$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.mft File: LBkXUyWl82wLtY-SEZ5lggyP1Xs.mft (raw, json) Hash identifier: hvh13Gy2Q7G/n+xrt8yK4GlRY1ZoI5CiYLfSiUJ8BV4= Subject key identifier: 88:E9:FF:62:46:93:1A:26:1A:C3:DC:FA:E4:0A:06:DB:71:66:8D:63 Authority key identifier: 2C:19:17:53:25:A5:F3:6C:0B:B5:8F:92:11:9E:65:82:0C:8F:D5:7B Certificate issuer: /CN=A91ACD72/serialNumber=2C19175325A5F36C0BB58F92119E65820C8FD57B Certificate serial: 0558 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.mft Manifest number: 051D Signing time: Sat 09 Aug 2025 00:11:23 +0000 Manifest this update: Sat 09 Aug 2025 00:11:23 +0000 Manifest next update: Sat 16 Aug 2025 00:11:23 +0000 Files and hashes: 1: LBkXUyWl82wLtY-SEZ5lggyP1Xs.crl (hash: u0JQVFkpxT5AGTw1VZUvdkPd1VwSqhLtIq8vAcd0uro=) 2: CE988D80FB7311EC97CD7F85C4F9AE02.roa (hash: c5X0bRS1v3BmM8+viPXYxx/gJz2nVR8k5o+BxqMhvNI=) 3: BD4E85B09E6311ECA6EC8071C4F9AE02.roa (hash: 2jfJLAfv4sSmTjn+t4R2DbosLO6LZGV4JERzq1/IuT0=) 4: F88F642285E411EEB951413BC4F9AE02.roa (hash: 5XS7gAJ1w57LGdHifEwdGpT41QuHVgx3tURmBIG/Ph0=) 5: 1CD7BEFC4D0E11EEA09FBF12C4F9AE02.roa (hash: ZVXIXb68LMeIyoHASYy5oVFyflHWdmoVD7FAYMUQOp4=) 6: BBDA9B429E6311ECA6EC8071C4F9AE02.roa (hash: WiSL38A4AfTZxujdbevnM0BHhlMtOQknr2QyeEfpbeg=) 7: 95C12B8E21A111EE8360C139C4F9AE02.roa (hash: ANarnw7th2betqTUJ1dSr/6kmM20Z4BPNu0RmkGVouY=) 8: D6C060C27E1811EEB9B4FE4AC4F9AE02.roa (hash: H6lUECWs/LnmCnEJB/ye5BlXZoehdKlxdmR5+P/1VOY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.crl rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1368 (0x558) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACD72, serialNumber=2C19175325A5F36C0BB58F92119E65820C8FD57B Validity Not Before: Aug 9 00:11:23 2025 GMT Not After : Aug 16 00:11:23 2025 GMT Subject: CN=6896922b-03d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:4d:a9:7d:49:c2:2e:e4:b7:17:07:5a:82:3f: 33:bc:fe:1f:09:a1:3d:05:fb:f4:4c:35:fa:fe:e7: 80:98:ca:3d:a1:0f:01:fc:9c:df:de:5e:06:b6:1e: 8b:f4:0d:f7:67:6b:0d:fd:40:8c:4c:38:3f:b6:eb: c6:13:6f:1d:f5:34:eb:1d:57:41:15:4f:d2:b6:99: 73:9a:20:8c:46:c5:60:4f:a4:52:1b:26:a2:28:27: c1:db:ce:0f:ff:2a:93:5d:1c:2f:2b:06:79:a3:59: 1f:82:a1:34:13:93:cd:1d:94:21:ed:3a:c7:9c:a6: 2f:ff:d7:d3:1f:40:ce:62:90:90:e8:8b:9f:4c:70: 78:47:d9:b8:ec:c0:a6:ae:57:9d:8c:2b:c1:c3:55: 4c:f7:e0:a2:14:ea:8c:ef:86:42:28:26:3f:2b:aa: 56:ce:a6:ac:d2:f5:a1:e8:e5:b5:49:b5:54:c0:3e: 36:1c:f5:3c:43:0d:e3:68:83:58:4c:31:94:b5:27: cc:45:81:49:2f:9b:65:54:18:5c:5d:7c:21:2c:f6: f5:85:a0:97:25:ad:3c:e8:86:e3:5c:14:6d:64:1e: 23:9b:d1:09:d7:4c:bc:96:f2:bd:c5:68:be:f4:fd: a5:fd:25:b6:f0:88:8a:a0:e8:f3:89:f4:4d:49:4a: db:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:E9:FF:62:46:93:1A:26:1A:C3:DC:FA:E4:0A:06:DB:71:66:8D:63 X509v3 Authority Key Identifier: keyid:2C:19:17:53:25:A5:F3:6C:0B:B5:8F:92:11:9E:65:82:0C:8F:D5:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:ef:fc:fb:42:1f:4c:94:76:c4:f7:68:2a:11:35:65:e2:02: a4:02:29:b8:67:27:11:05:4f:e5:34:72:dd:e7:cd:21:4b:05: a7:d9:e2:e7:87:ac:78:11:91:28:dd:50:2d:be:02:cf:ff:0b: 3f:0a:ad:c3:31:f3:96:4b:cc:8d:42:bc:1a:fe:cd:0a:6d:20: b3:a4:b5:fa:ac:7b:67:e2:1e:72:41:8a:f3:0b:70:2c:53:43: 77:ed:db:7e:6b:43:13:5c:50:36:d9:89:17:2e:65:25:ca:b5: f2:89:50:e3:0a:e1:8f:0d:e8:bc:d0:d5:3e:18:30:fa:35:88: 01:bc:18:44:c3:06:03:c3:d7:02:f6:60:d5:3b:33:6c:37:ee: 9d:e7:d3:c1:19:8e:72:82:cb:a8:a7:54:26:31:8c:dc:18:86: 64:75:a8:83:6a:9c:f6:7f:ee:b2:10:7f:4f:8e:3e:d7:f9:9b: cb:54:f4:b3:d7:11:ee:17:d7:8d:9e:80:c9:25:00:bf:be:df: 58:d9:81:f8:24:66:39:2a:75:a8:f4:07:61:bd:ca:69:4d:9a: 20:0d:e3:29:fd:0e:bf:1c:87:fb:61:c7:3d:b4:4c:5a:ba:f8: 04:7a:3f:9f:62:05:58:54:14:ee:ea:15:36:98:bc:cc:bf:33: 1e:25:27:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNENzIxMTAvBgNVBAUTKDJDMTkxNzUzMjVBNUYzNkMwQkI1OEY5MjExOUU2NTgy MEM4RkQ1N0IwHhcNMjUwODA5MDAxMTIzWhcNMjUwODE2MDAxMTIzWjAYMRYwFAYD VQQDEw02ODk2OTIyYi0wM2Q2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8k2pfUnCLuS3Fwdagj8zvP4fCaE9Bfv0TDX6/ueAmMo9oQ8B/Jzf3l4Gth6L 9A33Z2sN/UCMTDg/tuvGE28d9TTrHVdBFU/StplzmiCMRsVgT6RSGyaiKCfB284P /yqTXRwvKwZ5o1kfgqE0E5PNHZQh7TrHnKYv/9fTH0DOYpCQ6IufTHB4R9m47MCm rledjCvBw1VM9+CiFOqM74ZCKCY/K6pWzqas0vWh6OW1SbVUwD42HPU8Qw3jaINY TDGUtSfMRYFJL5tlVBhcXXwhLPb1haCXJa086IbjXBRtZB4jm9EJ10y8lvK9xWi+ 9P2l/SW28IiKoOjzifRNSUrbqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIjp/2JG kxomGsPc+uQKBttxZo1jMB8GA1UdIwQYMBaAFCwZF1MlpfNsC7WPkhGeZYIMj9V7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0Q3Mi80NTc2QTY3MjI2 MTIxMUVDQjkzMTk5NDJDNEY5QUUwMi9MQmtYVXlXbDgyd0x0WS1TRVo1bGdneVAx WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xCa1hVeVdsODJ3THRZLVNFWjVsZ2d5UDFYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Q0Q3Mi80NTc2QTY3MjI2MTIxMUVDQjkzMTk5NDJDNEY5QUUwMi9MQmtYVXlXbDgy d0x0WS1TRVo1bGdneVAxWHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBw7/z7Qh9MlHbE92gqETVl4gKkAim4ZycRBU/lNHLd580hSwWn2eLn h6x4EZEo3VAtvgLP/ws/Cq3DMfOWS8yNQrwa/s0KbSCzpLX6rHtn4h5yQYrzC3As U0N37dt+a0MTXFA22YkXLmUlyrXyiVDjCuGPDei80NU+GDD6NYgBvBhEwwYDw9cC 9mDVOzNsN+6d59PBGY5ygsuop1QmMYzcGIZkdaiDapz2f+6yEH9Pjj7X+ZvLVPSz 1xHuF9eNnoDJJQC/vt9Y2YH4JGY5KnWo9AdhvcppTZogDeMp/Q6/HIf7Ycc9tExa uvgEej+fYgVYVBTu6hU2mLzMvzMeJScz -----END CERTIFICATE-----Generated at Sun Aug 10 19:02:04 2025 by rpki-client