$ rpki-client -vvf rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft File: lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft (raw, json) Hash identifier: W7D7wyb/IKlxAid2OJZ0qoey4dfN3WjfU13nUDvd9fs= Subject key identifier: A3:CA:4C:47:B7:9C:C1:7C:67:4F:32:96:01:8E:50:09:2C:DC:FF:17 Authority key identifier: 96:4D:08:72:7D:AE:DA:C7:40:37:AB:9C:43:A5:08:BA:DB:CF:DA:FD Certificate issuer: /CN=A914E0FE/serialNumber=964D08727DAEDAC74037AB9C43A508BADBCFDAFD Certificate serial: 8D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lk0Icn2u2sdAN6ucQ6UIutvP2v0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft Manifest number: 88 Signing time: Thu 07 Aug 2025 07:14:27 +0000 Manifest this update: Thu 07 Aug 2025 07:14:26 +0000 Manifest next update: Thu 14 Aug 2025 07:14:26 +0000 Files and hashes: 1: lk0Icn2u2sdAN6ucQ6UIutvP2v0.crl (hash: VJwjP5F4QTSIjyGcLaAllwCQjxWfkBkOHX31vF0DO4o=) 2: 9C9FACF6502411F093EA9419C4F9AE02.roa (hash: 3kK2PgqZkvV+Tke5YJ6lRXtuJEdURQG3ApvWLdCTm0Q=) 3: C5D7AFBA502411F0881DEB19C4F9AE02.roa (hash: Ti8eJO2oAD+cInPnRMrFT32zgx0G9iPebdag3c53iUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.crl rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lk0Icn2u2sdAN6ucQ6UIutvP2v0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 141 (0x8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E0FE, serialNumber=964D08727DAEDAC74037AB9C43A508BADBCFDAFD Validity Not Before: Aug 7 07:14:26 2025 GMT Not After : Aug 14 07:14:26 2025 GMT Subject: CN=68945252-ba05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ab:f7:af:60:d9:5c:0f:86:4c:78:6b:f9:bc: 47:8e:98:bd:f3:af:bc:47:c4:29:20:dd:18:b0:ca: 26:fc:1d:e9:f5:db:02:e4:53:63:35:40:13:48:e8: 39:ff:db:13:ab:57:02:b6:71:0f:0f:92:96:f1:f4: 15:d7:58:0e:16:ca:fa:15:16:eb:37:71:a7:3c:b2: 79:8e:9f:14:aa:be:5b:ba:d0:1b:6e:65:ce:77:cf: c4:73:c3:e5:92:79:06:90:4c:d6:ba:ca:85:e7:e0: 0c:64:de:7d:51:d2:ba:40:bb:6c:83:c3:b2:44:f3: 3a:de:b8:32:2e:74:20:23:2d:8b:6b:ef:79:a9:fd: 3f:ea:74:7a:c4:c6:3d:b9:b6:27:f3:dc:ff:51:c1: 40:da:6b:69:2a:7c:7d:2d:46:15:34:60:e1:b0:32: 3a:d0:be:bc:c8:96:fc:6c:9b:f1:3b:52:a5:1f:c3: 46:7d:77:1e:62:4b:9f:30:96:92:7c:62:5a:db:af: 22:dd:a3:ed:33:29:7e:58:56:ad:10:b4:c4:0f:a9: 5e:d3:ce:56:81:30:e6:f9:6c:3f:11:8b:2e:d7:78: 5b:c6:61:3d:34:c2:c0:04:3a:6c:33:e0:d5:ab:54: 8e:66:c3:78:59:1c:05:d0:3e:91:4e:44:b6:f9:bf: be:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:CA:4C:47:B7:9C:C1:7C:67:4F:32:96:01:8E:50:09:2C:DC:FF:17 X509v3 Authority Key Identifier: keyid:96:4D:08:72:7D:AE:DA:C7:40:37:AB:9C:43:A5:08:BA:DB:CF:DA:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lk0Icn2u2sdAN6ucQ6UIutvP2v0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:37:9a:16:c6:be:7f:79:c7:2d:89:31:45:c6:97:46:b9:e4: 9f:43:68:46:91:e8:84:4c:48:24:58:94:a9:78:7b:aa:83:47: 22:cd:ad:bc:56:eb:56:db:b0:5a:85:5e:42:f6:77:82:eb:d6: ac:ce:71:d9:33:1b:8b:47:3f:8d:99:5a:55:4d:e4:3d:de:77: 3b:7d:f7:70:78:f2:e5:68:08:ab:72:23:f2:f9:ba:3e:68:a8: 72:89:2b:0e:eb:f4:e2:af:88:3e:a7:aa:42:3c:56:40:b8:d6: 59:7a:87:ee:71:7c:0f:8d:47:71:7c:0a:9c:c8:36:f2:d7:eb: a1:bb:f5:7a:b1:a2:9c:94:ae:21:7b:d3:41:d5:84:d5:70:7b: 37:3c:9b:64:3e:ee:09:27:64:57:2f:40:70:0c:bd:75:98:41: 38:84:c3:c3:a8:1f:5d:56:68:77:4c:9c:f7:25:57:d5:66:64: 0f:2d:37:81:98:3d:f5:2f:0d:2c:fc:c1:35:1a:3d:2b:30:55: ba:b2:12:65:f2:2f:eb:d2:ce:ef:2e:30:01:27:51:78:64:21: 63:e3:7d:88:33:1d:ce:ae:5f:35:da:76:a7:80:e2:c8:a2:a9: 2c:de:12:f2:b7:db:b4:a6:5e:ad:c2:e7:94:44:9b:ef:b1:a7: bf:b5:7e:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUwRkUxMTAvBgNVBAUTKDk2NEQwODcyN0RBRURBQzc0MDM3QUI5QzQzQTUwOEJB REJDRkRBRkQwHhcNMjUwODA3MDcxNDI2WhcNMjUwODE0MDcxNDI2WjAYMRYwFAYD VQQDEw02ODk0NTI1Mi1iYTA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxav3r2DZXA+GTHhr+bxHjpi986+8R8QpIN0YsMom/B3p9dsC5FNjNUATSOg5 /9sTq1cCtnEPD5KW8fQV11gOFsr6FRbrN3GnPLJ5jp8Uqr5butAbbmXOd8/Ec8Pl knkGkEzWusqF5+AMZN59UdK6QLtsg8OyRPM63rgyLnQgIy2La+95qf0/6nR6xMY9 ubYn89z/UcFA2mtpKnx9LUYVNGDhsDI60L68yJb8bJvxO1KlH8NGfXceYkufMJaS fGJa268i3aPtMyl+WFatELTED6le085WgTDm+Ww/EYsu13hbxmE9NMLABDpsM+DV q1SOZsN4WRwF0D6RTkS2+b+++QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKPKTEe3 nMF8Z08ylgGOUAks3P8XMB8GA1UdIwQYMBaAFJZNCHJ9rtrHQDernEOlCLrbz9r9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTBGRS8yRjJCNkZFMkFC Q0ExMUVGQTk5NEQxMjlDNEY5QUUwMi9sazBJY24ydTJzZEFONnVjUTZVSXV0dlAy djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xrMEljbjJ1MnNkQU42dWNRNlVJdXR2UDJ2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTBGRS8yRjJCNkZFMkFCQ0ExMUVGQTk5NEQxMjlDNEY5QUUwMi9sazBJY24ydTJz ZEFONnVjUTZVSXV0dlAydjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFN5oWxr5/ecctiTFFxpdGueSfQ2hGkeiETEgkWJSpeHuqg0ciza28 VutW27BahV5C9neC69asznHZMxuLRz+NmVpVTeQ93nc7ffdwePLlaAirciPy+bo+ aKhyiSsO6/Tir4g+p6pCPFZAuNZZeofucXwPjUdxfAqcyDby1+uhu/V6saKclK4h e9NB1YTVcHs3PJtkPu4JJ2RXL0BwDL11mEE4hMPDqB9dVmh3TJz3JVfVZmQPLTeB mD31Lw0s/ME1Gj0rMFW6shJl8i/r0s7vLjABJ1F4ZCFj432IMx3Orl812nangOLI oqks3hLyt9u0pl6twueURJvvsae/tX5w -----END CERTIFICATE-----Generated at Sat Aug 9 01:18:53 2025 by rpki-client