$ rpki-client -vvf rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.mft File: llSi8IRZeiuRrAAqdgfhPBXQlJE.mft (raw, json) Hash identifier: D4vgY7SpLH26Dola+w8vugO/Np7j9NBQmlAovtXnaUA= Subject key identifier: A3:6B:BD:2F:47:AD:F9:D4:03:0B:78:37:64:31:13:0B:F9:DD:FB:D5 Authority key identifier: 96:54:A2:F0:84:59:7A:2B:91:AC:00:2A:76:07:E1:3C:15:D0:94:91 Certificate issuer: /CN=A9153303/serialNumber=9654A2F084597A2B91AC002A7607E13C15D09491 Certificate serial: CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/llSi8IRZeiuRrAAqdgfhPBXQlJE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.mft Manifest number: CB Signing time: Sat 09 Aug 2025 06:08:08 +0000 Manifest this update: Sat 09 Aug 2025 06:08:08 +0000 Manifest next update: Sat 16 Aug 2025 06:08:08 +0000 Files and hashes: 1: llSi8IRZeiuRrAAqdgfhPBXQlJE.crl (hash: kgAhftY1+C93lScaeo0SVSuEx9lA4euMIgBn62NQ/UA=) 2: 29A436623FE111EFB5A50814C4F9AE02.roa (hash: 6fHZUduLlppKNeQyv7MyGz7d2EPeIy77Os8/ALcrrKI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.crl rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/llSi8IRZeiuRrAAqdgfhPBXQlJE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 205 (0xcd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153303, serialNumber=9654A2F084597A2B91AC002A7607E13C15D09491 Validity Not Before: Aug 9 06:08:08 2025 GMT Not After : Aug 16 06:08:08 2025 GMT Subject: CN=6896e5c8-5e56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:6b:11:da:91:77:85:d8:89:33:16:54:3f:a5: 4f:06:93:41:16:24:dc:c4:3e:d2:56:17:f9:f7:1a: 89:03:cd:b6:dc:69:0a:db:0c:26:89:db:58:7e:4b: 03:21:30:49:28:fd:2f:0f:5d:22:aa:dc:91:13:6d: 88:32:fd:08:6e:e2:2f:f2:67:64:70:b1:5e:97:6c: 73:85:fc:68:06:a7:37:54:9b:76:e7:d0:4d:7b:dd: 5d:c3:39:60:95:db:36:94:21:cc:a2:3f:31:f6:40: b0:90:33:fb:ed:7b:20:aa:c8:36:9b:94:21:ce:60: a6:a0:f1:27:6b:d6:2c:a2:a5:03:93:0d:9d:9e:f2: b0:7f:c4:f0:94:1c:44:a6:3d:ad:83:d7:bf:8d:83: 44:40:26:64:90:ec:d7:e5:54:0b:d5:8b:e0:b3:c3: 85:86:60:ef:aa:13:6c:a5:13:67:63:8e:b8:0a:48: af:e5:e3:17:1d:e6:7b:60:5f:4e:02:7f:49:94:04: 7c:d8:f4:6e:c2:54:44:91:82:8f:55:f7:21:a4:67: 0f:35:93:76:36:1b:9c:38:45:36:4c:00:c7:90:55: 8f:1a:c2:17:8f:13:03:8c:73:35:c6:b3:5b:9d:9c: 2e:fc:9d:21:52:66:b9:d3:e8:ea:5f:b6:3c:a7:50: f5:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:6B:BD:2F:47:AD:F9:D4:03:0B:78:37:64:31:13:0B:F9:DD:FB:D5 X509v3 Authority Key Identifier: keyid:96:54:A2:F0:84:59:7A:2B:91:AC:00:2A:76:07:E1:3C:15:D0:94:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/llSi8IRZeiuRrAAqdgfhPBXQlJE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:23:ea:bb:fb:7f:b8:79:a9:9d:f7:36:41:a7:36:e5:2d:2e: d8:10:f0:55:0f:38:66:6d:6e:9b:9d:43:86:29:31:e2:8b:42: 69:94:55:37:77:75:f1:87:dc:20:fc:65:73:ec:db:af:2a:c0: 24:03:63:b8:dd:36:07:e5:f6:5f:9e:a8:48:24:b3:71:7d:06: e3:ad:c7:f6:ad:a8:94:f6:6a:f8:81:cc:d8:05:ad:f9:62:2c: 34:5a:6c:68:66:ee:31:7e:be:88:6c:e6:59:64:42:c1:97:e3: ba:cd:09:8c:3a:4a:a2:11:3d:3f:3e:7d:7b:cc:32:a5:91:01: c0:60:29:5c:77:91:a7:26:5d:a4:60:f5:ea:34:cb:55:4e:95: c1:1c:21:da:32:45:29:0d:22:55:a6:44:dc:a7:a6:dc:93:2f: 5a:89:5e:35:59:f5:78:8d:c9:b0:01:b8:b0:60:df:bc:07:08: fb:cf:98:a1:43:9d:0e:3d:fa:24:1c:58:92:f6:9e:02:8b:c8: 25:30:53:49:1f:f4:78:64:4d:03:5a:97:ea:88:05:7a:f1:6a: 8c:95:78:a0:b7:d8:51:59:59:b4:cd:a9:e3:4d:49:7e:13:ac: c8:40:2a:44:3c:1c:d7:0e:89:29:b4:3d:2b:c0:1d:86:ac:9d: 4f:b8:f1:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTMzMDMxMTAvBgNVBAUTKDk2NTRBMkYwODQ1OTdBMkI5MUFDMDAyQTc2MDdFMTND MTVEMDk0OTEwHhcNMjUwODA5MDYwODA4WhcNMjUwODE2MDYwODA4WjAYMRYwFAYD VQQDEw02ODk2ZTVjOC01ZTU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1msR2pF3hdiJMxZUP6VPBpNBFiTcxD7SVhf59xqJA8223GkK2wwmidtYfksD ITBJKP0vD10iqtyRE22IMv0IbuIv8mdkcLFel2xzhfxoBqc3VJt259BNe91dwzlg lds2lCHMoj8x9kCwkDP77Xsgqsg2m5QhzmCmoPEna9YsoqUDkw2dnvKwf8TwlBxE pj2tg9e/jYNEQCZkkOzX5VQL1Yvgs8OFhmDvqhNspRNnY464Ckiv5eMXHeZ7YF9O An9JlAR82PRuwlREkYKPVfchpGcPNZN2NhucOEU2TADHkFWPGsIXjxMDjHM1xrNb nZwu/J0hUma50+jqX7Y8p1D1HQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKNrvS9H rfnUAwt4N2QxEwv53fvVMB8GA1UdIwQYMBaAFJZUovCEWXorkawAKnYH4TwV0JSR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzMwMy84MEJGMUE2MjNG RTAxMUVGODYzNUQ3MTJDNEY5QUUwMi9sbFNpOElSWmVpdVJyQUFxZGdmaFBCWFFs SkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xsU2k4SVJaZWl1UnJBQXFkZ2ZoUEJYUWxKRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzMwMy84MEJGMUE2MjNGRTAxMUVGODYzNUQ3MTJDNEY5QUUwMi9sbFNpOElSWmVp dVJyQUFxZGdmaFBCWFFsSkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfI+q7+3+4eamd9zZBpzblLS7YEPBVDzhmbW6bnUOGKTHii0JplFU3 d3Xxh9wg/GVz7NuvKsAkA2O43TYH5fZfnqhIJLNxfQbjrcf2raiU9mr4gczYBa35 Yiw0WmxoZu4xfr6IbOZZZELBl+O6zQmMOkqiET0/Pn17zDKlkQHAYClcd5GnJl2k YPXqNMtVTpXBHCHaMkUpDSJVpkTcp6bcky9aiV41WfV4jcmwAbiwYN+8Bwj7z5ih Q50OPfokHFiS9p4Ci8glMFNJH/R4ZE0DWpfqiAV68WqMlXigt9hRWVm0zanjTUl+ E6zIQCpEPBzXDokptD0rwB2GrJ1PuPEo -----END CERTIFICATE-----Generated at Mon Aug 11 04:43:10 2025 by rpki-client