$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft File: lHy2dKhYzZGupVJro2aKEeSey5M.mft (raw, json) Hash identifier: yrAxeJBZMYoWc+IfIm5AnajHQDCJSqu/ZserSgQKOLg= Subject key identifier: A9:D7:16:D9:43:4E:61:63:23:6C:4B:84:3F:94:B1:06:D9:1D:D5:02 Authority key identifier: 94:7C:B6:74:A8:58:CD:91:AE:A5:52:6B:A3:66:8A:11:E4:9E:CB:93 Certificate issuer: /CN=A91DFC30/serialNumber=947CB674A858CD91AEA5526BA3668A11E49ECB93 Certificate serial: 040C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft Manifest number: 0403 Signing time: Sat 23 Aug 2025 00:42:34 +0000 Manifest this update: Sat 23 Aug 2025 00:42:34 +0000 Manifest next update: Sat 30 Aug 2025 00:42:34 +0000 Files and hashes: 1: lHy2dKhYzZGupVJro2aKEeSey5M.crl (hash: VhxAYqlS5gkWQDQOtvWSzc4m2v9M3095El4wB6JRl/c=) 2: 13F5D28685B111ECB675B552C4F9AE02.roa (hash: wg979tEV/edC9z/60lEEUA1wH6+Atveb0Z20mtMK9/g=) 3: 147D51CA85B111ECB675B552C4F9AE02.roa (hash: e9cwg8d7bC8r2DHgx/kL7/A4+KHztZ7rWF6Yv+XqYD8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.crl rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:42:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1036 (0x40c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFC30, serialNumber=947CB674A858CD91AEA5526BA3668A11E49ECB93 Validity Not Before: Aug 23 00:42:34 2025 GMT Not After : Aug 30 00:42:34 2025 GMT Subject: CN=68a90e7a-f831 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:94:0d:dc:3b:60:a1:15:b5:66:13:de:47:43: e2:8f:c3:7f:7a:97:fa:c5:8a:41:c3:1f:52:4a:76: 44:f1:18:36:a5:34:a0:c7:81:ae:00:72:01:06:11: 46:25:63:82:fc:fb:dd:a0:ef:e1:d7:f2:79:b6:ec: 5c:16:86:a9:6d:10:54:20:c6:b1:41:69:5f:aa:f6: 38:4a:08:f4:f5:68:cb:3a:45:69:3f:19:4a:d1:98: da:55:bd:4a:79:f0:8a:24:15:13:f3:58:20:e1:20: 3d:5a:82:bd:4f:41:fa:c9:24:f9:3d:b9:ce:91:ae: eb:06:4c:ef:1f:6b:02:f4:75:cf:3f:d1:1d:f1:28: 87:d8:fa:8c:e8:07:54:c0:43:42:73:2b:5e:48:43: 42:61:b5:f9:91:0c:2a:7c:e0:fe:30:7b:9c:97:a3: 9d:da:ac:d1:5a:ea:06:ae:0c:41:31:dc:0e:ae:2a: 56:34:8d:0e:00:33:7a:e0:cb:d4:55:76:79:4a:a5: 49:63:d4:7e:de:32:61:9a:52:ae:70:2c:5d:3d:32: cd:e3:83:7b:bd:16:d1:86:3c:c6:d9:64:3c:18:79: 02:36:cf:21:67:0b:65:bc:76:b9:4b:3f:82:8b:84: 52:1f:0c:56:b2:30:ce:cf:c4:09:40:4f:98:6f:f9: a5:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:D7:16:D9:43:4E:61:63:23:6C:4B:84:3F:94:B1:06:D9:1D:D5:02 X509v3 Authority Key Identifier: keyid:94:7C:B6:74:A8:58:CD:91:AE:A5:52:6B:A3:66:8A:11:E4:9E:CB:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:e3:1f:76:57:7b:b4:fe:67:ed:09:48:6c:ff:c4:26:b0:d8: 2d:55:d6:c2:86:bd:d5:bf:82:18:e9:59:4c:5d:01:2b:a0:fd: 63:ee:c6:5d:24:c0:47:b8:a1:d6:12:03:7f:fa:a6:3e:f8:f7: 0e:4c:c7:28:db:4a:67:aa:9c:7f:a7:aa:7f:22:ef:d4:51:1a: 8a:58:05:29:55:9b:e6:bd:a8:91:f2:81:fb:63:de:88:f8:76: e0:0b:62:eb:37:95:8e:8d:70:f7:06:ba:73:eb:4d:d7:98:52: f4:dd:57:24:28:6f:4d:a4:65:75:29:66:6f:b6:c6:9c:f8:19: d2:09:8b:f3:43:24:a2:ab:3c:b1:d6:38:ce:4b:d3:95:6a:83: 09:8a:23:f0:08:d2:7e:77:25:df:3c:22:06:1a:cf:c6:c1:54: 2b:d2:2d:95:3f:e6:fa:d1:49:9a:58:73:d7:19:75:81:74:69: d3:bd:c0:a1:8b:44:17:0d:8f:e2:4f:32:b7:d1:7c:48:17:41: 62:1b:19:64:3b:0a:1e:9d:30:19:07:d3:33:b5:4e:78:fc:59: ca:70:32:47:9b:53:4a:7c:50:ff:1e:39:be:a1:bd:1a:b6:ea: 40:c3:75:e3:63:1e:4d:90:86:f8:7c:88:3d:29:b6:2d:28:f7: 78:0f:80:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZDMzAxMTAvBgNVBAUTKDk0N0NCNjc0QTg1OENEOTFBRUE1NTI2QkEzNjY4QTEx RTQ5RUNCOTMwHhcNMjUwODIzMDA0MjM0WhcNMjUwODMwMDA0MjM0WjAYMRYwFAYD VQQDEw02OGE5MGU3YS1mODMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl5QN3DtgoRW1ZhPeR0Pij8N/epf6xYpBwx9SSnZE8Rg2pTSgx4GuAHIBBhFG JWOC/PvdoO/h1/J5tuxcFoapbRBUIMaxQWlfqvY4Sgj09WjLOkVpPxlK0ZjaVb1K efCKJBUT81gg4SA9WoK9T0H6yST5PbnOka7rBkzvH2sC9HXPP9Ed8SiH2PqM6AdU wENCcyteSENCYbX5kQwqfOD+MHucl6Od2qzRWuoGrgxBMdwOripWNI0OADN64MvU VXZ5SqVJY9R+3jJhmlKucCxdPTLN44N7vRbRhjzG2WQ8GHkCNs8hZwtlvHa5Sz+C i4RSHwxWsjDOz8QJQE+Yb/mlGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKnXFtlD TmFjI2xLhD+UsQbZHdUCMB8GA1UdIwQYMBaAFJR8tnSoWM2RrqVSa6NmihHknsuT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkMzMC8xMTJBRjFBQzg1 QUQxMUVDQjM2RjQxNERDNEY5QUUwMi9sSHkyZEtoWXpaR3VwVkpybzJhS0VlU2V5 NU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xIeTJkS2hZelpHdXBWSnJvMmFLRWVTZXk1TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RkMzMC8xMTJBRjFBQzg1QUQxMUVDQjM2RjQxNERDNEY5QUUwMi9sSHkyZEtoWXpa R3VwVkpybzJhS0VlU2V5NU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCD4x92V3u0/mftCUhs/8QmsNgtVdbChr3Vv4IY6VlMXQEroP1j7sZd JMBHuKHWEgN/+qY++PcOTMco20pnqpx/p6p/Iu/UURqKWAUpVZvmvaiR8oH7Y96I +HbgC2LrN5WOjXD3Brpz603XmFL03VckKG9NpGV1KWZvtsac+BnSCYvzQySiqzyx 1jjOS9OVaoMJiiPwCNJ+dyXfPCIGGs/GwVQr0i2VP+b60UmaWHPXGXWBdGnTvcCh i0QXDY/iTzK30XxIF0FiGxlkOwoenTAZB9MztU54/FnKcDJHm1NKfFD/Hjm+ob0a tupAw3XjYx5NkIb4fIg9KbYtKPd4D4Ds -----END CERTIFICATE-----Generated at Sat Aug 23 20:59:30 2025 by rpki-client