$ rpki-client -vvf rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.mft File: lVqjNNYHfBfALW18rdIVmRIeTvo.mft (raw, json) Hash identifier: zNU7JvDkINDh1FmA0ftYb/7VCk/L3qzYrNsGHCsJbrg= Subject key identifier: BA:43:FA:3A:BA:2E:71:08:42:79:56:24:99:8C:64:BD:52:0B:94:1E Authority key identifier: 95:5A:A3:34:D6:07:7C:17:C0:2D:6D:7C:AD:D2:15:99:12:1E:4E:FA Certificate issuer: /CN=A91D01AF/serialNumber=955AA334D6077C17C02D6D7CADD21599121E4EFA Certificate serial: 0808 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lVqjNNYHfBfALW18rdIVmRIeTvo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.mft Manifest number: 0800 Signing time: Fri 22 Aug 2025 21:02:57 +0000 Manifest this update: Fri 22 Aug 2025 21:02:57 +0000 Manifest next update: Fri 29 Aug 2025 21:02:57 +0000 Files and hashes: 1: lVqjNNYHfBfALW18rdIVmRIeTvo.crl (hash: jUDENWQ/3sWR6NtDrkue16WjVtkLJo+o3/7DMzj0Tb4=) 2: AD797FA2F17E11EAA3CC597BC4F9AE02.roa (hash: FrUF8k+q0iQX/Bos2myD8zLROjp2eOpyug9lyw9AGzE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.crl rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lVqjNNYHfBfALW18rdIVmRIeTvo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:02:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2056 (0x808) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D01AF, serialNumber=955AA334D6077C17C02D6D7CADD21599121E4EFA Validity Not Before: Aug 22 21:02:57 2025 GMT Not After : Aug 29 21:02:57 2025 GMT Subject: CN=68a8db01-28de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f0:ae:60:5d:74:89:67:fd:6d:bb:81:cf:ca: 76:d8:6d:81:3b:de:70:96:03:a0:64:44:25:e0:c6: 16:43:9b:b9:d2:d2:d9:58:c4:89:85:07:d5:13:cb: d7:a9:97:b3:33:de:15:49:98:a2:61:0a:df:34:3d: 02:08:a7:04:7b:ae:5e:63:ce:a3:dd:7a:bb:78:41: 4c:60:53:8c:1e:af:2c:3e:e6:dc:5e:e2:2c:7e:29: 73:dc:9a:a6:c7:12:a8:b7:13:1e:c0:a3:6b:b0:4f: 7b:80:d8:d4:11:0a:25:65:dd:f8:d5:e2:3a:32:5b: 0d:f6:a4:4e:b4:06:10:88:53:e6:b3:37:db:30:82: b7:f1:af:48:a1:5c:89:22:b2:17:46:03:21:4b:a7: a9:9b:50:4a:ec:f4:a4:ea:ed:77:42:a6:5d:17:fc: 64:df:78:09:39:8d:4d:26:eb:35:e0:d3:fa:78:59: 53:85:22:dc:e3:9e:01:61:2d:b8:00:c0:9d:00:8e: ad:c1:75:88:b4:95:ce:67:d8:9d:f6:a9:24:6b:41: 7e:ab:e7:1b:46:e1:e8:91:f9:6d:82:37:a3:4a:ad: a8:02:1f:79:a3:0d:86:b7:6b:55:17:c2:42:59:be: ed:4f:90:c3:2a:eb:00:e3:24:3f:c3:74:d1:eb:8d: d1:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:43:FA:3A:BA:2E:71:08:42:79:56:24:99:8C:64:BD:52:0B:94:1E X509v3 Authority Key Identifier: keyid:95:5A:A3:34:D6:07:7C:17:C0:2D:6D:7C:AD:D2:15:99:12:1E:4E:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lVqjNNYHfBfALW18rdIVmRIeTvo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:76:63:4e:3a:56:cf:81:9d:d7:18:0e:e5:5b:b5:78:01:a3: 56:0a:05:b9:3d:e5:da:0b:24:a4:09:1e:6c:4f:96:7c:d0:eb: 03:c6:35:91:fd:33:66:79:81:95:23:51:b7:8e:1d:d6:9e:33: 82:6a:74:32:00:24:0d:a6:b4:c6:1d:76:6c:bf:25:4e:22:d0: ad:06:e9:b5:71:2a:1c:00:7f:18:0d:44:fc:15:07:f1:65:f9: 67:5a:19:e1:e0:e4:68:d3:24:51:e0:0e:73:27:b4:9b:73:5e: 77:12:f5:58:b2:26:e2:61:32:e0:4d:c8:02:63:11:8a:94:bf: 7f:27:91:4c:c6:13:ae:0e:55:06:6b:58:d2:60:70:a9:9c:f4: 2c:c1:36:a7:17:43:93:5a:2a:09:e3:90:17:7d:ff:9a:ef:25: 3f:20:58:8f:3c:0f:16:e8:79:f7:cd:01:ad:1b:b1:fa:a8:95: f0:b6:d2:04:11:71:2d:92:97:28:93:96:ec:0e:9e:85:7b:30: e6:c2:df:96:b9:30:1c:dc:c5:06:63:0d:9b:43:62:e8:fc:1c: 84:93:a9:0a:00:c7:ab:92:81:9d:cc:53:2e:80:9e:f1:4f:49: 27:e9:84:66:dc:f3:24:4f:9c:85:b0:86:8e:7e:6c:85:66:33: 5e:40:ec:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCAgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDAxQUYxMTAvBgNVBAUTKDk1NUFBMzM0RDYwNzdDMTdDMDJENkQ3Q0FERDIxNTk5 MTIxRTRFRkEwHhcNMjUwODIyMjEwMjU3WhcNMjUwODI5MjEwMjU3WjAYMRYwFAYD VQQDEw02OGE4ZGIwMS0yOGRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvfCuYF10iWf9bbuBz8p22G2BO95wlgOgZEQl4MYWQ5u50tLZWMSJhQfVE8vX qZezM94VSZiiYQrfND0CCKcEe65eY86j3Xq7eEFMYFOMHq8sPubcXuIsfilz3Jqm xxKotxMewKNrsE97gNjUEQolZd341eI6MlsN9qROtAYQiFPmszfbMIK38a9IoVyJ IrIXRgMhS6epm1BK7PSk6u13QqZdF/xk33gJOY1NJus14NP6eFlThSLc454BYS24 AMCdAI6twXWItJXOZ9id9qkka0F+q+cbRuHokfltgjejSq2oAh95ow2Gt2tVF8JC Wb7tT5DDKusA4yQ/w3TR643R1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLpD+jq6 LnEIQnlWJJmMZL1SC5QeMB8GA1UdIwQYMBaAFJVaozTWB3wXwC1tfK3SFZkSHk76 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDFBRi9DRDdFNzBEOEYx N0QxMUVBQUIzOTI1NzhDNEY5QUUwMi9sVnFqTk5ZSGZCZkFMVzE4cmRJVm1SSWVU dm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xWcWpOTllIZkJmQUxXMThyZElWbVJJZVR2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MDFBRi9DRDdFNzBEOEYxN0QxMUVBQUIzOTI1NzhDNEY5QUUwMi9sVnFqTk5ZSGZC ZkFMVzE4cmRJVm1SSWVUdm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBedmNOOlbPgZ3XGA7lW7V4AaNWCgW5PeXaCySkCR5sT5Z80OsDxjWR /TNmeYGVI1G3jh3WnjOCanQyACQNprTGHXZsvyVOItCtBum1cSocAH8YDUT8FQfx ZflnWhnh4ORo0yRR4A5zJ7Sbc153EvVYsibiYTLgTcgCYxGKlL9/J5FMxhOuDlUG a1jSYHCpnPQswTanF0OTWioJ45AXff+a7yU/IFiPPA8W6Hn3zQGtG7H6qJXwttIE EXEtkpcok5bsDp6FezDmwt+WuTAc3MUGYw2bQ2Lo/ByEk6kKAMerkoGdzFMugJ7x T0kn6YRm3PMkT5yFsIaOfmyFZjNeQOzS -----END CERTIFICATE-----Generated at Sat Aug 23 17:57:28 2025 by rpki-client