$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/lTUaGSeo8Q660c48bEpaxGUVynA.mft File: lTUaGSeo8Q660c48bEpaxGUVynA.mft (raw, json) Hash identifier: 9pBoW0eVLbPFAygS3kUmG416zoQB67ihAZiSTrwbzsw= Subject key identifier: 99:30:6A:9F:7F:82:D2:1F:9A:35:EB:16:72:EA:2B:EE:A5:FA:86:7A Authority key identifier: 95:35:1A:19:27:A8:F1:0E:BA:D1:CE:3C:6C:4A:5A:C4:65:15:CA:70 Certificate issuer: /CN=A91D4E15/serialNumber=95351A1927A8F10EBAD1CE3C6C4A5AC46515CA70 Certificate serial: 01B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lTUaGSeo8Q660c48bEpaxGUVynA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/lTUaGSeo8Q660c48bEpaxGUVynA.mft Manifest number: 01AD Signing time: Sat 23 Aug 2025 03:18:25 +0000 Manifest this update: Sat 23 Aug 2025 03:18:25 +0000 Manifest next update: Sat 30 Aug 2025 03:18:25 +0000 Files and hashes: 1: lTUaGSeo8Q660c48bEpaxGUVynA.crl (hash: koz5jGNvqrHMyUOWlMDPq435oGenz91pZgL8dTuYyd8=) 2: 90F09734F1B311EDA789BB57C4F9AE02.roa (hash: nQOUg9YX4u69ZrVdmC/H632YznQdnlGcTOZN3JI/5dE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/lTUaGSeo8Q660c48bEpaxGUVynA.crl rsync://rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/lTUaGSeo8Q660c48bEpaxGUVynA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lTUaGSeo8Q660c48bEpaxGUVynA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:18:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 433 (0x1b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4E15, serialNumber=95351A1927A8F10EBAD1CE3C6C4A5AC46515CA70 Validity Not Before: Aug 23 03:18:25 2025 GMT Not After : Aug 30 03:18:25 2025 GMT Subject: CN=68a93301-bf3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:d3:27:38:7d:8d:25:96:cc:3e:db:ec:b1:a7: 5b:e3:6a:ed:de:69:40:c9:7b:98:83:20:36:c1:aa: 49:74:90:15:c2:43:33:4d:03:b3:e8:75:34:82:3e: 4e:51:4c:59:9d:38:34:9c:b8:74:9d:e0:22:da:ab: 3c:3e:e9:2b:9c:75:3f:e9:af:d9:1a:fa:8c:97:1d: af:c2:4e:ea:3d:0a:01:7b:e3:dc:be:90:1b:bc:78: 58:7d:13:c7:1f:2f:44:e9:08:e3:ea:1e:fb:4c:9d: 6b:f1:bc:f8:58:ad:5a:25:7b:fc:83:78:64:c7:2d: 82:53:3c:bd:ca:be:90:9d:41:be:1f:18:8c:f2:b5: 38:ab:f3:1e:1e:38:29:b1:ad:5c:a8:c8:9f:a4:a8: f0:60:1b:e8:4a:45:0c:6e:f9:d7:a1:f3:15:40:28: c5:06:81:88:03:c0:00:2e:86:03:0c:25:a6:fb:6c: 78:dc:56:da:d2:96:a0:2c:38:67:30:26:4f:9d:47: d3:7f:63:b6:a1:c9:44:dd:79:ee:2f:7c:38:a8:7f: 9d:b1:a1:42:ad:fe:63:86:c9:02:71:aa:be:6e:e7: 74:df:bb:f0:85:25:8a:53:87:f8:a1:41:cf:0a:f1: 0a:86:61:3f:7a:cb:40:4b:5a:77:9d:99:25:a1:62: f1:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:30:6A:9F:7F:82:D2:1F:9A:35:EB:16:72:EA:2B:EE:A5:FA:86:7A X509v3 Authority Key Identifier: keyid:95:35:1A:19:27:A8:F1:0E:BA:D1:CE:3C:6C:4A:5A:C4:65:15:CA:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/lTUaGSeo8Q660c48bEpaxGUVynA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lTUaGSeo8Q660c48bEpaxGUVynA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/lTUaGSeo8Q660c48bEpaxGUVynA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:48:df:5b:5d:3f:bc:e2:66:f8:a0:26:f9:a0:25:f1:48:08: 7a:16:eb:83:3f:ff:ef:9a:b1:a1:20:68:a6:59:a8:18:4b:8d: 56:89:bf:20:76:5e:c3:03:83:18:61:cd:e4:95:28:7c:1c:56: fa:0e:88:29:64:f0:46:2f:dd:a0:d1:f0:f4:92:94:be:f1:8b: 8a:8f:36:c0:bf:6d:d7:92:67:9e:92:69:d4:31:00:31:f5:d7: 9e:41:56:50:df:33:1f:f0:cf:a9:f1:e6:86:c9:1a:65:49:89: a3:2f:14:aa:2d:09:95:9c:98:16:1c:c9:05:21:13:cb:da:85: 40:bd:36:31:85:99:aa:57:06:f1:6e:21:17:e3:58:2f:c4:9e: cd:8c:5b:da:3c:54:dd:21:16:b8:a0:18:60:7d:e6:20:72:21: b9:68:a7:1a:e8:6b:35:1a:1e:37:53:42:b0:86:60:3f:78:9e: 0b:24:5b:cf:67:2b:a0:87:6d:65:a3:ab:53:d5:1e:85:99:01: 32:09:52:52:eb:55:7c:f6:c3:43:bb:b6:b3:88:83:b8:11:4a: f3:ac:77:d7:39:81:a6:ce:2d:d1:20:a8:52:d4:e7:e0:c0:55: b0:de:aa:ea:f8:5b:55:00:9e:60:9a:c1:c8:bf:2c:49:40:c2: f8:5f:00:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDRFMTUxMTAvBgNVBAUTKDk1MzUxQTE5MjdBOEYxMEVCQUQxQ0UzQzZDNEE1QUM0 NjUxNUNBNzAwHhcNMjUwODIzMDMxODI1WhcNMjUwODMwMDMxODI1WjAYMRYwFAYD VQQDEw02OGE5MzMwMS1iZjNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxNMnOH2NJZbMPtvssadb42rt3mlAyXuYgyA2wapJdJAVwkMzTQOz6HU0gj5O UUxZnTg0nLh0neAi2qs8PukrnHU/6a/ZGvqMlx2vwk7qPQoBe+PcvpAbvHhYfRPH Hy9E6Qjj6h77TJ1r8bz4WK1aJXv8g3hkxy2CUzy9yr6QnUG+HxiM8rU4q/MeHjgp sa1cqMifpKjwYBvoSkUMbvnXofMVQCjFBoGIA8AALoYDDCWm+2x43Fba0pagLDhn MCZPnUfTf2O2oclE3XnuL3w4qH+dsaFCrf5jhskCcaq+bud037vwhSWKU4f4oUHP CvEKhmE/estAS1p3nZkloWLx5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJkwap9/ gtIfmjXrFnLqK+6l+oZ6MB8GA1UdIwQYMBaAFJU1GhknqPEOutHOPGxKWsRlFcpw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEUxNS81RERCNDQ0MEYx QUMxMUVEQTNEMUI3NEZDNEY5QUUwMi9sVFVhR1NlbzhRNjYwYzQ4YkVwYXhHVVZ5 bkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xUVWFHU2VvOFE2NjBjNDhiRXBheEdVVnluQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEUxNS81RERCNDQ0MEYxQUMxMUVEQTNEMUI3NEZDNEY5QUUwMi9sVFVhR1NlbzhR NjYwYzQ4YkVwYXhHVVZ5bkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBISN9bXT+84mb4oCb5oCXxSAh6FuuDP//vmrGhIGimWagYS41Wib8g dl7DA4MYYc3klSh8HFb6DogpZPBGL92g0fD0kpS+8YuKjzbAv23XkmeekmnUMQAx 9deeQVZQ3zMf8M+p8eaGyRplSYmjLxSqLQmVnJgWHMkFIRPL2oVAvTYxhZmqVwbx biEX41gvxJ7NjFvaPFTdIRa4oBhgfeYgciG5aKca6Gs1Gh43U0KwhmA/eJ4LJFvP Zyugh21lo6tT1R6FmQEyCVJS61V89sNDu7aziIO4EUrzrHfXOYGmzi3RIKhS1Ofg wFWw3qrq+FtVAJ5gmsHIvyxJQML4XwBg -----END CERTIFICATE-----Generated at Sun Aug 24 05:02:35 2025 by rpki-client