$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft File: lKlQswO0aQDdWjBhAwyJpIloA68.mft (raw, json) Hash identifier: tMERqnrHzv7iC0baTKXSs1OwD77TqFOEIiWoHzWJGqY= Subject key identifier: 53:53:71:EC:23:AC:59:3F:7B:15:8F:C1:D5:16:FD:2D:3D:14:14:DD Authority key identifier: 94:A9:50:B3:03:B4:69:00:DD:5A:30:61:03:0C:89:A4:89:68:03:AF Certificate issuer: /CN=A91BAD2D/serialNumber=94A950B303B46900DD5A3061030C89A4896803AF Certificate serial: 010B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKlQswO0aQDdWjBhAwyJpIloA68.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft Manifest number: 0108 Signing time: Mon 11 Aug 2025 05:15:19 +0000 Manifest this update: Mon 11 Aug 2025 05:15:18 +0000 Manifest next update: Mon 18 Aug 2025 05:15:18 +0000 Files and hashes: 1: lKlQswO0aQDdWjBhAwyJpIloA68.crl (hash: FdpQbMJQrMl6bowqrTDxKteBObl9m4ckJXbG1t7yxK0=) 2: 33B566F2E80811EEB4888B0FC4F9AE02.roa (hash: ZSDoXQLk70kw9Tv9vuIwvYTULilf6nNLQq+LER2jQIQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.crl rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKlQswO0aQDdWjBhAwyJpIloA68.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 267 (0x10b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAD2D, serialNumber=94A950B303B46900DD5A3061030C89A4896803AF Validity Not Before: Aug 11 05:15:18 2025 GMT Not After : Aug 18 05:15:18 2025 GMT Subject: CN=68997c67-04d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:eb:fd:08:fb:cd:f8:09:62:2f:2e:d1:fd:e0: 58:c9:20:ef:59:5c:f6:a8:0f:a3:99:01:f9:96:8d: bd:37:f4:f3:6d:20:1f:6b:e0:7c:ef:fb:ad:29:38: 2e:1d:87:2d:dc:ff:f5:58:24:0d:14:fd:b7:1e:51: 31:e1:6a:a5:f5:5d:fc:58:b0:d0:f4:d3:9a:c6:eb: 6f:f6:ea:0d:f8:1f:db:93:f5:d2:96:f7:bf:9f:92: bf:2b:b3:f0:e2:51:32:5f:bc:00:91:b9:de:52:f6: 7f:68:79:b2:a5:cc:17:96:32:34:6c:52:5b:f6:1d: c5:70:1d:9c:45:3f:35:f5:0a:02:7d:ba:bd:e5:46: b0:56:52:e9:56:5c:4c:88:60:71:19:81:0a:56:1d: be:87:07:af:c8:43:c1:21:c0:fe:c3:3b:0d:ee:8c: 86:f8:89:ff:c1:5d:66:1f:da:30:f3:6d:d8:7c:ff: 3c:ac:22:20:d0:81:71:b2:8b:34:f2:de:4b:51:f5: b3:64:0e:95:4e:4a:71:f2:c8:70:e9:93:3e:49:d2: a3:23:51:c3:80:7b:b0:f7:c9:2b:31:9c:cc:45:f7: f5:fc:92:2b:c1:f9:4c:8c:71:df:f4:c6:bc:fc:7e: 3d:f7:79:b3:f8:a4:f4:f4:c1:cb:2c:e1:d1:73:6b: b9:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:53:71:EC:23:AC:59:3F:7B:15:8F:C1:D5:16:FD:2D:3D:14:14:DD X509v3 Authority Key Identifier: keyid:94:A9:50:B3:03:B4:69:00:DD:5A:30:61:03:0C:89:A4:89:68:03:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKlQswO0aQDdWjBhAwyJpIloA68.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:7b:3d:be:d1:a5:d2:17:9f:b4:67:c3:5c:ad:75:35:19:67: 71:41:30:0f:8e:c6:4a:91:6a:c7:16:8d:fa:d8:52:9d:09:e8: 85:d5:91:13:fd:1e:30:30:33:38:71:cf:82:ed:96:f0:84:e2: f7:61:41:f2:1c:b7:7b:8d:27:2c:fc:16:f0:fc:3b:40:cc:de: 95:f4:1a:d5:61:d3:5d:5f:67:a2:fd:e8:98:96:96:2b:1f:06: ce:e7:eb:b2:c8:b0:ea:f0:40:c2:a5:16:84:97:13:6e:57:70: 06:35:7e:d1:bc:b1:93:3e:09:ac:e9:49:be:9a:e3:ac:22:0c: 1d:c0:52:2e:54:ac:7f:8b:63:ab:8d:c4:34:fd:8c:db:e0:a8: 01:a7:41:ab:f5:07:ba:e1:94:cc:1c:ad:f5:88:57:93:2e:fe: 9f:0b:7c:72:12:b6:b5:2c:79:4c:9b:ad:30:b8:22:84:b4:be: 1b:ac:20:9a:1e:b2:a2:49:a0:b5:7d:84:0b:f2:8b:55:a7:c9: 22:49:3b:1b:b4:be:f6:68:3b:51:68:bc:71:63:1c:e5:df:e1: b3:3f:da:af:89:a0:9e:f8:b7:9e:e5:18:c5:92:4a:bd:67:31: 69:a3:4a:18:cd:6b:61:bd:5f:77:2e:62:a8:93:8e:1e:19:40: 34:e0:92:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFEMkQxMTAvBgNVBAUTKDk0QTk1MEIzMDNCNDY5MDBERDVBMzA2MTAzMEM4OUE0 ODk2ODAzQUYwHhcNMjUwODExMDUxNTE4WhcNMjUwODE4MDUxNTE4WjAYMRYwFAYD VQQDEw02ODk5N2M2Ny0wNGQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5ev9CPvN+AliLy7R/eBYySDvWVz2qA+jmQH5lo29N/TzbSAfa+B87/utKTgu HYct3P/1WCQNFP23HlEx4Wql9V38WLDQ9NOaxutv9uoN+B/bk/XSlve/n5K/K7Pw 4lEyX7wAkbneUvZ/aHmypcwXljI0bFJb9h3FcB2cRT819QoCfbq95UawVlLpVlxM iGBxGYEKVh2+hwevyEPBIcD+wzsN7oyG+In/wV1mH9ow823YfP88rCIg0IFxsos0 8t5LUfWzZA6VTkpx8shw6ZM+SdKjI1HDgHuw98krMZzMRff1/JIrwflMjHHf9Ma8 /H4993mz+KT09MHLLOHRc2u5zQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFNTcewj rFk/exWPwdUW/S09FBTdMB8GA1UdIwQYMBaAFJSpULMDtGkA3VowYQMMiaSJaAOv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUQyRC85MDg4RUU1QUU4 MDExMUVFQUQ2QzUwMzBDNEY5QUUwMi9sS2xRc3dPMGFRRGRXakJoQXd5SnBJbG9B NjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xLbFFzd08wYVFEZFdqQmhBd3lKcElsb0E2OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUQyRC85MDg4RUU1QUU4MDExMUVFQUQ2QzUwMzBDNEY5QUUwMi9sS2xRc3dPMGFR RGRXakJoQXd5SnBJbG9BNjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOez2+0aXSF5+0Z8NcrXU1GWdxQTAPjsZKkWrHFo362FKdCeiF1ZET /R4wMDM4cc+C7ZbwhOL3YUHyHLd7jScs/Bbw/DtAzN6V9BrVYdNdX2ei/eiYlpYr HwbO5+uyyLDq8EDCpRaElxNuV3AGNX7RvLGTPgms6Um+muOsIgwdwFIuVKx/i2Or jcQ0/Yzb4KgBp0Gr9Qe64ZTMHK31iFeTLv6fC3xyEra1LHlMm60wuCKEtL4brCCa HrKiSaC1fYQL8otVp8kiSTsbtL72aDtRaLxxYxzl3+GzP9qviaCe+Lee5RjFkkq9 ZzFpo0oYzWthvV93LmKok44eGUA04JI/ -----END CERTIFICATE-----Generated at Mon Aug 11 07:27:25 2025 by rpki-client