$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.mft File: L2rfQq_RZAgOox4PO4M4vtbaHlk.mft (raw, json) Hash identifier: sKfXRWsVVSt2ODXAz4Hq3J1YiqOF+eaKEcX8853JaTM= Subject key identifier: F5:28:44:8B:35:CC:23:2F:36:B0:BB:17:4B:CC:AD:EC:40:1A:23:1D Authority key identifier: 2F:6A:DF:42:AF:D1:64:08:0E:A3:1E:0F:3B:83:38:BE:D6:DA:1E:59 Certificate issuer: /CN=A91E7164/serialNumber=2F6ADF42AFD164080EA31E0F3B8338BED6DA1E59 Certificate serial: 09B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2rfQq_RZAgOox4PO4M4vtbaHlk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.mft Manifest number: 09AA Signing time: Wed 02 Jul 2025 20:16:34 +0000 Manifest this update: Wed 02 Jul 2025 20:16:34 +0000 Manifest next update: Wed 09 Jul 2025 20:16:34 +0000 Files and hashes: 1: L2rfQq_RZAgOox4PO4M4vtbaHlk.crl (hash: vPanpb9LXhxhm9kOn8WardgRVhhBzCIhEbOJW8c9vE0=) 2: F3173EDC898C11EA97286262C4F9AE02.roa (hash: 1ZtsZNF5jFsKlAT00IrDzQyZHeqFH7iBf+N8uJoqrEE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.crl rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2rfQq_RZAgOox4PO4M4vtbaHlk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:16:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2480 (0x9b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7164, serialNumber=2F6ADF42AFD164080EA31E0F3B8338BED6DA1E59 Validity Not Before: Jul 2 20:16:34 2025 GMT Not After : Jul 9 20:16:34 2025 GMT Subject: CN=686593a2-c7c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:01:18:a0:6f:58:39:d5:2e:26:1d:bc:b6:91: b8:ae:79:ad:9a:39:c8:3e:e3:af:1f:74:42:40:7d: 2b:33:04:68:d8:e3:76:85:7c:23:b1:f5:5d:7c:a4: 37:e9:5e:2e:52:6d:f7:93:0b:09:bc:1f:f8:6f:f5: 6f:e2:fb:52:89:f7:a1:18:f9:fe:e9:96:7e:6e:0c: 51:89:82:6a:2b:fc:07:ca:94:9e:fc:99:08:d3:43: c1:51:79:5e:aa:49:34:02:19:2f:38:0b:a7:1f:98: 84:7b:69:8a:bd:4b:69:a7:70:b2:ec:33:00:aa:51: 24:3f:77:4b:5d:49:4c:43:cc:c8:33:12:d2:64:c0: 9c:45:25:97:4b:cf:69:e8:b0:e1:0b:e6:7d:2b:c8: 50:29:5b:29:76:9e:c8:0d:00:a6:4e:cd:a4:4f:ad: e4:95:73:00:71:a0:37:11:a3:7a:d3:1b:6b:a0:fa: 1e:50:73:08:69:2a:05:3c:ac:6e:dc:58:d5:0f:c1: 99:43:2b:b5:1b:84:c4:21:2e:e7:30:83:09:0b:49: e0:e2:4e:1b:1e:a8:b9:3c:ad:82:0d:d2:aa:a8:cb: e4:4b:7a:99:52:cf:e3:82:16:22:9b:0b:34:1a:5f: 6e:78:5e:03:22:a7:f4:1f:3a:3a:4a:38:7f:cf:5a: 29:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:28:44:8B:35:CC:23:2F:36:B0:BB:17:4B:CC:AD:EC:40:1A:23:1D X509v3 Authority Key Identifier: keyid:2F:6A:DF:42:AF:D1:64:08:0E:A3:1E:0F:3B:83:38:BE:D6:DA:1E:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2rfQq_RZAgOox4PO4M4vtbaHlk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:af:3b:81:39:15:ca:24:b3:f5:f2:7e:aa:77:d2:da:78:66: dc:b0:a1:27:e8:be:bc:f3:2f:39:30:3c:89:ec:bb:eb:f4:3b: e8:1f:04:3e:43:36:1c:89:f9:d6:18:09:e7:c8:8c:33:bd:73: 52:1e:62:a0:78:21:ba:8d:24:4a:27:bc:4a:cd:ef:3f:59:87: 4f:dc:1d:e0:1e:b5:68:52:54:46:4a:5c:2b:d5:d8:00:c4:98: ab:20:c8:e4:57:3d:e8:66:c6:74:ae:a1:4c:7e:36:3a:7d:68: 7f:79:c7:2d:20:e6:09:f3:82:ab:0a:01:30:62:f9:fd:db:e4: 24:6c:d0:8a:70:00:77:67:95:e3:74:db:b1:d5:e1:ab:f5:10: 8e:9d:c8:10:e1:d9:4d:ca:48:99:a0:b2:9a:84:70:11:1d:56: 3b:3a:d2:7e:52:5f:75:bb:7c:a2:51:74:7c:61:d9:b8:96:72: f4:e3:15:ac:c8:77:61:b0:c1:16:3e:43:a2:da:d0:c7:02:3c: cc:9d:3d:39:30:f2:ae:67:1a:f4:07:a9:3c:2c:41:2e:07:a6: ff:64:60:15:9e:6b:a3:10:9d:55:65:3d:d8:ec:e8:99:c2:6e: 25:08:a3:3b:cc:5b:5f:6c:a5:87:fc:e4:59:9a:a4:e3:d8:87: 4d:af:1c:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCbAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTcxNjQxMTAvBgNVBAUTKDJGNkFERjQyQUZEMTY0MDgwRUEzMUUwRjNCODMzOEJF RDZEQTFFNTkwHhcNMjUwNzAyMjAxNjM0WhcNMjUwNzA5MjAxNjM0WjAYMRYwFAYD VQQDEw02ODY1OTNhMi1jN2M2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwAEYoG9YOdUuJh28tpG4rnmtmjnIPuOvH3RCQH0rMwRo2ON2hXwjsfVdfKQ3 6V4uUm33kwsJvB/4b/Vv4vtSifehGPn+6ZZ+bgxRiYJqK/wHypSe/JkI00PBUXle qkk0AhkvOAunH5iEe2mKvUtpp3Cy7DMAqlEkP3dLXUlMQ8zIMxLSZMCcRSWXS89p 6LDhC+Z9K8hQKVspdp7IDQCmTs2kT63klXMAcaA3EaN60xtroPoeUHMIaSoFPKxu 3FjVD8GZQyu1G4TEIS7nMIMJC0ng4k4bHqi5PK2CDdKqqMvkS3qZUs/jghYimws0 Gl9ueF4DIqf0Hzo6Sjh/z1opswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPUoRIs1 zCMvNrC7F0vMrexAGiMdMB8GA1UdIwQYMBaAFC9q30Kv0WQIDqMeDzuDOL7W2h5Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzE2NC8yMjhBQkY3NDg5 OEIxMUVBOTI3NTlBNUNDNEY5QUUwMi9MMnJmUXFfUlpBZ09veDRQTzRNNHZ0YmFI bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0wycmZRcV9SWkFnT294NFBPNE00dnRiYUhsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzE2NC8yMjhBQkY3NDg5OEIxMUVBOTI3NTlBNUNDNEY5QUUwMi9MMnJmUXFfUlpB Z09veDRQTzRNNHZ0YmFIbGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7rzuBORXKJLP18n6qd9LaeGbcsKEn6L688y85MDyJ7Lvr9DvoHwQ+ QzYcifnWGAnnyIwzvXNSHmKgeCG6jSRKJ7xKze8/WYdP3B3gHrVoUlRGSlwr1dgA xJirIMjkVz3oZsZ0rqFMfjY6fWh/ecctIOYJ84KrCgEwYvn92+QkbNCKcAB3Z5Xj dNux1eGr9RCOncgQ4dlNykiZoLKahHARHVY7OtJ+Ul91u3yiUXR8Ydm4lnL04xWs yHdhsMEWPkOi2tDHAjzMnT05MPKuZxr0B6k8LEEuB6b/ZGAVnmujEJ1VZT3Y7OiZ wm4lCKM7zFtfbKWH/ORZmqTj2IdNrxyh -----END CERTIFICATE-----Generated at Thu Jul 3 06:01:32 2025 by rpki-client