$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0C8E/032E57B8743911ECB557236FC4F9AE02/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.mft File: lTXXYRCzwCnFhVtMF0UFr2EZ8ww.mft (raw, json) Hash identifier: jH4EnRFAUvckDDNQpBvEfGhRWhPtrxohD0OBCNxtJfI= Subject key identifier: CA:F1:FF:BC:B6:E2:C2:7A:32:FF:99:01:04:6A:1F:7D:61:36:2F:53 Authority key identifier: 95:35:D7:61:10:B3:C0:29:C5:85:5B:4C:17:45:05:AF:61:19:F3:0C Certificate issuer: /CN=A91D0C8E/serialNumber=9535D76110B3C029C5855B4C174505AF6119F30C Certificate serial: 0445 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0C8E/032E57B8743911ECB557236FC4F9AE02/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.mft Manifest number: 0425 Signing time: Thu 03 Jul 2025 00:43:48 +0000 Manifest this update: Thu 03 Jul 2025 00:43:48 +0000 Manifest next update: Thu 10 Jul 2025 00:43:48 +0000 Files and hashes: 1: lTXXYRCzwCnFhVtMF0UFr2EZ8ww.crl (hash: W/g1rObNnfOxB60etxWKSnSo5EcqTiFNV4mRRpWLuLA=) 2: A8827568116911EEBB241C32C4F9AE02.roa (hash: ePscgiftvgu3AgZJRcwiRUYhc5l5akEknNm+3bxCM0A=) 3: A6FA9A4A116911EEBB241C32C4F9AE02.roa (hash: RgkBiig85GBTWo6hrTV95O/BhHQIjrp9qKOVuIGC96Q=) 4: E248BDA63C5211EF94184A20C4F9AE02.roa (hash: uCKPAwy0X3Z4CL+hlBr0CZ+w6vMoqyCthCGEPEwyTxY=) 5: F4D295243FDA11EFAF5E676AC4F9AE02.roa (hash: 1RhS2h2tWn1m1rNY8jrx9gtNAHNEkDyNHgYU79X2jK0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0C8E/032E57B8743911ECB557236FC4F9AE02/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.crl rsync://rpki.apnic.net/member_repository/A91D0C8E/032E57B8743911ECB557236FC4F9AE02/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 00:43:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1093 (0x445) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0C8E, serialNumber=9535D76110B3C029C5855B4C174505AF6119F30C Validity Not Before: Jul 3 00:43:48 2025 GMT Not After : Jul 10 00:43:48 2025 GMT Subject: CN=6865d244-3e4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:44:8d:90:a0:d9:c5:a1:86:52:08:54:42:92: 97:23:aa:74:5d:cc:a3:c6:3b:94:b0:22:c0:03:7a: f7:dd:48:11:ff:db:5b:22:b1:f7:56:b2:58:0b:c5: cf:7f:0b:2b:c2:6b:5d:46:1b:c6:5e:b1:75:53:39: 2f:c2:a1:7b:90:ca:97:59:4a:63:95:fd:a0:94:35: 0f:11:4a:ee:89:b3:e0:a7:66:a0:98:94:da:6b:60: 11:0f:00:5d:51:d9:a6:81:f0:ba:0b:c9:68:f6:9e: 37:d6:c3:95:83:1f:41:fb:17:7a:88:10:c0:d0:73: d5:1e:db:48:28:c3:67:94:c7:d6:7f:16:4e:7d:f6: 67:2c:4e:40:c1:a3:b0:04:e3:32:21:a5:1d:c1:af: f9:f8:a1:ae:4e:fc:66:b6:27:1c:4c:d7:fb:c6:c8: 9f:2a:c8:fd:af:4a:b9:0b:ad:7c:bb:8f:08:db:59: 13:eb:21:99:66:91:f7:5b:2f:b5:ef:d6:67:d8:42: 84:dc:a1:e8:e6:77:72:d5:ee:e1:41:32:7f:2b:b3: 77:d2:46:40:23:c7:3c:6f:05:14:54:58:b8:60:ce: db:02:26:fd:21:1d:77:8d:c8:2f:0b:87:6e:6e:19: 8d:f1:ec:96:07:a1:c0:2f:b9:15:32:6f:a5:2a:4b: 7c:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:F1:FF:BC:B6:E2:C2:7A:32:FF:99:01:04:6A:1F:7D:61:36:2F:53 X509v3 Authority Key Identifier: keyid:95:35:D7:61:10:B3:C0:29:C5:85:5B:4C:17:45:05:AF:61:19:F3:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0C8E/032E57B8743911ECB557236FC4F9AE02/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0C8E/032E57B8743911ECB557236FC4F9AE02/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:d8:40:91:90:3d:7b:ac:50:fb:8b:2a:8f:ad:3e:c6:1c:d9: e9:d5:d8:7e:03:cc:88:c4:5c:b7:5c:72:cd:71:a3:fb:fe:83: 85:b6:46:3e:77:a9:44:33:42:a7:e2:3c:fb:d2:f7:18:1f:28: 20:15:1e:da:2f:df:f9:77:23:33:d4:da:e5:08:e9:4e:79:c4: 6a:b5:23:e6:a3:10:0c:e7:6b:3a:fe:5e:ce:c2:1f:2d:d7:66: 22:10:fa:ab:52:c3:ab:45:e1:4e:50:30:87:24:b8:71:38:af: 58:fe:a1:6e:e6:6b:c6:ac:5c:fd:a2:64:b5:1d:4e:db:ce:73: cf:30:e6:35:56:77:4d:6e:77:e5:c3:87:a0:90:ce:7b:9d:61: 01:54:00:28:85:55:09:34:3f:fa:f1:0c:7c:b1:1c:83:fb:34: fe:d3:45:5c:bb:eb:92:7b:ec:d7:c4:b3:24:bb:29:22:f2:54: 07:56:ef:e4:9f:64:da:ba:a7:a3:2f:33:cf:8b:8c:ce:86:ef: dd:6a:88:5b:fb:7a:fb:44:d4:16:70:af:df:39:43:10:ec:75: 7c:d9:11:b9:5f:8e:80:48:91:a5:e0:bf:ae:fb:50:30:4f:0d: 2c:e8:87:f1:52:5c:1c:9e:e1:26:bc:96:7b:95:5c:1b:27:8e: 6d:6d:55:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBDOEUxMTAvBgNVBAUTKDk1MzVENzYxMTBCM0MwMjlDNTg1NUI0QzE3NDUwNUFG NjExOUYzMEMwHhcNMjUwNzAzMDA0MzQ4WhcNMjUwNzEwMDA0MzQ4WjAYMRYwFAYD VQQDEw02ODY1ZDI0NC0zZTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt0SNkKDZxaGGUghUQpKXI6p0XcyjxjuUsCLAA3r33UgR/9tbIrH3VrJYC8XP fwsrwmtdRhvGXrF1UzkvwqF7kMqXWUpjlf2glDUPEUruibPgp2agmJTaa2ARDwBd UdmmgfC6C8lo9p431sOVgx9B+xd6iBDA0HPVHttIKMNnlMfWfxZOffZnLE5AwaOw BOMyIaUdwa/5+KGuTvxmticcTNf7xsifKsj9r0q5C618u48I21kT6yGZZpH3Wy+1 79Zn2EKE3KHo5ndy1e7hQTJ/K7N30kZAI8c8bwUUVFi4YM7bAib9IR13jcgvC4du bhmN8eyWB6HAL7kVMm+lKkt8GwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMrx/7y2 4sJ6Mv+ZAQRqH31hNi9TMB8GA1UdIwQYMBaAFJU112EQs8ApxYVbTBdFBa9hGfMM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEM4RS8wMzJFNTdCODc0 MzkxMUVDQjU1NzIzNkZDNEY5QUUwMi9sVFhYWVJDendDbkZoVnRNRjBVRnIyRVo4 d3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xUWFhZUkN6d0NuRmhWdE1GMFVGcjJFWjh3dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEM4RS8wMzJFNTdCODc0MzkxMUVDQjU1NzIzNkZDNEY5QUUwMi9sVFhYWVJDendD bkZoVnRNRjBVRnIyRVo4d3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAs2ECRkD17rFD7iyqPrT7GHNnp1dh+A8yIxFy3XHLNcaP7/oOFtkY+ d6lEM0Kn4jz70vcYHyggFR7aL9/5dyMz1NrlCOlOecRqtSPmoxAM52s6/l7Owh8t 12YiEPqrUsOrReFOUDCHJLhxOK9Y/qFu5mvGrFz9omS1HU7bznPPMOY1VndNbnfl w4egkM57nWEBVAAohVUJND/68Qx8sRyD+zT+00Vcu+uSe+zXxLMkuyki8lQHVu/k n2TauqejLzPPi4zOhu/daohb+3r7RNQWcK/fOUMQ7HV82RG5X46ASJGl4L+u+1Aw Tw0s6IfxUlwcnuEmvJZ7lVwbJ45tbVVT -----END CERTIFICATE-----Generated at Fri Jul 4 18:38:47 2025 by rpki-client