$ rpki-client -vvf rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft File: L9JLb9eYBEVzVDhmYs4w3aOyALU.mft (raw, json) Hash identifier: GbRslXJ4ulEMGCtxCw3QTCDvbPlpSMCfNjUNRC/zjNI= Subject key identifier: C5:21:2D:56:5A:2E:B6:F4:F8:02:DF:CD:35:81:E5:C3:E8:0D:D0:45 Authority key identifier: 2F:D2:4B:6F:D7:98:04:45:73:54:38:66:62:CE:30:DD:A3:B2:00:B5 Certificate issuer: /CN=A91A29DA/serialNumber=2FD24B6FD79804457354386662CE30DDA3B200B5 Certificate serial: 010B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft Manifest number: 0109 Signing time: Tue 05 Aug 2025 05:27:09 +0000 Manifest this update: Tue 05 Aug 2025 05:27:08 +0000 Manifest next update: Tue 12 Aug 2025 05:27:08 +0000 Files and hashes: 1: L9JLb9eYBEVzVDhmYs4w3aOyALU.crl (hash: 5N0OEML0p6gWtE646Jj+nbCGGhpOAXWzaKMbSME43es=) 2: AE2FD9C4DA5411EE83E9E67EC4F9AE02.roa (hash: tK5HTPbAj/ZNMX+j7tcaCGQxo/xqwq0UKtlHWscWUVg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.crl rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 05:27:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 267 (0x10b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A29DA, serialNumber=2FD24B6FD79804457354386662CE30DDA3B200B5 Validity Not Before: Aug 5 05:27:08 2025 GMT Not After : Aug 12 05:27:08 2025 GMT Subject: CN=6891962c-b5f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:4b:f9:64:10:20:c6:7e:e6:6d:b0:5f:71:82: f1:00:16:06:e9:16:98:a8:b6:79:02:5e:b8:a8:cf: 7b:dd:f5:e3:89:35:13:5a:bf:ab:50:e9:f6:2c:e8: aa:b4:3e:2f:9a:b1:f2:d6:4c:ad:ef:fa:d1:61:97: 47:f6:59:62:48:ca:61:48:79:3e:bb:ac:dd:a5:4c: 15:c1:b4:9e:f2:a5:2d:db:8c:94:8a:16:62:ef:2b: 3c:b0:5b:0d:d5:b6:55:9e:8b:bd:e9:ed:99:c5:60: 52:04:b3:5f:52:6d:09:d1:bf:89:cc:45:48:19:d7: cd:bc:4d:bc:3a:9c:67:08:6f:7a:9e:03:6c:1d:92: 66:7d:91:05:1e:2c:b9:bf:8e:8c:5c:2a:d6:83:cd: 45:04:b1:0f:ab:9a:29:84:9b:c7:74:7e:0f:3a:a3: b5:25:08:25:7b:05:66:c2:28:55:93:d9:08:88:22: ac:ba:a5:d6:df:83:fd:0c:91:76:8c:d5:fc:64:e3: 0d:bb:33:2b:12:a6:f6:0f:59:8f:ef:c7:fa:7b:92: f8:38:1d:4b:92:a8:62:14:ad:14:21:09:07:90:79: 25:00:ce:ca:aa:35:7c:20:a4:29:61:82:5b:94:c7: 11:09:9b:a3:45:4c:09:e0:0e:4c:78:fb:e9:20:82: 55:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:21:2D:56:5A:2E:B6:F4:F8:02:DF:CD:35:81:E5:C3:E8:0D:D0:45 X509v3 Authority Key Identifier: keyid:2F:D2:4B:6F:D7:98:04:45:73:54:38:66:62:CE:30:DD:A3:B2:00:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:38:30:66:09:80:1c:34:88:58:26:d7:4d:d3:46:0f:2c:f9: 30:91:3f:aa:b6:21:ef:cd:5a:73:f1:43:ab:e8:43:6a:3b:08: ac:2b:08:3e:09:a5:33:20:78:57:a0:e5:04:f2:34:2e:be:23: ff:d0:52:5c:9a:15:cb:41:dd:3b:c7:0f:85:0d:eb:ba:b4:54: 3c:16:3c:3c:e2:17:61:a0:8c:c9:a3:0d:a4:ee:a6:fe:84:3f: 65:ac:43:25:06:d1:f0:c7:04:7c:95:63:5b:f4:d8:fe:5c:a7: 47:a0:1c:37:62:ae:81:84:fe:37:f7:d9:10:10:f1:bd:4f:da: 16:89:bf:9f:86:e3:ef:fb:0f:61:d7:54:68:bd:19:c8:83:96: c5:f8:85:08:e1:cc:98:37:56:5f:df:e5:9b:82:b0:00:99:34: 3f:63:d4:d8:dd:2d:81:cf:7b:fe:69:67:bf:cb:a6:88:01:97: 46:65:6e:ee:f9:34:d5:59:48:bb:cb:b7:92:e4:0e:2f:b0:8e: ea:6e:89:53:92:0c:d4:3b:fd:ff:6e:3a:f5:d3:6d:4c:be:4e: ab:4d:06:d8:63:9a:c1:36:34:0f:76:7c:3a:d9:9d:cf:8f:6a: 5d:74:fe:a1:0c:32:95:b3:43:1b:92:d2:f8:5b:e5:5e:59:4a: b5:16:4b:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTI5REExMTAvBgNVBAUTKDJGRDI0QjZGRDc5ODA0NDU3MzU0Mzg2NjYyQ0UzMERE QTNCMjAwQjUwHhcNMjUwODA1MDUyNzA4WhcNMjUwODEyMDUyNzA4WjAYMRYwFAYD VQQDEw02ODkxOTYyYy1iNWYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqEv5ZBAgxn7mbbBfcYLxABYG6RaYqLZ5Al64qM973fXjiTUTWr+rUOn2LOiq tD4vmrHy1kyt7/rRYZdH9lliSMphSHk+u6zdpUwVwbSe8qUt24yUihZi7ys8sFsN 1bZVnou96e2ZxWBSBLNfUm0J0b+JzEVIGdfNvE28OpxnCG96ngNsHZJmfZEFHiy5 v46MXCrWg81FBLEPq5ophJvHdH4POqO1JQglewVmwihVk9kIiCKsuqXW34P9DJF2 jNX8ZOMNuzMrEqb2D1mP78f6e5L4OB1LkqhiFK0UIQkHkHklAM7KqjV8IKQpYYJb lMcRCZujRUwJ4A5MePvpIIJVowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMUhLVZa Lrb0+ALfzTWB5cPoDdBFMB8GA1UdIwQYMBaAFC/SS2/XmARFc1Q4ZmLOMN2jsgC1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMjlEQS8zNEI1QjUxNERB NTQxMUVFODI3Q0E1N0RDNEY5QUUwMi9MOUpMYjllWUJFVnpWRGhtWXM0dzNhT3lB TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0w5SkxiOWVZQkVWelZEaG1ZczR3M2FPeUFMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MjlEQS8zNEI1QjUxNERBNTQxMUVFODI3Q0E1N0RDNEY5QUUwMi9MOUpMYjllWUJF VnpWRGhtWXM0dzNhT3lBTFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuODBmCYAcNIhYJtdN00YPLPkwkT+qtiHvzVpz8UOr6ENqOwisKwg+ CaUzIHhXoOUE8jQuviP/0FJcmhXLQd07xw+FDeu6tFQ8Fjw84hdhoIzJow2k7qb+ hD9lrEMlBtHwxwR8lWNb9Nj+XKdHoBw3Yq6BhP4399kQEPG9T9oWib+fhuPv+w9h 11RovRnIg5bF+IUI4cyYN1Zf3+WbgrAAmTQ/Y9TY3S2Bz3v+aWe/y6aIAZdGZW7u +TTVWUi7y7eS5A4vsI7qbolTkgzUO/3/bjr1021Mvk6rTQbYY5rBNjQPdnw62Z3P j2pddP6hDDKVs0MbktL4W+VeWUq1Fks/ -----END CERTIFICATE-----Generated at Thu Aug 7 04:34:36 2025 by rpki-client