$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.mft File: L2rfQq_RZAgOox4PO4M4vtbaHlk.mft (raw, json) Hash identifier: zEJkMJj89fsjseKLBXglKvxY4H/45p2fZSVmz217aYo= Subject key identifier: C9:E5:50:69:34:42:09:B3:DC:F0:C1:AC:B0:E7:98:47:4B:BE:2D:77 Authority key identifier: 2F:6A:DF:42:AF:D1:64:08:0E:A3:1E:0F:3B:83:38:BE:D6:DA:1E:59 Certificate issuer: /CN=A91E7164/serialNumber=2F6ADF42AFD164080EA31E0F3B8338BED6DA1E59 Certificate serial: 09CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2rfQq_RZAgOox4PO4M4vtbaHlk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.mft Manifest number: 09C4 Signing time: Fri 22 Aug 2025 20:06:54 +0000 Manifest this update: Fri 22 Aug 2025 20:06:54 +0000 Manifest next update: Fri 29 Aug 2025 20:06:54 +0000 Files and hashes: 1: L2rfQq_RZAgOox4PO4M4vtbaHlk.crl (hash: MW3vZjnd+lUsRgiTpzVySLBA/cbnfVLVtkyA0PkfqCQ=) 2: F3173EDC898C11EA97286262C4F9AE02.roa (hash: 1ZtsZNF5jFsKlAT00IrDzQyZHeqFH7iBf+N8uJoqrEE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.crl rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2rfQq_RZAgOox4PO4M4vtbaHlk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:06:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2506 (0x9ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7164, serialNumber=2F6ADF42AFD164080EA31E0F3B8338BED6DA1E59 Validity Not Before: Aug 22 20:06:54 2025 GMT Not After : Aug 29 20:06:54 2025 GMT Subject: CN=68a8cdde-e5dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:c1:00:6b:7b:2c:97:ba:d0:10:3d:f5:e4:ed: 54:06:a3:33:d0:30:19:0a:da:3d:22:11:d4:bc:93: ec:85:c2:72:40:5c:43:18:1c:99:aa:30:79:8f:f3: f1:2b:f0:a5:9e:e3:4e:80:36:25:0b:21:a5:6c:5f: f1:e5:14:8c:52:fe:63:cf:a1:03:10:2a:60:af:4a: e8:d4:f3:ff:97:c3:5f:4c:34:ba:33:be:3b:85:9d: 15:04:b9:08:f8:2c:ae:63:e5:6c:99:c9:64:7a:85: 95:96:63:ec:5f:d7:cd:c6:c8:a5:30:09:65:19:d7: 27:8d:67:b3:ac:d7:b1:9d:18:c6:7c:69:49:1f:37: 92:fc:aa:b4:c2:df:85:1c:aa:26:4b:45:cc:74:03: 12:8e:19:5d:7f:24:2c:7a:e8:5d:69:fd:95:c6:92: 04:bd:77:25:b0:6e:23:ec:8f:b7:3b:23:68:99:14: 06:db:10:02:3a:7b:47:a7:a7:87:03:51:1f:dd:aa: a3:59:67:b6:4c:0b:c2:0f:90:03:a8:01:ea:0e:17: e7:e8:82:07:3f:f0:03:fa:7a:b0:0a:b8:0e:15:8e: f4:0f:12:a0:bd:ec:99:9a:8f:4c:97:bf:92:51:07: 23:dd:24:2b:1d:f7:ff:36:5d:8b:f4:0c:4d:37:b8: e6:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:E5:50:69:34:42:09:B3:DC:F0:C1:AC:B0:E7:98:47:4B:BE:2D:77 X509v3 Authority Key Identifier: keyid:2F:6A:DF:42:AF:D1:64:08:0E:A3:1E:0F:3B:83:38:BE:D6:DA:1E:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2rfQq_RZAgOox4PO4M4vtbaHlk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:15:1c:c2:93:e9:81:ce:b2:5b:84:8f:de:ff:e6:ae:f9:68: 3e:58:dd:27:f6:8d:d2:96:8a:01:b7:ab:53:fc:29:1b:11:85: 04:5a:87:68:77:1b:a5:94:24:0e:d9:8e:f3:75:ec:c4:e9:33: 2f:1e:c3:22:bb:46:a2:c5:c3:40:3f:16:96:35:af:be:af:d3: 68:ab:21:7f:77:c8:f4:91:98:75:96:f8:c5:43:75:98:09:d0: da:a7:ae:ec:be:9b:43:7e:bf:1c:98:15:56:3d:3c:25:5c:8b: aa:39:7f:fc:c3:a4:e0:5a:0d:fd:2c:98:b8:39:2a:51:fc:cd: 7d:4e:fd:0e:fd:8f:6a:91:aa:e4:13:1e:60:91:44:7d:a1:38: c4:11:e6:c4:c7:58:8e:10:45:a2:57:2a:06:fd:1b:fc:90:7b: 84:58:94:67:df:e7:df:06:63:22:6e:99:34:7e:b6:41:20:13: 7b:4e:bb:fc:1b:b0:40:5f:56:15:6a:3f:a8:9d:29:a6:5c:35: 24:07:1d:4e:ab:4e:8e:6f:89:4f:0b:d5:7f:cd:5a:8d:8c:f2: cf:48:63:3d:7c:b6:6f:03:15:ee:80:02:3f:cb:48:3d:16:e6: 7d:bc:55:46:3d:68:04:52:a4:c6:f1:ab:3b:ac:bc:76:2a:4c: 10:e2:62:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCcowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTcxNjQxMTAvBgNVBAUTKDJGNkFERjQyQUZEMTY0MDgwRUEzMUUwRjNCODMzOEJF RDZEQTFFNTkwHhcNMjUwODIyMjAwNjU0WhcNMjUwODI5MjAwNjU0WjAYMRYwFAYD VQQDEw02OGE4Y2RkZS1lNWRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArcEAa3ssl7rQED315O1UBqMz0DAZCto9IhHUvJPshcJyQFxDGByZqjB5j/Px K/ClnuNOgDYlCyGlbF/x5RSMUv5jz6EDECpgr0ro1PP/l8NfTDS6M747hZ0VBLkI +CyuY+VsmclkeoWVlmPsX9fNxsilMAllGdcnjWezrNexnRjGfGlJHzeS/Kq0wt+F HKomS0XMdAMSjhldfyQseuhdaf2VxpIEvXclsG4j7I+3OyNomRQG2xACOntHp6eH A1Ef3aqjWWe2TAvCD5ADqAHqDhfn6IIHP/AD+nqwCrgOFY70DxKgveyZmo9Ml7+S UQcj3SQrHff/Nl2L9AxNN7jm3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMnlUGk0 Qgmz3PDBrLDnmEdLvi13MB8GA1UdIwQYMBaAFC9q30Kv0WQIDqMeDzuDOL7W2h5Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzE2NC8yMjhBQkY3NDg5 OEIxMUVBOTI3NTlBNUNDNEY5QUUwMi9MMnJmUXFfUlpBZ09veDRQTzRNNHZ0YmFI bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0wycmZRcV9SWkFnT294NFBPNE00dnRiYUhsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzE2NC8yMjhBQkY3NDg5OEIxMUVBOTI3NTlBNUNDNEY5QUUwMi9MMnJmUXFfUlpB Z09veDRQTzRNNHZ0YmFIbGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDAFRzCk+mBzrJbhI/e/+au+Wg+WN0n9o3SlooBt6tT/CkbEYUEWodo dxullCQO2Y7zdezE6TMvHsMiu0aixcNAPxaWNa++r9NoqyF/d8j0kZh1lvjFQ3WY CdDap67svptDfr8cmBVWPTwlXIuqOX/8w6TgWg39LJi4OSpR/M19Tv0O/Y9qkark Ex5gkUR9oTjEEebEx1iOEEWiVyoG/Rv8kHuEWJRn3+ffBmMibpk0frZBIBN7Trv8 G7BAX1YVaj+onSmmXDUkBx1Oq06Ob4lPC9V/zVqNjPLPSGM9fLZvAxXugAI/y0g9 FuZ9vFVGPWgEUqTG8as7rLx2KkwQ4mIc -----END CERTIFICATE-----Generated at Sat Aug 23 21:34:06 2025 by rpki-client