$ rpki-client -vvf rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.mft File: lqeZovSzCLIlIrzkXjGNanAmKSs.mft (raw, json) Hash identifier: ZP/+EgbDNyMSdyDy8ikUGn2igHO7QQopPgweCvdzHBM= Subject key identifier: 9F:24:5B:88:2B:A8:C5:E7:57:F7:63:D8:12:30:02:04:66:08:33:55 Authority key identifier: 96:A7:99:A2:F4:B3:08:B2:25:22:BC:E4:5E:31:8D:6A:70:26:29:2B Certificate issuer: /CN=A911BA4B/serialNumber=96A799A2F4B308B22522BCE45E318D6A7026292B Certificate serial: 11B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lqeZovSzCLIlIrzkXjGNanAmKSs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.mft Manifest number: 11A7 Signing time: Fri 08 Aug 2025 17:24:08 +0000 Manifest this update: Fri 08 Aug 2025 17:24:07 +0000 Manifest next update: Fri 15 Aug 2025 17:24:07 +0000 Files and hashes: 1: lqeZovSzCLIlIrzkXjGNanAmKSs.crl (hash: Xsb89w5Y6mrYuYP6VshCdaOkUgEkDj9C8n2DmbrhAHg=) 2: 318BC266FEA911E8BF138B59C4F9AE02.roa (hash: 33z1F9RZ3yx55dZ5+rGpqQ7gwX1OExcujk8Oepxi/pw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.crl rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lqeZovSzCLIlIrzkXjGNanAmKSs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4532 (0x11b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BA4B, serialNumber=96A799A2F4B308B22522BCE45E318D6A7026292B Validity Not Before: Aug 8 17:24:07 2025 GMT Not After : Aug 15 17:24:07 2025 GMT Subject: CN=689632b8-156b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:35:73:37:8d:b5:8c:8d:3f:a9:a7:14:d5:ac: c5:04:5a:fa:24:5c:fe:52:05:c6:89:f6:c5:2f:f2: 43:b0:8f:45:50:28:60:99:a5:42:1f:ab:b4:a1:87: c8:c8:00:a4:14:d9:37:e4:a0:67:08:a7:1b:e7:a5: 28:11:56:17:56:e3:35:34:ac:89:a5:8b:3d:b5:3b: b2:21:3a:85:2b:53:6e:5f:25:05:c7:2b:62:1a:eb: a0:76:1a:ba:68:5e:68:94:75:37:02:06:60:30:f6: e3:5a:79:90:39:c1:e6:fc:c5:29:8d:9b:2a:00:3b: 49:99:e3:b6:01:fc:87:d4:47:e4:4d:d5:16:ad:2f: 57:26:55:2d:f2:5c:30:94:08:59:ba:90:1c:7a:05: 55:ba:9a:17:16:a6:69:14:26:a7:38:4e:87:af:c4: a0:13:04:1c:6f:6d:ff:c0:b0:fa:61:ee:62:a8:a5: e5:4a:c4:30:b1:6a:2b:29:28:7b:86:5e:7a:8b:97: 6e:d1:00:42:57:eb:ba:ed:4f:d2:20:a2:80:45:03: 10:44:4d:1c:a0:f2:f3:70:9e:80:6d:3c:e0:7d:8a: 55:0d:fb:76:92:da:1b:72:b9:e4:ac:1d:e5:ee:f7: fa:25:cc:8a:36:27:21:a1:14:c5:04:77:61:ad:a1: bf:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:24:5B:88:2B:A8:C5:E7:57:F7:63:D8:12:30:02:04:66:08:33:55 X509v3 Authority Key Identifier: keyid:96:A7:99:A2:F4:B3:08:B2:25:22:BC:E4:5E:31:8D:6A:70:26:29:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lqeZovSzCLIlIrzkXjGNanAmKSs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:36:dc:65:06:82:62:cd:27:b5:d6:33:a1:84:aa:b1:6c:92: d8:c4:e7:35:9b:7e:9a:4a:6b:a6:c1:05:33:95:43:35:99:87: 47:ed:78:e4:da:08:f4:30:ed:be:01:a6:fe:2e:1c:d6:6f:46: 6d:2d:3a:ec:db:3f:8e:52:5c:45:f7:95:04:7b:45:8e:d1:64: b0:dd:cd:5d:80:42:de:90:23:a6:49:40:dd:38:d1:52:1b:fd: 6f:4e:e5:17:3a:95:33:96:30:93:cc:f4:42:dc:20:9e:36:93: c6:a5:7e:e0:27:19:1a:2a:c5:4d:ca:f0:ea:62:5e:fe:87:64: c2:76:90:11:0e:ad:1f:8d:4b:25:0d:6c:a0:0f:6c:67:eb:75: 11:00:09:a8:9a:25:ce:bc:8b:b1:57:52:3b:34:ac:6a:9c:4e: 15:9b:bb:eb:53:50:e2:a3:70:a4:6b:77:17:bc:78:8f:31:6f: 42:f0:ca:58:86:64:e6:69:39:1e:d9:c7:68:74:3a:29:1e:84: 27:69:dc:78:12:fc:fa:48:d9:ed:b3:77:ab:4b:90:fe:3c:91: af:0a:d3:a9:6d:74:b1:9a:e3:9c:8c:47:6b:50:7b:0b:94:27: 96:1a:c7:b1:3f:a9:49:37:7c:66:58:fd:73:9a:fd:e5:e1:ce: 22:e7:ec:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEbQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJBNEIxMTAvBgNVBAUTKDk2QTc5OUEyRjRCMzA4QjIyNTIyQkNFNDVFMzE4RDZB NzAyNjI5MkIwHhcNMjUwODA4MTcyNDA3WhcNMjUwODE1MTcyNDA3WjAYMRYwFAYD VQQDEw02ODk2MzJiOC0xNTZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8TVzN421jI0/qacU1azFBFr6JFz+UgXGifbFL/JDsI9FUChgmaVCH6u0oYfI yACkFNk35KBnCKcb56UoEVYXVuM1NKyJpYs9tTuyITqFK1NuXyUFxytiGuugdhq6 aF5olHU3AgZgMPbjWnmQOcHm/MUpjZsqADtJmeO2AfyH1EfkTdUWrS9XJlUt8lww lAhZupAcegVVupoXFqZpFCanOE6Hr8SgEwQcb23/wLD6Ye5iqKXlSsQwsWorKSh7 hl56i5du0QBCV+u67U/SIKKARQMQRE0coPLzcJ6AbTzgfYpVDft2ktobcrnkrB3l 7vf6JcyKNichoRTFBHdhraG/DwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ8kW4gr qMXnV/dj2BIwAgRmCDNVMB8GA1UdIwQYMBaAFJanmaL0swiyJSK85F4xjWpwJikr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkE0Qi9FMzc3RkQ3QUZF QTcxMUU4QTJFNEI0NTdDNEY5QUUwMi9scWVab3ZTekNMSWxJcnprWGpHTmFuQW1L U3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xxZVpvdlN6Q0xJbElyemtYakdOYW5BbUtTcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QkE0Qi9FMzc3RkQ3QUZFQTcxMUU4QTJFNEI0NTdDNEY5QUUwMi9scWVab3ZTekNM SWxJcnprWGpHTmFuQW1LU3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlNtxlBoJizSe11jOhhKqxbJLYxOc1m36aSmumwQUzlUM1mYdH7Xjk 2gj0MO2+Aab+LhzWb0ZtLTrs2z+OUlxF95UEe0WO0WSw3c1dgELekCOmSUDdONFS G/1vTuUXOpUzljCTzPRC3CCeNpPGpX7gJxkaKsVNyvDqYl7+h2TCdpARDq0fjUsl DWygD2xn63URAAmomiXOvIuxV1I7NKxqnE4Vm7vrU1Dio3Cka3cXvHiPMW9C8MpY hmTmaTke2cdodDopHoQnadx4Evz6SNnts3erS5D+PJGvCtOpbXSxmuOcjEdrUHsL lCeWGsexP6lJN3xmWP1zmv3l4c4i5+wK -----END CERTIFICATE-----Generated at Sun Aug 10 03:48:24 2025 by rpki-client