$ rpki-client -vvf rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft File: l_lzn2QJyHWu4cSbtpqnQ882YRs.mft (raw, json) Hash identifier: Z6ZPxE9/OI//nj0TozGKKMkpuNYt3q5tKztAen1w6yo= Subject key identifier: 93:0B:1C:8C:9B:D7:80:6D:41:1B:E7:6F:82:F3:CA:33:15:8B:3B:2E Authority key identifier: 97:F9:73:9F:64:09:C8:75:AE:E1:C4:9B:B6:9A:A7:43:CF:36:61:1B Certificate issuer: /CN=A917047F/serialNumber=97F9739F6409C875AEE1C49BB69AA743CF36611B Certificate serial: 0E4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_lzn2QJyHWu4cSbtpqnQ882YRs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft Manifest number: 0E42 Signing time: Sat 14 Jun 2025 17:41:36 +0000 Manifest this update: Sat 14 Jun 2025 17:41:35 +0000 Manifest next update: Sat 21 Jun 2025 17:41:35 +0000 Files and hashes: 1: l_lzn2QJyHWu4cSbtpqnQ882YRs.crl (hash: 8nnsk1udIkZOFRq5/C5DPmAWCuX4hfyA93rmiw7ZigM=) 2: 06FD60AAA8CE11EBBD4DB90DC4F9AE02.roa (hash: fNpUJmaY/58+uPHYwxaUVKQVkJ1Z1JQOjKMefzdFE80=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.crl rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_lzn2QJyHWu4cSbtpqnQ882YRs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:41:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3663 (0xe4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917047F, serialNumber=97F9739F6409C875AEE1C49BB69AA743CF36611B Validity Not Before: Jun 14 17:41:35 2025 GMT Not After : Jun 21 17:41:35 2025 GMT Subject: CN=684db44f-3e86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:87:2d:5f:a3:81:2b:6e:f6:71:f4:76:48:d0: 84:a9:1a:2c:3f:44:3b:da:a4:9f:e4:c6:4e:bc:2a: ff:48:85:13:0b:5f:08:58:19:f4:76:e0:af:f3:13: 76:75:c1:99:fd:f8:b9:df:c1:d1:a8:64:03:5b:9d: 57:fd:25:bb:8f:d6:fa:16:3c:aa:25:fc:55:41:0d: ba:87:56:2b:51:d2:b1:3e:95:9a:bc:a4:c7:52:cc: 32:b6:ac:34:15:c6:2b:c6:42:a5:a1:48:c1:b9:86: ea:29:5a:a2:4d:1c:cd:df:29:25:44:e6:d3:e4:09: fc:f0:84:37:03:23:1a:fa:a4:4c:43:97:d8:aa:a0: 4d:f3:cf:2e:90:dd:e7:01:de:50:18:d2:0e:87:b9: d8:d3:48:5d:f5:d3:85:59:3a:51:50:88:90:e9:17: e4:ff:a9:90:68:b0:f9:32:31:89:3b:dc:23:5e:54: af:bc:53:cc:a1:b9:52:e9:4a:fa:db:28:c6:23:a9: b9:1e:43:8f:e1:77:c0:2a:5e:06:3f:69:ce:ba:0b: b4:6c:2a:5b:8a:88:30:b0:89:92:ef:7e:aa:c3:b5: 05:17:88:2e:8a:84:d0:5e:da:da:6a:e0:0b:6d:cf: 81:8c:48:3f:06:ce:e4:7d:4c:31:e9:d1:f9:a3:62: 44:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:0B:1C:8C:9B:D7:80:6D:41:1B:E7:6F:82:F3:CA:33:15:8B:3B:2E X509v3 Authority Key Identifier: keyid:97:F9:73:9F:64:09:C8:75:AE:E1:C4:9B:B6:9A:A7:43:CF:36:61:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_lzn2QJyHWu4cSbtpqnQ882YRs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:bb:16:eb:ad:9d:1e:11:de:a0:db:88:7d:ee:8d:52:8c:de: e0:5a:eb:61:44:0a:d0:6f:9a:c2:80:e0:8e:58:ac:17:a1:c1: c4:be:86:1d:02:a4:4c:e1:4e:dd:0a:31:79:1a:69:85:4f:c3: 8a:79:b3:b2:55:d0:bc:5f:97:12:7f:5b:dd:32:33:d7:c7:23: 33:e7:c8:ec:72:7e:07:5b:be:5e:2b:5f:a4:00:2f:fe:74:da: 07:12:bb:7b:59:a7:94:38:ae:01:68:4c:27:e7:82:e8:c6:02: 6d:60:5e:40:2b:00:df:9a:f1:b5:a4:1a:d8:73:23:9b:98:41: 10:71:e0:e4:23:f3:57:36:69:13:51:e0:a6:dc:e1:e4:0c:95: d2:6e:88:46:fe:6f:08:54:03:04:e9:be:11:bb:a4:1b:e4:f1: 0f:4a:d6:9a:e1:15:ad:66:58:1f:11:67:8c:60:c1:35:00:79: f0:be:14:24:b0:ba:2d:4e:83:ff:86:62:4b:37:54:08:f4:dd: 17:68:1e:bc:a8:a3:9f:75:fb:07:7e:1d:ec:0a:fe:4d:fa:6c: 84:b1:86:c2:c4:b5:1e:f0:c0:69:c5:6c:57:b1:6d:dc:8d:48: b3:d5:ab:88:90:2d:27:5c:cd:a5:cf:33:6d:4c:54:bd:a6:2e: 98:b9:37:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDk8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA0N0YxMTAvBgNVBAUTKDk3Rjk3MzlGNjQwOUM4NzVBRUUxQzQ5QkI2OUFBNzQz Q0YzNjYxMUIwHhcNMjUwNjE0MTc0MTM1WhcNMjUwNjIxMTc0MTM1WjAYMRYwFAYD VQQDEw02ODRkYjQ0Zi0zZTg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuoctX6OBK272cfR2SNCEqRosP0Q72qSf5MZOvCr/SIUTC18IWBn0duCv8xN2 dcGZ/fi538HRqGQDW51X/SW7j9b6FjyqJfxVQQ26h1YrUdKxPpWavKTHUswytqw0 FcYrxkKloUjBuYbqKVqiTRzN3yklRObT5An88IQ3AyMa+qRMQ5fYqqBN888ukN3n Ad5QGNIOh7nY00hd9dOFWTpRUIiQ6Rfk/6mQaLD5MjGJO9wjXlSvvFPMoblS6Ur6 2yjGI6m5HkOP4XfAKl4GP2nOugu0bCpbiogwsImS736qw7UFF4guioTQXtraauAL bc+BjEg/Bs7kfUwx6dH5o2JEjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJMLHIyb 14BtQRvnb4LzyjMVizsuMB8GA1UdIwQYMBaAFJf5c59kCch1ruHEm7aap0PPNmEb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDQ3Ri9GRDcyREUxNEEz QTkxMUU5OUY3NTc3N0JDNEY5QUUwMi9sX2x6bjJRSnlIV3U0Y1NidHBxblE4ODJZ UnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xfbHpuMlFKeUhXdTRjU2J0cHFuUTg4MllScy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDQ3Ri9GRDcyREUxNEEzQTkxMUU5OUY3NTc3N0JDNEY5QUUwMi9sX2x6bjJRSnlI V3U0Y1NidHBxblE4ODJZUnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjuxbrrZ0eEd6g24h97o1SjN7gWuthRArQb5rCgOCOWKwXocHEvoYd AqRM4U7dCjF5GmmFT8OKebOyVdC8X5cSf1vdMjPXxyMz58jscn4HW75eK1+kAC/+ dNoHErt7WaeUOK4BaEwn54LoxgJtYF5AKwDfmvG1pBrYcyObmEEQceDkI/NXNmkT UeCm3OHkDJXSbohG/m8IVAME6b4Ru6Qb5PEPStaa4RWtZlgfEWeMYME1AHnwvhQk sLotToP/hmJLN1QI9N0XaB68qKOfdfsHfh3sCv5N+myEsYbCxLUe8MBpxWxXsW3c jUiz1auIkC0nXM2lzzNtTFS9pi6YuTfu -----END CERTIFICATE-----Generated at Sun Jun 15 08:43:17 2025 by rpki-client