$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft File: lX5Qp1--UC844-2_P0qq5mWuFIs.mft (raw, json) Hash identifier: /CYsasBoFYLUYnJYVpg+H9Stcu+SAVPVZrdiJ6UGyw4= Subject key identifier: D8:89:43:BE:72:2C:8C:19:82:10:E6:18:70:DE:56:D1:C3:73:F3:A0 Authority key identifier: 95:7E:50:A7:5F:BE:50:2F:38:E3:ED:BF:3F:4A:AA:E6:65:AE:14:8B Certificate issuer: /CN=A91D0B0E/serialNumber=957E50A75FBE502F38E3EDBF3F4AAAE665AE148B Certificate serial: AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lX5Qp1--UC844-2_P0qq5mWuFIs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft Manifest number: AA Signing time: Sat 23 Aug 2025 06:22:50 +0000 Manifest this update: Sat 23 Aug 2025 06:22:50 +0000 Manifest next update: Sat 30 Aug 2025 06:22:50 +0000 Files and hashes: 1: lX5Qp1--UC844-2_P0qq5mWuFIs.crl (hash: /u1yzq6AASZrkNv+OTZWcP36yEqXVgxqJI5YXMhsu+k=) 2: A0A9D60C807511EFAD8C4257C4F9AE02.roa (hash: ItObitSQLkGH+talVc8PNR7Z2o8Aby5tjfREkgGvzVc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.crl rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lX5Qp1--UC844-2_P0qq5mWuFIs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:22:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 172 (0xac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0B0E, serialNumber=957E50A75FBE502F38E3EDBF3F4AAAE665AE148B Validity Not Before: Aug 23 06:22:50 2025 GMT Not After : Aug 30 06:22:50 2025 GMT Subject: CN=68a95e3a-6dea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:a6:97:57:09:7e:2a:54:cd:af:41:91:c1:54: e0:18:87:4e:3b:2e:a4:b7:fe:c3:ce:14:00:d8:9f: 7e:9d:9b:2b:8b:32:e1:a1:ad:a5:d7:04:35:7a:9e: f6:df:a4:de:4a:3f:36:0a:4e:97:9c:00:50:88:77: d8:75:4f:66:23:15:9f:77:a3:67:a1:7e:ad:ca:06: 8a:67:26:51:9b:70:ed:5c:9f:23:0a:8e:1e:dc:40: 38:de:64:86:1e:82:c7:01:18:20:68:82:56:0b:b5: 92:58:e7:aa:7b:18:bb:ad:fb:ac:2c:cf:a4:bc:45: a3:cf:3d:26:19:df:50:48:99:c5:6b:2c:24:50:6e: 5b:46:e2:66:57:7d:8f:91:77:78:f9:e1:43:5a:35: 0a:d3:0c:d8:0b:ac:37:8a:5d:d1:4e:32:80:97:dd: 83:34:bb:16:d8:e9:dd:7b:20:e5:1e:ab:15:86:85: 66:a1:ad:8d:a6:c2:57:8c:c6:36:31:8d:59:ee:fa: a4:05:37:2c:49:03:70:de:f4:2a:69:ce:f6:1a:a6: 4d:02:b7:e7:ee:fa:6d:26:7e:69:a3:7a:61:4d:24: 50:b9:02:a5:08:d2:3e:ab:2c:35:2b:40:19:45:e6: ee:14:5c:5f:9d:72:ec:ae:ef:3b:e7:9e:b3:44:c9: 03:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:89:43:BE:72:2C:8C:19:82:10:E6:18:70:DE:56:D1:C3:73:F3:A0 X509v3 Authority Key Identifier: keyid:95:7E:50:A7:5F:BE:50:2F:38:E3:ED:BF:3F:4A:AA:E6:65:AE:14:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lX5Qp1--UC844-2_P0qq5mWuFIs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:f7:2b:a3:61:ab:aa:fc:41:ff:24:30:98:b3:06:ea:eb:1c: 16:0f:6e:dc:a9:da:ef:f3:0e:99:7c:67:46:4f:2c:42:e2:59: 1c:a6:57:da:21:7c:d6:7b:54:1f:4c:e4:6d:fd:63:14:c9:fb: d4:61:37:83:c4:45:3a:28:2e:5e:cc:7a:37:27:b6:91:11:77: fd:5e:47:5d:70:fa:83:7d:39:02:4a:b3:0b:3c:0b:d6:e5:a1: e8:ad:9c:be:0c:c5:c0:6f:d8:20:33:93:dd:23:78:d9:cc:76: a0:8f:0e:c5:c9:60:58:2c:09:27:12:27:9f:29:dd:d6:01:79: c0:a2:7d:e6:95:e3:0a:3e:08:c0:1c:fd:1c:c2:05:36:85:6a: 97:0e:45:a3:c9:45:21:9c:84:26:4b:39:67:8f:c5:17:1b:1d: 16:37:ac:36:ac:e1:58:7a:7a:20:38:11:98:7a:bf:41:8f:83: a8:55:f6:4a:12:5a:a5:5b:41:ed:ed:c5:c8:fc:a1:70:f9:e4: f3:1d:00:cd:8c:3b:e2:c6:21:5d:63:8f:e4:91:5e:71:45:9b: 58:9d:da:5c:14:67:4d:99:66:56:ad:e4:4d:9e:5c:5d:eb:2d: c2:ee:7e:9f:a5:20:a1:dc:7b:d8:b1:b2:fd:53:b3:35:21:b8: ca:8b:f7:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBCMEUxMTAvBgNVBAUTKDk1N0U1MEE3NUZCRTUwMkYzOEUzRURCRjNGNEFBQUU2 NjVBRTE0OEIwHhcNMjUwODIzMDYyMjUwWhcNMjUwODMwMDYyMjUwWjAYMRYwFAYD VQQDEw02OGE5NWUzYS02ZGVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxaaXVwl+KlTNr0GRwVTgGIdOOy6kt/7DzhQA2J9+nZsrizLhoa2l1wQ1ep72 36TeSj82Ck6XnABQiHfYdU9mIxWfd6NnoX6tygaKZyZRm3DtXJ8jCo4e3EA43mSG HoLHARggaIJWC7WSWOeqexi7rfusLM+kvEWjzz0mGd9QSJnFaywkUG5bRuJmV32P kXd4+eFDWjUK0wzYC6w3il3RTjKAl92DNLsW2OndeyDlHqsVhoVmoa2NpsJXjMY2 MY1Z7vqkBTcsSQNw3vQqac72GqZNArfn7vptJn5po3phTSRQuQKlCNI+qyw1K0AZ RebuFFxfnXLsru87556zRMkDKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNiJQ75y LIwZghDmGHDeVtHDc/OgMB8GA1UdIwQYMBaAFJV+UKdfvlAvOOPtvz9KquZlrhSL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEIwRS80RTZDQjRGNjgw NjkxMUVGODg3QjcwM0NDNEY5QUUwMi9sWDVRcDEtLVVDODQ0LTJfUDBxcTVtV3VG SXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xYNVFwMS0tVUM4NDQtMl9QMHFxNW1XdUZJcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEIwRS80RTZDQjRGNjgwNjkxMUVGODg3QjcwM0NDNEY5QUUwMi9sWDVRcDEtLVVD ODQ0LTJfUDBxcTVtV3VGSXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBj9yujYauq/EH/JDCYswbq6xwWD27cqdrv8w6ZfGdGTyxC4lkcplfa IXzWe1QfTORt/WMUyfvUYTeDxEU6KC5ezHo3J7aREXf9XkddcPqDfTkCSrMLPAvW 5aHorZy+DMXAb9ggM5PdI3jZzHagjw7FyWBYLAknEiefKd3WAXnAon3mleMKPgjA HP0cwgU2hWqXDkWjyUUhnIQmSzlnj8UXGx0WN6w2rOFYenogOBGYer9Bj4OoVfZK ElqlW0Ht7cXI/KFw+eTzHQDNjDvixiFdY4/kkV5xRZtYndpcFGdNmWZWreRNnlxd 6y3C7n6fpSCh3HvYsbL9U7M1IbjKi/cL -----END CERTIFICATE-----Generated at Sat Aug 23 17:06:04 2025 by rpki-client