$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft File: lpDF1gn85ELDW5kW1WP58Ye2itQ.mft (raw, json) Hash identifier: hEus6N0kD0rClFI8XbBZjGh7/pK1QmqVktOv58MiuHY= Subject key identifier: 7D:BA:D9:4F:C8:B3:B0:A8:C4:C2:30:D9:D8:B3:44:BC:49:90:31:0B Authority key identifier: 96:90:C5:D6:09:FC:E4:42:C3:5B:99:16:D5:63:F9:F1:87:B6:8A:D4 Certificate issuer: /CN=A91D8E2C/serialNumber=9690C5D609FCE442C35B9916D563F9F187B68AD4 Certificate serial: 0E4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft Manifest number: 0E45 Signing time: Fri 04 Jul 2025 18:04:36 +0000 Manifest this update: Fri 04 Jul 2025 18:04:35 +0000 Manifest next update: Fri 11 Jul 2025 18:04:35 +0000 Files and hashes: 1: lpDF1gn85ELDW5kW1WP58Ye2itQ.crl (hash: UIj50JU7wQRlc4pgYzYSpQ70+h/DixhuRUfIlyFPVjE=) 2: 6C153768CE5511EB9DD80C30C4F9AE02.roa (hash: 8FSx/7pmWfnqq5buFAKmXuNtb84bNl4hKWrDWfIfWSE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.crl rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3661 (0xe4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8E2C, serialNumber=9690C5D609FCE442C35B9916D563F9F187B68AD4 Validity Not Before: Jul 4 18:04:35 2025 GMT Not After : Jul 11 18:04:35 2025 GMT Subject: CN=686817b3-9088 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:b6:8e:34:5f:89:a1:ff:00:38:03:fa:4e:c4: fd:5f:66:93:d2:9d:0e:78:34:c6:35:dc:87:24:c6: 13:a5:d8:13:e9:3a:f3:9b:d8:14:c3:e3:f6:fd:c2: 54:e7:b5:0d:62:b4:ee:9c:18:60:c2:6c:57:81:d9: 6d:21:8d:36:f9:c2:0d:a3:7c:e4:64:99:51:d0:d5: 5a:c0:ac:8e:f5:c9:8b:49:78:03:c3:a1:c4:3e:f7: 9e:78:c6:09:3d:32:38:c3:0c:e7:c7:dd:91:df:4e: b3:ff:bc:b7:c6:c9:df:64:a1:c1:da:76:18:0e:c1: 2d:33:5c:d6:34:0c:14:26:8c:43:7b:f4:a2:04:aa: 12:61:55:4f:23:32:8b:c5:24:73:0c:e6:0d:62:34: c4:49:b7:71:a5:7a:fc:c5:fb:9f:ca:1e:7b:42:61: 5f:d0:d4:17:12:99:6f:a5:38:51:73:69:88:70:a7: 4b:d4:ce:4c:9e:04:74:fe:86:47:4b:14:c1:8a:0f: 4c:5d:78:5f:fb:03:5b:7b:34:f4:0b:48:1e:45:93: 41:e8:6e:b4:89:51:b7:1c:8b:10:81:cd:53:96:5c: 26:88:a1:bd:96:b2:82:f1:68:9b:e0:78:fb:f5:3a: 74:2a:f4:fc:20:a4:96:66:ce:56:ce:cc:26:e6:5d: 94:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:BA:D9:4F:C8:B3:B0:A8:C4:C2:30:D9:D8:B3:44:BC:49:90:31:0B X509v3 Authority Key Identifier: keyid:96:90:C5:D6:09:FC:E4:42:C3:5B:99:16:D5:63:F9:F1:87:B6:8A:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:47:e9:df:17:95:9c:05:40:e2:52:d8:f3:c7:68:ae:9d:35: b1:40:a7:2e:aa:4a:83:3c:ea:f5:0c:36:ce:c8:9a:9f:95:57: f1:d3:01:c9:36:b1:e0:62:8e:c7:8d:25:9c:48:21:16:af:59: 9e:02:5c:27:0e:51:5f:ba:ed:38:e4:c6:f4:65:3c:36:b0:53: fe:01:de:3f:c2:b4:b5:02:ff:99:71:68:db:74:7a:bd:70:7a: bf:25:cb:1e:9d:b7:36:d5:ac:81:41:a8:23:96:97:f8:d5:b9: 91:9c:39:cc:2e:ca:aa:b3:44:f3:9b:e4:a3:27:4b:44:91:74: 12:df:02:71:e8:ad:46:82:b9:f4:75:b4:1e:7e:c7:c6:33:73: 04:7e:93:76:60:7b:f0:a4:41:d2:22:ee:8e:b8:f2:52:23:04: 8e:8a:99:72:89:87:4f:79:52:ac:e1:d7:60:3e:62:63:c9:dd: b1:05:75:ca:a0:0f:4e:36:bc:df:51:c8:5e:c0:a8:aa:38:0c: db:b2:6c:29:54:74:a4:6c:ba:7c:e9:5d:17:e9:64:f8:ad:98: 71:f0:69:79:59:b5:aa:e6:68:31:35:31:67:13:75:cf:4c:06: a9:2e:47:cb:58:26:b3:90:61:f3:d1:d9:de:a5:7b:96:d2:2c: 3f:12:da:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDk0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhFMkMxMTAvBgNVBAUTKDk2OTBDNUQ2MDlGQ0U0NDJDMzVCOTkxNkQ1NjNGOUYx ODdCNjhBRDQwHhcNMjUwNzA0MTgwNDM1WhcNMjUwNzExMTgwNDM1WjAYMRYwFAYD VQQDEw02ODY4MTdiMy05MDg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2raONF+Jof8AOAP6TsT9X2aT0p0OeDTGNdyHJMYTpdgT6Trzm9gUw+P2/cJU 57UNYrTunBhgwmxXgdltIY02+cINo3zkZJlR0NVawKyO9cmLSXgDw6HEPveeeMYJ PTI4wwznx92R306z/7y3xsnfZKHB2nYYDsEtM1zWNAwUJoxDe/SiBKoSYVVPIzKL xSRzDOYNYjTESbdxpXr8xfufyh57QmFf0NQXEplvpThRc2mIcKdL1M5MngR0/oZH SxTBig9MXXhf+wNbezT0C0geRZNB6G60iVG3HIsQgc1TllwmiKG9lrKC8Wib4Hj7 9Tp0KvT8IKSWZs5Wzswm5l2UqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH262U/I s7CoxMIw2dizRLxJkDELMB8GA1UdIwQYMBaAFJaQxdYJ/ORCw1uZFtVj+fGHtorU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEUyQy8wRkUxRUQwNkEy RkIxMUU5QTUyNkE1N0VDNEY5QUUwMi9scERGMWduODVFTERXNWtXMVdQNThZZTJp dFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xwREYxZ244NUVMRFc1a1cxV1A1OFllMml0US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEUyQy8wRkUxRUQwNkEyRkIxMUU5QTUyNkE1N0VDNEY5QUUwMi9scERGMWduODVF TERXNWtXMVdQNThZZTJpdFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZR+nfF5WcBUDiUtjzx2iunTWxQKcuqkqDPOr1DDbOyJqflVfx0wHJ NrHgYo7HjSWcSCEWr1meAlwnDlFfuu045Mb0ZTw2sFP+Ad4/wrS1Av+ZcWjbdHq9 cHq/Jcsenbc21ayBQagjlpf41bmRnDnMLsqqs0Tzm+SjJ0tEkXQS3wJx6K1Ggrn0 dbQefsfGM3MEfpN2YHvwpEHSIu6OuPJSIwSOiplyiYdPeVKs4ddgPmJjyd2xBXXK oA9ONrzfUchewKiqOAzbsmwpVHSkbLp86V0X6WT4rZhx8Gl5WbWq5mgxNTFnE3XP TAapLkfLWCazkGHz0dnepXuW0iw/Etph -----END CERTIFICATE-----Generated at Sat Jul 5 01:26:01 2025 by rpki-client