$ rpki-client -vvf rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft File: lC8l1zULID6onvLRzBULBbF7K4c.mft (raw, json) Hash identifier: Zi8tg/0Ev4nWMAuPjXKvC3tKmnkrowoIIN1a1TaXQQo= Subject key identifier: E1:6E:18:80:43:AD:71:BF:E7:5E:8D:C7:85:80:83:C0:AA:ED:91:00 Authority key identifier: 94:2F:25:D7:35:0B:20:3E:A8:9E:F2:D1:CC:15:0B:05:B1:7B:2B:87 Certificate issuer: /CN=A912FB1D/serialNumber=942F25D7350B203EA89EF2D1CC150B05B17B2B87 Certificate serial: 34CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC8l1zULID6onvLRzBULBbF7K4c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft Manifest number: 34BA Signing time: Fri 08 Aug 2025 15:23:08 +0000 Manifest this update: Fri 08 Aug 2025 15:23:08 +0000 Manifest next update: Fri 15 Aug 2025 15:23:08 +0000 Files and hashes: 1: lC8l1zULID6onvLRzBULBbF7K4c.crl (hash: l7BAdDELpMC4GhyDYViimEbSmu+GB4iKP2CznYU+XJY=) 2: C098D762675111E9A0C4BB36C4F9AE02.roa (hash: INyUubVzyzPFDA6zTyRhkIRyBY0HoCb9vhAv2oVdZVY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.crl rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC8l1zULID6onvLRzBULBbF7K4c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13519 (0x34cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FB1D, serialNumber=942F25D7350B203EA89EF2D1CC150B05B17B2B87 Validity Not Before: Aug 8 15:23:08 2025 GMT Not After : Aug 15 15:23:08 2025 GMT Subject: CN=6896165c-b89e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:b5:c7:c3:9b:39:a5:9d:41:f9:3d:9f:86:4d: f8:9b:a6:d2:e9:2c:e1:2e:15:a0:e2:ca:a2:22:b3: 65:c0:4d:05:fc:9a:39:d7:57:41:d9:2d:f7:c0:d2: fb:2c:4e:fa:dd:9b:e8:8e:96:8a:9b:dc:3f:53:22: c7:56:2c:83:bf:6b:d3:6f:51:1f:3b:31:e2:54:87: cf:a8:44:fc:5a:00:49:f9:8b:7b:30:a5:c8:01:95: d1:6e:73:2e:b8:0c:a8:f8:de:5e:78:d6:37:7b:41: 52:e0:b6:58:09:01:50:01:68:50:41:df:b6:2b:1c: 0b:3e:cd:1d:68:f2:ea:0e:77:ec:b4:4e:11:f1:52: a7:1b:47:53:6c:ee:1f:25:5e:1e:4f:de:a8:8a:ec: 4e:40:20:25:f2:2c:88:c3:12:de:cb:1a:cd:4a:24: 8b:65:a9:05:40:e2:c1:78:c2:e9:dc:32:d4:06:dc: 57:c6:8e:f3:cb:e3:4f:e2:e7:be:5c:76:c3:b5:48: 9b:87:9b:d3:d1:da:44:16:da:63:6f:6a:da:97:9c: fe:d0:c5:0e:18:09:83:39:09:b1:68:d3:61:68:26: eb:be:78:0d:01:7f:95:fd:3f:30:19:bd:76:76:9e: f8:32:97:98:6e:7e:ff:99:fc:9c:a2:85:ef:5b:1c: 8c:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:6E:18:80:43:AD:71:BF:E7:5E:8D:C7:85:80:83:C0:AA:ED:91:00 X509v3 Authority Key Identifier: keyid:94:2F:25:D7:35:0B:20:3E:A8:9E:F2:D1:CC:15:0B:05:B1:7B:2B:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC8l1zULID6onvLRzBULBbF7K4c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:cf:f9:e2:c5:ae:ee:dc:f2:18:5c:44:ac:83:4a:04:3c:db: 62:01:61:d5:f1:b9:7f:3d:86:29:43:fc:aa:e1:50:5f:87:d6: 86:a7:20:ca:7e:3b:02:99:5c:47:7f:c9:5a:7c:91:10:16:db: 9d:c9:0e:63:0e:6f:c4:e7:41:ea:c6:2e:26:1d:e6:ca:c0:0d: 38:4a:ac:49:61:0a:2d:cc:4c:d8:61:61:84:1e:81:cb:46:60: 6e:66:31:5e:ca:ad:0b:84:2c:35:8d:46:83:67:e9:54:0b:4c: 4c:a8:ff:87:8d:58:fe:5a:00:1e:34:6a:8b:fb:af:00:1a:9e: 6b:ca:fe:68:e2:6f:93:74:e4:97:37:00:c2:77:d3:41:4d:93: 2c:5e:05:f6:8c:c5:90:7b:11:d5:18:b6:01:9e:a9:08:e1:8a: 91:cf:99:c6:5a:5f:cf:14:96:4a:ce:d6:67:66:a4:12:05:b7: b5:1d:5e:d0:f8:12:13:02:4a:63:07:16:11:66:98:6c:91:82: 54:a3:41:72:81:3b:20:51:c9:c6:f1:0f:c4:34:51:3b:17:0b: b5:fa:38:8f:fe:dd:87:2e:f8:c1:03:e0:e9:4e:ba:16:23:23: d3:fe:18:1d:d1:e0:f1:d0:39:58:59:67:53:78:ab:09:ba:c5: 61:8b:27:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZCMUQxMTAvBgNVBAUTKDk0MkYyNUQ3MzUwQjIwM0VBODlFRjJEMUNDMTUwQjA1 QjE3QjJCODcwHhcNMjUwODA4MTUyMzA4WhcNMjUwODE1MTUyMzA4WjAYMRYwFAYD VQQDEw02ODk2MTY1Yy1iODllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0LXHw5s5pZ1B+T2fhk34m6bS6SzhLhWg4sqiIrNlwE0F/Jo511dB2S33wNL7 LE763ZvojpaKm9w/UyLHViyDv2vTb1EfOzHiVIfPqET8WgBJ+Yt7MKXIAZXRbnMu uAyo+N5eeNY3e0FS4LZYCQFQAWhQQd+2KxwLPs0daPLqDnfstE4R8VKnG0dTbO4f JV4eT96oiuxOQCAl8iyIwxLeyxrNSiSLZakFQOLBeMLp3DLUBtxXxo7zy+NP4ue+ XHbDtUibh5vT0dpEFtpjb2ral5z+0MUOGAmDOQmxaNNhaCbrvngNAX+V/T8wGb12 dp74MpeYbn7/mfycooXvWxyMDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOFuGIBD rXG/516Nx4WAg8Cq7ZEAMB8GA1UdIwQYMBaAFJQvJdc1CyA+qJ7y0cwVCwWxeyuH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkIxRC9DNjg0Q0E5QzFE QUIxMUUyQTIxRTM1QUEwOEIwMkNEMi9sQzhsMXpVTElENm9udkxSekJVTEJiRjdL NGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xDOGwxelVMSUQ2b252TFJ6QlVMQmJGN0s0Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RkIxRC9DNjg0Q0E5QzFEQUIxMUUyQTIxRTM1QUEwOEIwMkNEMi9sQzhsMXpVTElE Nm9udkxSekJVTEJiRjdLNGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFz/nixa7u3PIYXESsg0oEPNtiAWHV8bl/PYYpQ/yq4VBfh9aGpyDK fjsCmVxHf8lafJEQFtudyQ5jDm/E50Hqxi4mHebKwA04SqxJYQotzEzYYWGEHoHL RmBuZjFeyq0LhCw1jUaDZ+lUC0xMqP+HjVj+WgAeNGqL+68AGp5ryv5o4m+TdOSX NwDCd9NBTZMsXgX2jMWQexHVGLYBnqkI4YqRz5nGWl/PFJZKztZnZqQSBbe1HV7Q +BITAkpjBxYRZphskYJUo0FygTsgUcnG8Q/ENFE7Fwu1+jiP/t2HLvjBA+DpTroW IyPT/hgd0eDx0DlYWWdTeKsJusVhiyec -----END CERTIFICATE-----Generated at Sat Aug 9 05:42:56 2025 by rpki-client