$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5A9F/6736F334E33A11E886117780C4F9AE02/lQJWKPFDQQRhRqwgujJGFEYanMM.mft File: lQJWKPFDQQRhRqwgujJGFEYanMM.mft (raw, json) Hash identifier: 3ZC8xpVhgNGX15dIiBPQeNjX4JQqg4nNdjgQwMsu9tQ= Subject key identifier: D9:F6:19:A1:25:A2:46:15:68:10:63:A3:17:4C:89:81:F7:F1:2B:A9 Authority key identifier: 95:02:56:28:F1:43:41:04:61:46:AC:20:BA:32:46:14:46:1A:9C:C3 Certificate issuer: /CN=A91E5A9F/serialNumber=95025628F14341046146AC20BA324614461A9CC3 Certificate serial: 06AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQJWKPFDQQRhRqwgujJGFEYanMM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5A9F/6736F334E33A11E886117780C4F9AE02/lQJWKPFDQQRhRqwgujJGFEYanMM.mft Manifest number: 11ED Signing time: Fri 22 Aug 2025 17:15:53 +0000 Manifest this update: Fri 22 Aug 2025 17:15:53 +0000 Manifest next update: Fri 29 Aug 2025 17:15:53 +0000 Files and hashes: 1: lQJWKPFDQQRhRqwgujJGFEYanMM.crl (hash: NmRERo9Q0kg2mjjUUJXOtI5XfjqXrz8BNe4xeQJvfCk=) 2: E4BB55347C4E11EBB889AF7EC4F9AE02.roa (hash: j4Rp5D2+LCtQywvaF1YDJd+cLnUdbw+y2x0d8ZW0p8Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5A9F/6736F334E33A11E886117780C4F9AE02/lQJWKPFDQQRhRqwgujJGFEYanMM.crl rsync://rpki.apnic.net/member_repository/A91E5A9F/6736F334E33A11E886117780C4F9AE02/lQJWKPFDQQRhRqwgujJGFEYanMM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQJWKPFDQQRhRqwgujJGFEYanMM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:15:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1707 (0x6ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5A9F, serialNumber=95025628F14341046146AC20BA324614461A9CC3 Validity Not Before: Aug 22 17:15:53 2025 GMT Not After : Aug 29 17:15:53 2025 GMT Subject: CN=68a8a5c9-5216 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:fa:8a:2d:1a:9c:dd:9c:b4:91:0a:df:10:ca: e3:c5:86:d0:c0:53:74:4b:4a:f6:9e:5f:01:7e:49: 22:fb:9a:a2:22:3f:7b:ae:eb:b8:9e:52:ac:14:ee: ac:7a:0f:ee:62:75:4b:0a:78:d7:18:95:cb:c4:74: a1:00:06:f7:d1:38:02:fd:13:01:83:5c:16:81:9b: 2c:d2:43:c8:45:f0:e7:29:3e:56:2c:9e:41:21:bd: e0:d3:49:93:aa:99:2c:97:1a:a5:91:4c:b8:23:db: e2:08:ac:67:3d:cb:d4:25:bf:28:b6:51:8a:cd:76: 95:48:66:48:14:88:3f:00:e3:b4:de:26:49:ab:0c: 77:f9:5c:a6:58:b9:9d:29:69:60:47:58:a8:43:a4: ee:f9:16:a9:82:e2:78:1c:1e:d5:cc:17:ce:44:9a: 55:3c:6c:91:8b:6d:03:49:c5:c0:87:17:85:6f:94: 78:9c:ab:70:62:81:35:43:f4:c0:56:af:13:ff:49: ea:aa:52:15:cc:02:99:39:0c:b9:2a:bb:73:e1:19: db:71:5a:74:87:a5:18:cc:a0:54:14:75:68:e8:63: d7:38:03:ee:50:39:e1:25:3e:1c:8e:54:a6:cb:43: bd:99:83:52:31:61:35:3a:87:08:1d:9a:11:9f:07: 45:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:F6:19:A1:25:A2:46:15:68:10:63:A3:17:4C:89:81:F7:F1:2B:A9 X509v3 Authority Key Identifier: keyid:95:02:56:28:F1:43:41:04:61:46:AC:20:BA:32:46:14:46:1A:9C:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5A9F/6736F334E33A11E886117780C4F9AE02/lQJWKPFDQQRhRqwgujJGFEYanMM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQJWKPFDQQRhRqwgujJGFEYanMM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5A9F/6736F334E33A11E886117780C4F9AE02/lQJWKPFDQQRhRqwgujJGFEYanMM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:4d:7b:f0:35:90:97:cf:14:08:b6:7f:2e:17:b2:45:a3:f6: ec:e6:98:18:9a:f4:f6:84:a1:55:94:1e:11:2b:8d:f3:fd:87: 87:73:53:01:94:01:b1:a6:6b:a5:6a:b5:32:16:4b:95:d9:31: 07:82:9f:70:13:05:4c:fd:a9:69:e0:12:ed:82:cd:80:e3:76: 7f:c8:bc:41:3d:35:7d:7e:ef:37:dc:1e:ef:c8:ec:5b:9b:05: d5:8d:02:76:66:dd:e4:21:26:27:5f:04:aa:dd:57:85:8b:72: a1:02:c1:94:f8:35:98:14:ca:f6:54:87:39:f1:33:fc:d5:56: 0a:c8:06:fd:03:5e:c8:37:bb:d4:58:bf:66:e9:a4:f9:50:45: 90:3c:0a:86:17:65:f6:e7:0a:26:6f:75:c9:30:60:64:29:29: 1c:c0:d0:31:77:8e:53:42:a0:d4:59:b1:1a:af:9d:c6:df:9c: f5:e3:95:0e:70:1a:36:c9:81:d6:70:c1:00:a0:1e:34:4e:bf: be:68:5a:f1:6e:98:5a:ad:82:50:dd:61:53:da:93:ad:95:70: c0:89:a8:8d:20:66:80:b8:fa:8d:0e:b3:b2:14:0a:0f:8e:87: 8c:db:df:11:9d:40:1e:3a:12:7b:92:2e:b6:09:4b:44:c6:1f: ee:88:09:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVBOUYxMTAvBgNVBAUTKDk1MDI1NjI4RjE0MzQxMDQ2MTQ2QUMyMEJBMzI0NjE0 NDYxQTlDQzMwHhcNMjUwODIyMTcxNTUzWhcNMjUwODI5MTcxNTUzWjAYMRYwFAYD VQQDEw02OGE4YTVjOS01MjE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5vqKLRqc3Zy0kQrfEMrjxYbQwFN0S0r2nl8Bfkki+5qiIj97ruu4nlKsFO6s eg/uYnVLCnjXGJXLxHShAAb30TgC/RMBg1wWgZss0kPIRfDnKT5WLJ5BIb3g00mT qpkslxqlkUy4I9viCKxnPcvUJb8otlGKzXaVSGZIFIg/AOO03iZJqwx3+VymWLmd KWlgR1ioQ6Tu+RapguJ4HB7VzBfORJpVPGyRi20DScXAhxeFb5R4nKtwYoE1Q/TA Vq8T/0nqqlIVzAKZOQy5Krtz4RnbcVp0h6UYzKBUFHVo6GPXOAPuUDnhJT4cjlSm y0O9mYNSMWE1OocIHZoRnwdF2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNn2GaEl okYVaBBjoxdMiYH38SupMB8GA1UdIwQYMBaAFJUCVijxQ0EEYUasILoyRhRGGpzD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUE5Ri82NzM2RjMzNEUz M0ExMUU4ODYxMTc3ODBDNEY5QUUwMi9sUUpXS1BGRFFRUmhScXdndWpKR0ZFWWFu TU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xRSldLUEZEUVFSaFJxd2d1akpHRkVZYW5NTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUE5Ri82NzM2RjMzNEUzM0ExMUU4ODYxMTc3ODBDNEY5QUUwMi9sUUpXS1BGRFFR UmhScXdndWpKR0ZFWWFuTU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJTXvwNZCXzxQItn8uF7JFo/bs5pgYmvT2hKFVlB4RK43z/YeHc1MB lAGxpmularUyFkuV2TEHgp9wEwVM/alp4BLtgs2A43Z/yLxBPTV9fu833B7vyOxb mwXVjQJ2Zt3kISYnXwSq3VeFi3KhAsGU+DWYFMr2VIc58TP81VYKyAb9A17IN7vU WL9m6aT5UEWQPAqGF2X25womb3XJMGBkKSkcwNAxd45TQqDUWbEar53G35z145UO cBo2yYHWcMEAoB40Tr++aFrxbpharYJQ3WFT2pOtlXDAiaiNIGaAuPqNDrOyFAoP joeM298RnUAeOhJ7ki62CUtExh/uiAns -----END CERTIFICATE-----Generated at Sat Aug 23 17:37:00 2025 by rpki-client