$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF8DB/6579378C993411E8A0373724C4F9AE02/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.mft File: l9KbDTJFW7XG8SV4X0D1vCcJ99Q.mft (raw, json) Hash identifier: 57EA1t/9r+zG0yy8bEv68b08ZOtYGaqYQxQMKj1GNFk= Subject key identifier: C3:16:12:39:BD:B9:5C:B3:26:82:A1:B0:9B:35:8F:16:12:14:9D:6B Authority key identifier: 97:D2:9B:0D:32:45:5B:B5:C6:F1:25:78:5F:40:F5:BC:27:09:F7:D4 Certificate issuer: /CN=A91DF8DB/serialNumber=97D29B0D32455BB5C6F125785F40F5BC2709F7D4 Certificate serial: 139A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF8DB/6579378C993411E8A0373724C4F9AE02/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.mft Manifest number: 1391 Signing time: Mon 30 Jun 2025 17:08:53 +0000 Manifest this update: Mon 30 Jun 2025 17:08:53 +0000 Manifest next update: Mon 07 Jul 2025 17:08:53 +0000 Files and hashes: 1: l9KbDTJFW7XG8SV4X0D1vCcJ99Q.crl (hash: q9JK+FMh81EKTc+HGXNJBm7uTtRnlUVT34VbFrJIgdg=) 2: A6C9934CA74111E88B3EAB2BC4F9AE02.roa (hash: Ps2kpMcHFW9xZn4cXtCxGzuJfkKA6kvJeaElditES+M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF8DB/6579378C993411E8A0373724C4F9AE02/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.crl rsync://rpki.apnic.net/member_repository/A91DF8DB/6579378C993411E8A0373724C4F9AE02/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 17:08:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5018 (0x139a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF8DB, serialNumber=97D29B0D32455BB5C6F125785F40F5BC2709F7D4 Validity Not Before: Jun 30 17:08:53 2025 GMT Not After : Jul 7 17:08:53 2025 GMT Subject: CN=6862c4a5-7671 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:dd:1a:7f:41:64:33:51:79:64:ba:4d:8a:6a: 61:6c:d7:95:5d:c7:7c:dc:a3:50:75:a0:2b:65:34: a7:f9:2f:e5:a1:39:1d:08:fc:df:7f:97:bc:a3:3e: 77:08:73:e3:bd:0f:69:69:b9:5c:ea:bd:24:e8:0b: 58:04:68:97:02:69:ef:f6:fa:dc:29:46:f2:e3:df: f0:e9:62:3e:be:b4:6f:f4:bb:d5:98:b9:5a:6e:f2: 65:1f:7c:32:d8:79:a0:2d:eb:55:d1:32:8c:72:72: 38:0c:b8:b0:d0:99:2b:8e:92:3d:d7:44:f9:06:d4: 71:f1:b0:fc:e9:b6:01:db:1f:02:a8:42:df:f2:55: 97:6d:5d:b4:ad:43:cc:4a:c4:00:9a:9e:4f:63:a1: c0:0a:36:f2:ca:85:87:4f:e4:d3:18:0d:9e:dc:f7: 37:9e:09:06:32:93:50:e8:36:82:1c:f8:08:ee:6d: 72:f6:ae:13:a5:21:28:7f:03:59:47:11:b4:38:53: 92:44:06:60:ba:6c:12:13:d7:2d:f3:7d:5a:49:79: 81:fe:4e:d8:e2:9a:d2:b5:8a:8a:7b:d1:1c:e9:c9: 5d:30:6b:8b:e7:9c:06:a4:f1:c5:42:2d:21:0a:5d: ab:aa:32:3e:cc:37:0b:f3:98:e4:82:5a:04:b5:f3: 36:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:16:12:39:BD:B9:5C:B3:26:82:A1:B0:9B:35:8F:16:12:14:9D:6B X509v3 Authority Key Identifier: keyid:97:D2:9B:0D:32:45:5B:B5:C6:F1:25:78:5F:40:F5:BC:27:09:F7:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF8DB/6579378C993411E8A0373724C4F9AE02/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF8DB/6579378C993411E8A0373724C4F9AE02/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:bb:60:10:f0:0f:db:4b:02:c7:bb:f9:f8:df:fa:dc:a7:86: ff:37:43:93:5c:73:1a:e0:7b:32:28:c9:06:ba:aa:fd:92:51: 4b:9e:38:34:0d:85:49:04:b8:78:98:1b:a9:3d:c1:cd:b4:27: d5:9b:c5:06:d1:f9:43:ea:ff:1c:39:52:8d:af:6f:2a:4d:3a: 32:30:17:6c:53:30:a7:0d:e8:6e:44:64:39:a6:ac:b8:8e:e5: cf:c9:14:dc:17:6d:91:8a:17:0a:5a:fe:4e:bc:1c:06:e4:35: df:b1:cf:e3:58:b4:cc:13:b6:73:34:a3:67:8e:45:90:19:62: d8:20:08:e6:6b:4e:93:e3:87:2d:dc:56:79:77:28:5d:f4:6c: cd:b6:bf:24:ee:96:31:81:26:46:f8:94:43:b3:53:b1:ff:6f: 11:0d:03:a1:e8:03:72:0c:24:7b:87:3e:d8:91:18:49:f4:6e: dc:0a:7d:57:68:31:fe:8d:bd:a8:c9:e9:71:1f:f8:e8:11:4b: 73:12:40:36:2c:ee:8b:b4:60:29:cb:19:ed:33:40:79:2a:05: 82:1d:69:bd:d2:23:7c:cd:91:1e:50:30:e3:42:a9:cd:08:f5: 6f:4a:5b:6e:4a:7b:64:58:f8:10:a2:f3:97:55:54:09:74:e6: f1:da:bd:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE5owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY4REIxMTAvBgNVBAUTKDk3RDI5QjBEMzI0NTVCQjVDNkYxMjU3ODVGNDBGNUJD MjcwOUY3RDQwHhcNMjUwNjMwMTcwODUzWhcNMjUwNzA3MTcwODUzWjAYMRYwFAYD VQQDEw02ODYyYzRhNS03NjcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwd0af0FkM1F5ZLpNimphbNeVXcd83KNQdaArZTSn+S/loTkdCPzff5e8oz53 CHPjvQ9pablc6r0k6AtYBGiXAmnv9vrcKUby49/w6WI+vrRv9LvVmLlabvJlH3wy 2HmgLetV0TKMcnI4DLiw0JkrjpI910T5BtRx8bD86bYB2x8CqELf8lWXbV20rUPM SsQAmp5PY6HACjbyyoWHT+TTGA2e3Pc3ngkGMpNQ6DaCHPgI7m1y9q4TpSEofwNZ RxG0OFOSRAZgumwSE9ct831aSXmB/k7Y4prStYqKe9Ec6cldMGuL55wGpPHFQi0h Cl2rqjI+zDcL85jkgloEtfM2rQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMMWEjm9 uVyzJoKhsJs1jxYSFJ1rMB8GA1UdIwQYMBaAFJfSmw0yRVu1xvEleF9A9bwnCffU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjhEQi82NTc5Mzc4Qzk5 MzQxMUU4QTAzNzM3MjRDNEY5QUUwMi9sOUtiRFRKRlc3WEc4U1Y0WDBEMXZDY0o5 OVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w5S2JEVEpGVzdYRzhTVjRYMEQxdkNjSjk5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjhEQi82NTc5Mzc4Qzk5MzQxMUU4QTAzNzM3MjRDNEY5QUUwMi9sOUtiRFRKRlc3 WEc4U1Y0WDBEMXZDY0o5OVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuu2AQ8A/bSwLHu/n43/rcp4b/N0OTXHMa4HsyKMkGuqr9klFLnjg0 DYVJBLh4mBupPcHNtCfVm8UG0flD6v8cOVKNr28qTToyMBdsUzCnDehuRGQ5pqy4 juXPyRTcF22RihcKWv5OvBwG5DXfsc/jWLTME7ZzNKNnjkWQGWLYIAjma06T44ct 3FZ5dyhd9GzNtr8k7pYxgSZG+JRDs1Ox/28RDQOh6ANyDCR7hz7YkRhJ9G7cCn1X aDH+jb2oyelxH/joEUtzEkA2LO6LtGApyxntM0B5KgWCHWm90iN8zZEeUDDjQqnN CPVvSltuSntkWPgQovOXVVQJdObx2r31 -----END CERTIFICATE-----Generated at Wed Jul 2 15:11:30 2025 by rpki-client