$ rpki-client -vvf rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft File: l_lzn2QJyHWu4cSbtpqnQ882YRs.mft (raw, json) Hash identifier: ITjXTUqgVnxDLr4hyu1TZFqAsJL70R62+fbj3sowmcw= Subject key identifier: 5E:6B:85:FD:02:1F:22:C2:89:58:95:8B:64:61:8E:5C:05:7E:F3:2D Authority key identifier: 97:F9:73:9F:64:09:C8:75:AE:E1:C4:9B:B6:9A:A7:43:CF:36:61:1B Certificate issuer: /CN=A917047F/serialNumber=97F9739F6409C875AEE1C49BB69AA743CF36611B Certificate serial: 0E6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_lzn2QJyHWu4cSbtpqnQ882YRs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft Manifest number: 0E60 Signing time: Fri 08 Aug 2025 17:57:51 +0000 Manifest this update: Fri 08 Aug 2025 17:57:51 +0000 Manifest next update: Fri 15 Aug 2025 17:57:51 +0000 Files and hashes: 1: l_lzn2QJyHWu4cSbtpqnQ882YRs.crl (hash: VKaSPtAqKi18ZmieEPtACgp8NaM6lbzWqi74dsaTJaw=) 2: 06FD60AAA8CE11EBBD4DB90DC4F9AE02.roa (hash: 5TUKEfy6g0GeyNMiU+/ZPkSDtLBvBaGEjV4EvzvhmZg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.crl rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_lzn2QJyHWu4cSbtpqnQ882YRs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3694 (0xe6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917047F, serialNumber=97F9739F6409C875AEE1C49BB69AA743CF36611B Validity Not Before: Aug 8 17:57:51 2025 GMT Not After : Aug 15 17:57:51 2025 GMT Subject: CN=68963a9f-8751 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:fc:f5:4f:e9:32:6e:9a:df:ae:d5:ea:a6:52: 35:35:d2:31:3b:1a:e7:52:30:c8:58:13:1a:f0:f2: 1e:c0:fc:cc:7e:ad:03:24:03:88:d9:10:5a:1b:bf: 51:75:77:a2:f2:53:74:22:7a:06:09:98:f3:7c:f8: 0e:8c:23:7c:16:ba:5b:94:c8:8a:50:c9:ba:ce:c3: 0a:e1:8a:10:43:d0:95:da:98:5f:63:c3:55:fd:ef: ee:d0:81:54:d5:d8:e8:19:e1:6b:77:04:ac:f4:f8: 2d:bf:c7:cb:f5:dc:69:d1:f8:65:4e:b5:6c:ea:a2: 00:b9:5e:c9:aa:ca:68:2c:af:d0:45:c6:10:c7:c7: 71:5f:d0:b3:48:63:b2:c2:b5:a0:1e:3c:6e:4e:77: a9:c5:5e:7a:1b:3d:ef:ee:31:7d:8b:91:53:dc:2e: c9:98:40:83:d6:b5:d5:76:0b:97:bf:be:40:55:73: af:b5:11:08:ef:0e:54:63:4c:93:83:90:54:c2:a1: 62:d5:cc:42:d9:fd:83:a5:41:ec:48:bc:40:eb:49: 16:15:b2:17:34:23:18:19:3b:5f:a0:7d:7b:41:82: 95:f7:d1:5a:be:0e:3d:3a:30:c7:4e:45:f5:e1:ce: a8:2b:94:03:41:9a:e1:75:6a:31:b1:a3:c9:ab:58: fa:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:6B:85:FD:02:1F:22:C2:89:58:95:8B:64:61:8E:5C:05:7E:F3:2D X509v3 Authority Key Identifier: keyid:97:F9:73:9F:64:09:C8:75:AE:E1:C4:9B:B6:9A:A7:43:CF:36:61:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_lzn2QJyHWu4cSbtpqnQ882YRs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:20:75:d7:43:14:aa:5d:ca:d9:e7:1e:bc:94:f5:74:f4:88: 1f:de:a7:13:a2:5f:a2:86:d8:de:fd:ce:3f:76:f3:15:bb:08: d9:2b:30:c4:63:63:9a:27:a3:1c:3b:08:0f:67:e5:9a:75:68: f5:35:31:db:94:3f:cc:01:d9:29:07:c7:99:50:b8:2a:c4:7a: a4:18:bf:54:fb:05:a5:f0:04:89:0a:56:c6:a8:1f:74:c1:aa: 7f:02:07:f9:c4:eb:cb:f3:41:50:f3:7d:a6:95:d3:d8:29:cd: 44:9d:73:16:2c:46:ce:e4:57:d5:01:1a:d1:4d:af:6b:af:8e: df:20:43:bc:d8:08:bf:1a:98:51:7f:78:54:2e:36:91:f7:68: cd:42:70:1f:3e:9a:5a:aa:c9:ca:1f:c0:35:b4:73:db:fc:07: 2a:66:92:10:d6:a8:71:b8:2b:cd:37:c5:ec:76:19:0e:10:56: 32:cd:8b:be:26:ee:0a:14:a6:dd:b4:9e:1c:59:f6:82:6e:6e: 2c:df:bb:53:e5:30:d1:51:ad:f6:95:e9:fe:6e:2b:2d:72:47: b6:4b:1d:01:c5:23:fb:8b:80:d4:30:4d:9d:7b:ef:47:c9:3b: 05:55:5d:94:50:a5:76:09:1c:b8:f5:91:e1:1f:7d:52:bf:8e: 77:e8:99:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDm4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA0N0YxMTAvBgNVBAUTKDk3Rjk3MzlGNjQwOUM4NzVBRUUxQzQ5QkI2OUFBNzQz Q0YzNjYxMUIwHhcNMjUwODA4MTc1NzUxWhcNMjUwODE1MTc1NzUxWjAYMRYwFAYD VQQDEw02ODk2M2E5Zi04NzUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkfz1T+kybprfrtXqplI1NdIxOxrnUjDIWBMa8PIewPzMfq0DJAOI2RBaG79R dXei8lN0InoGCZjzfPgOjCN8FrpblMiKUMm6zsMK4YoQQ9CV2phfY8NV/e/u0IFU 1djoGeFrdwSs9Pgtv8fL9dxp0fhlTrVs6qIAuV7JqspoLK/QRcYQx8dxX9CzSGOy wrWgHjxuTnepxV56Gz3v7jF9i5FT3C7JmECD1rXVdguXv75AVXOvtREI7w5UY0yT g5BUwqFi1cxC2f2DpUHsSLxA60kWFbIXNCMYGTtfoH17QYKV99Favg49OjDHTkX1 4c6oK5QDQZrhdWoxsaPJq1j6NQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF5rhf0C HyLCiViVi2RhjlwFfvMtMB8GA1UdIwQYMBaAFJf5c59kCch1ruHEm7aap0PPNmEb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDQ3Ri9GRDcyREUxNEEz QTkxMUU5OUY3NTc3N0JDNEY5QUUwMi9sX2x6bjJRSnlIV3U0Y1NidHBxblE4ODJZ UnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xfbHpuMlFKeUhXdTRjU2J0cHFuUTg4MllScy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDQ3Ri9GRDcyREUxNEEzQTkxMUU5OUY3NTc3N0JDNEY5QUUwMi9sX2x6bjJRSnlI V3U0Y1NidHBxblE4ODJZUnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsIHXXQxSqXcrZ5x68lPV09Igf3qcTol+ihtje/c4/dvMVuwjZKzDE Y2OaJ6McOwgPZ+WadWj1NTHblD/MAdkpB8eZULgqxHqkGL9U+wWl8ASJClbGqB90 wap/Agf5xOvL80FQ832mldPYKc1EnXMWLEbO5FfVARrRTa9rr47fIEO82Ai/GphR f3hULjaR92jNQnAfPppaqsnKH8A1tHPb/AcqZpIQ1qhxuCvNN8XsdhkOEFYyzYu+ Ju4KFKbdtJ4cWfaCbm4s37tT5TDRUa32len+bistcke2Sx0BxSP7i4DUME2de+9H yTsFVV2UUKV2CRy49ZHhH31Sv4536JmS -----END CERTIFICATE-----Generated at Sat Aug 9 15:19:05 2025 by rpki-client