$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft File: LD0jWhshn0FmEJALADuKv9wXAqI.mft (raw, json) Hash identifier: ZQ7Vbk+OyRrTwCIiYp5qgv1bHUW3sjp4B23F4/xLJiw= Subject key identifier: 35:7F:98:8E:D7:42:01:33:4D:80:90:C0:46:AC:1E:BA:A2:25:1D:2C Authority key identifier: 2C:3D:23:5A:1B:21:9F:41:66:10:90:0B:00:3B:8A:BF:DC:17:02:A2 Certificate issuer: /CN=A91CEA40/serialNumber=2C3D235A1B219F416610900B003B8ABFDC1702A2 Certificate serial: 0622 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft Manifest number: 0615 Signing time: Wed 02 Jul 2025 23:11:24 +0000 Manifest this update: Wed 02 Jul 2025 23:11:24 +0000 Manifest next update: Wed 09 Jul 2025 23:11:24 +0000 Files and hashes: 1: LD0jWhshn0FmEJALADuKv9wXAqI.crl (hash: x2OZPmysyMxr4Uy1ToPaVtgjEjCeDpuL8C66Qrr4PyM=) 2: 96F093D4BEA011EB8CAD965FC4F9AE02.roa (hash: NpLkQ/NypmNX/0X8ZR0aPK3YWZwmOShkZdvPXd4fivY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.crl rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 23:11:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1570 (0x622) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEA40, serialNumber=2C3D235A1B219F416610900B003B8ABFDC1702A2 Validity Not Before: Jul 2 23:11:24 2025 GMT Not After : Jul 9 23:11:24 2025 GMT Subject: CN=6865bc9c-4579 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:6a:5d:45:4e:60:66:4e:de:7a:b5:7b:30:a5: ed:37:61:b4:45:fe:ce:2a:42:8f:04:c6:84:8d:da: 60:0d:5d:13:80:96:91:92:39:d0:06:4b:cb:b6:fe: eb:36:79:3a:c4:73:8a:84:08:fa:9e:1c:3d:9a:db: a3:f4:e8:22:bc:98:b1:a6:be:1d:19:f8:54:f8:48: 49:85:6b:68:2e:39:91:30:8c:fb:d7:d9:0c:af:c9: c3:f7:d5:f7:67:74:32:09:34:52:9d:db:40:bc:fe: 16:52:ee:12:c0:81:d1:2b:05:f5:35:59:bf:1b:24: 8c:e6:42:ce:00:dd:d7:18:04:c7:f7:57:9f:a2:00: 43:6d:51:46:da:a5:d9:67:d7:0e:6e:74:da:b5:b8: 6f:66:6c:b2:b2:2b:af:4f:37:5b:9d:6d:03:64:cf: 9e:2e:53:5c:53:5f:17:73:1d:a1:46:2f:a2:79:d4: bd:bf:55:c5:ae:3a:87:a0:dc:4a:fa:92:2e:79:42: e0:36:d1:58:d6:a2:1a:d3:11:6a:51:8d:ea:74:18: 12:d9:36:3e:27:75:61:4d:4b:3a:3c:0b:97:bf:05: 83:9b:c4:17:2a:2b:4f:9f:3a:28:1c:77:4f:82:b3: 75:09:e2:ce:2c:54:28:c6:22:3c:31:5e:26:49:9e: c5:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:7F:98:8E:D7:42:01:33:4D:80:90:C0:46:AC:1E:BA:A2:25:1D:2C X509v3 Authority Key Identifier: keyid:2C:3D:23:5A:1B:21:9F:41:66:10:90:0B:00:3B:8A:BF:DC:17:02:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:be:ba:03:dd:ee:97:20:a9:5f:5c:a8:ce:8c:98:67:26:c3: 93:52:64:dd:72:c4:5f:d1:8d:17:d7:4d:fb:bc:78:1e:ce:70: d7:04:f6:69:41:d3:8d:36:ce:37:77:e0:95:bc:b8:c3:31:05: c8:a4:43:fe:3b:5d:ec:09:a1:53:fc:7a:27:cb:85:ae:33:e4: a7:79:04:d8:92:3d:dd:6c:c3:dc:ef:7f:ad:e3:c7:ac:c5:ee: 48:19:52:33:48:73:27:f5:83:34:fb:38:1e:20:2f:be:0d:bd: 80:34:e1:f4:63:1d:1f:f6:4a:3b:1a:42:2a:9b:2a:07:78:18: 8b:a8:48:30:cb:5a:8b:56:e7:d6:8f:08:8b:f4:00:dd:9f:29: 22:8e:a8:3f:27:54:f8:ab:94:ea:be:e3:7d:88:b1:13:4e:60: 63:bf:bf:e9:e5:f5:e7:59:a7:ec:97:e1:72:8a:41:c2:32:3e: 72:2f:c5:6a:ea:5e:4e:04:2f:6a:81:1b:a9:ee:ed:80:76:2f: 90:d2:70:6c:ad:72:d6:28:00:d5:aa:c1:2f:ac:46:26:f9:0c: 8b:b6:86:7d:55:f1:67:eb:d0:98:1f:96:13:f2:56:da:9f:33: 18:69:03:15:9c:b1:eb:2e:5b:df:09:bf:fd:bc:d4:34:cb:ee: ad:48:b4:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBiIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VBNDAxMTAvBgNVBAUTKDJDM0QyMzVBMUIyMTlGNDE2NjEwOTAwQjAwM0I4QUJG REMxNzAyQTIwHhcNMjUwNzAyMjMxMTI0WhcNMjUwNzA5MjMxMTI0WjAYMRYwFAYD VQQDEw02ODY1YmM5Yy00NTc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz2pdRU5gZk7eerV7MKXtN2G0Rf7OKkKPBMaEjdpgDV0TgJaRkjnQBkvLtv7r Nnk6xHOKhAj6nhw9mtuj9OgivJixpr4dGfhU+EhJhWtoLjmRMIz719kMr8nD99X3 Z3QyCTRSndtAvP4WUu4SwIHRKwX1NVm/GySM5kLOAN3XGATH91efogBDbVFG2qXZ Z9cObnTatbhvZmyysiuvTzdbnW0DZM+eLlNcU18Xcx2hRi+iedS9v1XFrjqHoNxK +pIueULgNtFY1qIa0xFqUY3qdBgS2TY+J3VhTUs6PAuXvwWDm8QXKitPnzooHHdP grN1CeLOLFQoxiI8MV4mSZ7FWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDV/mI7X QgEzTYCQwEasHrqiJR0sMB8GA1UdIwQYMBaAFCw9I1obIZ9BZhCQCwA7ir/cFwKi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUE0MC84RTk2NEJDRUFG NzkxMUVCODQyMTdBNThDNEY5QUUwMi9MRDBqV2hzaG4wRm1FSkFMQUR1S3Y5d1hB cUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xEMGpXaHNobjBGbUVKQUxBRHVLdjl3WEFxSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUE0MC84RTk2NEJDRUFGNzkxMUVCODQyMTdBNThDNEY5QUUwMi9MRDBqV2hzaG4w Rm1FSkFMQUR1S3Y5d1hBcUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7vroD3e6XIKlfXKjOjJhnJsOTUmTdcsRf0Y0X1037vHgeznDXBPZp QdONNs43d+CVvLjDMQXIpEP+O13sCaFT/Hony4WuM+SneQTYkj3dbMPc73+t48es xe5IGVIzSHMn9YM0+zgeIC++Db2ANOH0Yx0f9ko7GkIqmyoHeBiLqEgwy1qLVufW jwiL9ADdnykijqg/J1T4q5TqvuN9iLETTmBjv7/p5fXnWafsl+FyikHCMj5yL8Vq 6l5OBC9qgRup7u2Adi+Q0nBsrXLWKADVqsEvrEYm+QyLtoZ9VfFn69CYH5YT8lba nzMYaQMVnLHrLlvfCb/9vNQ0y+6tSLSJ -----END CERTIFICATE-----Generated at Thu Jul 3 09:50:49 2025 by rpki-client