$ rpki-client -vvf rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.mft File: LpyR9OOUpK-pdta8P2XfLZ8Hnr0.mft (raw, json) Hash identifier: duWZWCOTJzd3tI4GtQHTRFuGxyLpZbkxC3G++3cH4JA= Subject key identifier: CA:96:36:49:F0:3C:04:69:50:1E:10:2E:72:3D:BB:AB:BB:47:D1:D3 Authority key identifier: 2E:9C:91:F4:E3:94:A4:AF:A9:76:D6:BC:3F:65:DF:2D:9F:07:9E:BD Certificate issuer: /CN=A9131ABD/serialNumber=2E9C91F4E394A4AFA976D6BC3F65DF2D9F079EBD Certificate serial: 0C8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.mft Manifest number: 0C70 Signing time: Mon 04 Aug 2025 18:34:31 +0000 Manifest this update: Mon 04 Aug 2025 18:34:30 +0000 Manifest next update: Mon 11 Aug 2025 18:34:30 +0000 Files and hashes: 1: LpyR9OOUpK-pdta8P2XfLZ8Hnr0.crl (hash: 0+C9VfjV/ZdG/0Ps2+bq/hshES+cmWbQXW4+og2E8lA=) 2: 37FE0B120C0011EAA414FC4AC4F9AE02.roa (hash: dRoQPSF6KT1Zue8dq53bmaroAkFylgM4n0LR39Z/E84=) 3: 3726AAFA0C0011EAA414FC4AC4F9AE02.roa (hash: 14kB3SfK8FO3TDcXjwd2x1V5vnXFwADnDTKaZlPfI5E=) 4: 99191AA404E911EAA9C20A60C4F9AE02.roa (hash: /7EkCVyzyWdgaZFFu1ty8sDFh13rW+8i+NvNFe/0Rfg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.crl rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 18:34:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3212 (0xc8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131ABD, serialNumber=2E9C91F4E394A4AFA976D6BC3F65DF2D9F079EBD Validity Not Before: Aug 4 18:34:30 2025 GMT Not After : Aug 11 18:34:30 2025 GMT Subject: CN=6890fd36-247a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:17:bb:44:32:96:66:36:9d:54:f1:c7:91:df: d1:05:f0:58:86:27:92:81:88:17:f9:6a:de:88:e0: 66:f0:19:d0:71:ab:32:21:b9:d8:b6:99:a1:2b:2c: ad:dc:5b:e1:46:16:de:1f:ce:2d:7a:40:f0:d6:68: 10:12:5a:4e:b5:90:ab:fc:f0:54:ed:a3:65:38:b0: 4d:7e:8d:db:e6:b2:d6:57:d2:45:0d:87:7f:62:ed: e7:a1:db:95:c3:68:01:13:e2:ba:61:89:88:e2:b4: 6d:89:22:71:58:fc:13:4a:b7:56:71:3b:0d:fc:5a: 8b:82:5b:07:8d:71:92:57:19:87:1c:4d:7d:79:16: da:8b:c1:2c:c0:a9:73:59:de:07:fd:c7:27:7a:5c: cf:c9:88:8a:bc:35:c7:18:fe:8a:20:26:e6:be:34: ec:52:f7:1f:72:11:70:b3:09:a8:37:c5:08:8d:72: d9:cf:42:7a:ec:27:20:aa:8a:55:03:d1:c3:55:c7: 00:89:a9:85:e5:5a:2d:35:3d:87:07:d1:6b:d1:dd: a9:8f:30:ff:38:6e:a1:2d:75:97:11:b3:f6:76:06: f4:34:d1:98:fb:06:b3:d8:d0:a8:a6:06:79:94:69: 45:ed:83:64:f2:f0:bd:11:7f:76:a6:0d:42:52:1d: b5:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:96:36:49:F0:3C:04:69:50:1E:10:2E:72:3D:BB:AB:BB:47:D1:D3 X509v3 Authority Key Identifier: keyid:2E:9C:91:F4:E3:94:A4:AF:A9:76:D6:BC:3F:65:DF:2D:9F:07:9E:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:5e:d4:98:f4:fb:50:d9:59:f2:3d:1f:c5:ac:83:fa:be:03: 61:8f:17:f7:1d:4d:ec:79:57:7b:3c:da:30:38:fa:7b:90:7d: bb:34:aa:15:a3:e9:9e:7a:20:ff:d7:51:2d:3d:4e:5a:d0:4a: 03:74:d5:4d:ee:67:99:75:0f:d6:2d:78:50:01:f8:53:3e:d1: fc:fc:4f:e8:b6:5c:20:6d:6a:bc:60:3f:da:cf:28:a5:c4:71: f7:1b:f2:73:0f:44:28:a9:ce:33:6d:56:f2:b9:e1:59:05:07: 8d:79:8f:d8:39:82:c0:25:6d:c9:dd:12:29:13:e9:49:1e:6a: 17:ff:cd:a1:2a:3b:2c:c8:7b:0e:33:ac:1f:ae:95:14:3d:9f: 98:5d:8b:ac:3c:09:59:8c:f2:af:35:6a:d9:e5:cb:04:5b:1e: 94:cd:28:4b:b4:a7:55:38:e2:ee:37:61:a8:a1:e2:69:48:de: 98:1f:7f:43:93:89:df:b8:d6:a1:7d:2b:22:7a:2f:90:f8:e6: 1d:36:03:46:a6:0e:31:fa:a0:cc:d4:61:d0:d6:cd:16:2b:8b: d6:a9:6b:6d:d7:b5:55:08:7c:71:ce:6e:56:38:02:ba:81:48: 0e:a6:95:25:a2:ab:ed:d0:11:ce:83:16:84:95:65:b9:65:b2: 5b:1c:2a:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFBQkQxMTAvBgNVBAUTKDJFOUM5MUY0RTM5NEE0QUZBOTc2RDZCQzNGNjVERjJE OUYwNzlFQkQwHhcNMjUwODA0MTgzNDMwWhcNMjUwODExMTgzNDMwWjAYMRYwFAYD VQQDEw02ODkwZmQzNi0yNDdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArBe7RDKWZjadVPHHkd/RBfBYhieSgYgX+WreiOBm8BnQcasyIbnYtpmhKyyt 3FvhRhbeH84tekDw1mgQElpOtZCr/PBU7aNlOLBNfo3b5rLWV9JFDYd/Yu3noduV w2gBE+K6YYmI4rRtiSJxWPwTSrdWcTsN/FqLglsHjXGSVxmHHE19eRbai8EswKlz Wd4H/ccnelzPyYiKvDXHGP6KICbmvjTsUvcfchFwswmoN8UIjXLZz0J67CcgqopV A9HDVccAiamF5VotNT2HB9Fr0d2pjzD/OG6hLXWXEbP2dgb0NNGY+waz2NCopgZ5 lGlF7YNk8vC9EX92pg1CUh21swIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMqWNknw PARpUB4QLnI9u6u7R9HTMB8GA1UdIwQYMBaAFC6ckfTjlKSvqXbWvD9l3y2fB569 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUFCRC8yMEU4RjlBMDA0 RTkxMUVBOEQyMEVFNUZDNEY5QUUwMi9McHlSOU9PVXBLLXBkdGE4UDJYZkxaOEhu cjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xweVI5T09VcEstcGR0YThQMlhmTFo4SG5yMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUFCRC8yMEU4RjlBMDA0RTkxMUVBOEQyMEVFNUZDNEY5QUUwMi9McHlSOU9PVXBL LXBkdGE4UDJYZkxaOEhucjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVXtSY9PtQ2VnyPR/FrIP6vgNhjxf3HU3seVd7PNowOPp7kH27NKoV o+meeiD/11EtPU5a0EoDdNVN7meZdQ/WLXhQAfhTPtH8/E/otlwgbWq8YD/azyil xHH3G/JzD0Qoqc4zbVbyueFZBQeNeY/YOYLAJW3J3RIpE+lJHmoX/82hKjssyHsO M6wfrpUUPZ+YXYusPAlZjPKvNWrZ5csEWx6UzShLtKdVOOLuN2GooeJpSN6YH39D k4nfuNahfSsiei+Q+OYdNgNGpg4x+qDM1GHQ1s0WK4vWqWtt17VVCHxxzm5WOAK6 gUgOppUloqvt0BHOgxaElWW5ZbJbHCof -----END CERTIFICATE-----Generated at Wed Aug 6 13:12:15 2025 by rpki-client