$ rpki-client -vvf rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.mft File: lUWdXR6wQJX9Fj8NhNHzpGwV5PA.mft (raw, json) Hash identifier: X7xk9MlTEJSds+TK8oWE0lPLNNkzaB8aGNtawsrr+1c= Subject key identifier: DD:BD:04:0F:73:18:B8:8A:D4:87:A6:4B:D9:8A:75:DB:0A:E5:5C:BA Authority key identifier: 95:45:9D:5D:1E:B0:40:95:FD:16:3F:0D:84:D1:F3:A4:6C:15:E4:F0 Certificate issuer: /CN=A9118749/serialNumber=95459D5D1EB04095FD163F0D84D1F3A46C15E4F0 Certificate serial: 6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.mft Manifest number: 68 Signing time: Tue 05 Aug 2025 07:38:35 +0000 Manifest this update: Tue 05 Aug 2025 07:38:35 +0000 Manifest next update: Tue 12 Aug 2025 07:38:35 +0000 Files and hashes: 1: lUWdXR6wQJX9Fj8NhNHzpGwV5PA.crl (hash: IFPCEvUCi3ktoScySISqrbU0VKC/rhCixK7bI5SJmho=) 2: 0D9D8C8CDC2311EFAEB2F679C4F9AE02.roa (hash: e53H18n/zt4tMpCTzx/LyyJ5rGfSmD0vKN+ZK6rIQ0U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.crl rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 07:38:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 108 (0x6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118749, serialNumber=95459D5D1EB04095FD163F0D84D1F3A46C15E4F0 Validity Not Before: Aug 5 07:38:35 2025 GMT Not After : Aug 12 07:38:35 2025 GMT Subject: CN=6891b4fb-127b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:b7:e7:7a:df:68:c1:5b:50:17:4e:53:c1:cc: dc:ae:87:1b:c4:53:c0:10:83:0e:43:21:e3:13:1f: c5:fe:24:af:3b:0a:c5:56:eb:44:ef:db:98:9b:dc: 03:81:30:88:b2:17:bf:f8:9d:e0:59:24:a8:a2:47: 1c:c3:f4:21:93:28:c2:f4:a4:3f:d2:5e:f1:db:cf: f2:48:42:50:3e:87:53:97:c4:b6:dd:2d:41:7d:ed: 7b:6e:97:9c:3a:51:e0:14:f7:93:32:ee:d9:39:9f: 7e:ce:0f:70:3c:f4:a4:c2:bc:92:af:51:82:d8:d6: 86:80:09:c8:69:0e:f5:58:3e:44:1f:b5:04:44:c9: 60:ee:d1:d0:ac:cc:8d:81:40:84:43:6e:d5:2a:cb: 69:35:d8:e9:c7:e5:72:ee:75:90:16:d2:50:6a:2b: 0d:78:ec:e3:80:2f:22:bc:6a:e2:2e:85:f4:45:d8: e9:72:ad:17:91:9c:68:33:f5:a0:a1:ed:ef:87:a1: 2d:d1:ac:13:07:7e:e4:c3:ce:ea:24:61:06:31:31: c2:c6:fd:ef:84:fc:6e:87:d8:a3:ef:d1:0b:48:57: fc:00:0e:29:a5:cf:d4:59:f1:c1:de:c5:1d:3f:50: 37:33:2d:95:e5:bb:00:ac:c1:77:43:78:81:55:45: fe:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:BD:04:0F:73:18:B8:8A:D4:87:A6:4B:D9:8A:75:DB:0A:E5:5C:BA X509v3 Authority Key Identifier: keyid:95:45:9D:5D:1E:B0:40:95:FD:16:3F:0D:84:D1:F3:A4:6C:15:E4:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:cb:84:76:d6:fb:ff:24:0d:80:34:62:73:a5:a8:e5:7a:57: 1b:4f:a2:60:a4:ba:90:69:15:96:75:9a:a0:c8:ef:c3:32:76: 3e:7b:50:d3:1f:70:54:75:d1:d1:f8:10:4b:c2:02:11:ab:35: f3:97:77:73:66:40:0b:a7:ed:d6:6f:08:2e:d1:99:14:c8:9f: 3b:92:5d:5f:c7:66:e5:4a:a2:b7:6f:d5:b5:b5:86:ed:48:41: 77:f6:1a:d2:14:28:7d:e6:71:81:7f:98:ac:33:6c:d1:eb:5a: a8:73:56:95:42:70:b3:0b:9e:68:49:bb:9c:4a:ed:48:1b:1e: 00:97:ab:9d:70:98:dd:a0:01:f3:be:4e:8d:3d:94:1f:e4:07: 25:bf:93:31:44:c2:c9:67:29:8b:60:ee:94:dd:77:74:45:fb: 6f:20:f6:e3:f5:cb:f0:d5:a3:3c:e6:d9:98:5d:c7:6d:77:e1: 5e:8d:64:01:0b:5c:69:73:15:7a:f8:31:3b:ba:0c:95:9c:f1: 7d:fd:0c:a6:51:b3:1c:72:b3:18:13:7f:66:0d:19:a2:ca:da: dc:0f:23:78:f2:b9:4b:8b:3a:ce:45:34:8c:65:c1:0c:97:20: 45:a7:7c:67:f0:26:50:e7:42:46:10:fd:3b:78:0e:56:53:6d: a2:a6:1a:6c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx ODc0OTExMC8GA1UEBRMoOTU0NTlENUQxRUIwNDA5NUZEMTYzRjBEODREMUYzQTQ2 QzE1RTRGMDAeFw0yNTA4MDUwNzM4MzVaFw0yNTA4MTIwNzM4MzVaMBgxFjAUBgNV BAMTDTY4OTFiNGZiLTEyN2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDzt+d632jBW1AXTlPBzNyuhxvEU8AQgw5DIeMTH8X+JK87CsVW60Tv25ib3AOB MIiyF7/4neBZJKiiRxzD9CGTKML0pD/SXvHbz/JIQlA+h1OXxLbdLUF97Xtul5w6 UeAU95My7tk5n37OD3A89KTCvJKvUYLY1oaACchpDvVYPkQftQREyWDu0dCszI2B QIRDbtUqy2k12OnH5XLudZAW0lBqKw147OOALyK8auIuhfRF2OlyrReRnGgz9aCh 7e+HoS3RrBMHfuTDzuokYQYxMcLG/e+E/G6H2KPv0QtIV/wADimlz9RZ8cHexR0/ UDczLZXluwCswXdDeIFVRf6dAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU3b0ED3MY uIrUh6ZL2Yp12wrlXLowHwYDVR0jBBgwFoAUlUWdXR6wQJX9Fj8NhNHzpGwV5PAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4NzQ5L0JBNTdEQkE2REMy MDExRUY5MUI1NDAxRUM0RjlBRTAyL2xVV2RYUjZ3UUpYOUZqOE5oTkh6cEd3VjVQ QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbFVXZFhSNndRSlg5Rmo4TmhOSHpwR3dWNVBBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4 NzQ5L0JBNTdEQkE2REMyMDExRUY5MUI1NDAxRUM0RjlBRTAyL2xVV2RYUjZ3UUpY OUZqOE5oTkh6cEd3VjVQQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKLLhHbW+/8kDYA0YnOlqOV6VxtPomCkupBpFZZ1mqDI78Mydj57UNMf cFR10dH4EEvCAhGrNfOXd3NmQAun7dZvCC7RmRTInzuSXV/HZuVKordv1bW1hu1I QXf2GtIUKH3mcYF/mKwzbNHrWqhzVpVCcLMLnmhJu5xK7UgbHgCXq51wmN2gAfO+ To09lB/kByW/kzFEwslnKYtg7pTdd3RF+28g9uP1y/DVozzm2Zhdx2134V6NZAEL XGlzFXr4MTu6DJWc8X39DKZRsxxysxgTf2YNGaLK2twPI3jyuUuLOs5FNIxlwQyX IEWnfGfwJlDnQkYQ/Tt4DlZTbaKmGmw= -----END CERTIFICATE-----Generated at Wed Aug 6 10:57:26 2025 by rpki-client