$ rpki-client -vvf rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft File: lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft (raw, json) Hash identifier: 3YOtsHKR7/kOjRxUHC8WzmplHCzyEVLcZgM6EHOptng= Subject key identifier: DD:6A:F4:B1:8D:1E:EA:E1:80:BD:4B:47:CD:BF:DD:B1:CB:2F:50:A4 Authority key identifier: 96:B8:0C:37:C6:61:3D:14:A9:2C:DB:EC:66:28:21:64:3E:8A:F1:1B Certificate issuer: /CN=A91818BD/serialNumber=96B80C37C6613D14A92CDBEC662821643E8AF11B Certificate serial: 02CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lrgMN8ZhPRSpLNvsZighZD6K8Rs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft Manifest number: 02C6 Signing time: Thu 07 Aug 2025 02:00:44 +0000 Manifest this update: Thu 07 Aug 2025 02:00:44 +0000 Manifest next update: Thu 14 Aug 2025 02:00:44 +0000 Files and hashes: 1: lrgMN8ZhPRSpLNvsZighZD6K8Rs.crl (hash: xV0H06mOChevjK6Blv/RsLMHDN13jYlAPih9r31X3To=) 2: B83B7E0C065511EDB3E94E54C4F9AE02.roa (hash: tal6R2lkJBoeIIUyi6mdxCD2dqzkhyqrKbW//gzTT04=) 3: 481545DEFE8211ECBAB0E13FC4F9AE02.roa (hash: Qlo4+mbKJCym2bywU9/+B9nSR/lgPkj3tiR7WBd3VEs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.crl rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lrgMN8ZhPRSpLNvsZighZD6K8Rs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 02:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 717 (0x2cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91818BD, serialNumber=96B80C37C6613D14A92CDBEC662821643E8AF11B Validity Not Before: Aug 7 02:00:44 2025 GMT Not After : Aug 14 02:00:44 2025 GMT Subject: CN=689408cc-cc1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c8:d6:6b:db:35:35:5b:63:57:49:02:40:a1: cb:e3:b1:28:0b:b5:f4:8c:63:02:8a:d5:e5:45:01: c0:16:70:06:31:ad:df:3d:f0:b6:0f:0f:09:c8:01: 72:1a:77:bc:1f:a5:06:db:e5:a1:d8:8e:e7:94:49: cb:de:e6:64:1c:e0:3c:36:63:06:3b:cc:52:ca:a1: db:50:3e:88:08:45:5b:ad:1a:75:47:bc:14:fe:e1: 88:f1:73:bb:7c:d8:b3:9e:2c:94:04:db:ca:d9:a4: 52:3a:63:10:7b:b2:99:ba:42:65:98:86:ab:07:1a: 37:08:af:f3:16:67:0f:d8:0c:91:02:1f:7e:71:41: 9c:8a:4e:33:bd:9e:bd:ac:3e:4a:49:50:26:7e:08: ce:f1:4d:19:45:2f:e8:20:25:b7:a1:21:99:af:38: 4c:db:e1:03:54:0d:18:39:f9:f5:07:e5:27:09:17: 93:d5:06:f7:60:1b:04:6c:7d:56:6b:c4:d4:78:6d: bf:45:1d:ab:39:12:85:87:14:9c:47:16:5d:c7:47: df:73:82:c4:8a:e1:c7:9a:14:66:d9:98:f2:12:b7: 67:fb:e0:31:54:33:35:6a:de:2a:ad:3e:d4:4d:77: 6a:c5:36:23:60:b5:65:c0:2d:38:b8:9e:71:e2:25: 6c:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:6A:F4:B1:8D:1E:EA:E1:80:BD:4B:47:CD:BF:DD:B1:CB:2F:50:A4 X509v3 Authority Key Identifier: keyid:96:B8:0C:37:C6:61:3D:14:A9:2C:DB:EC:66:28:21:64:3E:8A:F1:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lrgMN8ZhPRSpLNvsZighZD6K8Rs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:23:05:d4:99:23:3a:e6:f5:59:a3:5f:bf:ad:32:66:79:2d: 3a:de:8e:aa:41:4e:c2:a4:d0:21:fd:b6:d1:8d:c2:ae:4b:dc: 48:42:0d:24:c6:28:12:42:16:6a:05:22:7d:f9:2d:dd:51:c1: 54:5c:ae:da:66:46:67:c2:66:c8:a5:86:95:d0:48:0c:00:1e: 47:84:e1:0e:25:fb:6d:bf:1c:2b:a3:b7:f8:81:ec:df:d9:e5: b2:46:15:45:34:f7:ee:56:4c:5b:df:44:e0:9b:ac:1c:84:ed: 56:9a:5c:b6:bf:53:ce:bf:29:de:24:01:ef:78:7b:bc:8e:31: 3d:9b:f0:87:2d:10:6d:28:3d:d9:6a:86:0e:76:13:b0:df:59: 03:24:76:db:72:ce:5d:47:78:61:5e:bc:42:64:0c:61:5e:e0: 6f:34:2d:e1:a5:56:40:9c:7f:e4:6a:b1:ab:52:85:ff:eb:f0: d6:f9:77:73:07:4c:68:12:34:6f:58:81:16:a6:50:b9:c5:1b: 25:df:ca:5a:82:27:29:b7:7d:c0:0e:81:0b:16:a7:91:f4:d1: 5f:34:be:ae:1d:5f:4d:e7:c8:6b:b4:4c:b3:df:23:8d:60:47: 16:a9:de:9b:95:a5:5f:e0:bf:5e:a6:7b:38:fd:d5:9d:df:71: ab:f4:d9:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAs0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODE4QkQxMTAvBgNVBAUTKDk2QjgwQzM3QzY2MTNEMTRBOTJDREJFQzY2MjgyMTY0 M0U4QUYxMUIwHhcNMjUwODA3MDIwMDQ0WhcNMjUwODE0MDIwMDQ0WjAYMRYwFAYD VQQDEw02ODk0MDhjYy1jYzFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtsjWa9s1NVtjV0kCQKHL47EoC7X0jGMCitXlRQHAFnAGMa3fPfC2Dw8JyAFy Gne8H6UG2+Wh2I7nlEnL3uZkHOA8NmMGO8xSyqHbUD6ICEVbrRp1R7wU/uGI8XO7 fNizniyUBNvK2aRSOmMQe7KZukJlmIarBxo3CK/zFmcP2AyRAh9+cUGcik4zvZ69 rD5KSVAmfgjO8U0ZRS/oICW3oSGZrzhM2+EDVA0YOfn1B+UnCReT1Qb3YBsEbH1W a8TUeG2/RR2rORKFhxScRxZdx0ffc4LEiuHHmhRm2ZjyErdn++AxVDM1at4qrT7U TXdqxTYjYLVlwC04uJ5x4iVsrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN1q9LGN HurhgL1LR82/3bHLL1CkMB8GA1UdIwQYMBaAFJa4DDfGYT0UqSzb7GYoIWQ+ivEb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MThCRC80MTRENUJEQUZF ODAxMUVDOUYzMTdBM0ZDNEY5QUUwMi9scmdNTjhaaFBSU3BMTnZzWmlnaFpENks4 UnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xyZ01OOFpoUFJTcExOdnNaaWdoWkQ2SzhScy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MThCRC80MTRENUJEQUZFODAxMUVDOUYzMTdBM0ZDNEY5QUUwMi9scmdNTjhaaFBS U3BMTnZzWmlnaFpENks4UnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuIwXUmSM65vVZo1+/rTJmeS063o6qQU7CpNAh/bbRjcKuS9xIQg0k xigSQhZqBSJ9+S3dUcFUXK7aZkZnwmbIpYaV0EgMAB5HhOEOJfttvxwro7f4gezf 2eWyRhVFNPfuVkxb30Tgm6wchO1Wmly2v1POvyneJAHveHu8jjE9m/CHLRBtKD3Z aoYOdhOw31kDJHbbcs5dR3hhXrxCZAxhXuBvNC3hpVZAnH/karGrUoX/6/DW+Xdz B0xoEjRvWIEWplC5xRsl38pagicpt33ADoELFqeR9NFfNL6uHV9N58hrtEyz3yON YEcWqd6blaVf4L9epns4/dWd33Gr9NlN -----END CERTIFICATE-----Generated at Fri Aug 8 20:56:43 2025 by rpki-client