$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0C8E/032E57B8743911ECB557236FC4F9AE02/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.mft File: lTXXYRCzwCnFhVtMF0UFr2EZ8ww.mft (raw, json) Hash identifier: Y8K6pD+vHzsg2KOXNbkOlr0j+E8N4g+BfprQIBFDUS8= Subject key identifier: 74:A0:DE:38:F5:12:7E:F1:7F:7B:74:08:10:9C:DB:23:C4:79:80:7B Authority key identifier: 95:35:D7:61:10:B3:C0:29:C5:85:5B:4C:17:45:05:AF:61:19:F3:0C Certificate issuer: /CN=A91D0C8E/serialNumber=9535D76110B3C029C5855B4C174505AF6119F30C Certificate serial: 045F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0C8E/032E57B8743911ECB557236FC4F9AE02/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.mft Manifest number: 043F Signing time: Sat 23 Aug 2025 00:32:46 +0000 Manifest this update: Sat 23 Aug 2025 00:32:46 +0000 Manifest next update: Sat 30 Aug 2025 00:32:46 +0000 Files and hashes: 1: lTXXYRCzwCnFhVtMF0UFr2EZ8ww.crl (hash: qrUwUaFCxRpTIZHluAOEwU+rzwYpQxQuLy7u6fb32lM=) 2: A8827568116911EEBB241C32C4F9AE02.roa (hash: ePscgiftvgu3AgZJRcwiRUYhc5l5akEknNm+3bxCM0A=) 3: A6FA9A4A116911EEBB241C32C4F9AE02.roa (hash: RgkBiig85GBTWo6hrTV95O/BhHQIjrp9qKOVuIGC96Q=) 4: E248BDA63C5211EF94184A20C4F9AE02.roa (hash: uCKPAwy0X3Z4CL+hlBr0CZ+w6vMoqyCthCGEPEwyTxY=) 5: F4D295243FDA11EFAF5E676AC4F9AE02.roa (hash: 1RhS2h2tWn1m1rNY8jrx9gtNAHNEkDyNHgYU79X2jK0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0C8E/032E57B8743911ECB557236FC4F9AE02/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.crl rsync://rpki.apnic.net/member_repository/A91D0C8E/032E57B8743911ECB557236FC4F9AE02/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:32:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1119 (0x45f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0C8E, serialNumber=9535D76110B3C029C5855B4C174505AF6119F30C Validity Not Before: Aug 23 00:32:46 2025 GMT Not After : Aug 30 00:32:46 2025 GMT Subject: CN=68a90c2e-ae69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:8a:18:53:cb:49:63:a6:f2:60:a0:5f:d4:62: a9:be:fe:7b:6d:ee:58:01:b5:5c:0d:a9:a3:00:d3: 28:37:f7:07:fb:4e:ef:d7:fe:6f:35:07:df:b8:f8: 38:c2:77:4a:7d:f3:6f:68:e2:5c:cb:b9:1f:e0:c9: 19:3b:ce:8d:e3:2f:68:d5:a9:6c:17:8d:50:88:05: e7:17:90:67:a3:c9:54:08:69:db:63:49:1d:29:15: 28:96:9d:00:21:09:74:9b:f3:0c:bb:a1:93:79:b7: ac:4a:68:cc:39:41:54:3f:5d:a9:a8:b5:14:79:84: 34:25:52:b4:3d:16:01:39:70:b5:7f:6f:86:15:05: fc:8e:a9:d0:da:bc:62:c4:e0:e7:ad:ab:69:4e:56: 0d:1f:35:8b:b6:6f:18:95:e4:a0:3b:35:fb:b2:a7: 21:77:b4:8b:be:de:26:dd:70:2a:71:8e:73:5a:f1: ad:73:3d:d9:fe:21:ff:35:85:6b:61:09:00:3b:a0: 6a:12:0b:e4:07:94:bf:09:66:12:2c:6d:93:35:d5: 54:f1:78:b3:cb:2e:9e:df:a3:21:c0:6f:e5:3c:82: a5:90:dc:fc:04:26:1f:7e:2d:35:9d:1d:45:8f:58: 58:d2:26:8e:12:29:a7:90:9a:65:82:47:f0:65:91: ff:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:A0:DE:38:F5:12:7E:F1:7F:7B:74:08:10:9C:DB:23:C4:79:80:7B X509v3 Authority Key Identifier: keyid:95:35:D7:61:10:B3:C0:29:C5:85:5B:4C:17:45:05:AF:61:19:F3:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0C8E/032E57B8743911ECB557236FC4F9AE02/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0C8E/032E57B8743911ECB557236FC4F9AE02/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:69:37:07:c6:55:71:1d:22:a9:f3:0b:b2:02:a7:c2:5f:72: b3:97:ed:9b:a0:4e:53:54:9e:02:99:14:ed:c1:45:d5:ef:0c: 85:a3:07:b1:26:b0:2b:af:cd:78:21:ec:be:9a:d3:ce:11:00: ee:ce:da:7e:3f:47:5f:45:6c:6f:c7:76:d7:f1:4e:e3:2b:97: c9:61:74:78:81:b3:b0:6e:d2:01:13:d1:f3:ef:fc:32:a7:d7: a1:dd:48:bd:60:b9:7b:49:ff:1e:49:a0:77:75:f3:5f:8e:d2: a1:c8:9a:af:1d:b3:0a:53:d3:56:9b:8b:dc:83:54:52:e4:ee: be:60:7a:fd:fc:bb:86:c5:df:6e:c6:38:f8:19:e0:20:8a:66: 91:ac:d2:c3:f5:56:5e:4e:ec:f4:4b:2b:dd:74:42:5d:b0:3f: f2:b9:d1:a6:94:d6:47:13:89:11:82:70:3f:b8:9c:84:4b:24: 55:56:3e:6b:46:f4:4e:1c:e3:e7:cd:aa:ed:94:2e:f8:93:44: c3:a1:8c:de:cb:b2:8f:1d:87:2f:ac:56:1b:91:62:c0:00:67: 9c:20:6b:1e:be:5f:ff:37:a4:0f:d6:cf:c5:ad:a8:e2:9d:1f: 5c:cb:42:cd:14:6c:18:29:fa:05:78:d2:fd:63:56:bd:c1:84: a6:ab:04:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBF8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBDOEUxMTAvBgNVBAUTKDk1MzVENzYxMTBCM0MwMjlDNTg1NUI0QzE3NDUwNUFG NjExOUYzMEMwHhcNMjUwODIzMDAzMjQ2WhcNMjUwODMwMDAzMjQ2WjAYMRYwFAYD VQQDEw02OGE5MGMyZS1hZTY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoooYU8tJY6byYKBf1GKpvv57be5YAbVcDamjANMoN/cH+07v1/5vNQffuPg4 wndKffNvaOJcy7kf4MkZO86N4y9o1alsF41QiAXnF5Bno8lUCGnbY0kdKRUolp0A IQl0m/MMu6GTebesSmjMOUFUP12pqLUUeYQ0JVK0PRYBOXC1f2+GFQX8jqnQ2rxi xODnratpTlYNHzWLtm8YleSgOzX7sqchd7SLvt4m3XAqcY5zWvGtcz3Z/iH/NYVr YQkAO6BqEgvkB5S/CWYSLG2TNdVU8Xizyy6e36MhwG/lPIKlkNz8BCYffi01nR1F j1hY0iaOEimnkJplgkfwZZH/YQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHSg3jj1 En7xf3t0CBCc2yPEeYB7MB8GA1UdIwQYMBaAFJU112EQs8ApxYVbTBdFBa9hGfMM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEM4RS8wMzJFNTdCODc0 MzkxMUVDQjU1NzIzNkZDNEY5QUUwMi9sVFhYWVJDendDbkZoVnRNRjBVRnIyRVo4 d3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xUWFhZUkN6d0NuRmhWdE1GMFVGcjJFWjh3dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEM4RS8wMzJFNTdCODc0MzkxMUVDQjU1NzIzNkZDNEY5QUUwMi9sVFhYWVJDendD bkZoVnRNRjBVRnIyRVo4d3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfaTcHxlVxHSKp8wuyAqfCX3Kzl+2boE5TVJ4CmRTtwUXV7wyFowex JrArr814Iey+mtPOEQDuztp+P0dfRWxvx3bX8U7jK5fJYXR4gbOwbtIBE9Hz7/wy p9eh3Ui9YLl7Sf8eSaB3dfNfjtKhyJqvHbMKU9NWm4vcg1RS5O6+YHr9/LuGxd9u xjj4GeAgimaRrNLD9VZeTuz0SyvddEJdsD/yudGmlNZHE4kRgnA/uJyESyRVVj5r RvROHOPnzartlC74k0TDoYzey7KPHYcvrFYbkWLAAGecIGsevl//N6QP1s/Fraji nR9cy0LNFGwYKfoFeNL9Y1a9wYSmqwRP -----END CERTIFICATE-----Generated at Sun Aug 24 03:35:18 2025 by rpki-client