$ rpki-client -vvf rpki.apnic.net/member_repository/A916AE6A/583245B61DAA11E2872AF3A508B02CD2/LIjzj21PhPLBkaP6KxkVrgiYhzQ.mft File: LIjzj21PhPLBkaP6KxkVrgiYhzQ.mft (raw, json) Hash identifier: dADZeF63sBLE1wHh8FAqAvFpbxVnNjNKqAzj1ZXg4Gw= Subject key identifier: 0A:28:03:10:C8:CF:9E:D3:2D:0A:E4:2B:A1:2C:BD:08:E0:6D:0F:14 Authority key identifier: 2C:88:F3:8F:6D:4F:84:F2:C1:91:A3:FA:2B:19:15:AE:08:98:87:34 Certificate issuer: /CN=A916AE6A/serialNumber=2C88F38F6D4F84F2C191A3FA2B1915AE08988734 Certificate serial: 34AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LIjzj21PhPLBkaP6KxkVrgiYhzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916AE6A/583245B61DAA11E2872AF3A508B02CD2/LIjzj21PhPLBkaP6KxkVrgiYhzQ.mft Manifest number: 34AB Signing time: Sun 10 Aug 2025 15:15:41 +0000 Manifest this update: Sun 10 Aug 2025 15:15:41 +0000 Manifest next update: Sun 17 Aug 2025 15:15:41 +0000 Files and hashes: 1: LIjzj21PhPLBkaP6KxkVrgiYhzQ.crl (hash: 7uzOVoMd6Afx7zeu+yh5pESPVPcOwADpaku8H97OHMQ=) 2: 22355CF4DE8411EDBC551D19C4F9AE02.roa (hash: cD8CzWCOccX7amwfxtqgHIbE7YwiBohTqztQjp4x6HM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916AE6A/583245B61DAA11E2872AF3A508B02CD2/LIjzj21PhPLBkaP6KxkVrgiYhzQ.crl rsync://rpki.apnic.net/member_repository/A916AE6A/583245B61DAA11E2872AF3A508B02CD2/LIjzj21PhPLBkaP6KxkVrgiYhzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LIjzj21PhPLBkaP6KxkVrgiYhzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13487 (0x34af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916AE6A, serialNumber=2C88F38F6D4F84F2C191A3FA2B1915AE08988734 Validity Not Before: Aug 10 15:15:41 2025 GMT Not After : Aug 17 15:15:41 2025 GMT Subject: CN=6898b79d-238e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:02:0b:c6:7e:fe:fd:2c:48:77:5b:c1:72:ca: f1:7d:62:bd:e5:e4:e2:57:4f:68:34:c5:8b:1d:d1: 2b:ed:ba:1d:4d:b8:a3:18:19:06:0a:34:34:17:96: 4e:1f:a2:cb:c6:7d:f9:aa:62:fe:ff:8c:58:98:c5: 5d:2f:d4:78:59:6d:bb:a8:2d:1c:ea:fe:70:e2:1f: 75:a9:76:8b:6e:6c:eb:f5:72:a3:81:30:d3:dc:59: 91:8e:36:d5:53:6d:c7:df:6b:6f:fa:d1:ff:87:b1: 9e:6f:aa:ad:cd:f0:a4:36:ab:a8:c1:66:0d:35:97: f3:a7:ba:e9:0f:78:2d:47:2d:d3:d5:68:c1:18:76: 15:6b:08:d3:f4:18:a7:41:d8:6f:84:d8:c7:06:69: 15:48:ca:41:6f:db:d8:04:ec:4b:c3:6e:92:87:65: ff:11:ec:3d:72:7e:34:fe:96:1e:5c:0c:bd:d1:16: d3:73:9f:2d:64:33:61:bf:31:99:7c:c5:08:b4:46: cd:29:5d:4f:5b:d0:5a:c3:4c:97:61:58:a0:f5:1a: 99:ea:7d:25:58:69:62:b8:54:9e:da:82:55:9d:96: 70:21:bc:38:9c:49:1a:d3:a3:f2:55:4e:67:46:c7: f7:c8:8d:df:ae:e6:a6:96:bb:5d:5d:7a:e0:c0:43: 27:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:28:03:10:C8:CF:9E:D3:2D:0A:E4:2B:A1:2C:BD:08:E0:6D:0F:14 X509v3 Authority Key Identifier: keyid:2C:88:F3:8F:6D:4F:84:F2:C1:91:A3:FA:2B:19:15:AE:08:98:87:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916AE6A/583245B61DAA11E2872AF3A508B02CD2/LIjzj21PhPLBkaP6KxkVrgiYhzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LIjzj21PhPLBkaP6KxkVrgiYhzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916AE6A/583245B61DAA11E2872AF3A508B02CD2/LIjzj21PhPLBkaP6KxkVrgiYhzQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:54:de:5e:40:13:17:13:7f:80:ff:e0:b9:e2:1d:e8:cb:df: fa:48:16:7a:eb:09:1b:8c:8d:77:0e:6e:0c:e7:bb:74:ca:89: 88:64:d1:e3:4a:c2:14:a8:14:c5:ae:ae:1d:c1:3b:37:85:e9: 41:f3:e0:d6:c5:89:0c:96:a3:7b:72:1c:82:4a:6e:be:fb:76: db:8f:e8:2f:66:6b:da:0d:d6:69:3b:94:b4:9c:ac:52:29:2c: 1e:f7:e9:c9:e1:5b:d6:50:f2:b2:af:39:b3:e5:a6:dc:f8:22: 5b:79:1b:bf:b6:da:3f:05:44:17:a3:d1:7e:c2:ac:a8:11:1c: d3:81:6f:d4:84:81:1e:39:22:a3:96:94:00:58:c3:5d:dc:23: b4:6b:7f:31:9c:e6:25:b6:9a:63:14:ed:70:6d:62:c0:c3:7c: 26:33:9c:b2:21:1e:cb:21:ab:fb:05:2e:41:b5:7c:7c:9c:ed: 83:68:eb:18:27:f0:ed:b5:6f:82:c0:88:40:6f:dd:b0:b9:f2: 82:3b:a0:17:55:99:c6:14:d2:61:10:0f:b2:16:72:a1:7d:95: 4d:0c:43:cf:24:8b:be:b8:eb:44:50:d9:f4:40:eb:e9:15:af: ef:d7:67:6f:3d:ad:01:0a:af:63:ea:1f:77:90:0b:d3:b5:43: 42:d9:18:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkFFNkExMTAvBgNVBAUTKDJDODhGMzhGNkQ0Rjg0RjJDMTkxQTNGQTJCMTkxNUFF MDg5ODg3MzQwHhcNMjUwODEwMTUxNTQxWhcNMjUwODE3MTUxNTQxWjAYMRYwFAYD VQQDEw02ODk4Yjc5ZC0yMzhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1wILxn7+/SxId1vBcsrxfWK95eTiV09oNMWLHdEr7bodTbijGBkGCjQ0F5ZO H6LLxn35qmL+/4xYmMVdL9R4WW27qC0c6v5w4h91qXaLbmzr9XKjgTDT3FmRjjbV U23H32tv+tH/h7Geb6qtzfCkNquowWYNNZfzp7rpD3gtRy3T1WjBGHYVawjT9Bin QdhvhNjHBmkVSMpBb9vYBOxLw26Sh2X/Eew9cn40/pYeXAy90RbTc58tZDNhvzGZ fMUItEbNKV1PW9Baw0yXYVig9RqZ6n0lWGliuFSe2oJVnZZwIbw4nEka06PyVU5n Rsf3yI3fruamlrtdXXrgwEMnBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAooAxDI z57TLQrkK6EsvQjgbQ8UMB8GA1UdIwQYMBaAFCyI849tT4TywZGj+isZFa4ImIc0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QUU2QS81ODMyNDVCNjFE QUExMUUyODcyQUYzQTUwOEIwMkNEMi9MSWp6ajIxUGhQTEJrYVA2S3hrVnJnaVlo elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xJanpqMjFQaFBMQmthUDZLeGtWcmdpWWh6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QUU2QS81ODMyNDVCNjFEQUExMUUyODcyQUYzQTUwOEIwMkNEMi9MSWp6ajIxUGhQ TEJrYVA2S3hrVnJnaVloelEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0VN5eQBMXE3+A/+C54h3oy9/6SBZ66wkbjI13Dm4M57t0yomIZNHj SsIUqBTFrq4dwTs3helB8+DWxYkMlqN7chyCSm6++3bbj+gvZmvaDdZpO5S0nKxS KSwe9+nJ4VvWUPKyrzmz5abc+CJbeRu/tto/BUQXo9F+wqyoERzTgW/UhIEeOSKj lpQAWMNd3CO0a38xnOYltppjFO1wbWLAw3wmM5yyIR7LIav7BS5BtXx8nO2DaOsY J/DttW+CwIhAb92wufKCO6AXVZnGFNJhEA+yFnKhfZVNDEPPJIu+uOtEUNn0QOvp Fa/v12dvPa0BCq9j6h93kAvTtUNC2RiW -----END CERTIFICATE-----Generated at Mon Aug 11 07:30:05 2025 by rpki-client