$ rpki-client -vvf rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.mft File: Lb7diOsrLcR8tTCQw6OFH8ZSTso.mft (raw, json) Hash identifier: NZd+oazPd9M7pZ0juAyGtQ7C+cKJg59ek4+yt4gEeaE= Subject key identifier: 58:78:A5:BF:CD:78:39:2D:33:0A:4D:8C:5E:35:31:03:74:98:1D:27 Authority key identifier: 2D:BE:DD:88:EB:2B:2D:C4:7C:B5:30:90:C3:A3:85:1F:C6:52:4E:CA Certificate issuer: /CN=A9118009/serialNumber=2DBEDD88EB2B2DC47CB53090C3A3851FC6524ECA Certificate serial: 0169 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lb7diOsrLcR8tTCQw6OFH8ZSTso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.mft Manifest number: 0166 Signing time: Sat 09 Aug 2025 04:17:31 +0000 Manifest this update: Sat 09 Aug 2025 04:17:30 +0000 Manifest next update: Sat 16 Aug 2025 04:17:30 +0000 Files and hashes: 1: Lb7diOsrLcR8tTCQw6OFH8ZSTso.crl (hash: 77BOgy2BvT7BbG8POZc0ofPjgXWgWvBpjYqivXJ2HUU=) 2: 7AE89AF4513511EE88C64E20C4F9AE02.roa (hash: 5LGDu0CCi6DfJNCRARsLcv5edhJaqrMRVu8YSoKbd1I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.crl rsync://rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lb7diOsrLcR8tTCQw6OFH8ZSTso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 361 (0x169) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118009, serialNumber=2DBEDD88EB2B2DC47CB53090C3A3851FC6524ECA Validity Not Before: Aug 9 04:17:30 2025 GMT Not After : Aug 16 04:17:30 2025 GMT Subject: CN=6896cbda-3d6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:0c:9b:ac:1e:12:a1:79:4c:e4:24:79:e5:d6: bf:7c:5f:fa:ad:61:fa:80:c8:76:bc:ab:f6:12:56: bf:26:3a:25:4d:5a:d8:f1:6d:30:d9:e1:e6:19:8c: 72:de:f2:2e:6a:27:f9:3c:53:f9:ee:13:c6:2b:28: 5f:6c:63:01:37:4a:a5:47:31:ce:87:db:4e:ce:56: 02:40:5b:fc:63:b2:c8:91:9e:35:e8:24:0a:0b:f4: ff:2a:ba:73:b1:55:b9:00:b4:f1:35:cc:cf:80:5e: 21:f8:a5:06:d9:59:fd:0d:99:b3:73:59:99:50:c5: 61:a1:1c:95:8b:f7:03:ec:1d:c8:00:dd:8c:40:23: 80:79:31:8a:5e:c9:46:d6:bf:20:78:e3:74:a1:2a: 81:c2:c0:d0:90:8b:8a:b7:be:2b:53:0a:ed:68:24: 75:26:15:51:b5:8d:ba:43:4d:db:ff:43:d1:12:8b: ef:8d:a1:ca:3b:5a:8e:20:ae:6c:2c:93:fc:b1:a1: 0b:e8:b2:d8:0f:49:aa:9d:7f:d5:d1:a5:81:2c:25: 39:3a:d0:4e:de:aa:36:79:a1:e5:ab:42:76:a1:b0: a3:35:22:58:94:41:aa:f0:0f:d2:98:1c:3d:88:89: 4b:96:6c:91:b7:33:0b:8f:10:d2:9e:f1:d8:bb:47: f2:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:78:A5:BF:CD:78:39:2D:33:0A:4D:8C:5E:35:31:03:74:98:1D:27 X509v3 Authority Key Identifier: keyid:2D:BE:DD:88:EB:2B:2D:C4:7C:B5:30:90:C3:A3:85:1F:C6:52:4E:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lb7diOsrLcR8tTCQw6OFH8ZSTso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:6c:04:31:d3:17:58:90:a8:f7:ae:81:86:7f:56:41:ab:49: 99:1e:6d:c1:d9:58:4b:06:66:da:9c:89:b5:69:5c:3b:75:28: bb:1b:f0:21:c4:07:6e:12:1a:f5:61:9c:3b:35:c3:39:b7:a7: 62:6c:a8:d9:a7:07:83:c7:53:9e:cf:84:df:b0:0c:2f:4a:38: 1a:6e:78:a6:d8:fd:d0:da:f4:3c:67:33:c5:d8:b6:28:97:0e: 44:e9:7f:6e:c1:48:24:5a:9d:a8:c5:ea:1f:4d:a9:5c:f6:a3: 13:6c:a7:68:9b:81:65:66:dc:5f:7f:0f:d0:78:6a:b4:0f:72: da:05:1a:f5:c6:42:9f:1d:e4:7b:1e:3e:20:b4:db:0d:64:bb: 94:6c:58:34:dd:78:cd:72:10:fe:d1:bc:a2:11:e6:2f:53:b0: f4:dc:cd:8f:45:f3:f0:9e:db:d7:ec:ba:b7:b0:b5:87:a0:3d: f2:f8:a7:9d:3b:2a:ff:4d:c3:e5:79:63:80:70:2e:a7:c2:f2: 4e:c3:e8:7f:fc:cd:69:0a:27:de:75:f8:69:6d:60:38:79:3c: 9c:c1:2f:f0:24:45:4b:bb:f3:d5:c4:ce:ab:8f:e6:e2:0b:96: a0:5a:b5:36:09:5b:ff:ae:2f:2e:86:e1:e9:c3:57:9c:ca:4e: ff:5d:d7:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTgwMDkxMTAvBgNVBAUTKDJEQkVERDg4RUIyQjJEQzQ3Q0I1MzA5MEMzQTM4NTFG QzY1MjRFQ0EwHhcNMjUwODA5MDQxNzMwWhcNMjUwODE2MDQxNzMwWjAYMRYwFAYD VQQDEw02ODk2Y2JkYS0zZDZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtwybrB4SoXlM5CR55da/fF/6rWH6gMh2vKv2Ela/JjolTVrY8W0w2eHmGYxy 3vIuaif5PFP57hPGKyhfbGMBN0qlRzHOh9tOzlYCQFv8Y7LIkZ416CQKC/T/Krpz sVW5ALTxNczPgF4h+KUG2Vn9DZmzc1mZUMVhoRyVi/cD7B3IAN2MQCOAeTGKXslG 1r8geON0oSqBwsDQkIuKt74rUwrtaCR1JhVRtY26Q03b/0PREovvjaHKO1qOIK5s LJP8saEL6LLYD0mqnX/V0aWBLCU5OtBO3qo2eaHlq0J2obCjNSJYlEGq8A/SmBw9 iIlLlmyRtzMLjxDSnvHYu0fyewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFh4pb/N eDktMwpNjF41MQN0mB0nMB8GA1UdIwQYMBaAFC2+3YjrKy3EfLUwkMOjhR/GUk7K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODAwOS9FMzVBQ0FGNDUx MzQxMUVFQTM5MjRFMUZDNEY5QUUwMi9MYjdkaU9zckxjUjh0VENRdzZPRkg4WlNU c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xiN2RpT3NyTGNSOHRUQ1F3Nk9GSDhaU1Rzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODAwOS9FMzVBQ0FGNDUxMzQxMUVFQTM5MjRFMUZDNEY5QUUwMi9MYjdkaU9zckxj Ujh0VENRdzZPRkg4WlNUc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWbAQx0xdYkKj3roGGf1ZBq0mZHm3B2VhLBmbanIm1aVw7dSi7G/Ah xAduEhr1YZw7NcM5t6dibKjZpweDx1Oez4TfsAwvSjgabnim2P3Q2vQ8ZzPF2LYo lw5E6X9uwUgkWp2oxeofTalc9qMTbKdom4FlZtxffw/QeGq0D3LaBRr1xkKfHeR7 Hj4gtNsNZLuUbFg03XjNchD+0byiEeYvU7D03M2PRfPwntvX7Lq3sLWHoD3y+Ked Oyr/TcPleWOAcC6nwvJOw+h//M1pCifedfhpbWA4eTycwS/wJEVLu/PVxM6rj+bi C5agWrU2CVv/ri8uhuHpw1ecyk7/XdfW -----END CERTIFICATE-----Generated at Sun Aug 10 03:57:18 2025 by rpki-client