$ rpki-client -vvf rpki.apnic.net/member_repository/A91CAA69/40E1FC9C9EB011E9B07E7A82C4F9AE02/lGqi80z6-eS9bjRboJqd6bnC0U0.mft File: lGqi80z6-eS9bjRboJqd6bnC0U0.mft (raw, json) Hash identifier: GFBhcnoyC57nV/u8E//qZ5JnAYR7kSFLXrBl4EitEGI= Subject key identifier: 87:3E:D9:EE:7B:DE:51:44:CF:05:08:9E:D4:C2:F3:09:78:3A:B4:2E Authority key identifier: 94:6A:A2:F3:4C:FA:F9:E4:BD:6E:34:5B:A0:9A:9D:E9:B9:C2:D1:4D Certificate issuer: /CN=A91CAA69/serialNumber=946AA2F34CFAF9E4BD6E345BA09A9DE9B9C2D14D Certificate serial: 0E82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lGqi80z6-eS9bjRboJqd6bnC0U0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CAA69/40E1FC9C9EB011E9B07E7A82C4F9AE02/lGqi80z6-eS9bjRboJqd6bnC0U0.mft Manifest number: 0E71 Signing time: Sun 10 Aug 2025 17:44:50 +0000 Manifest this update: Sun 10 Aug 2025 17:44:49 +0000 Manifest next update: Sun 17 Aug 2025 17:44:49 +0000 Files and hashes: 1: lGqi80z6-eS9bjRboJqd6bnC0U0.crl (hash: D+WcE5HvEYBbx/QaGe1EmBY2QeutF5u7ZJ5owz3nTe8=) 2: 1FAB60EE9EB111E99ED10D84C4F9AE02.roa (hash: J9DgdD9cL2JfNJGX2KpEbeL9xCo98zH1CjpWmw6WEyg=) 3: DECBB040985611ECBE7ED328C4F9AE02.roa (hash: fVjIBFUgnQxd9qxxnDI3HntLIaXeeQgbbHy+hbpb2zg=) 4: DF5D49F6985611ECBE7ED328C4F9AE02.roa (hash: oySlLPz0K/UmHCqFTFPFIY5DaigueFo/oV/JPUia/uU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CAA69/40E1FC9C9EB011E9B07E7A82C4F9AE02/lGqi80z6-eS9bjRboJqd6bnC0U0.crl rsync://rpki.apnic.net/member_repository/A91CAA69/40E1FC9C9EB011E9B07E7A82C4F9AE02/lGqi80z6-eS9bjRboJqd6bnC0U0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lGqi80z6-eS9bjRboJqd6bnC0U0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3714 (0xe82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CAA69, serialNumber=946AA2F34CFAF9E4BD6E345BA09A9DE9B9C2D14D Validity Not Before: Aug 10 17:44:49 2025 GMT Not After : Aug 17 17:44:49 2025 GMT Subject: CN=6898da92-5563 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:0d:e5:cc:11:dd:0d:e7:39:22:62:92:98:8b: 05:44:db:1d:c4:2a:73:6a:fa:00:ab:7c:3b:b5:0f: 44:35:02:aa:79:3e:19:b8:02:3d:4a:17:06:1d:bc: 4c:56:45:86:75:f3:d5:33:27:b0:71:7c:a8:51:ce: bc:c8:dd:ad:2a:46:5d:66:f8:c1:af:a3:b7:88:95: f1:91:2b:46:4a:e8:3e:76:91:45:21:e4:cd:2c:88: f3:9d:ff:78:ba:86:06:ee:8f:3b:67:ed:8b:07:c8: f6:18:8e:7e:d3:78:fc:6e:a1:6c:e6:51:66:36:62: 4d:b3:70:34:e4:b6:dc:e5:4f:cb:da:10:04:a6:c7: aa:ae:3e:97:65:f7:34:8b:00:0e:17:26:31:81:64: 7e:7d:d2:d2:69:bf:b7:f9:29:79:05:6e:81:ab:4c: 4f:00:1b:ab:08:13:dc:fd:30:ca:23:10:12:8c:ab: 8d:26:83:fd:1e:de:fa:54:36:0f:e4:65:01:2a:33: 5a:49:1a:24:e5:d4:42:7d:12:24:35:a6:dc:a7:a9: 33:0d:7f:ae:5c:8e:42:ad:e6:66:12:71:37:5d:7e: 6f:a5:b3:65:d3:2d:53:81:61:34:e8:16:18:4e:2c: 11:93:73:07:c9:57:f3:06:94:0f:a0:4c:72:92:39: d7:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:3E:D9:EE:7B:DE:51:44:CF:05:08:9E:D4:C2:F3:09:78:3A:B4:2E X509v3 Authority Key Identifier: keyid:94:6A:A2:F3:4C:FA:F9:E4:BD:6E:34:5B:A0:9A:9D:E9:B9:C2:D1:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CAA69/40E1FC9C9EB011E9B07E7A82C4F9AE02/lGqi80z6-eS9bjRboJqd6bnC0U0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lGqi80z6-eS9bjRboJqd6bnC0U0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CAA69/40E1FC9C9EB011E9B07E7A82C4F9AE02/lGqi80z6-eS9bjRboJqd6bnC0U0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:41:13:24:c5:6b:f4:28:9b:be:74:ce:51:d0:ba:fd:47:0b: 8d:c6:84:19:80:ae:49:3f:3b:c1:0d:87:94:0d:4b:cb:d5:b3: 01:30:47:1e:07:d8:24:7f:e4:5c:b8:11:fd:69:09:3c:c4:18: ec:ad:82:b9:ef:4a:6e:35:98:1e:b1:d3:38:c9:28:26:0f:e8: ec:b2:4e:00:ad:82:a5:59:52:c8:ec:cd:f4:e7:bc:8e:c4:9f: 44:c4:9b:db:24:93:f9:8a:0d:9f:3e:0d:52:3b:7c:8f:de:c4: 5b:92:d0:df:cb:b3:1b:f5:35:7b:4d:43:89:8d:6a:06:1b:b8: 29:a6:4d:06:7d:c8:ce:f9:96:9d:fb:6d:8f:cb:9f:c4:c1:87: 26:3a:13:52:fb:25:b6:29:f2:d8:3a:c3:11:ba:44:80:3e:99: cb:37:62:51:bf:79:a0:22:d2:57:b6:f7:2c:c1:d5:10:8d:af: a1:18:8c:27:47:4d:c3:89:eb:91:e5:9e:07:bf:21:53:09:35: ab:d4:f0:6a:7b:c6:f5:75:79:e2:f3:5b:2e:e3:d5:f8:f4:f2: ef:2a:9e:2b:8f:63:f4:f5:a2:72:4e:7e:5d:66:50:f3:44:22: bd:1c:83:38:bb:97:fa:4c:5d:c1:f4:f3:5f:18:76:0f:fa:b2: 38:b3:b6:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDoIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FBNjkxMTAvBgNVBAUTKDk0NkFBMkYzNENGQUY5RTRCRDZFMzQ1QkEwOUE5REU5 QjlDMkQxNEQwHhcNMjUwODEwMTc0NDQ5WhcNMjUwODE3MTc0NDQ5WjAYMRYwFAYD VQQDEw02ODk4ZGE5Mi01NTYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAww3lzBHdDec5ImKSmIsFRNsdxCpzavoAq3w7tQ9ENQKqeT4ZuAI9ShcGHbxM VkWGdfPVMyewcXyoUc68yN2tKkZdZvjBr6O3iJXxkStGSug+dpFFIeTNLIjznf94 uoYG7o87Z+2LB8j2GI5+03j8bqFs5lFmNmJNs3A05Lbc5U/L2hAEpseqrj6XZfc0 iwAOFyYxgWR+fdLSab+3+Sl5BW6Bq0xPABurCBPc/TDKIxASjKuNJoP9Ht76VDYP 5GUBKjNaSRok5dRCfRIkNabcp6kzDX+uXI5CreZmEnE3XX5vpbNl0y1TgWE06BYY TiwRk3MHyVfzBpQPoExykjnXwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIc+2e57 3lFEzwUIntTC8wl4OrQuMB8GA1UdIwQYMBaAFJRqovNM+vnkvW40W6Canem5wtFN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUE2OS80MEUxRkM5QzlF QjAxMUU5QjA3RTdBODJDNEY5QUUwMi9sR3FpODB6Ni1lUzlialJib0pxZDZibkMw VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xHcWk4MHo2LWVTOWJqUmJvSnFkNmJuQzBVMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QUE2OS80MEUxRkM5QzlFQjAxMUU5QjA3RTdBODJDNEY5QUUwMi9sR3FpODB6Ni1l UzlialJib0pxZDZibkMwVTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmQRMkxWv0KJu+dM5R0Lr9RwuNxoQZgK5JPzvBDYeUDUvL1bMBMEce B9gkf+RcuBH9aQk8xBjsrYK570puNZgesdM4ySgmD+jssk4ArYKlWVLI7M3057yO xJ9ExJvbJJP5ig2fPg1SO3yP3sRbktDfy7Mb9TV7TUOJjWoGG7gppk0GfcjO+Zad +22Py5/EwYcmOhNS+yW2KfLYOsMRukSAPpnLN2JRv3mgItJXtvcswdUQja+hGIwn R03DieuR5Z4HvyFTCTWr1PBqe8b1dXni81su49X49PLvKp4rj2P09aJyTn5dZlDz RCK9HIM4u5f6TF3B9PNfGHYP+rI4s7Zj -----END CERTIFICATE-----Generated at Mon Aug 11 04:24:10 2025 by rpki-client