$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft File: lX5Qp1--UC844-2_P0qq5mWuFIs.mft (raw, json) Hash identifier: 8jrp4bwZlwmbyrPHdbxFQphAamAMIz/0ML3wuvGB55k= Subject key identifier: D0:68:D1:2C:9B:AE:8E:EB:1A:34:C5:0C:FE:A0:0C:9D:67:E8:6E:0F Authority key identifier: 95:7E:50:A7:5F:BE:50:2F:38:E3:ED:BF:3F:4A:AA:E6:65:AE:14:8B Certificate issuer: /CN=A91D0B0E/serialNumber=957E50A75FBE502F38E3EDBF3F4AAAE665AE148B Certificate serial: 8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lX5Qp1--UC844-2_P0qq5mWuFIs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft Manifest number: 8D Signing time: Tue 01 Jul 2025 07:12:21 +0000 Manifest this update: Tue 01 Jul 2025 07:12:20 +0000 Manifest next update: Tue 08 Jul 2025 07:12:20 +0000 Files and hashes: 1: lX5Qp1--UC844-2_P0qq5mWuFIs.crl (hash: PW4C6A1/XZcGevd7CT29QvhCaYqx3cKKzcezuxS07oE=) 2: A0A9D60C807511EFAD8C4257C4F9AE02.roa (hash: QmeMLe3zHSz7gk9gq16CkmBIAgYCod6kVBmzDpdZxiM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.crl rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lX5Qp1--UC844-2_P0qq5mWuFIs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 07:12:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 142 (0x8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0B0E, serialNumber=957E50A75FBE502F38E3EDBF3F4AAAE665AE148B Validity Not Before: Jul 1 07:12:20 2025 GMT Not After : Jul 8 07:12:20 2025 GMT Subject: CN=68638a54-3430 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:1e:5f:64:a1:b2:93:ac:b9:d8:53:5f:1c:6e: 37:9c:f2:8d:ee:65:4f:b5:6d:bf:52:78:a5:99:e5: f4:42:3f:c7:62:5a:5e:6d:7f:8f:8d:17:e3:50:53: c7:0c:42:ba:da:54:32:e9:cb:3e:e0:15:70:4e:0d: 76:6f:9f:92:82:22:ea:bf:01:7c:d3:1d:84:dd:89: 67:96:24:75:53:f7:51:ca:1f:0b:5c:95:03:48:40: 8d:c5:02:ab:e5:05:4b:aa:fb:21:59:ec:22:c0:5a: dc:52:1a:db:f8:28:d5:fd:8a:85:ca:f1:6d:86:ea: 2a:67:ee:c4:8f:fd:d3:ff:6b:e5:f6:cb:48:40:e0: c4:b4:39:62:a7:bb:7a:5e:f0:c0:b0:3a:9f:78:10: e1:4c:f6:b1:97:24:27:c4:fc:0b:2f:d6:45:d8:ca: 10:09:ee:eb:29:52:99:ab:cd:3c:b2:8e:ac:aa:f6: 9d:55:b1:32:7d:8b:c8:78:1e:90:e1:ec:f8:08:f5: 4d:7f:fa:19:0a:13:5f:fe:63:2a:21:41:7b:20:7f: ad:19:e8:f2:4b:6a:41:57:0d:6c:65:1d:47:f4:4e: d8:4f:f8:a5:87:19:9c:fd:fa:5e:8c:43:b7:61:3f: a5:cc:5f:2b:d6:be:57:6f:c5:ea:56:ad:67:06:ab: 00:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:68:D1:2C:9B:AE:8E:EB:1A:34:C5:0C:FE:A0:0C:9D:67:E8:6E:0F X509v3 Authority Key Identifier: keyid:95:7E:50:A7:5F:BE:50:2F:38:E3:ED:BF:3F:4A:AA:E6:65:AE:14:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lX5Qp1--UC844-2_P0qq5mWuFIs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:65:b8:e8:fb:69:cb:16:4b:18:36:a1:bd:18:d8:66:bb:ee: 2b:b6:8d:0d:1e:08:5f:9b:28:55:23:4e:f6:b1:72:ff:f5:27: 77:b5:9d:27:bf:b7:61:dd:46:e7:9d:9c:65:42:5f:c0:11:45: c4:87:3c:9e:1c:ad:52:c0:7c:eb:69:b4:4c:c9:d8:6c:e9:3d: 03:14:6f:24:8f:28:66:12:90:f4:60:83:c5:e8:85:ea:9c:af: 03:13:a3:6e:26:bf:16:ac:70:1f:dc:6e:53:bf:1a:14:16:90: f4:bb:68:78:8f:c3:fd:e3:f9:39:80:cf:59:2c:f0:29:85:11: 53:63:94:a0:f1:a9:11:02:3c:34:2b:93:a5:93:a5:5c:9a:e7: 89:90:42:f1:45:62:03:ab:53:9a:91:d5:c6:ec:f6:13:6f:07: 2c:9c:dc:52:22:1e:19:c7:f4:79:a6:01:b8:f4:06:74:19:97: 9b:e8:08:ab:c0:89:44:75:bd:1d:fd:70:54:75:5b:64:ab:5e: b1:bc:2c:8c:d0:8f:67:d7:5a:1b:e5:20:f6:28:80:15:3f:88: 5c:84:27:36:fc:33:15:51:69:72:22:00:6f:9a:11:ee:1d:f8: e8:b7:15:cd:88:05:e0:f3:2e:df:43:17:f1:fa:1d:2c:57:ae: 21:84:d7:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBCMEUxMTAvBgNVBAUTKDk1N0U1MEE3NUZCRTUwMkYzOEUzRURCRjNGNEFBQUU2 NjVBRTE0OEIwHhcNMjUwNzAxMDcxMjIwWhcNMjUwNzA4MDcxMjIwWjAYMRYwFAYD VQQDEw02ODYzOGE1NC0zNDMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApx5fZKGyk6y52FNfHG43nPKN7mVPtW2/UnilmeX0Qj/HYlpebX+PjRfjUFPH DEK62lQy6cs+4BVwTg12b5+SgiLqvwF80x2E3YlnliR1U/dRyh8LXJUDSECNxQKr 5QVLqvshWewiwFrcUhrb+CjV/YqFyvFthuoqZ+7Ej/3T/2vl9stIQODEtDlip7t6 XvDAsDqfeBDhTPaxlyQnxPwLL9ZF2MoQCe7rKVKZq808so6sqvadVbEyfYvIeB6Q 4ez4CPVNf/oZChNf/mMqIUF7IH+tGejyS2pBVw1sZR1H9E7YT/ilhxmc/fpejEO3 YT+lzF8r1r5Xb8XqVq1nBqsAGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNBo0Syb ro7rGjTFDP6gDJ1n6G4PMB8GA1UdIwQYMBaAFJV+UKdfvlAvOOPtvz9KquZlrhSL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEIwRS80RTZDQjRGNjgw NjkxMUVGODg3QjcwM0NDNEY5QUUwMi9sWDVRcDEtLVVDODQ0LTJfUDBxcTVtV3VG SXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xYNVFwMS0tVUM4NDQtMl9QMHFxNW1XdUZJcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEIwRS80RTZDQjRGNjgwNjkxMUVGODg3QjcwM0NDNEY5QUUwMi9sWDVRcDEtLVVD ODQ0LTJfUDBxcTVtV3VGSXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaZbjo+2nLFksYNqG9GNhmu+4rto0NHghfmyhVI072sXL/9Sd3tZ0n v7dh3UbnnZxlQl/AEUXEhzyeHK1SwHzrabRMydhs6T0DFG8kjyhmEpD0YIPF6IXq nK8DE6NuJr8WrHAf3G5TvxoUFpD0u2h4j8P94/k5gM9ZLPAphRFTY5Sg8akRAjw0 K5Olk6VcmueJkELxRWIDq1OakdXG7PYTbwcsnNxSIh4Zx/R5pgG49AZ0GZeb6Air wIlEdb0d/XBUdVtkq16xvCyM0I9n11ob5SD2KIAVP4hchCc2/DMVUWlyIgBvmhHu HfjotxXNiAXg8y7fQxfx+h0sV64hhNeh -----END CERTIFICATE-----Generated at Wed Jul 2 15:47:36 2025 by rpki-client