$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft File: lpDF1gn85ELDW5kW1WP58Ye2itQ.mft (raw, json) Hash identifier: 2czwW/7iozdCO17wjlZiJ/SEUK8ZjCrIbcB78VSnowM= Subject key identifier: B9:5C:F6:2E:76:F7:E4:79:11:9F:A1:48:80:29:E5:35:75:6F:36:66 Authority key identifier: 96:90:C5:D6:09:FC:E4:42:C3:5B:99:16:D5:63:F9:F1:87:B6:8A:D4 Certificate issuer: /CN=A91D8E2C/serialNumber=9690C5D609FCE442C35B9916D563F9F187B68AD4 Certificate serial: 0E69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft Manifest number: 0E60 Signing time: Fri 22 Aug 2025 17:51:46 +0000 Manifest this update: Fri 22 Aug 2025 17:51:46 +0000 Manifest next update: Fri 29 Aug 2025 17:51:46 +0000 Files and hashes: 1: lpDF1gn85ELDW5kW1WP58Ye2itQ.crl (hash: 7FHQnP2+QLoVoBFkMA92WGQDpYyEDKzwMJN14TcP9Qw=) 2: 6C153768CE5511EB9DD80C30C4F9AE02.roa (hash: FB/I0gTgEb20qtL8a4Y3PnJsdj8cSocHpg/e5FisnJk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.crl rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:51:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3689 (0xe69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8E2C, serialNumber=9690C5D609FCE442C35B9916D563F9F187B68AD4 Validity Not Before: Aug 22 17:51:46 2025 GMT Not After : Aug 29 17:51:46 2025 GMT Subject: CN=68a8ae32-f213 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:1d:b8:f8:ba:d3:9f:11:19:a1:62:7b:c7:f2: f1:46:30:69:6c:68:eb:1f:78:0b:52:c6:c5:b3:1f: ae:c2:81:f7:cc:9a:6b:0c:ee:a6:44:6f:a6:3b:76: b2:0a:85:71:c8:c3:f3:b6:94:b7:d5:42:b9:b7:71: dd:67:70:91:d1:93:f3:54:f0:00:0a:de:c2:a0:75: 8c:c5:61:8a:eb:f1:a1:50:86:ad:15:82:a4:e1:14: 7d:70:0f:e5:74:8d:ef:bc:5c:71:97:f2:5d:4a:6d: 16:df:64:76:9f:b7:80:0b:0e:a2:6f:c7:7c:63:04: 2b:8c:de:55:38:3f:8b:33:b4:32:21:7f:86:fd:66: bb:7e:c7:a1:09:04:f0:cc:70:ad:df:9e:db:06:5a: de:75:e0:0e:28:49:74:5b:df:c5:4a:e7:b7:83:c7: e3:49:f3:f7:6e:37:3e:e8:31:0a:fb:19:0b:26:84: 00:b5:cd:29:81:4a:39:37:3a:af:b4:0a:4b:a9:2f: 91:3a:15:69:f9:00:c3:80:21:b8:02:bf:27:68:56: 35:31:40:02:91:2a:0a:e4:e8:42:ff:be:8d:c5:5a: 9c:88:a7:c6:e3:76:78:c5:2c:a1:49:24:78:61:f9: 79:95:96:26:0e:f9:c9:0d:d0:d1:50:f1:54:13:78: 7a:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:5C:F6:2E:76:F7:E4:79:11:9F:A1:48:80:29:E5:35:75:6F:36:66 X509v3 Authority Key Identifier: keyid:96:90:C5:D6:09:FC:E4:42:C3:5B:99:16:D5:63:F9:F1:87:B6:8A:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:4c:37:f3:70:0c:5c:b8:b9:2b:84:17:dd:05:41:ef:10:8d: da:b4:ff:ef:60:a7:4e:2f:08:e2:c2:8a:ed:34:6d:c0:b1:49: 9d:74:e3:8b:39:0c:c2:49:e4:10:22:b6:fb:7b:28:97:bc:c2: b3:82:ff:0a:ea:1f:94:75:cc:00:86:5a:3a:5e:d3:22:11:d2: f9:16:fc:f0:fd:1b:ef:e9:23:be:89:45:85:0c:6c:16:78:c7: 9a:54:55:4a:9d:46:28:6c:0b:76:59:bf:da:a8:6f:99:f2:8b: 92:18:8c:f5:16:72:1e:9f:ef:06:40:d9:e6:ea:19:47:c5:81: e4:fa:be:f4:e2:d5:59:34:d0:24:f6:ba:74:7f:8b:61:18:75: 3c:6f:92:43:8e:14:88:b7:59:d4:cd:8a:07:42:de:de:19:9d: 06:74:cd:5a:e9:a8:00:ba:37:eb:ab:03:3a:21:36:a1:b1:80: ab:03:51:ce:91:a3:ec:cd:3f:4c:ae:6d:5c:31:c0:c6:91:64: df:36:1e:3b:8d:29:d3:77:37:62:b2:59:ad:26:74:9e:84:b3: 30:7b:0d:e3:31:63:62:4a:c5:31:32:5f:f7:e1:7e:9d:c2:8e: 3e:91:3a:94:f0:fa:b6:b9:d1:58:c3:40:02:63:42:b3:8f:f3: fc:24:5d:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDmkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhFMkMxMTAvBgNVBAUTKDk2OTBDNUQ2MDlGQ0U0NDJDMzVCOTkxNkQ1NjNGOUYx ODdCNjhBRDQwHhcNMjUwODIyMTc1MTQ2WhcNMjUwODI5MTc1MTQ2WjAYMRYwFAYD VQQDEw02OGE4YWUzMi1mMjEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnR24+LrTnxEZoWJ7x/LxRjBpbGjrH3gLUsbFsx+uwoH3zJprDO6mRG+mO3ay CoVxyMPztpS31UK5t3HdZ3CR0ZPzVPAACt7CoHWMxWGK6/GhUIatFYKk4RR9cA/l dI3vvFxxl/JdSm0W32R2n7eACw6ib8d8YwQrjN5VOD+LM7QyIX+G/Wa7fsehCQTw zHCt357bBlredeAOKEl0W9/FSue3g8fjSfP3bjc+6DEK+xkLJoQAtc0pgUo5Nzqv tApLqS+ROhVp+QDDgCG4Ar8naFY1MUACkSoK5OhC/76NxVqciKfG43Z4xSyhSSR4 Yfl5lZYmDvnJDdDRUPFUE3h6zQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLlc9i52 9+R5EZ+hSIAp5TV1bzZmMB8GA1UdIwQYMBaAFJaQxdYJ/ORCw1uZFtVj+fGHtorU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEUyQy8wRkUxRUQwNkEy RkIxMUU5QTUyNkE1N0VDNEY5QUUwMi9scERGMWduODVFTERXNWtXMVdQNThZZTJp dFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xwREYxZ244NUVMRFc1a1cxV1A1OFllMml0US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEUyQy8wRkUxRUQwNkEyRkIxMUU5QTUyNkE1N0VDNEY5QUUwMi9scERGMWduODVF TERXNWtXMVdQNThZZTJpdFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLTDfzcAxcuLkrhBfdBUHvEI3atP/vYKdOLwjiwortNG3AsUmddOOL OQzCSeQQIrb7eyiXvMKzgv8K6h+UdcwAhlo6XtMiEdL5Fvzw/Rvv6SO+iUWFDGwW eMeaVFVKnUYobAt2Wb/aqG+Z8ouSGIz1FnIen+8GQNnm6hlHxYHk+r704tVZNNAk 9rp0f4thGHU8b5JDjhSIt1nUzYoHQt7eGZ0GdM1a6agAujfrqwM6ITahsYCrA1HO kaPszT9Mrm1cMcDGkWTfNh47jSnTdzdislmtJnSehLMwew3jMWNiSsUxMl/34X6d wo4+kTqU8Pq2udFYw0ACY0Kzj/P8JF0z -----END CERTIFICATE-----Generated at Sat Aug 23 16:41:34 2025 by rpki-client