$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft File: lQfxHRNjrFs5Lzb17zgixc_NaPk.mft (raw, json) Hash identifier: 0Ntw1MVMi7kltCZzq3NTLb/11ScJ3ZT+/cL69pfLBkM= Subject key identifier: 07:02:DF:53:ED:D1:BB:56:32:92:07:8E:3D:BB:4A:35:11:3C:2D:93 Authority key identifier: 95:07:F1:1D:13:63:AC:5B:39:2F:36:F5:EF:38:22:C5:CF:CD:68:F9 Certificate issuer: /CN=A91EE8AC/serialNumber=9507F11D1363AC5B392F36F5EF3822C5CFCD68F9 Certificate serial: 01FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQfxHRNjrFs5Lzb17zgixc_NaPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft Manifest number: 0308 Signing time: Sat 23 Aug 2025 02:35:29 +0000 Manifest this update: Sat 23 Aug 2025 02:35:28 +0000 Manifest next update: Sat 30 Aug 2025 02:35:28 +0000 Files and hashes: 1: lQfxHRNjrFs5Lzb17zgixc_NaPk.crl (hash: 6ObuIL+ZM1eM+i4O318sQdWi3qgTjbHvcZUzcH0taeg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.crl rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQfxHRNjrFs5Lzb17zgixc_NaPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:35:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 511 (0x1ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE8AC, serialNumber=9507F11D1363AC5B392F36F5EF3822C5CFCD68F9 Validity Not Before: Aug 23 02:35:28 2025 GMT Not After : Aug 30 02:35:28 2025 GMT Subject: CN=68a928f1-38d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:8b:93:9f:67:f8:bd:63:af:e1:59:e8:9b:44: 99:38:bc:36:0e:9f:9f:13:34:4d:f6:46:60:cd:1f: f0:43:27:ba:53:b1:5a:0f:77:43:b2:d8:f7:3e:66: 3f:74:5d:e4:9c:72:c9:46:38:83:17:63:bb:f1:c4: 02:05:a4:16:13:b1:c9:88:c8:54:35:31:ce:17:d1: ed:e1:11:05:d7:01:8a:be:55:60:1c:09:16:09:67: 62:0e:18:8d:66:d1:d2:96:75:bc:4c:41:26:2f:29: 19:46:a2:f5:0a:32:98:2e:2f:05:fe:e4:03:a8:d3: f2:f7:c1:da:35:f8:8c:aa:fd:84:a6:94:4c:84:b2: 02:f2:3f:a3:02:1f:23:98:be:38:94:7e:bc:c1:c4: ce:87:1f:12:cc:e9:21:29:ae:0b:aa:53:03:09:62: 0e:da:a5:5e:45:86:0d:9b:23:15:65:36:3d:19:20: 08:0f:84:e3:70:d3:56:0f:10:29:f5:97:47:35:92: 56:c5:84:30:7d:6f:b0:ea:ce:90:26:36:c3:52:70: 9d:ba:7f:38:c6:83:f6:c9:6f:28:36:91:2c:6e:f0: 98:f8:6d:30:40:85:77:e7:54:03:b5:28:19:8e:d0: 72:dc:6d:c7:2e:19:97:a1:22:3d:ab:26:dc:1d:e0: 03:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:02:DF:53:ED:D1:BB:56:32:92:07:8E:3D:BB:4A:35:11:3C:2D:93 X509v3 Authority Key Identifier: keyid:95:07:F1:1D:13:63:AC:5B:39:2F:36:F5:EF:38:22:C5:CF:CD:68:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQfxHRNjrFs5Lzb17zgixc_NaPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:e4:ba:08:6e:00:86:5a:58:fd:c8:ab:b9:a4:1d:90:6b:02: c1:83:cb:47:5d:1b:a8:65:c6:41:70:b6:5f:00:04:dc:08:86: cc:87:a3:2c:ce:a3:af:c9:ea:2c:5a:69:79:4d:e1:da:34:76: 82:f3:52:f6:c7:cf:2b:94:53:7e:17:74:00:02:9c:be:f2:6d: 97:61:39:35:fc:64:29:23:da:e7:10:70:8c:32:f7:f0:35:0a: c6:74:ca:19:c9:63:5a:e7:30:90:31:f8:c4:b4:f9:1f:eb:29: 50:c3:a2:78:53:26:c5:4c:9b:47:7e:aa:ea:c5:4a:55:22:74: 94:92:7d:b4:7c:d2:01:ef:8f:f2:20:fb:b1:a4:7a:88:0f:76: 16:56:b0:c5:59:4a:e8:e7:6a:40:ab:1d:c8:74:d5:4e:e4:33: 7d:58:6c:65:98:7b:84:dd:94:38:79:e7:bc:fc:ed:3c:2d:c8: f6:a4:53:8f:39:d9:53:7c:66:3a:7c:97:4c:cd:71:9b:8a:bb: 15:d7:3b:c6:1f:5e:90:bd:10:3b:18:95:dc:3e:98:d7:a8:10: 9c:60:71:b3:c5:23:a6:2a:72:a8:1a:97:c4:db:28:68:14:ab: ce:0d:26:2a:4f:cd:ba:f7:e7:4c:cf:14:c7:19:7d:ff:c1:9a: c6:1f:43:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAf8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU4QUMxMTAvBgNVBAUTKDk1MDdGMTFEMTM2M0FDNUIzOTJGMzZGNUVGMzgyMkM1 Q0ZDRDY4RjkwHhcNMjUwODIzMDIzNTI4WhcNMjUwODMwMDIzNTI4WjAYMRYwFAYD VQQDEw02OGE5MjhmMS0zOGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyYuTn2f4vWOv4Vnom0SZOLw2Dp+fEzRN9kZgzR/wQye6U7FaD3dDstj3PmY/ dF3knHLJRjiDF2O78cQCBaQWE7HJiMhUNTHOF9Ht4REF1wGKvlVgHAkWCWdiDhiN ZtHSlnW8TEEmLykZRqL1CjKYLi8F/uQDqNPy98HaNfiMqv2EppRMhLIC8j+jAh8j mL44lH68wcTOhx8SzOkhKa4LqlMDCWIO2qVeRYYNmyMVZTY9GSAID4TjcNNWDxAp 9ZdHNZJWxYQwfW+w6s6QJjbDUnCdun84xoP2yW8oNpEsbvCY+G0wQIV351QDtSgZ jtBy3G3HLhmXoSI9qybcHeADjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAcC31Pt 0btWMpIHjj27SjURPC2TMB8GA1UdIwQYMBaAFJUH8R0TY6xbOS829e84IsXPzWj5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRThBQy81MDM4RUM4QzdE RUIxMUVEQTdDQTRBN0VDNEY5QUUwMi9sUWZ4SFJOanJGczVMemIxN3pnaXhjX05h UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xRZnhIUk5qckZzNUx6YjE3emdpeGNfTmFQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RThBQy81MDM4RUM4QzdERUIxMUVEQTdDQTRBN0VDNEY5QUUwMi9sUWZ4SFJOanJG czVMemIxN3pnaXhjX05hUGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAU5LoIbgCGWlj9yKu5pB2QawLBg8tHXRuoZcZBcLZfAATcCIbMh6Ms zqOvyeosWml5TeHaNHaC81L2x88rlFN+F3QAApy+8m2XYTk1/GQpI9rnEHCMMvfw NQrGdMoZyWNa5zCQMfjEtPkf6ylQw6J4UybFTJtHfqrqxUpVInSUkn20fNIB74/y IPuxpHqID3YWVrDFWUro52pAqx3IdNVO5DN9WGxlmHuE3ZQ4eee8/O08Lcj2pFOP OdlTfGY6fJdMzXGbirsV1zvGH16QvRA7GJXcPpjXqBCcYHGzxSOmKnKoGpfE2yho FKvODSYqT8269+dMzxTHGX3/wZrGH0Pl -----END CERTIFICATE-----Generated at Sat Aug 23 18:52:12 2025 by rpki-client