$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft File: LD0jWhshn0FmEJALADuKv9wXAqI.mft (raw, json) Hash identifier: sEVjTvOxaNxhm9dQW/zKf6I8jAv4gjK+E+f8NDNlJJE= Subject key identifier: DA:C5:7B:86:4E:82:90:45:DE:18:F3:8C:A7:EA:B7:C2:10:74:08:AD Authority key identifier: 2C:3D:23:5A:1B:21:9F:41:66:10:90:0B:00:3B:8A:BF:DC:17:02:A2 Certificate issuer: /CN=A91CEA40/serialNumber=2C3D235A1B219F416610900B003B8ABFDC1702A2 Certificate serial: 0636 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft Manifest number: 0629 Signing time: Sun 10 Aug 2025 22:53:53 +0000 Manifest this update: Sun 10 Aug 2025 22:53:53 +0000 Manifest next update: Sun 17 Aug 2025 22:53:53 +0000 Files and hashes: 1: LD0jWhshn0FmEJALADuKv9wXAqI.crl (hash: T5zNI8CRggcHqR3r1bJSiHo6yh7WiCF4hOpHSBCEHwU=) 2: 96F093D4BEA011EB8CAD965FC4F9AE02.roa (hash: NpLkQ/NypmNX/0X8ZR0aPK3YWZwmOShkZdvPXd4fivY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.crl rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 17 Aug 2025 22:53:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1590 (0x636) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEA40, serialNumber=2C3D235A1B219F416610900B003B8ABFDC1702A2 Validity Not Before: Aug 10 22:53:53 2025 GMT Not After : Aug 17 22:53:53 2025 GMT Subject: CN=68992301-a279 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:eb:91:fa:53:a2:a0:53:95:33:f4:77:4e:ce: 3f:72:f0:b0:1c:5b:14:4a:8c:6d:66:4b:90:e0:3c: e0:10:a0:ec:49:a6:3e:1b:aa:8e:cd:0b:24:26:18: 1c:6d:fe:1e:f6:d8:c1:54:e8:5f:6a:0f:ae:35:53: 67:33:36:39:ac:78:6b:99:e1:ec:03:d2:07:e2:e5: cf:04:31:3f:6d:2e:37:ca:a3:ee:95:4b:62:4c:13: 6c:b3:32:ac:d3:46:61:d1:b4:86:0e:01:2f:51:ce: 34:20:77:f9:eb:cc:60:81:77:9c:a9:4e:5e:3f:74: 74:aa:3d:31:bb:82:21:bc:44:a3:0f:df:94:71:c6: 60:10:54:de:d8:c1:8f:77:bc:0b:6f:9b:73:f5:02: 7f:ef:6b:0a:ed:18:7a:2f:ae:17:e8:70:86:ad:3c: c0:bb:7e:0b:8a:4b:98:90:9d:a9:ce:d8:20:83:58: 3e:47:00:ba:53:37:d7:9d:ec:47:58:7b:d9:52:3d: 2e:00:02:38:8f:16:a5:44:84:30:fe:3b:eb:5c:c4: e5:99:64:6f:6f:37:3d:e0:3a:90:ce:00:b9:6e:e6: 2a:39:d0:39:c4:0f:da:7f:6c:25:e5:d9:c5:64:71: f3:b6:37:ee:18:33:0f:df:84:af:74:95:1d:30:ee: ad:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:C5:7B:86:4E:82:90:45:DE:18:F3:8C:A7:EA:B7:C2:10:74:08:AD X509v3 Authority Key Identifier: keyid:2C:3D:23:5A:1B:21:9F:41:66:10:90:0B:00:3B:8A:BF:DC:17:02:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:5d:a6:d5:4f:df:96:ad:b0:2c:ea:1a:03:0b:7f:65:a1:75: 62:f5:21:66:54:f0:6e:3d:16:05:62:6a:a5:ea:f3:67:31:ac: 5d:e4:7b:ed:a0:68:29:b1:12:2e:89:03:23:4a:de:08:4d:af: 74:84:54:b7:7f:71:1d:a4:57:d8:ea:f6:66:03:69:07:cb:c3: 54:a2:e2:42:a6:2b:60:2a:23:90:86:83:07:80:3a:53:67:4c: 92:04:83:d2:1c:cf:70:4f:42:4a:b7:06:9d:2f:51:d5:f0:07: 2b:1c:fd:56:b6:cc:f4:25:0c:f6:7c:47:18:34:ad:63:2d:17: 09:dd:61:55:3b:c9:a5:bc:32:fa:fc:07:1c:25:d2:48:6e:c8: 76:79:84:3a:b9:95:60:e5:d5:8c:83:18:1c:07:ef:39:89:d2: 63:b6:5f:2f:c5:81:22:80:17:2c:42:0a:7b:7d:b1:7f:00:e3: 7a:f3:c9:f5:f4:45:5b:c3:ef:4e:79:82:f5:60:18:5d:79:88: b1:82:65:26:8c:4e:d5:ea:1b:65:c6:b9:78:56:ff:c8:82:48: b7:99:84:3e:73:e5:35:9f:fe:90:d6:ee:b2:05:ff:21:dd:4a: c3:70:12:86:9a:46:66:9c:bb:47:da:e0:62:57:f8:4d:3e:79: 15:de:55:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBjYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VBNDAxMTAvBgNVBAUTKDJDM0QyMzVBMUIyMTlGNDE2NjEwOTAwQjAwM0I4QUJG REMxNzAyQTIwHhcNMjUwODEwMjI1MzUzWhcNMjUwODE3MjI1MzUzWjAYMRYwFAYD VQQDEw02ODk5MjMwMS1hMjc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo+uR+lOioFOVM/R3Ts4/cvCwHFsUSoxtZkuQ4DzgEKDsSaY+G6qOzQskJhgc bf4e9tjBVOhfag+uNVNnMzY5rHhrmeHsA9IH4uXPBDE/bS43yqPulUtiTBNsszKs 00Zh0bSGDgEvUc40IHf568xggXecqU5eP3R0qj0xu4IhvESjD9+UccZgEFTe2MGP d7wLb5tz9QJ/72sK7Rh6L64X6HCGrTzAu34LikuYkJ2pztggg1g+RwC6UzfXnexH WHvZUj0uAAI4jxalRIQw/jvrXMTlmWRvbzc94DqQzgC5buYqOdA5xA/af2wl5dnF ZHHztjfuGDMP34SvdJUdMO6tIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNrFe4ZO gpBF3hjzjKfqt8IQdAitMB8GA1UdIwQYMBaAFCw9I1obIZ9BZhCQCwA7ir/cFwKi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUE0MC84RTk2NEJDRUFG NzkxMUVCODQyMTdBNThDNEY5QUUwMi9MRDBqV2hzaG4wRm1FSkFMQUR1S3Y5d1hB cUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xEMGpXaHNobjBGbUVKQUxBRHVLdjl3WEFxSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUE0MC84RTk2NEJDRUFGNzkxMUVCODQyMTdBNThDNEY5QUUwMi9MRDBqV2hzaG4w Rm1FSkFMQUR1S3Y5d1hBcUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMXabVT9+WrbAs6hoDC39loXVi9SFmVPBuPRYFYmql6vNnMaxd5Hvt oGgpsRIuiQMjSt4ITa90hFS3f3EdpFfY6vZmA2kHy8NUouJCpitgKiOQhoMHgDpT Z0ySBIPSHM9wT0JKtwadL1HV8AcrHP1Wtsz0JQz2fEcYNK1jLRcJ3WFVO8mlvDL6 /AccJdJIbsh2eYQ6uZVg5dWMgxgcB+85idJjtl8vxYEigBcsQgp7fbF/AON688n1 9EVbw+9OeYL1YBhdeYixgmUmjE7V6htlxrl4Vv/Igki3mYQ+c+U1n/6Q1u6yBf8h 3UrDcBKGmkZmnLtH2uBiV/hNPnkV3lVx -----END CERTIFICATE-----Generated at Tue Aug 12 14:00:46 2025 by rpki-client