$ rpki-client -vvf rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft File: lufMd6OOPhgL91JrodlTIYBONeY.mft (raw, json) Hash identifier: yw71oYazXXl59yAal8Nr1lzltUtYVrknWDEDHRi9f9s= Subject key identifier: 78:83:13:CB:EC:42:AC:F5:4A:00:FF:4F:63:71:83:89:52:78:42:82 Authority key identifier: 96:E7:CC:77:A3:8E:3E:18:0B:F7:52:6B:A1:D9:53:21:80:4E:35:E6 Certificate issuer: /CN=A916C4FA/serialNumber=96E7CC77A38E3E180BF7526BA1D95321804E35E6 Certificate serial: 01D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lufMd6OOPhgL91JrodlTIYBONeY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft Manifest number: 0545 Signing time: Sat 09 Aug 2025 01:26:06 +0000 Manifest this update: Sat 09 Aug 2025 01:26:06 +0000 Manifest next update: Sat 16 Aug 2025 01:26:06 +0000 Files and hashes: 1: lufMd6OOPhgL91JrodlTIYBONeY.crl (hash: nVlukaGgtKKrNG3eff3k4Zb4S452CUXJ5DgWaAyQSjw=) 2: C310EE5AACD311ED84BAA06EC4F9AE02.roa (hash: NPYNnjaBYs2qmRUfu8/y0KOBedXU4EghxnWja8r1cbI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.crl rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lufMd6OOPhgL91JrodlTIYBONeY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 469 (0x1d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C4FA, serialNumber=96E7CC77A38E3E180BF7526BA1D95321804E35E6 Validity Not Before: Aug 9 01:26:06 2025 GMT Not After : Aug 16 01:26:06 2025 GMT Subject: CN=6896a3ae-41b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:fc:cb:f6:9d:81:da:74:a7:31:ca:03:06:87: 32:b7:9c:24:55:0f:2a:33:37:64:0c:29:42:39:1d: a3:8a:0e:a9:c4:56:fa:5c:8e:11:7d:42:87:16:42: af:47:20:e3:ed:73:7c:41:00:96:9b:8b:d2:17:d1: 14:06:c9:93:43:21:0f:20:bd:1d:97:17:0d:54:3d: 68:33:b0:69:db:3b:03:65:a0:9d:5d:ec:d5:8c:e4: 47:54:53:31:43:14:cc:b1:4c:86:08:14:a6:31:7d: 6f:64:77:35:f7:4e:13:7e:cc:f6:8a:ab:1a:14:47: 30:08:9a:c5:df:01:9c:35:fc:3b:51:d6:96:88:d7: e8:d7:b9:64:01:7d:d0:8e:30:fd:64:00:57:81:18: e4:8f:76:f5:2d:9d:ed:65:21:b3:f2:4a:fb:56:7c: 6d:35:d4:c1:d0:e6:ce:3e:ec:22:8a:81:83:91:e4: d9:af:3b:37:59:c2:40:a9:36:5b:50:50:f8:14:d9: 93:06:83:67:ca:f6:f1:bd:ea:23:6b:ad:ee:78:c9: e6:f1:08:3e:05:76:67:ae:e4:49:3a:8e:70:01:c7: a4:20:a9:70:0e:56:91:75:11:59:a3:df:38:81:61: 71:c0:77:1e:ee:63:22:ed:bc:61:65:1b:bd:49:64: b2:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:83:13:CB:EC:42:AC:F5:4A:00:FF:4F:63:71:83:89:52:78:42:82 X509v3 Authority Key Identifier: keyid:96:E7:CC:77:A3:8E:3E:18:0B:F7:52:6B:A1:D9:53:21:80:4E:35:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lufMd6OOPhgL91JrodlTIYBONeY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:33:89:ba:8f:42:b9:3f:a1:7b:6a:c7:c1:2c:36:18:03:31: 32:0a:34:7f:4f:3a:1b:3c:79:3d:7a:c6:9d:3c:f0:47:78:49: 30:dc:d5:32:81:1d:62:65:c2:88:2f:ec:4f:c5:5b:c8:9c:b0: 5a:9f:45:7a:5a:73:f7:09:4e:fe:98:bb:eb:49:1e:38:05:db: 77:81:4b:b1:e6:46:e3:1c:a3:e2:22:3e:bc:7c:df:1d:a9:9d: f1:3a:e5:94:3c:31:49:1d:d8:eb:42:e9:80:8c:c4:c4:9e:a9: 1a:76:5f:0b:34:37:79:96:61:64:0d:3b:12:79:06:7d:48:31: 0c:bc:14:ce:57:35:22:4a:61:db:e1:90:1b:a1:62:cf:70:39: a2:c5:22:fb:ca:fe:4f:d4:81:e1:df:f5:7f:78:e4:87:44:e8: bb:64:1b:01:c6:07:f7:e2:eb:06:63:56:17:92:b7:ab:37:a0: aa:25:0b:d7:33:fe:b5:b9:74:da:37:72:4a:93:67:64:85:94: d2:d1:2c:c0:8d:3f:4a:11:87:12:82:16:dc:c7:28:51:97:69: db:fa:d0:12:46:5c:5c:0f:05:34:b3:f7:51:3c:79:c9:d5:7d: 15:d4:98:42:00:4f:7e:c4:9c:3a:78:08:ef:33:7b:1f:c1:d1: 94:17:03:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM0RkExMTAvBgNVBAUTKDk2RTdDQzc3QTM4RTNFMTgwQkY3NTI2QkExRDk1MzIx ODA0RTM1RTYwHhcNMjUwODA5MDEyNjA2WhcNMjUwODE2MDEyNjA2WjAYMRYwFAYD VQQDEw02ODk2YTNhZS00MWIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy/zL9p2B2nSnMcoDBocyt5wkVQ8qMzdkDClCOR2jig6pxFb6XI4RfUKHFkKv RyDj7XN8QQCWm4vSF9EUBsmTQyEPIL0dlxcNVD1oM7Bp2zsDZaCdXezVjORHVFMx QxTMsUyGCBSmMX1vZHc1904Tfsz2iqsaFEcwCJrF3wGcNfw7UdaWiNfo17lkAX3Q jjD9ZABXgRjkj3b1LZ3tZSGz8kr7VnxtNdTB0ObOPuwiioGDkeTZrzs3WcJAqTZb UFD4FNmTBoNnyvbxveoja63ueMnm8Qg+BXZnruRJOo5wAcekIKlwDlaRdRFZo984 gWFxwHce7mMi7bxhZRu9SWSyQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHiDE8vs Qqz1SgD/T2Nxg4lSeEKCMB8GA1UdIwQYMBaAFJbnzHejjj4YC/dSa6HZUyGATjXm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzRGQS9CODlCQ0JGNEJB NkExMUVDODJBQzA3ODdDNEY5QUUwMi9sdWZNZDZPT1BoZ0w5MUpyb2RsVElZQk9O ZVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x1Zk1kNk9PUGhnTDkxSnJvZGxUSVlCT05lWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzRGQS9CODlCQ0JGNEJBNkExMUVDODJBQzA3ODdDNEY5QUUwMi9sdWZNZDZPT1Bo Z0w5MUpyb2RsVElZQk9OZVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkM4m6j0K5P6F7asfBLDYYAzEyCjR/TzobPHk9esadPPBHeEkw3NUy gR1iZcKIL+xPxVvInLBan0V6WnP3CU7+mLvrSR44Bdt3gUux5kbjHKPiIj68fN8d qZ3xOuWUPDFJHdjrQumAjMTEnqkadl8LNDd5lmFkDTsSeQZ9SDEMvBTOVzUiSmHb 4ZAboWLPcDmixSL7yv5P1IHh3/V/eOSHROi7ZBsBxgf34usGY1YXkrerN6CqJQvX M/61uXTaN3JKk2dkhZTS0SzAjT9KEYcSghbcxyhRl2nb+tASRlxcDwU0s/dRPHnJ 1X0V1JhCAE9+xJw6eAjvM3sfwdGUFwN1 -----END CERTIFICATE-----Generated at Sun Aug 10 16:07:33 2025 by rpki-client