$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.mft File: ldQuwvRot-OPlYyPupMYARfcJuA.mft (raw, json) Hash identifier: 7Gl8eYwuTSWyfjdBiIBl0uuEtgHUiMars2d6YgQSKm4= Subject key identifier: 77:47:2A:18:64:1A:B6:1C:07:EF:2A:6B:AA:CB:40:FB:8C:90:EB:C5 Authority key identifier: 95:D4:2E:C2:F4:68:B7:E3:8F:95:8C:8F:BA:93:18:01:17:DC:26:E0 Certificate issuer: /CN=A91A7F6A/serialNumber=95D42EC2F468B7E38F958C8FBA93180117DC26E0 Certificate serial: 57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldQuwvRot-OPlYyPupMYARfcJuA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.mft Manifest number: 4F Signing time: Thu 07 Aug 2025 08:04:40 +0000 Manifest this update: Thu 07 Aug 2025 08:04:40 +0000 Manifest next update: Thu 14 Aug 2025 08:04:40 +0000 Files and hashes: 1: ldQuwvRot-OPlYyPupMYARfcJuA.crl (hash: zMS2ddG6Yo7Nw1+XzFp/28qS1I1ImC39ORdsvBlkCVE=) 2: F8C2A4E4359311F08C686E1BC4F9AE02.roa (hash: vSYTG4FiK7ZLm+rL5F5xQfklb4JbIfkyGEDj5czTJUY=) 3: B3849A9A359311F09B54926FC4F9AE02.roa (hash: Y+aC1xM6nmmoKwU/+TkwylgFTc7TBvkghCXTXAy84ng=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.crl rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldQuwvRot-OPlYyPupMYARfcJuA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 87 (0x57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7F6A, serialNumber=95D42EC2F468B7E38F958C8FBA93180117DC26E0 Validity Not Before: Aug 7 08:04:40 2025 GMT Not After : Aug 14 08:04:40 2025 GMT Subject: CN=68945e18-6ef6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:a2:5e:53:ee:32:a7:09:1c:92:0a:d3:36:ff: d3:51:2f:9b:3a:c9:5c:7c:fb:2d:68:fb:e3:28:35: 8b:aa:ad:a9:2e:18:a9:1e:5b:4a:9e:00:92:83:8b: de:af:55:59:10:1c:27:eb:94:c3:54:41:3f:39:21: 2b:cb:eb:3e:d9:01:b5:44:72:9d:11:88:4c:15:fd: 32:c4:27:fd:09:e7:0a:ba:f3:26:49:a8:ea:16:18: 10:51:b6:d7:fb:70:05:27:2a:3a:eb:2e:42:2e:e0: 15:62:93:09:f5:2e:a9:76:c6:6b:af:f0:75:fc:3d: eb:d5:44:19:d0:1c:0b:2f:5d:3d:33:e4:91:70:60: ac:4d:57:ce:9c:e6:ec:cf:99:01:33:32:1f:6a:80: 2f:15:a8:98:46:8b:f3:8b:c8:f8:e7:3a:e0:31:df: 90:e8:f9:bf:aa:72:49:3c:5c:13:62:66:55:e5:16: 1d:2a:d3:af:b8:c3:31:29:10:35:4d:60:35:51:b2: 24:86:41:a2:61:41:81:1e:ad:ee:bc:24:55:28:ef: 86:fd:57:0c:5b:eb:70:c0:f5:25:c8:95:64:26:bb: 6d:1c:97:c9:93:48:06:a2:d0:19:ae:3d:59:09:66: 0b:25:50:a8:9f:5d:80:6d:ee:0d:c1:69:65:98:40: 8d:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:47:2A:18:64:1A:B6:1C:07:EF:2A:6B:AA:CB:40:FB:8C:90:EB:C5 X509v3 Authority Key Identifier: keyid:95:D4:2E:C2:F4:68:B7:E3:8F:95:8C:8F:BA:93:18:01:17:DC:26:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldQuwvRot-OPlYyPupMYARfcJuA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:b6:be:39:61:ff:d4:09:05:0d:22:e7:5f:2d:e7:c0:00:f2: 46:4c:06:66:36:11:61:76:0e:8b:1e:27:da:c7:44:34:ae:b5: fd:3d:b3:eb:ba:79:5a:cb:97:ce:36:b7:1b:5f:f4:4f:d5:b4: 76:6f:3a:f9:6c:1c:70:86:cf:aa:ab:02:0e:a4:d0:84:44:78: 1c:fa:3a:29:5c:ef:0c:14:99:9c:33:e6:66:f7:72:1e:63:43: 48:54:49:63:91:a5:17:df:04:fb:47:f6:74:16:f7:ba:73:01: 70:4a:67:62:41:36:2c:a3:56:86:3b:0b:a0:4a:35:fb:e6:26: 7a:24:43:c2:f5:30:14:7b:a0:fa:06:8b:79:22:ff:5f:53:98: a4:a0:22:de:75:d8:c3:f7:10:67:52:cd:9d:58:34:66:5d:4a: d5:91:65:14:f9:d2:3f:d4:04:48:30:ca:a2:85:d7:aa:61:6b: 30:72:1d:4f:b0:8f:4d:4c:96:b9:a7:a9:2e:95:f2:6c:e7:b6: 86:48:04:5f:49:a2:88:ad:94:4a:db:f6:d7:d3:5e:38:ed:a1: d0:ca:02:08:78:94:a5:ac:a0:7d:80:40:d6:93:e5:81:87:86: 5c:db:cc:7b:9c:df:52:7c:a9:be:5c:fd:37:27:5e:95:ce:56: 28:01:ff:fa -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB N0Y2QTExMC8GA1UEBRMoOTVENDJFQzJGNDY4QjdFMzhGOTU4QzhGQkE5MzE4MDEx N0RDMjZFMDAeFw0yNTA4MDcwODA0NDBaFw0yNTA4MTQwODA0NDBaMBgxFjAUBgNV BAMTDTY4OTQ1ZTE4LTZlZjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDnol5T7jKnCRySCtM2/9NRL5s6yVx8+y1o++MoNYuqrakuGKkeW0qeAJKDi96v VVkQHCfrlMNUQT85ISvL6z7ZAbVEcp0RiEwV/TLEJ/0J5wq68yZJqOoWGBBRttf7 cAUnKjrrLkIu4BVikwn1Lql2xmuv8HX8PevVRBnQHAsvXT0z5JFwYKxNV86c5uzP mQEzMh9qgC8VqJhGi/OLyPjnOuAx35Do+b+qckk8XBNiZlXlFh0q06+4wzEpEDVN YDVRsiSGQaJhQYEere68JFUo74b9Vwxb63DA9SXIlWQmu20cl8mTSAai0BmuPVkJ ZgslUKifXYBt7g3BaWWYQI1/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUd0cqGGQa thwH7yprqstA+4yQ68UwHwYDVR0jBBgwFoAUldQuwvRot+OPlYyPupMYARfcJuAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE3RjZBLzdBNTI5ODc2MEFG MDExRjA4NTMxRDQzQ0M0RjlBRTAyL2xkUXV3dlJvdC1PUGxZeVB1cE1ZQVJmY0p1 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbGRRdXd2Um90LU9QbFl5UHVwTVlBUmZjSnVBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE3 RjZBLzdBNTI5ODc2MEFGMDExRjA4NTMxRDQzQ0M0RjlBRTAyL2xkUXV3dlJvdC1P UGxZeVB1cE1ZQVJmY0p1QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHC2vjlh/9QJBQ0i518t58AA8kZMBmY2EWF2DoseJ9rHRDSutf09s+u6 eVrLl842txtf9E/VtHZvOvlsHHCGz6qrAg6k0IREeBz6Oilc7wwUmZwz5mb3ch5j Q0hUSWORpRffBPtH9nQW97pzAXBKZ2JBNiyjVoY7C6BKNfvmJnokQ8L1MBR7oPoG i3ki/19TmKSgIt512MP3EGdSzZ1YNGZdStWRZRT50j/UBEgwyqKF16phazByHU+w j01MlrmnqS6V8mzntoZIBF9JooitlErb9tfTXjjtodDKAgh4lKWsoH2AQNaT5YGH hlzbzHuc31J8qb5c/TcnXpXOVigB//o= -----END CERTIFICATE-----Generated at Fri Aug 8 12:56:13 2025 by rpki-client