$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft File: lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft (raw, json) Hash identifier: tuUetmnPEPEC586RD1RREWuXlfcKdQoIRVkrENjbXw0= Subject key identifier: 1A:EC:E7:27:B5:13:68:38:EC:3F:5A:C7:7A:ED:56:35:5E:CF:87:B7 Authority key identifier: 95:06:8B:B3:0A:BC:7E:00:7F:D8:38:7E:4D:E0:A8:3E:FA:AD:D4:72 Certificate issuer: /CN=A91E9DF8/serialNumber=95068BB30ABC7E007FD8387E4DE0A83EFAADD472 Certificate serial: 060F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQaLswq8fgB_2Dh-TeCoPvqt1HI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft Manifest number: 0609 Signing time: Fri 22 Aug 2025 23:01:15 +0000 Manifest this update: Fri 22 Aug 2025 23:01:14 +0000 Manifest next update: Fri 29 Aug 2025 23:01:14 +0000 Files and hashes: 1: lQaLswq8fgB_2Dh-TeCoPvqt1HI.crl (hash: P86owaEVg35S217Wq99VCtbrzAO2xEw83xhRL757NwI=) 2: A8086732B6DA11EBB7B67954C4F9AE02.roa (hash: ldWjzJ4l8BsIeHREFrvU51ElQcTYEq5MkB9HbZsC/bI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.crl rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQaLswq8fgB_2Dh-TeCoPvqt1HI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1551 (0x60f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9DF8, serialNumber=95068BB30ABC7E007FD8387E4DE0A83EFAADD472 Validity Not Before: Aug 22 23:01:14 2025 GMT Not After : Aug 29 23:01:14 2025 GMT Subject: CN=68a8f6ba-2d98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:38:59:d8:93:cc:36:9f:54:13:b1:0a:db:ef: e4:f3:e4:35:21:af:3e:13:7f:b6:5a:4c:23:06:cd: 79:af:1d:f1:3d:9a:de:e6:b1:c6:02:13:24:bc:46: 2a:ed:d3:11:87:ca:18:54:36:0e:9c:8a:df:92:70: 7e:b5:cb:9e:65:f3:74:fd:6e:0f:ff:0b:b4:e7:01: 1b:d7:d6:07:89:99:93:02:d1:64:3a:9f:43:7c:8e: f9:e8:16:86:c2:35:c3:12:d0:a7:69:6f:cf:0a:f1: cd:57:07:bb:3c:64:3b:65:4e:01:db:8b:15:6a:2c: 5c:e0:59:a1:f0:87:56:10:23:b8:e5:33:28:b9:7c: 47:bf:8f:2e:fc:20:05:a5:0e:f3:69:d3:e6:45:b3: 4a:10:5c:14:a0:b1:d7:db:e1:18:86:4b:0a:10:be: 41:38:69:42:08:2f:62:b6:89:77:31:76:69:bb:5c: 6d:af:ce:8c:08:e8:8c:2e:c0:ee:0e:9c:a3:0c:1a: a4:18:2d:60:ee:8f:c9:c3:54:a7:7e:8c:62:b0:7a: f0:ab:75:0f:75:d7:ac:f9:6f:f7:44:80:d1:90:dc: 79:4f:04:ad:1e:85:c8:fd:34:ef:bc:1a:a7:91:1b: cb:cb:1c:eb:55:7b:46:54:59:08:39:63:e3:ff:f7: bb:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:EC:E7:27:B5:13:68:38:EC:3F:5A:C7:7A:ED:56:35:5E:CF:87:B7 X509v3 Authority Key Identifier: keyid:95:06:8B:B3:0A:BC:7E:00:7F:D8:38:7E:4D:E0:A8:3E:FA:AD:D4:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQaLswq8fgB_2Dh-TeCoPvqt1HI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:48:1a:91:75:2a:77:37:d2:aa:e5:1c:7f:24:19:10:1e:e6: cb:87:19:95:3a:4a:e5:62:55:bc:a9:19:c8:9b:d3:6f:9f:ae: 89:7e:8a:0d:d4:a3:1d:66:0c:6f:ef:12:cc:ec:0a:43:da:25: b7:6b:bd:78:f3:a0:20:5d:d5:1b:c6:2a:af:14:2d:71:e1:0d: a9:b1:34:8b:98:c3:4a:03:9a:ad:de:60:b9:38:01:87:47:41: f1:29:f2:c0:f3:e8:cc:7c:35:ec:d3:64:6e:d7:39:60:40:bc: f3:1d:c6:92:1e:43:6f:55:e3:af:dd:c5:bc:4f:e4:0f:cb:b5: cd:28:31:8f:ae:ae:1e:1f:e6:03:35:8b:d2:58:0d:92:93:a2: 53:b8:98:f0:51:55:9b:fb:3d:e0:87:63:77:2d:04:2d:11:ab: 74:e3:a1:a5:e5:01:04:db:2f:75:b0:b8:2f:eb:48:ce:40:d8: 0a:7e:11:eb:e9:5b:7f:c6:dc:ff:ac:af:21:30:aa:53:69:ff: 3b:28:b2:44:e2:4d:1d:c9:0b:bf:0b:f7:a2:33:a5:c7:d9:93: cc:e2:48:6d:69:3a:20:00:e9:f4:d1:f6:9d:49:d3:d7:ef:e1: 53:25:4b:5b:0e:2d:4b:c4:37:82:ff:d8:25:c0:e8:0a:e9:b1: 5e:87:44:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBg8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlERjgxMTAvBgNVBAUTKDk1MDY4QkIzMEFCQzdFMDA3RkQ4Mzg3RTRERTBBODNF RkFBREQ0NzIwHhcNMjUwODIyMjMwMTE0WhcNMjUwODI5MjMwMTE0WjAYMRYwFAYD VQQDEw02OGE4ZjZiYS0yZDk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3DhZ2JPMNp9UE7EK2+/k8+Q1Ia8+E3+2WkwjBs15rx3xPZre5rHGAhMkvEYq 7dMRh8oYVDYOnIrfknB+tcueZfN0/W4P/wu05wEb19YHiZmTAtFkOp9DfI756BaG wjXDEtCnaW/PCvHNVwe7PGQ7ZU4B24sVaixc4Fmh8IdWECO45TMouXxHv48u/CAF pQ7zadPmRbNKEFwUoLHX2+EYhksKEL5BOGlCCC9itol3MXZpu1xtr86MCOiMLsDu DpyjDBqkGC1g7o/Jw1SnfoxisHrwq3UPddes+W/3RIDRkNx5TwStHoXI/TTvvBqn kRvLyxzrVXtGVFkIOWPj//e7bQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBrs5ye1 E2g47D9ax3rtVjVez4e3MB8GA1UdIwQYMBaAFJUGi7MKvH4Af9g4fk3gqD76rdRy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOURGOC80QjNCODgxRUI2 RDkxMUVCOEY4NjU1NTRDNEY5QUUwMi9sUWFMc3dxOGZnQl8yRGgtVGVDb1B2cXQx SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xRYUxzd3E4ZmdCXzJEaC1UZUNvUHZxdDFISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OURGOC80QjNCODgxRUI2RDkxMUVCOEY4NjU1NTRDNEY5QUUwMi9sUWFMc3dxOGZn Ql8yRGgtVGVDb1B2cXQxSEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0SBqRdSp3N9Kq5Rx/JBkQHubLhxmVOkrlYlW8qRnIm9Nvn66JfooN 1KMdZgxv7xLM7ApD2iW3a71486AgXdUbxiqvFC1x4Q2psTSLmMNKA5qt3mC5OAGH R0HxKfLA8+jMfDXs02Ru1zlgQLzzHcaSHkNvVeOv3cW8T+QPy7XNKDGPrq4eH+YD NYvSWA2Sk6JTuJjwUVWb+z3gh2N3LQQtEat046Gl5QEE2y91sLgv60jOQNgKfhHr 6Vt/xtz/rK8hMKpTaf87KLJE4k0dyQu/C/eiM6XH2ZPM4khtaTogAOn00fadSdPX 7+FTJUtbDi1LxDeC/9glwOgK6bFeh0QE -----END CERTIFICATE-----Generated at Sat Aug 23 17:10:50 2025 by rpki-client