$ rpki-client -vvf rpki.apnic.net/member_repository/A913BC05/47339566208C11EA9435E63BC4F9AE02/LVqV8tpLHxxwxkYlGfxvWJRfyrk.mft File: LVqV8tpLHxxwxkYlGfxvWJRfyrk.mft (raw, json) Hash identifier: N4xa5n+5bOZTEqKR1om0omyp9API/L5oo2gJnOABtKs= Subject key identifier: E8:1C:51:C3:BF:1F:16:D9:B7:AD:8B:49:8F:7D:FF:A6:D9:B8:4F:63 Authority key identifier: 2D:5A:95:F2:DA:4B:1F:1C:70:C6:46:25:19:FC:6F:58:94:5F:CA:B9 Certificate issuer: /CN=A913BC05/serialNumber=2D5A95F2DA4B1F1C70C6462519FC6F58945FCAB9 Certificate serial: 0BDF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LVqV8tpLHxxwxkYlGfxvWJRfyrk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913BC05/47339566208C11EA9435E63BC4F9AE02/LVqV8tpLHxxwxkYlGfxvWJRfyrk.mft Manifest number: 0BD9 Signing time: Tue 12 Aug 2025 19:04:18 +0000 Manifest this update: Tue 12 Aug 2025 19:04:17 +0000 Manifest next update: Tue 19 Aug 2025 19:04:17 +0000 Files and hashes: 1: LVqV8tpLHxxwxkYlGfxvWJRfyrk.crl (hash: 65Ah9xfJ2gwKF2MxdCA+Ueme5E+g0MF7ATrrfc81OE0=) 2: 4ABAD810208D11EAA05C7C3DC4F9AE02.roa (hash: IjPsFFHCvUaMlnUaOFvCNKSeXcsnIqpFaL3Dn7jwLDU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913BC05/47339566208C11EA9435E63BC4F9AE02/LVqV8tpLHxxwxkYlGfxvWJRfyrk.crl rsync://rpki.apnic.net/member_repository/A913BC05/47339566208C11EA9435E63BC4F9AE02/LVqV8tpLHxxwxkYlGfxvWJRfyrk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LVqV8tpLHxxwxkYlGfxvWJRfyrk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 19:04:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3039 (0xbdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913BC05, serialNumber=2D5A95F2DA4B1F1C70C6462519FC6F58945FCAB9 Validity Not Before: Aug 12 19:04:17 2025 GMT Not After : Aug 19 19:04:17 2025 GMT Subject: CN=689b9031-d3f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:13:a4:a3:e6:df:e5:19:29:3b:97:18:e7:7c: a5:4a:bd:e0:bb:6c:9f:08:4b:f0:a0:05:b5:53:52: f4:01:ac:f1:d9:ff:f5:a1:e2:eb:4c:2a:18:24:6b: e8:65:1e:67:62:c5:49:c5:d8:cf:96:be:9f:ad:09: 8e:d9:d0:88:1b:19:ce:7f:00:37:22:9f:90:d1:1a: df:34:fc:cf:0e:45:2b:68:d4:36:89:6e:43:90:23: 3c:44:a7:26:99:1a:12:dd:c8:80:6c:4d:4c:c2:ab: cf:cc:5d:eb:06:16:90:5e:8e:5a:1f:1c:e9:6d:d9: 54:2d:9d:dc:3d:7c:64:1b:85:6f:4d:ce:73:9b:c8: 48:27:e4:e0:d7:84:cc:2b:54:2f:e1:26:de:bd:9b: 9f:2d:3c:3a:51:87:be:b9:d1:21:80:dc:f1:71:27: 03:55:e1:69:2f:28:6a:18:a9:73:b7:c1:b8:e1:fa: 15:aa:5c:f6:aa:88:34:ae:f1:ab:b0:8b:fe:08:94: 03:cb:a1:37:72:6a:b4:b6:e6:65:fc:00:ef:ee:d7: 74:43:31:3c:ee:ef:f3:bf:7d:4d:ec:a3:82:e0:74: a6:79:fc:09:7a:d1:9a:5d:6c:32:88:20:ba:9e:b8: b2:6e:22:40:1f:20:45:35:c9:00:3f:36:a3:c0:9d: 09:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:1C:51:C3:BF:1F:16:D9:B7:AD:8B:49:8F:7D:FF:A6:D9:B8:4F:63 X509v3 Authority Key Identifier: keyid:2D:5A:95:F2:DA:4B:1F:1C:70:C6:46:25:19:FC:6F:58:94:5F:CA:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913BC05/47339566208C11EA9435E63BC4F9AE02/LVqV8tpLHxxwxkYlGfxvWJRfyrk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LVqV8tpLHxxwxkYlGfxvWJRfyrk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913BC05/47339566208C11EA9435E63BC4F9AE02/LVqV8tpLHxxwxkYlGfxvWJRfyrk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:82:5e:56:54:91:19:70:39:bc:8d:e6:d8:64:a0:1f:a7:4a: da:2a:5a:05:d8:d8:85:ae:07:da:ae:5c:7e:b8:03:7b:02:ad: 32:d7:59:90:0f:cf:ed:8a:8f:d7:36:ad:46:3a:69:8d:3c:2b: ef:db:bc:88:e1:1a:f1:cf:dc:33:6f:df:c9:2d:11:da:cf:d2: 9d:8d:b1:22:ca:e8:5d:b0:b9:29:9a:a7:5e:b7:49:79:80:15: 68:e2:e1:28:8f:30:18:d5:45:69:fe:91:bd:4a:89:85:4f:7b: eb:e4:87:27:4b:b6:0b:4a:bc:05:ef:11:2f:d8:93:d2:8f:08: 49:82:84:2a:d8:54:39:b2:75:4d:ef:92:18:ab:24:97:e1:32: aa:2c:cf:0c:7e:44:fd:77:62:3a:df:8f:94:37:e5:61:e1:af: a5:0b:14:04:4f:6c:dc:92:04:d0:8a:4d:39:55:4e:ba:9d:fa: 46:3b:81:2a:b6:6b:d8:b8:1d:da:5c:d2:97:8c:b4:b2:aa:7a: 73:2f:81:fd:d4:fa:42:c4:83:55:2b:f8:ae:aa:fb:a4:a7:60: 9f:63:bb:e6:92:96:27:71:7e:4c:75:36:d3:2d:4a:be:91:fb: 9d:3e:99:ee:f7:88:64:81:75:26:32:32:a0:5c:49:45:ae:70: 98:55:53:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC98wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0JDMDUxMTAvBgNVBAUTKDJENUE5NUYyREE0QjFGMUM3MEM2NDYyNTE5RkM2RjU4 OTQ1RkNBQjkwHhcNMjUwODEyMTkwNDE3WhcNMjUwODE5MTkwNDE3WjAYMRYwFAYD VQQDEw02ODliOTAzMS1kM2YzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnROko+bf5RkpO5cY53ylSr3gu2yfCEvwoAW1U1L0Aazx2f/1oeLrTCoYJGvo ZR5nYsVJxdjPlr6frQmO2dCIGxnOfwA3Ip+Q0RrfNPzPDkUraNQ2iW5DkCM8RKcm mRoS3ciAbE1MwqvPzF3rBhaQXo5aHxzpbdlULZ3cPXxkG4VvTc5zm8hIJ+Tg14TM K1Qv4SbevZufLTw6UYe+udEhgNzxcScDVeFpLyhqGKlzt8G44foVqlz2qog0rvGr sIv+CJQDy6E3cmq0tuZl/ADv7td0QzE87u/zv31N7KOC4HSmefwJetGaXWwyiCC6 nriybiJAHyBFNckAPzajwJ0JMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOgcUcO/ HxbZt62LSY99/6bZuE9jMB8GA1UdIwQYMBaAFC1alfLaSx8ccMZGJRn8b1iUX8q5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQkMwNS80NzMzOTU2NjIw OEMxMUVBOTQzNUU2M0JDNEY5QUUwMi9MVnFWOHRwTEh4eHd4a1lsR2Z4dldKUmZ5 cmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xWcVY4dHBMSHh4d3hrWWxHZnh2V0pSZnlyay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QkMwNS80NzMzOTU2NjIwOEMxMUVBOTQzNUU2M0JDNEY5QUUwMi9MVnFWOHRwTEh4 eHd4a1lsR2Z4dldKUmZ5cmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxgl5WVJEZcDm8jebYZKAfp0raKloF2NiFrgfarlx+uAN7Aq0y11mQ D8/tio/XNq1GOmmNPCvv27yI4Rrxz9wzb9/JLRHaz9KdjbEiyuhdsLkpmqdet0l5 gBVo4uEojzAY1UVp/pG9SomFT3vr5IcnS7YLSrwF7xEv2JPSjwhJgoQq2FQ5snVN 75IYqySX4TKqLM8MfkT9d2I634+UN+Vh4a+lCxQET2zckgTQik05VU66nfpGO4Eq tmvYuB3aXNKXjLSyqnpzL4H91PpCxINVK/iuqvukp2CfY7vmkpYncX5MdTbTLUq+ kfudPpnu94hkgXUmMjKgXElFrnCYVVOj -----END CERTIFICATE-----Generated at Wed Aug 13 05:59:23 2025 by rpki-client