$ rpki-client -vvf rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.mft File: lVqjNNYHfBfALW18rdIVmRIeTvo.mft (raw, json) Hash identifier: T3CvU6UDQ2w4KuNwZbQNftiXgzgAwoMqCcBFoGTZ+O8= Subject key identifier: EF:3D:AB:FC:EA:E0:C8:9D:10:CF:60:E3:D4:A6:63:AA:EA:12:DD:90 Authority key identifier: 95:5A:A3:34:D6:07:7C:17:C0:2D:6D:7C:AD:D2:15:99:12:1E:4E:FA Certificate issuer: /CN=A91D01AF/serialNumber=955AA334D6077C17C02D6D7CADD21599121E4EFA Certificate serial: 07E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lVqjNNYHfBfALW18rdIVmRIeTvo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.mft Manifest number: 07E2 Signing time: Sat 28 Jun 2025 20:39:13 +0000 Manifest this update: Sat 28 Jun 2025 20:39:13 +0000 Manifest next update: Sat 05 Jul 2025 20:39:13 +0000 Files and hashes: 1: lVqjNNYHfBfALW18rdIVmRIeTvo.crl (hash: hzgIRKMQi1IVjYnRr7vhHYK9rw3SF6t9k2v7HRaYRRc=) 2: AD797FA2F17E11EAA3CC597BC4F9AE02.roa (hash: h5ITx5pXE/9NCEhkkWyRU4Y7R0J0MFf0GXuloXcx21g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.crl rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lVqjNNYHfBfALW18rdIVmRIeTvo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 20:39:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2025 (0x7e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D01AF, serialNumber=955AA334D6077C17C02D6D7CADD21599121E4EFA Validity Not Before: Jun 28 20:39:13 2025 GMT Not After : Jul 5 20:39:13 2025 GMT Subject: CN=686052f1-4662 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:fc:8b:c8:36:67:d4:6b:81:b4:f2:f8:79:55: 7e:0f:50:55:7f:bf:ca:74:4f:3f:a8:c1:a6:f0:f3: 23:3b:a9:8a:f7:8f:19:0b:37:d8:f8:bc:57:21:5f: 8b:bb:c3:36:17:c1:f5:b3:97:91:6f:07:83:da:18: 8a:fe:51:4a:c7:40:92:95:4d:fb:19:53:a2:30:6e: d7:94:99:3a:75:b7:0f:43:f5:ad:9b:58:2c:7f:9a: e9:74:9b:b9:b0:14:1e:c1:76:a5:dc:9c:36:dc:e0: af:c0:30:83:35:8d:2b:b8:d0:bd:86:a5:bf:f0:4a: 5a:25:16:97:01:49:61:95:6f:55:db:c8:bf:17:64: 22:97:1e:93:14:8a:69:62:89:dc:d4:8b:d5:7c:54: 6f:3b:01:be:c3:5b:3f:75:2b:09:77:fa:cb:75:3c: bd:20:9c:2c:6d:88:3a:bb:c0:bb:e5:5c:51:a2:83: 6a:bc:8f:2b:59:95:b5:0e:65:bb:6b:e7:58:33:da: 42:e1:19:5b:ef:4e:1c:71:0a:bd:2b:1a:fa:ba:c6: 45:58:27:1c:26:ca:28:5d:87:17:ad:4e:79:76:73: d5:57:da:cd:0c:b2:ed:86:0f:36:d4:4c:2a:61:53: 76:de:74:34:7a:f2:98:e9:cc:75:9e:3b:c0:7b:91: c7:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:3D:AB:FC:EA:E0:C8:9D:10:CF:60:E3:D4:A6:63:AA:EA:12:DD:90 X509v3 Authority Key Identifier: keyid:95:5A:A3:34:D6:07:7C:17:C0:2D:6D:7C:AD:D2:15:99:12:1E:4E:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lVqjNNYHfBfALW18rdIVmRIeTvo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:78:09:fe:4d:9a:43:92:b3:5a:06:b2:6c:9d:35:df:04:e6: 2e:cd:1c:a3:9a:ca:d4:9b:96:a9:9e:f1:a9:e5:40:a3:63:b2: e9:0d:8b:b9:a0:f7:bc:4c:91:6b:bc:24:ad:dc:4a:ae:80:1c: 8d:53:d6:3a:02:9e:23:5b:09:da:3f:8d:b6:ab:46:d4:12:6b: df:c4:15:a7:bb:55:0b:e0:a9:71:0b:c3:41:b9:d0:ae:98:3d: 53:67:06:05:c7:1e:b8:5d:fc:b3:26:5f:5b:13:22:c2:67:6f: f6:4a:21:f4:bd:e2:43:32:c9:1d:a5:6d:13:5f:51:b6:1b:38: a0:fe:7d:d6:1c:2a:3b:7d:12:46:c7:1f:8a:81:bc:4f:98:c6: 8d:38:d2:68:d9:9b:56:91:ca:5d:29:19:fa:f2:3c:6d:58:e4: 22:0e:d4:71:75:be:96:8c:c1:e3:b9:6c:c9:b4:4d:6e:08:58: 9c:ad:df:bc:11:0b:79:f2:93:a4:4f:fd:28:47:4a:6c:c5:2e: 60:40:73:9c:33:f9:d3:54:0f:0f:7c:4d:97:ce:07:34:d3:b1: a1:ad:f2:bb:99:c4:49:0e:9b:c4:62:e5:af:13:49:69:20:3a: 26:e3:6f:6e:b0:2f:36:9a:ed:04:5f:56:2f:c1:b4:a5:36:df: c9:8d:3e:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDAxQUYxMTAvBgNVBAUTKDk1NUFBMzM0RDYwNzdDMTdDMDJENkQ3Q0FERDIxNTk5 MTIxRTRFRkEwHhcNMjUwNjI4MjAzOTEzWhcNMjUwNzA1MjAzOTEzWjAYMRYwFAYD VQQDEw02ODYwNTJmMS00NjYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnfyLyDZn1GuBtPL4eVV+D1BVf7/KdE8/qMGm8PMjO6mK948ZCzfY+LxXIV+L u8M2F8H1s5eRbweD2hiK/lFKx0CSlU37GVOiMG7XlJk6dbcPQ/Wtm1gsf5rpdJu5 sBQewXal3Jw23OCvwDCDNY0ruNC9hqW/8EpaJRaXAUlhlW9V28i/F2Qilx6TFIpp Yonc1IvVfFRvOwG+w1s/dSsJd/rLdTy9IJwsbYg6u8C75VxRooNqvI8rWZW1DmW7 a+dYM9pC4Rlb704ccQq9Kxr6usZFWCccJsooXYcXrU55dnPVV9rNDLLthg821Ewq YVN23nQ0evKY6cx1njvAe5HH5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO89q/zq 4MidEM9g49SmY6rqEt2QMB8GA1UdIwQYMBaAFJVaozTWB3wXwC1tfK3SFZkSHk76 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDFBRi9DRDdFNzBEOEYx N0QxMUVBQUIzOTI1NzhDNEY5QUUwMi9sVnFqTk5ZSGZCZkFMVzE4cmRJVm1SSWVU dm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xWcWpOTllIZkJmQUxXMThyZElWbVJJZVR2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MDFBRi9DRDdFNzBEOEYxN0QxMUVBQUIzOTI1NzhDNEY5QUUwMi9sVnFqTk5ZSGZC ZkFMVzE4cmRJVm1SSWVUdm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeeAn+TZpDkrNaBrJsnTXfBOYuzRyjmsrUm5apnvGp5UCjY7LpDYu5 oPe8TJFrvCSt3EqugByNU9Y6Ap4jWwnaP422q0bUEmvfxBWnu1UL4KlxC8NBudCu mD1TZwYFxx64XfyzJl9bEyLCZ2/2SiH0veJDMskdpW0TX1G2Gzig/n3WHCo7fRJG xx+KgbxPmMaNONJo2ZtWkcpdKRn68jxtWOQiDtRxdb6WjMHjuWzJtE1uCFicrd+8 EQt58pOkT/0oR0psxS5gQHOcM/nTVA8PfE2Xzgc007GhrfK7mcRJDpvEYuWvE0lp IDom429usC82mu0EX1YvwbSlNt/JjT7f -----END CERTIFICATE-----Generated at Sun Jun 29 17:11:34 2025 by rpki-client