$ rpki-client -vvf rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft File: lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft (raw, json) Hash identifier: +/NTxYhlwqYAgEt/xm5Jzy2MRe85/Qu802L2gXlQec8= Subject key identifier: D0:2E:37:09:7A:62:F9:AF:94:7E:85:19:D4:98:18:2D:7B:F2:48:D3 Authority key identifier: 94:70:E7:61:08:06:3E:4F:7C:64:AD:43:D0:76:BC:11:AE:1F:DB:5D Certificate issuer: /CN=A91E41C9/serialNumber=9470E76108063E4F7C64AD43D076BC11AE1FDB5D Certificate serial: 0895 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHDnYQgGPk98ZK1D0Ha8Ea4f210.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft Manifest number: 088F Signing time: Wed 02 Jul 2025 20:51:51 +0000 Manifest this update: Wed 02 Jul 2025 20:51:51 +0000 Manifest next update: Wed 09 Jul 2025 20:51:51 +0000 Files and hashes: 1: lHDnYQgGPk98ZK1D0Ha8Ea4f210.crl (hash: YnzflFmMM8qB02uPIc83zsgSbUQLErK5SrkGhy1um9I=) 2: 2C74B00CF70011EA8EFF4C67C4F9AE02.roa (hash: tCsERzsAtsk+5phQVU01aXCd1wv6EXGawIRg0i0oP6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.crl rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHDnYQgGPk98ZK1D0Ha8Ea4f210.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:51:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2197 (0x895) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E41C9, serialNumber=9470E76108063E4F7C64AD43D076BC11AE1FDB5D Validity Not Before: Jul 2 20:51:51 2025 GMT Not After : Jul 9 20:51:51 2025 GMT Subject: CN=68659be7-5e35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:3d:33:5b:5d:c3:1a:cd:15:04:21:c0:5e:af: 49:81:44:f6:61:d2:bd:7a:53:72:df:0e:57:ee:5e: 85:28:27:5f:47:25:d5:71:12:fc:94:fc:f5:3e:2c: 5f:85:be:cf:21:c1:26:be:eb:6c:73:2d:a2:6c:65: 2e:ed:6a:5d:3d:85:71:f7:7c:37:e2:82:f2:be:7e: 42:5c:e8:ae:1e:16:81:91:0d:52:6c:16:b6:09:5a: 2f:3a:2b:2b:00:2e:39:66:a0:52:e6:81:17:65:fe: 15:6a:20:17:ee:ee:2e:6c:31:93:25:21:ae:20:53: 02:a0:af:aa:3b:d2:23:fd:dc:da:4d:3d:4d:71:22: cb:38:37:84:81:d9:b5:93:63:63:92:39:77:27:c9: ee:13:ad:2e:b0:8c:aa:9f:30:df:ef:84:85:4c:96: 12:d4:52:d2:bb:90:57:c1:1c:07:ac:77:f8:e9:16: 08:65:7e:5e:3a:7a:a1:72:e1:f6:f7:cf:60:f9:df: c9:01:c1:4e:22:0c:4a:90:06:ca:3e:10:25:1f:02: f4:98:c3:af:1b:19:f3:4d:e0:9a:0e:57:32:29:40: 2b:4b:19:56:7a:8c:ce:2c:ff:f3:5c:f9:44:2d:44: dd:60:48:f5:38:b1:a3:44:e1:43:12:52:48:87:73: 3c:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:2E:37:09:7A:62:F9:AF:94:7E:85:19:D4:98:18:2D:7B:F2:48:D3 X509v3 Authority Key Identifier: keyid:94:70:E7:61:08:06:3E:4F:7C:64:AD:43:D0:76:BC:11:AE:1F:DB:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHDnYQgGPk98ZK1D0Ha8Ea4f210.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:be:f9:29:cc:ee:40:5c:47:8c:8d:bd:c1:27:52:98:0f:2d: 88:ef:64:3b:5d:66:00:ca:38:6a:0a:57:3d:ce:d8:b4:95:76: 17:ea:3c:92:84:0b:7a:43:bf:b5:19:70:f7:cc:12:5a:01:69: bf:2f:44:b2:96:58:83:57:d4:f2:7f:6b:77:28:b4:a2:e5:81: d2:0f:f0:5b:3b:96:d6:f8:18:c0:a3:f5:69:20:ee:6e:f1:dd: 48:72:32:52:20:3d:eb:fe:6f:f8:78:a4:62:81:24:69:8b:6c: 2a:ca:40:e6:7c:45:e4:af:5a:86:81:ca:a3:db:29:1b:10:2e: a5:cd:b2:fc:e8:b4:ec:f3:ed:05:af:f0:c2:d9:10:d2:33:15: 6a:54:31:2b:9c:ae:ef:ea:3a:4c:c2:82:dc:c5:8a:60:bf:ac: 9f:17:3e:35:31:d2:f9:ee:eb:32:10:c2:c6:15:69:85:6e:a1: 6b:fa:ab:a8:09:de:ea:5f:3b:d9:61:64:cc:b2:f8:fc:1d:4b: 29:1f:b8:27:8e:64:ce:d3:cf:82:15:da:7a:70:33:ce:bc:4b: e7:50:b3:8f:8d:25:71:52:07:cb:09:c2:a1:d8:56:96:27:87: 6f:9b:b1:5c:19:2b:b6:21:9c:5b:b0:ab:38:7e:5a:5a:20:2b: 30:b8:c3:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQxQzkxMTAvBgNVBAUTKDk0NzBFNzYxMDgwNjNFNEY3QzY0QUQ0M0QwNzZCQzEx QUUxRkRCNUQwHhcNMjUwNzAyMjA1MTUxWhcNMjUwNzA5MjA1MTUxWjAYMRYwFAYD VQQDEw02ODY1OWJlNy01ZTM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2T0zW13DGs0VBCHAXq9JgUT2YdK9elNy3w5X7l6FKCdfRyXVcRL8lPz1Pixf hb7PIcEmvutscy2ibGUu7WpdPYVx93w34oLyvn5CXOiuHhaBkQ1SbBa2CVovOisr AC45ZqBS5oEXZf4VaiAX7u4ubDGTJSGuIFMCoK+qO9Ij/dzaTT1NcSLLODeEgdm1 k2Njkjl3J8nuE60usIyqnzDf74SFTJYS1FLSu5BXwRwHrHf46RYIZX5eOnqhcuH2 989g+d/JAcFOIgxKkAbKPhAlHwL0mMOvGxnzTeCaDlcyKUArSxlWeozOLP/zXPlE LUTdYEj1OLGjROFDElJIh3M8AQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNAuNwl6 YvmvlH6FGdSYGC178kjTMB8GA1UdIwQYMBaAFJRw52EIBj5PfGStQ9B2vBGuH9td MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDFDOS80OUJEOURBNkMw RjgxMUVBOEFDNkM0NkNDNEY5QUUwMi9sSERuWVFnR1BrOThaSzFEMEhhOEVhNGYy MTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xIRG5ZUWdHUGs5OFpLMUQwSGE4RWE0ZjIxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDFDOS80OUJEOURBNkMwRjgxMUVBOEFDNkM0NkNDNEY5QUUwMi9sSERuWVFnR1Br OThaSzFEMEhhOEVhNGYyMTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRvvkpzO5AXEeMjb3BJ1KYDy2I72Q7XWYAyjhqClc9zti0lXYX6jyS hAt6Q7+1GXD3zBJaAWm/L0SylliDV9Tyf2t3KLSi5YHSD/BbO5bW+BjAo/VpIO5u 8d1IcjJSID3r/m/4eKRigSRpi2wqykDmfEXkr1qGgcqj2ykbEC6lzbL86LTs8+0F r/DC2RDSMxVqVDErnK7v6jpMwoLcxYpgv6yfFz41MdL57usyEMLGFWmFbqFr+quo Cd7qXzvZYWTMsvj8HUspH7gnjmTO08+CFdp6cDPOvEvnULOPjSVxUgfLCcKh2FaW J4dvm7FcGSu2IZxbsKs4flpaICswuMMq -----END CERTIFICATE-----Generated at Thu Jul 3 06:05:26 2025 by rpki-client