$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5753/7B5624441BBB11EDA87F6E67C4F9AE02/LnNx4gZThK0R1DN9DS7NH2bSGco.mft File: LnNx4gZThK0R1DN9DS7NH2bSGco.mft (raw, json) Hash identifier: QOnrgkUqE7ku9vgYAWa77yZ7Z+cBdf1M3hOCN0+cA+c= Subject key identifier: AE:DA:2C:B5:FC:48:AA:38:FF:55:00:1C:91:45:4C:AF:36:37:E0:48 Authority key identifier: 2E:73:71:E2:06:53:84:AD:11:D4:33:7D:0D:2E:CD:1F:66:D2:19:CA Certificate issuer: /CN=A91F5753/serialNumber=2E7371E2065384AD11D4337D0D2ECD1F66D219CA Certificate serial: 0268 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnNx4gZThK0R1DN9DS7NH2bSGco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5753/7B5624441BBB11EDA87F6E67C4F9AE02/LnNx4gZThK0R1DN9DS7NH2bSGco.mft Manifest number: 0264 Signing time: Thu 03 Jul 2025 02:11:07 +0000 Manifest this update: Thu 03 Jul 2025 02:11:07 +0000 Manifest next update: Thu 10 Jul 2025 02:11:07 +0000 Files and hashes: 1: LnNx4gZThK0R1DN9DS7NH2bSGco.crl (hash: YmihZ1Mfnww/4P3SR/FNHCwISjrljdyGePZ0cFEhPnE=) 2: 68C425FC1BBF11ED9F87C083C4F9AE02.roa (hash: Zxoh9Ofh0OWLZ5oXPc2RuTae5hFatyn/nJ6RPctUa3I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5753/7B5624441BBB11EDA87F6E67C4F9AE02/LnNx4gZThK0R1DN9DS7NH2bSGco.crl rsync://rpki.apnic.net/member_repository/A91F5753/7B5624441BBB11EDA87F6E67C4F9AE02/LnNx4gZThK0R1DN9DS7NH2bSGco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnNx4gZThK0R1DN9DS7NH2bSGco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 02:11:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 616 (0x268) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5753, serialNumber=2E7371E2065384AD11D4337D0D2ECD1F66D219CA Validity Not Before: Jul 3 02:11:07 2025 GMT Not After : Jul 10 02:11:07 2025 GMT Subject: CN=6865e6bb-fbc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:1c:ca:2f:73:bd:39:c8:e2:c0:97:4a:ec:98: 3f:5b:4d:b9:74:10:21:79:d4:77:81:04:a4:e1:4b: 5d:c6:c2:2d:e4:ea:ac:95:c4:88:5d:73:0f:88:fc: 89:4e:77:c1:a4:df:fc:39:38:fe:47:8d:c6:ee:bf: 64:6a:19:b5:d1:54:a6:d6:31:ea:0a:44:cf:fe:c8: 69:b6:77:9a:55:72:e6:3f:ee:43:8d:a5:b1:56:ba: 77:17:76:4d:a7:27:3f:5e:4c:32:3a:1b:b9:45:80: 44:02:33:be:60:c5:82:7c:ba:af:31:00:f7:54:d8: e0:08:f8:c0:cc:88:64:44:86:40:0e:0f:3f:62:3d: a8:29:6e:0e:f5:c2:7f:29:f7:6b:8d:7b:4f:c4:48: 0e:1a:fa:b6:30:38:d0:10:78:fd:28:3a:7a:93:b6: 60:61:00:00:9b:d0:49:95:17:a7:0d:8e:0f:0f:75: 9a:ee:fe:82:82:a3:a0:1b:9a:5f:c3:c3:be:92:1e: 77:29:9e:7a:e3:c7:c6:ff:6d:d4:82:d9:09:ed:1a: dc:70:3e:fc:cd:62:d1:5e:9e:c9:0b:34:d5:32:01: c8:ea:e9:ef:0b:6e:26:7c:cd:05:9a:e0:6a:f8:93: 45:7b:c6:53:00:4d:51:0b:d4:40:36:ec:67:dd:a1: 7b:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:DA:2C:B5:FC:48:AA:38:FF:55:00:1C:91:45:4C:AF:36:37:E0:48 X509v3 Authority Key Identifier: keyid:2E:73:71:E2:06:53:84:AD:11:D4:33:7D:0D:2E:CD:1F:66:D2:19:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5753/7B5624441BBB11EDA87F6E67C4F9AE02/LnNx4gZThK0R1DN9DS7NH2bSGco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnNx4gZThK0R1DN9DS7NH2bSGco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5753/7B5624441BBB11EDA87F6E67C4F9AE02/LnNx4gZThK0R1DN9DS7NH2bSGco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:05:f3:08:2a:3f:22:f4:36:86:8e:f8:98:09:3c:5b:ef:06: 53:0d:42:c1:e5:80:9c:4a:bf:78:cf:c6:8a:29:72:90:3c:b9: ed:10:67:98:00:5f:38:12:62:13:1e:c5:fa:19:7d:b2:24:5d: ac:2c:90:5e:23:8c:a5:59:3c:4b:e6:b9:f1:1f:ac:27:17:15: 25:b2:84:7c:dd:8c:03:49:6c:ce:5c:69:78:16:71:9f:3e:c3: ae:1e:2b:9c:dc:f5:71:61:06:dd:e0:e0:b0:83:36:e3:6e:c9: c8:21:33:ac:bb:fa:50:f4:f6:12:f6:90:85:37:60:b4:04:3e: bb:50:b1:4e:e3:d2:12:81:24:99:6b:54:b6:75:9b:55:af:82: 48:8f:72:ea:1d:d2:3f:9d:01:4d:ad:22:ba:54:ab:59:44:69: 3f:c8:41:b3:a8:d8:97:ab:31:5c:d6:4e:b2:66:8b:98:63:5b: 7c:5e:aa:ed:1c:1f:b5:c4:d4:49:46:cf:60:f4:4e:9f:ef:c9: 18:ef:16:c5:1b:cc:76:27:c0:0e:b8:2a:7b:09:32:67:f9:d5: cd:33:23:5e:d0:36:43:3c:e6:92:10:87:8d:ac:7e:5c:b6:df: 3e:07:37:b3:34:c6:a1:6e:5f:e7:2e:db:58:b4:7c:0f:6e:cb: dc:0c:34:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU3NTMxMTAvBgNVBAUTKDJFNzM3MUUyMDY1Mzg0QUQxMUQ0MzM3RDBEMkVDRDFG NjZEMjE5Q0EwHhcNMjUwNzAzMDIxMTA3WhcNMjUwNzEwMDIxMTA3WjAYMRYwFAYD VQQDEw02ODY1ZTZiYi1mYmM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0BzKL3O9OcjiwJdK7Jg/W025dBAhedR3gQSk4UtdxsIt5OqslcSIXXMPiPyJ TnfBpN/8OTj+R43G7r9kahm10VSm1jHqCkTP/shptneaVXLmP+5DjaWxVrp3F3ZN pyc/XkwyOhu5RYBEAjO+YMWCfLqvMQD3VNjgCPjAzIhkRIZADg8/Yj2oKW4O9cJ/ KfdrjXtPxEgOGvq2MDjQEHj9KDp6k7ZgYQAAm9BJlRenDY4PD3Wa7v6CgqOgG5pf w8O+kh53KZ5648fG/23UgtkJ7RrccD78zWLRXp7JCzTVMgHI6unvC24mfM0FmuBq +JNFe8ZTAE1RC9RANuxn3aF71QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK7aLLX8 SKo4/1UAHJFFTK82N+BIMB8GA1UdIwQYMBaAFC5zceIGU4StEdQzfQ0uzR9m0hnK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTc1My83QjU2MjQ0NDFC QkIxMUVEQTg3RjZFNjdDNEY5QUUwMi9Mbk54NGdaVGhLMFIxRE45RFM3TkgyYlNH Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xuTng0Z1pUaEswUjFETjlEUzdOSDJiU0djby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTc1My83QjU2MjQ0NDFCQkIxMUVEQTg3RjZFNjdDNEY5QUUwMi9Mbk54NGdaVGhL MFIxRE45RFM3TkgyYlNHY28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/BfMIKj8i9DaGjviYCTxb7wZTDULB5YCcSr94z8aKKXKQPLntEGeY AF84EmITHsX6GX2yJF2sLJBeI4ylWTxL5rnxH6wnFxUlsoR83YwDSWzOXGl4FnGf PsOuHiuc3PVxYQbd4OCwgzbjbsnIITOsu/pQ9PYS9pCFN2C0BD67ULFO49ISgSSZ a1S2dZtVr4JIj3LqHdI/nQFNrSK6VKtZRGk/yEGzqNiXqzFc1k6yZouYY1t8Xqrt HB+1xNRJRs9g9E6f78kY7xbFG8x2J8AOuCp7CTJn+dXNMyNe0DZDPOaSEIeNrH5c tt8+BzezNMahbl/nLttYtHwPbsvcDDQ7 -----END CERTIFICATE-----Generated at Thu Jul 3 21:09:22 2025 by rpki-client