$ rpki-client -vvf rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/lDuBQuFVPslGJaRyTlaYKhVY_pw.mft File: lDuBQuFVPslGJaRyTlaYKhVY_pw.mft (raw, json) Hash identifier: zJEZ0oi3Xg00luzH2eeMgePHQ0MhsAtnHyEmasY7OjY= Subject key identifier: 2B:F3:E6:51:E3:AD:E2:63:C8:A5:BE:24:17:47:CE:C6:29:41:4B:FE Authority key identifier: 94:3B:81:42:E1:55:3E:C9:46:25:A4:72:4E:56:98:2A:15:58:FE:9C Certificate issuer: /CN=A91582D9/serialNumber=943B8142E1553EC94625A4724E56982A1558FE9C Certificate serial: 17B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lDuBQuFVPslGJaRyTlaYKhVY_pw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/lDuBQuFVPslGJaRyTlaYKhVY_pw.mft Manifest number: 1FD5 Signing time: Sat 02 Aug 2025 16:43:21 +0000 Manifest this update: Sat 02 Aug 2025 16:43:21 +0000 Manifest next update: Sat 09 Aug 2025 16:43:21 +0000 Files and hashes: 1: lDuBQuFVPslGJaRyTlaYKhVY_pw.crl (hash: xm1eLvcL8g9d840YV2aNPqfTgPvpcAZMBuDfrofmZOc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/lDuBQuFVPslGJaRyTlaYKhVY_pw.crl rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/lDuBQuFVPslGJaRyTlaYKhVY_pw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lDuBQuFVPslGJaRyTlaYKhVY_pw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 16:43:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6069 (0x17b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91582D9, serialNumber=943B8142E1553EC94625A4724E56982A1558FE9C Validity Not Before: Aug 2 16:43:21 2025 GMT Not After : Aug 9 16:43:21 2025 GMT Subject: CN=688e4029-8cf7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:6a:0f:0f:4f:d2:ca:be:dd:3e:78:86:60:b1: d3:8b:a8:52:2d:60:b8:ed:9f:c9:53:ed:77:82:57: 83:a4:6c:3a:a4:71:db:79:2e:60:ef:38:d7:a7:46: 02:c3:d3:48:62:fc:6d:27:6e:a9:f1:40:1f:e1:ee: 11:d3:28:70:e2:2d:83:b6:27:36:24:1c:f4:ac:95: a9:27:5d:7d:10:af:af:11:83:2e:18:d4:38:04:6b: dc:53:89:56:28:51:69:9c:3e:97:74:68:cd:c7:f5: 2d:6a:52:8b:83:50:78:bd:a1:73:ef:72:37:70:9a: 73:89:65:8e:9b:2f:a8:e2:f5:5a:d5:d7:bb:66:24: 79:c9:ac:f9:18:3e:0e:5e:ce:f0:18:f9:be:20:71: df:fe:eb:19:48:3b:f7:1f:97:35:5d:df:cb:53:30: 42:c6:df:c7:b9:1e:87:4f:09:0c:18:1c:c9:6a:f7: 49:07:c5:e8:ca:cc:04:20:c0:cb:b9:9f:9c:5f:e3: 5f:bd:ea:ae:6f:10:59:b1:80:82:65:69:38:03:b2: 2f:95:d2:da:c9:3f:9b:e2:77:28:43:cc:66:d5:01: 7a:c0:a4:54:0c:57:78:a6:39:da:cf:6c:2d:78:4e: 15:37:c5:d2:ab:03:6f:cb:b5:60:62:97:17:47:5c: 15:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:F3:E6:51:E3:AD:E2:63:C8:A5:BE:24:17:47:CE:C6:29:41:4B:FE X509v3 Authority Key Identifier: keyid:94:3B:81:42:E1:55:3E:C9:46:25:A4:72:4E:56:98:2A:15:58:FE:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/lDuBQuFVPslGJaRyTlaYKhVY_pw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lDuBQuFVPslGJaRyTlaYKhVY_pw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/lDuBQuFVPslGJaRyTlaYKhVY_pw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:c3:e1:31:76:1e:66:1a:45:74:f0:23:04:5d:3f:5d:7c:c3: 9b:a3:76:ef:32:b9:69:43:1f:eb:44:a1:64:d2:b9:d7:9d:4b: 84:ed:f6:30:59:0d:92:4b:4c:f3:cd:d8:8a:9e:0d:72:fd:2e: cc:bb:5c:06:bf:5e:f7:2f:08:27:0e:c6:67:72:ac:66:39:77: a1:7a:d9:f6:c0:c4:ee:0a:22:4f:b9:d8:8a:d7:85:49:9e:40: 8a:cc:53:fb:f2:76:25:7e:55:8e:4f:4c:04:b5:87:41:3c:2b: 8a:c7:37:49:af:d1:80:d7:70:4c:49:01:d7:ba:aa:9f:ce:d1: 48:7b:0e:62:e8:00:9a:a4:fb:bf:f2:15:8a:09:59:ce:a6:8d: f8:84:e7:db:4e:f1:ce:8a:85:a2:a3:cb:2f:5c:9d:ab:f7:c9: ae:e6:a5:90:88:09:c1:bf:74:1b:10:98:a6:d0:28:bb:e8:f9: 5b:df:8a:01:81:ba:40:c0:6b:2e:1e:af:87:23:85:65:de:53: c9:cc:da:e3:ad:b5:fd:6c:11:da:ee:d9:b0:53:89:2f:3f:5d: 13:cb:7e:b9:e2:4c:01:e7:ba:be:8a:0c:99:3f:75:0b:7b:35: 53:a0:0d:83:e4:93:b0:e7:e3:85:97:b5:d4:15:37:f5:9e:fb: d3:a8:4a:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF7UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgyRDkxMTAvBgNVBAUTKDk0M0I4MTQyRTE1NTNFQzk0NjI1QTQ3MjRFNTY5ODJB MTU1OEZFOUMwHhcNMjUwODAyMTY0MzIxWhcNMjUwODA5MTY0MzIxWjAYMRYwFAYD VQQDEw02ODhlNDAyOS04Y2Y3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvmoPD0/Syr7dPniGYLHTi6hSLWC47Z/JU+13gleDpGw6pHHbeS5g7zjXp0YC w9NIYvxtJ26p8UAf4e4R0yhw4i2Dtic2JBz0rJWpJ119EK+vEYMuGNQ4BGvcU4lW KFFpnD6XdGjNx/UtalKLg1B4vaFz73I3cJpziWWOmy+o4vVa1de7ZiR5yaz5GD4O Xs7wGPm+IHHf/usZSDv3H5c1Xd/LUzBCxt/HuR6HTwkMGBzJavdJB8XoyswEIMDL uZ+cX+NfvequbxBZsYCCZWk4A7IvldLayT+b4ncoQ8xm1QF6wKRUDFd4pjnaz2wt eE4VN8XSqwNvy7VgYpcXR1wVdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCvz5lHj reJjyKW+JBdHzsYpQUv+MB8GA1UdIwQYMBaAFJQ7gULhVT7JRiWkck5WmCoVWP6c MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODJEOS8wRURBNkQ1RUNE REExMUU3QkRFQThDMkJDNEY5QUUwMi9sRHVCUXVGVlBzbEdKYVJ5VGxhWUtoVllf cHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xEdUJRdUZWUHNsR0phUnlUbGFZS2hWWV9wdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODJEOS8wRURBNkQ1RUNEREExMUU3QkRFQThDMkJDNEY5QUUwMi9sRHVCUXVGVlBz bEdKYVJ5VGxhWUtoVllfcHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtw+Exdh5mGkV08CMEXT9dfMObo3bvMrlpQx/rRKFk0rnXnUuE7fYw WQ2SS0zzzdiKng1y/S7Mu1wGv173LwgnDsZncqxmOXehetn2wMTuCiJPudiK14VJ nkCKzFP78nYlflWOT0wEtYdBPCuKxzdJr9GA13BMSQHXuqqfztFIew5i6ACapPu/ 8hWKCVnOpo34hOfbTvHOioWio8svXJ2r98mu5qWQiAnBv3QbEJim0Ci76Plb34oB gbpAwGsuHq+HI4Vl3lPJzNrjrbX9bBHa7tmwU4kvP10Ty3654kwB57q+igyZP3UL ezVToA2D5JOw5+OFl7XUFTf1nvvTqEpA -----END CERTIFICATE-----Generated at Mon Aug 4 11:17:43 2025 by rpki-client