$ rpki-client -vvf rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft File: lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft (raw, json) Hash identifier: FyL8c8sOWzvwlR7ColUelcyH5usQ3rcVPjpEf8gFU2A= Subject key identifier: 82:E4:1B:04:2B:91:0C:18:94:3E:06:12:86:AB:C8:40:4F:34:F7:03 Authority key identifier: 94:70:E7:61:08:06:3E:4F:7C:64:AD:43:D0:76:BC:11:AE:1F:DB:5D Certificate issuer: /CN=A91E41C9/serialNumber=9470E76108063E4F7C64AD43D076BC11AE1FDB5D Certificate serial: 08AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHDnYQgGPk98ZK1D0Ha8Ea4f210.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft Manifest number: 08A9 Signing time: Fri 22 Aug 2025 20:39:37 +0000 Manifest this update: Fri 22 Aug 2025 20:39:36 +0000 Manifest next update: Fri 29 Aug 2025 20:39:36 +0000 Files and hashes: 1: lHDnYQgGPk98ZK1D0Ha8Ea4f210.crl (hash: 04jisWh7TYK/6fouC/lHxy+P9LUA98SsXS8khwR/DsA=) 2: 2C74B00CF70011EA8EFF4C67C4F9AE02.roa (hash: tCsERzsAtsk+5phQVU01aXCd1wv6EXGawIRg0i0oP6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.crl rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHDnYQgGPk98ZK1D0Ha8Ea4f210.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:39:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2223 (0x8af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E41C9, serialNumber=9470E76108063E4F7C64AD43D076BC11AE1FDB5D Validity Not Before: Aug 22 20:39:36 2025 GMT Not After : Aug 29 20:39:36 2025 GMT Subject: CN=68a8d588-fa84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:7b:10:1c:91:72:75:c6:f3:77:16:a1:e1:b8: ae:d8:ef:02:e4:0f:53:94:0d:f3:b5:90:2b:a2:4c: e1:c6:e7:29:45:65:4a:bc:2d:cd:ee:5a:e1:85:d8: 7e:46:ec:bd:c2:bd:cb:59:ad:41:02:b6:99:8f:50: 85:12:d3:cb:60:bc:e0:02:8e:b5:e6:46:3a:ce:e1: ab:ea:9c:4d:42:66:9f:9e:c4:5d:cd:58:89:ef:18: 2c:54:43:a8:d6:0c:3f:a5:5f:c1:76:f8:d5:31:53: 87:44:d4:60:e7:f3:b9:03:2a:a0:99:32:80:20:48: e8:43:3d:38:98:53:45:b0:37:ad:af:5e:5a:87:04: ac:21:9f:7f:ce:58:45:7c:fd:75:b9:b4:90:5b:b7: 49:0d:3d:83:09:f8:12:ac:4e:f6:1d:9c:64:42:dd: 9b:eb:c7:cf:c5:f7:e0:9e:e6:44:95:2b:a5:c3:71: 8b:61:8e:61:62:5e:88:f2:55:ff:be:cc:b8:cb:3d: ee:79:dd:87:f7:9f:e9:3f:da:c4:bf:4b:d6:4c:d4: 4d:66:6d:bc:e4:9c:a5:4a:9b:d1:dd:49:d5:c3:fe: bc:e2:63:d8:52:1b:db:9f:14:46:53:31:6b:d6:45: 6b:ba:cb:9c:28:11:fb:d5:35:dc:f7:ce:50:ae:7c: 39:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:E4:1B:04:2B:91:0C:18:94:3E:06:12:86:AB:C8:40:4F:34:F7:03 X509v3 Authority Key Identifier: keyid:94:70:E7:61:08:06:3E:4F:7C:64:AD:43:D0:76:BC:11:AE:1F:DB:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHDnYQgGPk98ZK1D0Ha8Ea4f210.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:a8:9d:af:2c:a1:56:e2:6e:44:85:e6:06:a4:a9:b3:f5:fb: e5:b8:69:4f:f8:45:af:bb:fd:1a:fe:26:e9:9f:43:2a:9a:80: 2c:fa:e8:c2:00:74:36:f9:ff:36:92:d0:7d:fb:bf:8f:b8:50: 7c:e1:5d:bd:f4:68:3c:7a:c6:27:2f:9c:c0:d6:00:53:90:9f: e8:73:fd:be:62:77:19:11:b3:e2:04:1a:eb:64:eb:bd:0b:d3: 8d:f5:da:c2:c5:00:48:3a:a6:79:6b:74:a5:e9:f0:78:ae:95: f1:da:c8:2c:60:72:18:f1:db:6e:01:fe:33:5c:94:cd:74:37: ed:2f:a7:1a:e7:24:fc:5f:11:85:2b:93:1e:73:ce:c3:1d:10: b8:87:7c:50:92:b4:6c:2a:ba:d4:ee:79:38:a3:2f:87:7a:53: ce:26:c8:2d:c1:cf:5e:56:32:9f:bf:d3:e0:e0:3c:e3:aa:11: 0d:e5:31:c9:71:e8:3b:a2:66:6a:2b:f2:ab:73:14:6f:cb:a5: 1e:df:4f:c8:2c:42:98:9c:2b:ae:c2:49:46:e2:28:1a:20:66: c2:0e:3c:d7:66:35:04:15:d2:d6:5b:28:aa:ab:0c:c4:d5:42: f2:76:f0:82:f6:b4:c7:6e:32:0b:25:74:40:8f:91:89:ea:5a: 78:2d:a7:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQxQzkxMTAvBgNVBAUTKDk0NzBFNzYxMDgwNjNFNEY3QzY0QUQ0M0QwNzZCQzEx QUUxRkRCNUQwHhcNMjUwODIyMjAzOTM2WhcNMjUwODI5MjAzOTM2WjAYMRYwFAYD VQQDEw02OGE4ZDU4OC1mYTg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApnsQHJFydcbzdxah4biu2O8C5A9TlA3ztZArokzhxucpRWVKvC3N7lrhhdh+ Ruy9wr3LWa1BAraZj1CFEtPLYLzgAo615kY6zuGr6pxNQmafnsRdzViJ7xgsVEOo 1gw/pV/BdvjVMVOHRNRg5/O5AyqgmTKAIEjoQz04mFNFsDetr15ahwSsIZ9/zlhF fP11ubSQW7dJDT2DCfgSrE72HZxkQt2b68fPxffgnuZElSulw3GLYY5hYl6I8lX/ vsy4yz3ued2H95/pP9rEv0vWTNRNZm285JylSpvR3UnVw/684mPYUhvbnxRGUzFr 1kVrusucKBH71TXc985Qrnw5nwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFILkGwQr kQwYlD4GEoaryEBPNPcDMB8GA1UdIwQYMBaAFJRw52EIBj5PfGStQ9B2vBGuH9td MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDFDOS80OUJEOURBNkMw RjgxMUVBOEFDNkM0NkNDNEY5QUUwMi9sSERuWVFnR1BrOThaSzFEMEhhOEVhNGYy MTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xIRG5ZUWdHUGs5OFpLMUQwSGE4RWE0ZjIxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDFDOS80OUJEOURBNkMwRjgxMUVBOEFDNkM0NkNDNEY5QUUwMi9sSERuWVFnR1Br OThaSzFEMEhhOEVhNGYyMTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQqJ2vLKFW4m5EheYGpKmz9fvluGlP+EWvu/0a/ibpn0MqmoAs+ujC AHQ2+f82ktB9+7+PuFB84V299Gg8esYnL5zA1gBTkJ/oc/2+YncZEbPiBBrrZOu9 C9ON9drCxQBIOqZ5a3Sl6fB4rpXx2sgsYHIY8dtuAf4zXJTNdDftL6ca5yT8XxGF K5Mec87DHRC4h3xQkrRsKrrU7nk4oy+HelPOJsgtwc9eVjKfv9Pg4DzjqhEN5THJ ceg7omZqK/KrcxRvy6Ue30/ILEKYnCuuwklG4igaIGbCDjzXZjUEFdLWWyiqqwzE 1ULydvCC9rTHbjILJXRAj5GJ6lp4Lae6 -----END CERTIFICATE-----Generated at Sun Aug 24 03:15:16 2025 by rpki-client