$ rpki-client -vvf rpki.apnic.net/member_repository/A91D46B0/E50902B6079B11EB8A1F2732C4F9AE02/l2H_Xz-EFr4B4j_HBYR9-pRITbY.mft File: l2H_Xz-EFr4B4j_HBYR9-pRITbY.mft (raw, json) Hash identifier: H/Un7A8/Vpd6ZjRVDAWzvAodz7sjzr8/lUcpQxMK1hw= Subject key identifier: AA:CF:B7:75:50:6B:CC:1E:CA:21:BD:C4:05:F3:49:5B:0C:26:C8:6E Authority key identifier: 97:61:FF:5F:3F:84:16:BE:01:E2:3F:C7:05:84:7D:FA:94:48:4D:B6 Certificate issuer: /CN=A91D46B0/serialNumber=9761FF5F3F8416BE01E23FC705847DFA94484DB6 Certificate serial: 07CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l2H_Xz-EFr4B4j_HBYR9-pRITbY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D46B0/E50902B6079B11EB8A1F2732C4F9AE02/l2H_Xz-EFr4B4j_HBYR9-pRITbY.mft Manifest number: 07C3 Signing time: Fri 08 Aug 2025 21:34:59 +0000 Manifest this update: Fri 08 Aug 2025 21:34:58 +0000 Manifest next update: Fri 15 Aug 2025 21:34:58 +0000 Files and hashes: 1: l2H_Xz-EFr4B4j_HBYR9-pRITbY.crl (hash: jyinEae3pamqmNKQ1KBUSsWv+Ux64VSID0tWK3h4QYs=) 2: 63B4DD1ADA2311EB8A4EC13BC4F9AE02.roa (hash: Xox0RKn25c/NtUoE1hfxgdRKbyAd4ZoK4OD14DUbhsc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D46B0/E50902B6079B11EB8A1F2732C4F9AE02/l2H_Xz-EFr4B4j_HBYR9-pRITbY.crl rsync://rpki.apnic.net/member_repository/A91D46B0/E50902B6079B11EB8A1F2732C4F9AE02/l2H_Xz-EFr4B4j_HBYR9-pRITbY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l2H_Xz-EFr4B4j_HBYR9-pRITbY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1999 (0x7cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D46B0, serialNumber=9761FF5F3F8416BE01E23FC705847DFA94484DB6 Validity Not Before: Aug 8 21:34:58 2025 GMT Not After : Aug 15 21:34:58 2025 GMT Subject: CN=68966d82-dddc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:10:cc:8c:41:a2:53:f1:db:75:fe:0a:a8:73: 23:01:12:b0:46:46:d7:e1:a1:be:5f:f3:02:84:51: 89:ab:6b:50:71:7e:06:a4:96:5d:65:4b:cb:9f:3b: 39:b3:e0:52:31:14:92:b2:2e:ae:e6:fd:fb:15:f3: 29:15:f7:34:7a:04:a2:0a:81:c8:3a:98:33:a6:75: 84:2e:2b:52:22:c0:be:e0:07:b2:79:ed:24:d1:78: a4:9b:28:82:87:c1:fe:57:29:c0:38:62:47:cc:6d: af:d9:cf:16:30:6a:e6:40:ad:3f:69:f1:2c:c9:7d: 4e:c8:f6:32:7b:15:72:e9:b9:fd:17:90:14:06:4e: 1e:cb:ff:d7:6e:0f:7d:70:11:66:33:26:00:f6:67: 65:06:b9:47:08:ff:ed:ee:f6:7c:86:91:4b:fc:c4: a8:19:c4:f1:84:15:c0:a6:80:68:a5:57:27:33:0f: d0:c7:02:12:fd:ff:69:a1:ef:8f:12:38:65:84:6f: 37:08:73:b3:00:32:1b:1e:55:b2:d2:0e:a3:82:6c: cf:aa:5c:98:86:04:d7:25:9b:47:e0:3f:99:2c:10: 3d:81:70:20:93:c1:3b:4a:7a:d7:48:42:80:61:aa: 2f:93:f0:cc:8f:07:e0:b3:cf:0f:6e:8d:c8:07:40: 00:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:CF:B7:75:50:6B:CC:1E:CA:21:BD:C4:05:F3:49:5B:0C:26:C8:6E X509v3 Authority Key Identifier: keyid:97:61:FF:5F:3F:84:16:BE:01:E2:3F:C7:05:84:7D:FA:94:48:4D:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D46B0/E50902B6079B11EB8A1F2732C4F9AE02/l2H_Xz-EFr4B4j_HBYR9-pRITbY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l2H_Xz-EFr4B4j_HBYR9-pRITbY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D46B0/E50902B6079B11EB8A1F2732C4F9AE02/l2H_Xz-EFr4B4j_HBYR9-pRITbY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:2e:14:fa:c9:81:4c:66:3c:1d:28:26:c3:a6:d4:d4:50:0e: b9:08:83:82:42:ae:8d:a9:21:74:af:3f:ec:8f:b9:ad:7d:8d: 23:85:86:0f:2e:2e:40:4f:9c:38:46:e3:39:a2:05:f9:0a:47: 1e:9a:0b:6e:f8:5a:bb:c4:54:0b:18:a0:d3:32:a6:32:21:81: 70:9b:dc:48:87:5b:fa:7b:97:17:8f:63:70:e0:69:e5:ea:e5: 7b:2c:eb:27:86:6a:64:89:0c:13:d6:41:85:a2:c9:fa:89:54: 0b:ee:3c:11:01:1f:23:e4:e6:de:64:48:cf:63:41:f1:5e:d7: 7b:62:da:43:3f:e4:ce:7c:3d:f5:44:fa:18:af:85:0b:3d:4f: 02:17:7a:61:f5:10:37:64:5f:a0:45:64:5a:80:c1:10:8c:5e: c5:b4:f7:55:2a:3d:95:09:58:df:51:11:0b:44:de:25:5e:4b: 7f:a1:51:2f:4f:b7:ef:fa:dd:d6:e1:53:ce:d2:cc:ce:5d:74: 44:19:53:63:f5:f1:32:fb:be:00:6e:7a:19:77:a7:b0:61:07: 37:72:08:ff:fa:72:c9:7d:d7:a0:91:63:dc:fc:1d:1a:94:02: c8:f3:af:3f:8a:32:6c:75:11:75:f7:b6:6f:83:c4:6b:cc:22: b2:26:ea:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB88wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ2QjAxMTAvBgNVBAUTKDk3NjFGRjVGM0Y4NDE2QkUwMUUyM0ZDNzA1ODQ3REZB OTQ0ODREQjYwHhcNMjUwODA4MjEzNDU4WhcNMjUwODE1MjEzNDU4WjAYMRYwFAYD VQQDEw02ODk2NmQ4Mi1kZGRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxBDMjEGiU/Hbdf4KqHMjARKwRkbX4aG+X/MChFGJq2tQcX4GpJZdZUvLnzs5 s+BSMRSSsi6u5v37FfMpFfc0egSiCoHIOpgzpnWELitSIsC+4Aeyee0k0XikmyiC h8H+VynAOGJHzG2v2c8WMGrmQK0/afEsyX1OyPYyexVy6bn9F5AUBk4ey//Xbg99 cBFmMyYA9mdlBrlHCP/t7vZ8hpFL/MSoGcTxhBXApoBopVcnMw/QxwIS/f9poe+P EjhlhG83CHOzADIbHlWy0g6jgmzPqlyYhgTXJZtH4D+ZLBA9gXAgk8E7SnrXSEKA Yaovk/DMjwfgs88Pbo3IB0AAeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKrPt3VQ a8weyiG9xAXzSVsMJshuMB8GA1UdIwQYMBaAFJdh/18/hBa+AeI/xwWEffqUSE22 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDZCMC9FNTA5MDJCNjA3 OUIxMUVCOEExRjI3MzJDNEY5QUUwMi9sMkhfWHotRUZyNEI0al9IQllSOS1wUklU YlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2wySF9Yei1FRnI0QjRqX0hCWVI5LXBSSVRiWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDZCMC9FNTA5MDJCNjA3OUIxMUVCOEExRjI3MzJDNEY5QUUwMi9sMkhfWHotRUZy NEI0al9IQllSOS1wUklUYlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAILhT6yYFMZjwdKCbDptTUUA65CIOCQq6NqSF0rz/sj7mtfY0jhYYP Li5AT5w4RuM5ogX5Ckcemgtu+Fq7xFQLGKDTMqYyIYFwm9xIh1v6e5cXj2Nw4Gnl 6uV7LOsnhmpkiQwT1kGFosn6iVQL7jwRAR8j5ObeZEjPY0HxXtd7YtpDP+TOfD31 RPoYr4ULPU8CF3ph9RA3ZF+gRWRagMEQjF7FtPdVKj2VCVjfURELRN4lXkt/oVEv T7fv+t3W4VPO0szOXXREGVNj9fEy+74AbnoZd6ewYQc3cgj/+nLJfdegkWPc/B0a lALI868/ijJsdRF197Zvg8RrzCKyJuqu -----END CERTIFICATE-----Generated at Sat Aug 9 05:42:03 2025 by rpki-client