$ rpki-client -vvf rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/lo0qqmFoy0lpRKcnAYr7QqJuMeE.mft File: lo0qqmFoy0lpRKcnAYr7QqJuMeE.mft (raw, json) Hash identifier: 6qvji1pfCrSPyZRHGPIgvhEkPCd5V17VP/3PhSolfEA= Subject key identifier: 3D:13:A5:53:DC:40:FD:FE:A5:86:85:73:39:9E:FE:FB:F6:27:25:23 Authority key identifier: 96:8D:2A:AA:61:68:CB:49:69:44:A7:27:01:8A:FB:42:A2:6E:31:E1 Certificate issuer: /CN=A91211D4/serialNumber=968D2AAA6168CB496944A727018AFB42A26E31E1 Certificate serial: 06BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lo0qqmFoy0lpRKcnAYr7QqJuMeE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/lo0qqmFoy0lpRKcnAYr7QqJuMeE.mft Manifest number: 069F Signing time: Fri 08 Aug 2025 22:47:43 +0000 Manifest this update: Fri 08 Aug 2025 22:47:42 +0000 Manifest next update: Fri 15 Aug 2025 22:47:42 +0000 Files and hashes: 1: lo0qqmFoy0lpRKcnAYr7QqJuMeE.crl (hash: 91gCrauHIocf/RlgrlbjVRIwCODXFAO6AB6/Vic4nsc=) 2: 1019A190866411EF9319811DC4F9AE02.roa (hash: iHNv1D4CuKh0MplUtgE1k/nBfju2p94sD6YSJueQYIQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/lo0qqmFoy0lpRKcnAYr7QqJuMeE.crl rsync://rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/lo0qqmFoy0lpRKcnAYr7QqJuMeE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lo0qqmFoy0lpRKcnAYr7QqJuMeE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1727 (0x6bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91211D4, serialNumber=968D2AAA6168CB496944A727018AFB42A26E31E1 Validity Not Before: Aug 8 22:47:42 2025 GMT Not After : Aug 15 22:47:42 2025 GMT Subject: CN=68967e8e-f080 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:22:77:13:1e:be:1a:05:14:f0:bf:7c:a9:8c: 61:40:44:2b:58:1e:83:37:33:27:4e:57:0b:8d:ad: 67:32:60:ff:be:8a:4a:88:00:d9:9e:48:6c:c3:5b: dd:1c:2b:62:f5:ac:c5:c5:22:a9:66:e8:81:55:7d: ec:cc:8e:46:d4:0f:dc:96:54:f3:56:4d:85:c3:1a: c5:09:92:5c:f8:ed:35:64:7b:8e:3b:55:a4:8a:53: ff:11:e3:66:e9:c6:c0:67:c5:2c:8a:8a:00:a1:41: d2:ed:90:19:c0:e2:c8:85:49:ef:5e:2e:40:b8:71: a1:3c:4f:51:c8:4c:1c:fe:af:81:f7:1d:71:63:9c: 68:c9:11:90:b0:fb:e3:f3:67:af:2c:a7:26:a9:e7: 78:f5:75:66:5c:d6:47:51:1b:e3:d2:a8:2d:9c:89: 1b:b3:b3:96:a0:91:a4:6c:6e:d2:11:7e:bc:7f:48: 79:76:7d:38:7b:68:76:49:4d:aa:9d:6e:b4:ac:65: f4:25:3c:2a:f3:67:85:9e:89:7c:a0:46:bb:83:77: 3a:24:18:7f:b4:8c:8f:10:76:d2:0a:8b:db:56:ee: 6a:98:7f:b4:56:3a:55:3a:50:29:58:4f:d3:9d:98: 3a:f7:d5:0c:0f:42:f8:bf:45:46:6b:ce:0d:de:b9: eb:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:13:A5:53:DC:40:FD:FE:A5:86:85:73:39:9E:FE:FB:F6:27:25:23 X509v3 Authority Key Identifier: keyid:96:8D:2A:AA:61:68:CB:49:69:44:A7:27:01:8A:FB:42:A2:6E:31:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/lo0qqmFoy0lpRKcnAYr7QqJuMeE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lo0qqmFoy0lpRKcnAYr7QqJuMeE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/lo0qqmFoy0lpRKcnAYr7QqJuMeE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:41:f6:7e:33:31:38:18:c4:17:63:fb:9c:eb:5e:fc:be:fb: dd:3d:9d:f6:0c:58:18:65:de:dc:c4:2f:fc:42:a6:d6:44:3b: 71:09:40:f6:27:09:71:1e:87:d8:2a:94:ef:ab:65:90:c5:e0: 07:92:25:37:42:83:27:af:c8:a2:3c:6d:a0:53:f0:54:2e:27: f8:6a:02:2f:da:cc:c5:e5:49:91:48:bc:f5:60:d2:75:f6:6f: 76:be:4d:30:26:e9:49:e5:bb:75:33:27:36:1b:ff:73:63:41: 58:40:f6:84:af:65:3f:c8:24:ab:ab:f4:f2:72:ee:17:06:d6: 3a:a0:52:9c:4a:ce:97:99:69:79:2e:f0:2d:d8:f6:28:8e:9b: 2a:5a:23:e0:d7:c7:48:a5:a1:b9:e0:b4:b7:25:54:a6:af:f9: dc:ef:ea:aa:6e:5e:3a:af:a9:1c:72:46:07:43:4a:85:7e:f5: 4e:00:a9:9f:b8:c3:64:6e:90:99:16:fb:0a:dc:6e:d9:a6:23: 26:c7:81:41:01:83:67:6e:78:c0:87:85:1d:60:63:43:06:e8: 3c:1d:6e:38:3e:fe:68:29:e7:c1:20:e5:14:2f:88:b7:b1:5b: 18:0a:22:54:8d:69:1b:1f:24:9b:0b:e5:0d:32:3e:6f:6b:e8: d5:e9:ed:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBr8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjExRDQxMTAvBgNVBAUTKDk2OEQyQUFBNjE2OENCNDk2OTQ0QTcyNzAxOEFGQjQy QTI2RTMxRTEwHhcNMjUwODA4MjI0NzQyWhcNMjUwODE1MjI0NzQyWjAYMRYwFAYD VQQDEw02ODk2N2U4ZS1mMDgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0CJ3Ex6+GgUU8L98qYxhQEQrWB6DNzMnTlcLja1nMmD/vopKiADZnkhsw1vd HCti9azFxSKpZuiBVX3szI5G1A/cllTzVk2FwxrFCZJc+O01ZHuOO1WkilP/EeNm 6cbAZ8UsiooAoUHS7ZAZwOLIhUnvXi5AuHGhPE9RyEwc/q+B9x1xY5xoyRGQsPvj 82evLKcmqed49XVmXNZHURvj0qgtnIkbs7OWoJGkbG7SEX68f0h5dn04e2h2SU2q nW60rGX0JTwq82eFnol8oEa7g3c6JBh/tIyPEHbSCovbVu5qmH+0VjpVOlApWE/T nZg699UMD0L4v0VGa84N3rnr4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD0TpVPc QP3+pYaFczme/vv2JyUjMB8GA1UdIwQYMBaAFJaNKqphaMtJaUSnJwGK+0KibjHh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMTFENC9BOUY0OTY1Mjg2 Q0QxMUVCQTRBRkY2MDlDNEY5QUUwMi9sbzBxcW1Gb3kwbHBSS2NuQVlyN1FxSnVN ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xvMHFxbUZveTBscFJLY25BWXI3UXFKdU1lRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MTFENC9BOUY0OTY1Mjg2Q0QxMUVCQTRBRkY2MDlDNEY5QUUwMi9sbzBxcW1Gb3kw bHBSS2NuQVlyN1FxSnVNZUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaQfZ+MzE4GMQXY/uc6178vvvdPZ32DFgYZd7cxC/8QqbWRDtxCUD2 JwlxHofYKpTvq2WQxeAHkiU3QoMnr8iiPG2gU/BULif4agIv2szF5UmRSLz1YNJ1 9m92vk0wJulJ5bt1Myc2G/9zY0FYQPaEr2U/yCSrq/Tycu4XBtY6oFKcSs6XmWl5 LvAt2PYojpsqWiPg18dIpaG54LS3JVSmr/nc7+qqbl46r6kcckYHQ0qFfvVOAKmf uMNkbpCZFvsK3G7ZpiMmx4FBAYNnbnjAh4UdYGNDBug8HW44Pv5oKefBIOUUL4i3 sVsYCiJUjWkbHySbC+UNMj5va+jV6e1M -----END CERTIFICATE-----Generated at Sun Aug 10 05:37:02 2025 by rpki-client