$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.mft File: lFlKrsbtZqaAoVv-tc2leC1MLYg.mft (raw, json) Hash identifier: ZA8HCieJlAXDkM+nS+yygve8xJeNamDU4FgfHTsecxs= Subject key identifier: 42:93:62:90:94:BA:BD:C6:D8:A2:6B:E0:77:63:57:DB:60:07:8B:20 Authority key identifier: 94:59:4A:AE:C6:ED:66:A6:80:A1:5B:FE:B5:CD:A5:78:2D:4C:2D:88 Certificate issuer: /CN=A91E2EF9/serialNumber=94594AAEC6ED66A680A15BFEB5CDA5782D4C2D88 Certificate serial: C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFlKrsbtZqaAoVv-tc2leC1MLYg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.mft Manifest number: C1 Signing time: Sat 23 Aug 2025 06:06:35 +0000 Manifest this update: Sat 23 Aug 2025 06:06:34 +0000 Manifest next update: Sat 30 Aug 2025 06:06:34 +0000 Files and hashes: 1: lFlKrsbtZqaAoVv-tc2leC1MLYg.crl (hash: bIW12/6HqRLP69NMJBQcK3cMJeLvVTmJWiCgsCnWQHg=) 2: D926DBDA605211EF90C2C621C4F9AE02.roa (hash: Cl2PJo7826qehYKKSG2/VdHV6kV/QSQl5KdRQS87oS0=) 3: E7C7DBF8A0E411EF98A7340EC4F9AE02.roa (hash: 7jEw+cOkWTAknu5PcBj2MNehVkDO0rbITl2EdNIaO7o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.crl rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFlKrsbtZqaAoVv-tc2leC1MLYg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:06:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 197 (0xc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2EF9, serialNumber=94594AAEC6ED66A680A15BFEB5CDA5782D4C2D88 Validity Not Before: Aug 23 06:06:34 2025 GMT Not After : Aug 30 06:06:34 2025 GMT Subject: CN=68a95a6b-5a67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:74:cc:54:fb:ba:d7:52:a6:34:91:e0:19:d0: 81:48:6f:dc:fd:90:5b:1f:74:da:99:8e:71:74:c3: 47:8b:92:ea:c8:a4:4e:b9:76:84:a9:81:73:c6:e5: bb:e6:51:54:a8:93:90:9e:34:da:95:dd:67:15:5c: c7:89:2e:25:f2:85:4a:bf:a9:52:9c:71:f8:1d:3e: 25:48:d6:22:34:3a:b6:41:66:1d:93:dc:77:e1:6b: 33:34:17:40:39:94:ac:ea:d3:c5:c6:9c:90:00:58: 6e:2e:a7:1a:1d:31:b2:88:a7:d6:cb:cd:35:5d:bc: 55:37:69:86:d5:4d:4d:74:cf:7a:41:bf:c4:bc:5e: 06:6c:bb:38:23:58:2e:9f:a7:1d:52:87:1d:1b:9c: 18:b7:0e:1a:c9:c8:22:4b:4d:f4:c0:21:26:9f:ce: c2:ff:bc:fc:bf:e8:18:b0:34:46:48:4e:e3:8a:a4: c5:fb:de:32:cb:c0:56:f1:6c:ea:77:b9:17:3d:54: f0:b9:fe:32:8e:6f:e0:46:11:20:65:8c:a1:df:51: ab:79:63:cb:c8:ea:e4:d0:d4:0e:ba:e5:ec:da:8c: d1:47:3e:f2:51:14:d5:76:1d:21:26:fa:4f:d9:90: ba:f1:63:7a:51:d4:84:3d:23:b5:e9:4e:c4:cc:ae: 02:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:93:62:90:94:BA:BD:C6:D8:A2:6B:E0:77:63:57:DB:60:07:8B:20 X509v3 Authority Key Identifier: keyid:94:59:4A:AE:C6:ED:66:A6:80:A1:5B:FE:B5:CD:A5:78:2D:4C:2D:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFlKrsbtZqaAoVv-tc2leC1MLYg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:59:9e:d5:0d:94:ab:0e:41:3c:0a:a6:2e:6e:c1:42:e9:54: 4a:7b:e6:95:60:1a:81:35:78:27:37:b4:a8:69:72:30:7b:58: cd:b5:60:46:e8:53:22:1f:d4:4d:25:c1:10:e4:dd:d8:f7:05: 5a:bb:4f:e1:60:5e:71:e5:03:4c:b9:47:18:59:ca:4e:5d:d2: 29:2b:1c:31:e8:bc:82:04:12:b2:b2:c5:52:6a:93:65:7f:b9: 46:e4:9c:2d:ac:fe:69:b0:1a:65:d8:0c:5e:14:e6:59:93:ec: b1:a6:33:9e:2a:f2:4f:36:92:1e:60:67:d9:19:8c:cc:b9:88: cd:dd:00:3e:3d:f5:8c:d0:a6:ea:03:0b:88:90:c0:b0:75:f0: 74:04:6f:1a:cb:05:03:cc:a5:0d:6e:2d:47:9b:d5:7d:48:25: 7d:7c:a2:0a:af:4b:0a:36:29:8c:e2:3a:aa:1c:60:b1:42:09: 8e:98:f9:98:37:9e:4e:81:fd:3c:70:1a:d4:cf:28:f6:99:74: b1:e0:40:0f:bb:7c:0a:c7:25:a2:2f:ef:ed:48:1e:e9:46:50: 17:4b:e1:9b:d5:be:11:d3:ec:31:c4:b8:ba:d1:8c:d1:2b:95: c5:07:7d:e6:c6:89:8c:db:94:1b:d5:d2:d1:e5:90:72:0c:bb: 6e:be:90:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJFRjkxMTAvBgNVBAUTKDk0NTk0QUFFQzZFRDY2QTY4MEExNUJGRUI1Q0RBNTc4 MkQ0QzJEODgwHhcNMjUwODIzMDYwNjM0WhcNMjUwODMwMDYwNjM0WjAYMRYwFAYD VQQDEw02OGE5NWE2Yi01YTY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtnTMVPu611KmNJHgGdCBSG/c/ZBbH3TamY5xdMNHi5LqyKROuXaEqYFzxuW7 5lFUqJOQnjTald1nFVzHiS4l8oVKv6lSnHH4HT4lSNYiNDq2QWYdk9x34WszNBdA OZSs6tPFxpyQAFhuLqcaHTGyiKfWy801XbxVN2mG1U1NdM96Qb/EvF4GbLs4I1gu n6cdUocdG5wYtw4aycgiS030wCEmn87C/7z8v+gYsDRGSE7jiqTF+94yy8BW8Wzq d7kXPVTwuf4yjm/gRhEgZYyh31GreWPLyOrk0NQOuuXs2ozRRz7yURTVdh0hJvpP 2ZC68WN6UdSEPSO16U7EzK4CtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEKTYpCU ur3G2KJr4HdjV9tgB4sgMB8GA1UdIwQYMBaAFJRZSq7G7WamgKFb/rXNpXgtTC2I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkVGOS84MDRENkJGMDYw NTIxMUVGQjI4NkZEMjBDNEY5QUUwMi9sRmxLcnNidFpxYUFvVnYtdGMybGVDMU1M WWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xGbEtyc2J0WnFhQW9Wdi10YzJsZUMxTUxZZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkVGOS84MDRENkJGMDYwNTIxMUVGQjI4NkZEMjBDNEY5QUUwMi9sRmxLcnNidFpx YUFvVnYtdGMybGVDMU1MWWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuWZ7VDZSrDkE8CqYubsFC6VRKe+aVYBqBNXgnN7SoaXIwe1jNtWBG 6FMiH9RNJcEQ5N3Y9wVau0/hYF5x5QNMuUcYWcpOXdIpKxwx6LyCBBKyssVSapNl f7lG5JwtrP5psBpl2AxeFOZZk+yxpjOeKvJPNpIeYGfZGYzMuYjN3QA+PfWM0Kbq AwuIkMCwdfB0BG8aywUDzKUNbi1Hm9V9SCV9fKIKr0sKNimM4jqqHGCxQgmOmPmY N55Ogf08cBrUzyj2mXSx4EAPu3wKxyWiL+/tSB7pRlAXS+Gb1b4R0+wxxLi60YzR K5XFB33mxomM25Qb1dLR5ZByDLtuvpBd -----END CERTIFICATE-----Generated at Sat Aug 23 17:08:11 2025 by rpki-client