$ rpki-client -vvf rpki.apnic.net/member_repository/A9197DD5/16D4B0DC81CF11EEBC152F60C4F9AE02/lMPujMByTro8sQMk-e24G6yFAyA.mft File: lMPujMByTro8sQMk-e24G6yFAyA.mft (raw, json) Hash identifier: l2LkEBUobWxBuQds0fy/+msh5G3e2gdoRbaxiv/pL/8= Subject key identifier: 88:4F:92:2F:DF:E8:09:D7:94:8A:37:98:CF:A1:F5:3E:99:03:8A:37 Authority key identifier: 94:C3:EE:8C:C0:72:4E:BA:3C:B1:03:24:F9:ED:B8:1B:AC:85:03:20 Certificate issuer: /CN=A9197DD5/serialNumber=94C3EE8CC0724EBA3CB10324F9EDB81BAC850320 Certificate serial: 0144 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMPujMByTro8sQMk-e24G6yFAyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197DD5/16D4B0DC81CF11EEBC152F60C4F9AE02/lMPujMByTro8sQMk-e24G6yFAyA.mft Manifest number: 0142 Signing time: Tue 05 Aug 2025 04:44:56 +0000 Manifest this update: Tue 05 Aug 2025 04:44:55 +0000 Manifest next update: Tue 12 Aug 2025 04:44:55 +0000 Files and hashes: 1: lMPujMByTro8sQMk-e24G6yFAyA.crl (hash: ThBkNBZ4jkguN1j9ewrIo0ThvfWx0JwNIdeZfMNaHQc=) 2: 5E3ADA8C81CF11EE9AB1F360C4F9AE02.roa (hash: Mp31Dl4GGrwfX+s1p5DZGdrkWL4P3e5ufUEs+Tl9/MA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197DD5/16D4B0DC81CF11EEBC152F60C4F9AE02/lMPujMByTro8sQMk-e24G6yFAyA.crl rsync://rpki.apnic.net/member_repository/A9197DD5/16D4B0DC81CF11EEBC152F60C4F9AE02/lMPujMByTro8sQMk-e24G6yFAyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMPujMByTro8sQMk-e24G6yFAyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 04:44:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 324 (0x144) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197DD5, serialNumber=94C3EE8CC0724EBA3CB10324F9EDB81BAC850320 Validity Not Before: Aug 5 04:44:55 2025 GMT Not After : Aug 12 04:44:55 2025 GMT Subject: CN=68918c48-d775 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ec:73:2f:9b:3e:09:16:f8:2d:1a:1b:bf:ed: b2:cb:9f:7d:48:0e:af:32:79:93:8d:43:bd:b7:e7: f0:d1:6f:7e:08:4c:31:9e:d9:99:eb:a3:71:4b:df: 54:4c:08:bb:64:ff:41:2d:ec:c2:89:ab:6b:39:2b: 6e:74:f9:b6:18:05:a5:c7:c7:01:71:47:73:7f:e3: 44:66:f8:58:69:38:19:b4:97:f3:dd:07:34:60:d6: b2:9f:bd:00:78:e2:c8:cf:5b:45:49:ce:23:2a:45: 1e:d6:d5:60:e7:87:4d:55:98:ba:a4:eb:12:53:f9: de:9e:a3:06:a1:d5:fb:35:7c:09:58:6d:e3:14:b5: 5c:2e:e1:57:18:7a:57:53:b2:de:b8:ba:75:3f:30: 3b:63:39:5d:42:18:69:ed:18:c3:07:e3:f6:c1:69: a3:78:d8:93:4a:8f:23:19:28:f0:cb:f3:a3:cd:ed: de:de:f9:28:44:1b:a6:87:b0:bd:32:b8:00:37:70: 48:6d:c1:d3:7b:f8:41:65:9e:8d:08:5c:77:6d:17: 92:57:58:63:06:31:11:0f:b8:31:eb:09:28:6e:3d: e4:ae:64:36:5b:4e:12:85:73:c6:d5:45:a9:77:f0: 29:7e:04:94:e1:8d:96:9e:8d:72:70:c5:c6:bf:77: bc:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:4F:92:2F:DF:E8:09:D7:94:8A:37:98:CF:A1:F5:3E:99:03:8A:37 X509v3 Authority Key Identifier: keyid:94:C3:EE:8C:C0:72:4E:BA:3C:B1:03:24:F9:ED:B8:1B:AC:85:03:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197DD5/16D4B0DC81CF11EEBC152F60C4F9AE02/lMPujMByTro8sQMk-e24G6yFAyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMPujMByTro8sQMk-e24G6yFAyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197DD5/16D4B0DC81CF11EEBC152F60C4F9AE02/lMPujMByTro8sQMk-e24G6yFAyA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:65:18:46:a0:4e:41:79:94:91:3c:94:2a:23:03:84:e8:e7: c9:28:3d:b9:21:08:b0:6b:db:23:e9:37:84:51:cd:dc:9d:bb: a4:98:13:fa:10:0f:8a:9d:53:39:b7:64:e7:04:4e:4b:f4:69: 40:86:c6:48:a1:bb:9a:e9:90:07:c6:d9:97:ac:42:ba:76:a1: 52:74:32:b6:2a:a6:05:66:86:55:b8:ff:ff:f5:ef:a5:6d:86: df:d1:32:56:73:57:75:98:01:f1:ee:dc:8a:a1:d9:f0:e9:c2: 68:07:ba:26:3b:27:3f:48:e9:ca:a1:57:98:e4:5c:04:ac:09: 97:ee:2b:22:65:b9:8f:e1:0a:d3:4a:6a:62:0b:23:af:1d:9d: 99:67:65:be:93:e7:eb:26:65:82:3d:c9:ce:07:e8:f7:fd:39: f5:06:5d:59:9b:69:ad:bd:81:bd:da:28:45:6e:d9:7b:47:a1: 6e:1e:a4:84:9c:ad:fb:65:6d:84:10:15:f4:99:ef:1e:66:7e: 79:f2:c6:15:64:a9:4c:8d:50:4b:22:51:e2:41:a8:fa:e0:b8: 93:93:10:0a:dc:21:9f:b8:fe:00:19:25:63:5f:54:07:73:80: 28:e4:53:f9:be:3e:e8:20:6d:75:9a:c7:10:69:7b:e4:8a:54: 98:cf:c7:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdERDUxMTAvBgNVBAUTKDk0QzNFRThDQzA3MjRFQkEzQ0IxMDMyNEY5RURCODFC QUM4NTAzMjAwHhcNMjUwODA1MDQ0NDU1WhcNMjUwODEyMDQ0NDU1WjAYMRYwFAYD VQQDEw02ODkxOGM0OC1kNzc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx+xzL5s+CRb4LRobv+2yy599SA6vMnmTjUO9t+fw0W9+CEwxntmZ66NxS99U TAi7ZP9BLezCiatrOStudPm2GAWlx8cBcUdzf+NEZvhYaTgZtJfz3Qc0YNayn70A eOLIz1tFSc4jKkUe1tVg54dNVZi6pOsSU/nenqMGodX7NXwJWG3jFLVcLuFXGHpX U7LeuLp1PzA7YzldQhhp7RjDB+P2wWmjeNiTSo8jGSjwy/Ojze3e3vkoRBumh7C9 MrgAN3BIbcHTe/hBZZ6NCFx3bReSV1hjBjERD7gx6wkobj3krmQ2W04ShXPG1UWp d/ApfgSU4Y2Wno1ycMXGv3e8vwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIhPki/f 6AnXlIo3mM+h9T6ZA4o3MB8GA1UdIwQYMBaAFJTD7ozAck66PLEDJPntuBushQMg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0RENS8xNkQ0QjBEQzgx Q0YxMUVFQkMxNTJGNjBDNEY5QUUwMi9sTVB1ak1CeVRybzhzUU1rLWUyNEc2eUZB eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xNUHVqTUJ5VHJvOHNRTWstZTI0RzZ5RkF5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0RENS8xNkQ0QjBEQzgxQ0YxMUVFQkMxNTJGNjBDNEY5QUUwMi9sTVB1ak1CeVRy bzhzUU1rLWUyNEc2eUZBeUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWZRhGoE5BeZSRPJQqIwOE6OfJKD25IQiwa9sj6TeEUc3cnbukmBP6 EA+KnVM5t2TnBE5L9GlAhsZIobua6ZAHxtmXrEK6dqFSdDK2KqYFZoZVuP//9e+l bYbf0TJWc1d1mAHx7tyKodnw6cJoB7omOyc/SOnKoVeY5FwErAmX7isiZbmP4QrT SmpiCyOvHZ2ZZ2W+k+frJmWCPcnOB+j3/Tn1Bl1Zm2mtvYG92ihFbtl7R6FuHqSE nK37ZW2EEBX0me8eZn558sYVZKlMjVBLIlHiQaj64LiTkxAK3CGfuP4AGSVjX1QH c4Ao5FP5vj7oIG11mscQaXvkilSYz8f6 -----END CERTIFICATE-----Generated at Wed Aug 6 05:28:43 2025 by rpki-client