$ rpki-client -vvf rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft File: lfCdXluLzW9LTWm1yTbJEvd9LP0.mft (raw, json) Hash identifier: Vkh2LQ9vIn1SP8w4+b1UhUyMCnW/H6xz6+c55pNFZcs= Subject key identifier: 36:F9:10:27:6B:CD:55:CE:74:08:3D:D5:D5:4D:51:1F:0F:A9:13:37 Authority key identifier: 95:F0:9D:5E:5B:8B:CD:6F:4B:4D:69:B5:C9:36:C9:12:F7:7D:2C:FD Certificate issuer: /CN=A91D44BE/serialNumber=95F09D5E5B8BCD6F4B4D69B5C936C912F77D2CFD Certificate serial: C1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lfCdXluLzW9LTWm1yTbJEvd9LP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft Manifest number: BD Signing time: Sat 23 Aug 2025 06:12:17 +0000 Manifest this update: Sat 23 Aug 2025 06:12:16 +0000 Manifest next update: Sat 30 Aug 2025 06:12:16 +0000 Files and hashes: 1: lfCdXluLzW9LTWm1yTbJEvd9LP0.crl (hash: hZb8QEkOFcy4s+O3S4xh5ifH2oJVySmBLViMZ4D8X+0=) 2: B23569E2756511EFB018F20DC4F9AE02.roa (hash: gjYfNXF3GpcKnZuP/+eurz+VLiW4skkCjGj8XhdhHuU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.crl rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lfCdXluLzW9LTWm1yTbJEvd9LP0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:12:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 193 (0xc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D44BE, serialNumber=95F09D5E5B8BCD6F4B4D69B5C936C912F77D2CFD Validity Not Before: Aug 23 06:12:16 2025 GMT Not After : Aug 30 06:12:16 2025 GMT Subject: CN=68a95bc1-9591 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:54:22:b0:9d:52:d4:8e:39:eb:34:fd:dc:b3: be:1e:95:4b:b8:57:c8:49:15:27:ea:c3:99:dc:a9: 70:d6:e6:d3:06:ba:4c:50:e0:3e:08:44:dd:5f:7c: f3:0e:ef:ec:fa:79:d6:16:95:41:57:77:7b:d9:26: bf:16:98:fb:e4:fa:cd:16:d7:90:61:db:48:8f:a0: 1b:49:87:d5:76:ed:66:fe:5e:38:c8:90:74:d8:59: c7:14:05:96:bb:90:89:26:1d:cf:a3:1f:04:db:84: cd:fd:dc:0d:47:49:a1:97:d7:94:45:70:21:23:f4: ac:be:de:dd:5f:1e:a8:10:84:a3:ad:0c:f6:c0:74: 56:f3:87:94:79:02:9d:fa:b5:df:7a:15:95:e4:03: 5e:37:4a:2e:5a:ba:f7:fc:de:1a:dc:fa:49:fa:d9: b6:75:4d:51:b9:d2:93:dc:bf:b4:9e:13:62:c0:4c: 52:22:3d:05:06:2d:38:f0:e5:ef:2e:9e:fb:c2:1e: be:1a:a1:4e:4e:f0:43:c2:f0:b6:55:34:95:77:35: 12:b0:eb:9b:e6:31:af:13:3e:68:5a:af:16:55:fd: 3c:9c:3c:f9:ea:79:ca:e3:a7:c8:61:77:44:4b:06: f5:70:07:11:00:a9:c0:78:cd:17:84:3d:a4:d0:d0: 2d:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:F9:10:27:6B:CD:55:CE:74:08:3D:D5:D5:4D:51:1F:0F:A9:13:37 X509v3 Authority Key Identifier: keyid:95:F0:9D:5E:5B:8B:CD:6F:4B:4D:69:B5:C9:36:C9:12:F7:7D:2C:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lfCdXluLzW9LTWm1yTbJEvd9LP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:65:f3:dd:4a:c8:71:15:f2:2b:f0:ea:03:3e:88:1a:36:4b: 86:f7:00:55:02:39:0d:93:2a:a2:1b:4b:ec:e9:01:08:db:0b: 05:e7:01:4e:45:a9:ad:72:ad:c4:35:26:ca:2c:5f:1c:78:62: 6b:9c:b7:ab:1c:70:d8:8a:cc:76:39:2d:ff:f9:60:ee:be:c0: a5:f6:25:2f:a2:e0:4a:8d:e4:5d:49:f2:eb:fa:4a:bc:31:1b: 71:53:57:61:34:ed:9b:23:2b:12:81:4f:4e:2a:3d:70:f7:34: 6d:32:96:e9:da:84:ec:83:79:11:6c:22:1d:15:49:eb:62:57: 29:20:f8:93:8e:8f:a2:3d:51:b3:35:c9:99:b8:a9:7e:7e:a5: 41:cb:8b:d2:9a:ef:50:7f:54:98:bd:31:4f:d4:20:7b:6e:0d: 7b:23:a7:82:ae:66:a6:90:14:20:94:b3:52:33:66:10:2b:ba: 85:7e:a6:01:61:b3:8b:75:5b:73:af:be:0f:f4:7c:83:5a:de: bc:4d:1a:1c:c6:6d:e4:ce:1c:ee:92:cd:ae:ed:2e:57:46:01: 20:9f:a7:2f:4c:b6:e1:96:5f:54:ce:fd:30:92:81:78:b4:8c: af:dd:f0:19:d4:f3:67:64:6f:9b:b1:5c:b6:36:03:fc:11:b1: ab:78:6f:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ0QkUxMTAvBgNVBAUTKDk1RjA5RDVFNUI4QkNENkY0QjRENjlCNUM5MzZDOTEy Rjc3RDJDRkQwHhcNMjUwODIzMDYxMjE2WhcNMjUwODMwMDYxMjE2WjAYMRYwFAYD VQQDEw02OGE5NWJjMS05NTkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl1QisJ1S1I456zT93LO+HpVLuFfISRUn6sOZ3Klw1ubTBrpMUOA+CETdX3zz Du/s+nnWFpVBV3d72Sa/Fpj75PrNFteQYdtIj6AbSYfVdu1m/l44yJB02FnHFAWW u5CJJh3Pox8E24TN/dwNR0mhl9eURXAhI/Ssvt7dXx6oEISjrQz2wHRW84eUeQKd +rXfehWV5ANeN0ouWrr3/N4a3PpJ+tm2dU1RudKT3L+0nhNiwExSIj0FBi048OXv Lp77wh6+GqFOTvBDwvC2VTSVdzUSsOub5jGvEz5oWq8WVf08nDz56nnK46fIYXdE Swb1cAcRAKnAeM0XhD2k0NAtWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDb5ECdr zVXOdAg91dVNUR8PqRM3MB8GA1UdIwQYMBaAFJXwnV5bi81vS01ptck2yRL3fSz9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDRCRS8wMjhBQkU0MjY5 MjIxMUVGQkY4N0JCMEVDNEY5QUUwMi9sZkNkWGx1THpXOUxUV20xeVRiSkV2ZDlM UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xmQ2RYbHVMelc5TFRXbTF5VGJKRXZkOUxQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDRCRS8wMjhBQkU0MjY5MjIxMUVGQkY4N0JCMEVDNEY5QUUwMi9sZkNkWGx1THpX OUxUV20xeVRiSkV2ZDlMUDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlZfPdSshxFfIr8OoDPogaNkuG9wBVAjkNkyqiG0vs6QEI2wsF5wFO Ramtcq3ENSbKLF8ceGJrnLerHHDYisx2OS3/+WDuvsCl9iUvouBKjeRdSfLr+kq8 MRtxU1dhNO2bIysSgU9OKj1w9zRtMpbp2oTsg3kRbCIdFUnrYlcpIPiTjo+iPVGz NcmZuKl+fqVBy4vSmu9Qf1SYvTFP1CB7bg17I6eCrmamkBQglLNSM2YQK7qFfqYB YbOLdVtzr74P9HyDWt68TRocxm3kzhzuks2u7S5XRgEgn6cvTLbhll9Uzv0wkoF4 tIyv3fAZ1PNnZG+bsVy2NgP8EbGreG+a -----END CERTIFICATE-----Generated at Sat Aug 23 19:12:06 2025 by rpki-client