$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/lTUaGSeo8Q660c48bEpaxGUVynA.mft File: lTUaGSeo8Q660c48bEpaxGUVynA.mft (raw, json) Hash identifier: a599vaBPS0UPMVBQTleWrsvjkdI7ah4dFuUS1I+KZXk= Subject key identifier: D0:67:75:09:7D:1A:9A:55:56:29:24:D4:F8:3C:35:77:44:24:E5:19 Authority key identifier: 95:35:1A:19:27:A8:F1:0E:BA:D1:CE:3C:6C:4A:5A:C4:65:15:CA:70 Certificate issuer: /CN=A91D4E15/serialNumber=95351A1927A8F10EBAD1CE3C6C4A5AC46515CA70 Certificate serial: 0197 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lTUaGSeo8Q660c48bEpaxGUVynA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/lTUaGSeo8Q660c48bEpaxGUVynA.mft Manifest number: 0193 Signing time: Thu 03 Jul 2025 03:33:26 +0000 Manifest this update: Thu 03 Jul 2025 03:33:26 +0000 Manifest next update: Thu 10 Jul 2025 03:33:26 +0000 Files and hashes: 1: lTUaGSeo8Q660c48bEpaxGUVynA.crl (hash: TGPd66NAJTn96gXNYOH2XHjVKVi4WfOElz08L7nRAIg=) 2: 90F09734F1B311EDA789BB57C4F9AE02.roa (hash: nQOUg9YX4u69ZrVdmC/H632YznQdnlGcTOZN3JI/5dE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/lTUaGSeo8Q660c48bEpaxGUVynA.crl rsync://rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/lTUaGSeo8Q660c48bEpaxGUVynA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lTUaGSeo8Q660c48bEpaxGUVynA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 407 (0x197) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4E15, serialNumber=95351A1927A8F10EBAD1CE3C6C4A5AC46515CA70 Validity Not Before: Jul 3 03:33:26 2025 GMT Not After : Jul 10 03:33:26 2025 GMT Subject: CN=6865fa06-8cda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:d6:51:ed:8d:0d:45:26:27:85:6c:b8:d1:a6: e7:59:ff:b9:85:8e:d2:76:3f:ae:7a:b9:84:be:0d: 39:93:64:96:07:02:a9:08:d6:b5:ab:dd:a9:72:25: 55:5b:1b:31:c2:a3:6d:2b:1a:26:06:0f:5f:48:64: ff:be:41:1c:82:1b:61:ef:23:33:be:9a:3d:c9:16: 76:fb:48:38:a5:dc:1a:c3:2d:10:7c:54:05:15:43: 0c:30:db:cd:c2:09:3c:34:c1:2a:3c:82:c7:dc:a4: 3a:97:1e:21:2d:4c:41:77:74:56:89:39:bb:e7:85: 37:e1:78:c8:4e:8e:fe:f7:42:16:62:f4:f1:27:f1: 54:d0:ff:41:ce:dc:88:b3:0d:e1:a5:28:04:ad:35: 45:6b:0d:19:d6:9e:00:41:80:b8:99:15:cd:ca:7a: 4b:86:3c:90:0c:3c:74:cc:7f:1d:73:72:73:f1:75: 36:79:b9:c5:da:60:b4:40:b1:fb:99:48:d5:33:9c: f3:b2:23:4d:0e:3f:1e:ca:46:dc:14:0b:d1:1a:f9: c6:a0:b3:c7:73:35:34:22:95:07:47:4b:fd:c6:90: 55:f9:2e:8a:f1:48:31:59:67:6c:30:6a:dd:b6:c9: 93:1c:14:00:02:c2:52:e4:2d:b9:77:91:33:e9:11: 40:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:67:75:09:7D:1A:9A:55:56:29:24:D4:F8:3C:35:77:44:24:E5:19 X509v3 Authority Key Identifier: keyid:95:35:1A:19:27:A8:F1:0E:BA:D1:CE:3C:6C:4A:5A:C4:65:15:CA:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/lTUaGSeo8Q660c48bEpaxGUVynA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lTUaGSeo8Q660c48bEpaxGUVynA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/lTUaGSeo8Q660c48bEpaxGUVynA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:b9:57:23:c9:17:21:26:b9:88:e8:dc:d7:0a:23:3b:b5:61: 53:16:af:8f:b1:7f:90:82:cf:53:c1:a0:5f:74:f7:04:11:a9: e5:1f:30:c0:52:94:f8:d7:98:d2:05:6a:b7:ed:9b:88:2b:6e: 72:2b:5f:02:b7:72:20:d3:8e:2e:92:9a:ae:3c:83:9a:4a:c0: 23:db:0d:e4:30:29:6b:ea:57:7b:5f:53:39:73:13:55:2e:0b: 5f:74:e5:f4:12:b4:7d:8e:48:ca:81:b0:7e:b3:a6:ae:f5:55: f6:35:d7:47:6d:8c:51:ec:49:86:66:1a:8f:44:ba:9a:04:01: 64:50:f4:7b:c8:9a:87:ce:5e:a8:5f:8f:5e:8e:db:d4:99:e8: 64:c0:20:be:8d:15:5b:bc:fd:d5:78:fe:be:20:6b:0d:19:cf: 6f:c8:f7:01:fc:3b:32:02:95:19:60:25:da:8d:01:ff:7b:51: 61:97:eb:94:dc:cb:99:04:50:93:a3:ee:f2:10:68:b6:61:39: ae:a3:67:80:9d:ed:0b:f2:a8:d6:bc:07:62:a8:f3:d3:8a:6e: 59:f5:8b:df:e0:db:83:fe:e1:0b:a6:59:e2:ee:55:b2:89:7d: 83:10:e6:01:0a:13:9b:da:1f:72:f6:1b:45:f3:1e:d1:1a:72: 91:10:05:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDRFMTUxMTAvBgNVBAUTKDk1MzUxQTE5MjdBOEYxMEVCQUQxQ0UzQzZDNEE1QUM0 NjUxNUNBNzAwHhcNMjUwNzAzMDMzMzI2WhcNMjUwNzEwMDMzMzI2WjAYMRYwFAYD VQQDEw02ODY1ZmEwNi04Y2RhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzdZR7Y0NRSYnhWy40abnWf+5hY7Sdj+uermEvg05k2SWBwKpCNa1q92pciVV WxsxwqNtKxomBg9fSGT/vkEcghth7yMzvpo9yRZ2+0g4pdwawy0QfFQFFUMMMNvN wgk8NMEqPILH3KQ6lx4hLUxBd3RWiTm754U34XjITo7+90IWYvTxJ/FU0P9BztyI sw3hpSgErTVFaw0Z1p4AQYC4mRXNynpLhjyQDDx0zH8dc3Jz8XU2ebnF2mC0QLH7 mUjVM5zzsiNNDj8eykbcFAvRGvnGoLPHczU0IpUHR0v9xpBV+S6K8UgxWWdsMGrd tsmTHBQAAsJS5C25d5Ez6RFAeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNBndQl9 GppVVikk1Pg8NXdEJOUZMB8GA1UdIwQYMBaAFJU1GhknqPEOutHOPGxKWsRlFcpw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEUxNS81RERCNDQ0MEYx QUMxMUVEQTNEMUI3NEZDNEY5QUUwMi9sVFVhR1NlbzhRNjYwYzQ4YkVwYXhHVVZ5 bkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xUVWFHU2VvOFE2NjBjNDhiRXBheEdVVnluQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEUxNS81RERCNDQ0MEYxQUMxMUVEQTNEMUI3NEZDNEY5QUUwMi9sVFVhR1NlbzhR NjYwYzQ4YkVwYXhHVVZ5bkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3uVcjyRchJrmI6NzXCiM7tWFTFq+PsX+Qgs9TwaBfdPcEEanlHzDA UpT415jSBWq37ZuIK25yK18Ct3Ig044ukpquPIOaSsAj2w3kMClr6ld7X1M5cxNV LgtfdOX0ErR9jkjKgbB+s6au9VX2NddHbYxR7EmGZhqPRLqaBAFkUPR7yJqHzl6o X49ejtvUmehkwCC+jRVbvP3VeP6+IGsNGc9vyPcB/DsyApUZYCXajQH/e1Fhl+uU 3MuZBFCTo+7yEGi2YTmuo2eAne0L8qjWvAdiqPPTim5Z9Yvf4NuD/uELplni7lWy iX2DEOYBChOb2h9y9htF8x7RGnKREAU7 -----END CERTIFICATE-----Generated at Thu Jul 3 08:09:00 2025 by rpki-client