1:7f:70:87:c2:cb:27:6a:10:59:9d:e6:74: 89:16:91:91:66:f6:1a:cb:4f:94:e8:9f:41:20:1b:11:06:8a: 57:cc:21:d1:90:37:36:89:6b:b7:b2:d7:98:37:17:e1:63:00: 6f:13:8a:cc:ee:40:70:3f:84:fe:13:df:a0:4b:bb:8f:93:5b: 26:10:4e:e3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD REJGNTExMC8GA1UEBRMoOTgwQ0U1QkJGMkNGMzVENjBBRTNCMDcyMThBQjVDQTkx MDE0MkM5MDAeFw0yNTA4MjMwNzAwNDRaFw0yNTA4MzAwNzAwNDRaMBgxFjAUBgNV BAMTDTY4YTk2NzFjLTdmZDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDtHbApBeM4WU6yQ9//et7tQ27zZ7QVylmX/IeQM1lht34slIJqbVYORaXtmPpm xCsGefXnOm19KD5iLAE1qNnsCvKCLY06KgYA/4akv7FiI8sTVlL8YAmWHJK+yGxh U5EqNo4iHfKWpSAk8+lSAbSGbOgBdOjemSNvyG9HrysQbFSbN6tG/XiP1zQeC/hD Lg2BoyFdGDcN7gC67iCZa9KMfUC0WfTvT+/WFp3V3AGZS34rAfzK1LX1cZCTJ87v zDQ0q66PQ0Vj6VXfTBt3okeFHdF/FFvelGS8DURDWPW7WoQLEySpK5nvTxcM85ga 01jbFMSuUFYqsWQ3Gi27P2v/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU6n9QsdD8 +sKhf0ancEMxshTsDIwwHwYDVR0jBBgwFoAUmAzlu/LPNdYK47ByGKtcqRAULJAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNEQkY1LzVFOUM0QkIwQ0I1 MTExRUY5MDQwMEQxN0M0RjlBRTAyL21Bemx1X0xQTmRZSzQ3QnlHS3RjcVJBVUxK QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvbUF6bHVfTFBOZFlLNDdCeUdLdGNxUkFVTEpBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNE QkY1LzVFOUM0QkIwQ0I1MTExRUY5MDQwMEQxN0M0RjlBRTAyL21Bemx1X0xQTmRZ SzQ3QnlHS3RjcVJBVUxKQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKKHZlUXg6WVuFkTAqhtQP4JYfxDh68Wo+pUF0a3M4vWFMI55dMhPiN4 wyh8AWmwz733q1bVL/+5yVmHkWZMA5d/M5SAHs2+pKNdOyDP8rCupvmdK18GiPtW VsCYeERnYZSQLEvNGrHb2V9eMcyFhjq6RqfAmd75nINZECB0pyDrTFujBLzCpND/ sDP1KYcqy8Ny0qsw8jgiJDq+pRiSq5zA6W/fOu7bE5V4PuaksEe0PqglNtaPaf5P oX9wh8LLJ2oQWZ3mdIkWkZFm9hrLT5Ton0EgGxEGilfMIdGQNzaJa7ey15g3F+Fj AG8TiszuQHA/hP4T36BLu4+TWyYQTuM= -----END CERTIFICATE-----Generated at Sat Aug 23 13:00:47 2025 by rpki-client