$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9467/915C07E691EA11E79D0D0A2BC4F9AE02/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.mft File: LhZNtFuEa7rmjCd9Q_iC9kCSKB4.mft (raw, json) Hash identifier: lkQ04qdYkA1o8G+aj+tP7prZaCv7cu4FLFh0c970hHM= Subject key identifier: 74:DB:91:2D:87:20:83:D8:AB:02:03:D9:20:81:FC:35:1A:F2:9B:BC Authority key identifier: 2E:16:4D:B4:5B:84:6B:BA:E6:8C:27:7D:43:F8:82:F6:40:92:28:1E Certificate issuer: /CN=A91A9467/serialNumber=2E164DB45B846BBAE68C277D43F882F64092281E Certificate serial: 1903 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9467/915C07E691EA11E79D0D0A2BC4F9AE02/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.mft Manifest number: 18F0 Signing time: Mon 04 Aug 2025 16:37:00 +0000 Manifest this update: Mon 04 Aug 2025 16:36:59 +0000 Manifest next update: Mon 11 Aug 2025 16:36:59 +0000 Files and hashes: 1: LhZNtFuEa7rmjCd9Q_iC9kCSKB4.crl (hash: QLd1LK9W+xxe7Sg0qt06VcFy8LV61flKRL1pfLM5XQQ=) 2: 0EDA10A4A9A011EE96DCBB4FC4F9AE02.roa (hash: 9b8cbYORw44VvEpRgAtGCxHhf/hrQyvWwycoRACw4Zc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9467/915C07E691EA11E79D0D0A2BC4F9AE02/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.crl rsync://rpki.apnic.net/member_repository/A91A9467/915C07E691EA11E79D0D0A2BC4F9AE02/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 16:36:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6403 (0x1903) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9467, serialNumber=2E164DB45B846BBAE68C277D43F882F64092281E Validity Not Before: Aug 4 16:36:59 2025 GMT Not After : Aug 11 16:36:59 2025 GMT Subject: CN=6890e1ab-2504 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:84:84:83:c5:3a:16:d1:78:f7:de:ff:4a:80: 61:c3:49:9c:d8:14:2e:20:36:8f:45:44:c5:18:06: 82:0a:e8:d9:5c:bf:8c:8d:b0:a7:dc:7a:5d:de:94: ad:28:5f:21:b6:4e:ab:8d:6f:80:f5:37:c9:ac:8b: c0:f2:66:81:5e:31:bc:09:72:16:7b:12:37:0d:e5: 3d:54:eb:1a:1e:0d:ec:7b:ab:8d:8a:c0:a4:f0:98: f7:88:f8:dd:9b:c9:e7:8a:30:f0:72:eb:e0:a2:31: 0a:e2:23:39:11:3c:ff:e7:ae:6c:c8:7c:e8:5d:73: a8:41:50:a4:56:f9:0e:c3:04:bb:89:77:a4:87:0d: d2:6e:cd:bb:44:10:bb:e8:69:a6:20:67:ca:88:cd: 80:f2:c9:d8:b5:d4:e6:74:b7:73:a1:30:0d:9e:c4: e1:48:29:f2:5f:de:31:66:5e:7c:de:61:0a:a5:f1: 57:49:cd:1e:1e:93:e1:78:fe:68:0c:ce:ef:5a:f4: 39:f8:b0:db:96:4f:eb:16:42:e7:61:25:15:36:ce: b3:48:8d:e9:a8:bc:b0:f0:47:73:32:03:7e:fc:37: ae:84:94:47:23:75:e2:2a:53:90:57:3a:3f:6d:3b: 11:8a:1e:c9:7b:e2:84:e1:a1:8a:8b:24:12:b5:d7: 24:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:DB:91:2D:87:20:83:D8:AB:02:03:D9:20:81:FC:35:1A:F2:9B:BC X509v3 Authority Key Identifier: keyid:2E:16:4D:B4:5B:84:6B:BA:E6:8C:27:7D:43:F8:82:F6:40:92:28:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9467/915C07E691EA11E79D0D0A2BC4F9AE02/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9467/915C07E691EA11E79D0D0A2BC4F9AE02/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:1e:bd:d6:b1:bb:71:44:69:f0:c6:4f:17:de:81:c3:95:66: 98:15:af:ad:d5:10:73:cb:5c:2d:b2:f4:b3:a7:e3:ff:c6:1e: 02:46:5a:17:f6:2f:bc:a3:3b:5d:b5:6f:f7:ca:f0:8c:39:c7: 54:04:94:75:d0:07:bb:65:13:7c:b1:24:6c:8a:da:18:49:e7: d8:bd:5d:b1:3f:36:d5:e3:20:65:65:e6:a5:8f:43:84:04:30: 03:85:b9:f0:4a:9f:7c:7f:34:dc:b8:e0:34:3d:f6:ce:12:c8: 52:82:29:9f:94:71:e2:91:af:84:f3:71:85:0b:2b:45:ae:ef: 61:2f:33:e0:c9:34:7f:83:16:67:f7:05:4f:db:17:6e:de:08: 4a:5a:e7:f3:48:a3:5c:21:15:64:a2:13:d7:ce:7d:75:01:72: ed:db:08:30:4f:e4:34:8a:c5:af:53:f9:2a:62:46:d6:69:46: 66:ec:c4:b1:ce:3a:fe:8b:36:61:13:9a:f8:b2:81:eb:cf:d5: 0b:44:94:6c:c5:41:66:5a:20:a0:b0:54:2e:05:25:ab:c0:0b: 57:80:cb:68:7c:47:e2:86:36:f4:6d:96:7c:24:e8:08:6f:25: 27:a4:e0:b3:75:86:28:ef:f8:58:29:ab:80:0b:96:c1:ad:f7: b4:be:f2:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTk0NjcxMTAvBgNVBAUTKDJFMTY0REI0NUI4NDZCQkFFNjhDMjc3RDQzRjg4MkY2 NDA5MjI4MUUwHhcNMjUwODA0MTYzNjU5WhcNMjUwODExMTYzNjU5WjAYMRYwFAYD VQQDEw02ODkwZTFhYi0yNTA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw4SEg8U6FtF4997/SoBhw0mc2BQuIDaPRUTFGAaCCujZXL+MjbCn3Hpd3pSt KF8htk6rjW+A9TfJrIvA8maBXjG8CXIWexI3DeU9VOsaHg3se6uNisCk8Jj3iPjd m8nnijDwcuvgojEK4iM5ETz/565syHzoXXOoQVCkVvkOwwS7iXekhw3Sbs27RBC7 6GmmIGfKiM2A8snYtdTmdLdzoTANnsThSCnyX94xZl583mEKpfFXSc0eHpPheP5o DM7vWvQ5+LDblk/rFkLnYSUVNs6zSI3pqLyw8EdzMgN+/DeuhJRHI3XiKlOQVzo/ bTsRih7Je+KE4aGKiyQStdckfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHTbkS2H IIPYqwID2SCB/DUa8pu8MB8GA1UdIwQYMBaAFC4WTbRbhGu65ownfUP4gvZAkige MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTQ2Ny85MTVDMDdFNjkx RUExMUU3OUQwRDBBMkJDNEY5QUUwMi9MaFpOdEZ1RWE3cm1qQ2Q5UV9pQzlrQ1NL QjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xoWk50RnVFYTdybWpDZDlRX2lDOWtDU0tCNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTQ2Ny85MTVDMDdFNjkxRUExMUU3OUQwRDBBMkJDNEY5QUUwMi9MaFpOdEZ1RWE3 cm1qQ2Q5UV9pQzlrQ1NLQjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcHr3WsbtxRGnwxk8X3oHDlWaYFa+t1RBzy1wtsvSzp+P/xh4CRloX 9i+8oztdtW/3yvCMOcdUBJR10Ae7ZRN8sSRsitoYSefYvV2xPzbV4yBlZealj0OE BDADhbnwSp98fzTcuOA0PfbOEshSgimflHHika+E83GFCytFru9hLzPgyTR/gxZn 9wVP2xdu3ghKWufzSKNcIRVkohPXzn11AXLt2wgwT+Q0isWvU/kqYkbWaUZm7MSx zjr+izZhE5r4soHrz9ULRJRsxUFmWiCgsFQuBSWrwAtXgMtofEfihjb0bZZ8JOgI byUnpOCzdYYo7/hYKauAC5bBrfe0vvKh -----END CERTIFICATE-----Generated at Wed Aug 6 14:17:46 2025 by rpki-client