$ rpki-client -vvf rpki.apnic.net/member_repository/A91D599B/D7224FF254B211E88E69E909C4F9AE02/_LI8e_Xxk1YnW6z1fNtVv9YOBKw.mft File: _LI8e_Xxk1YnW6z1fNtVv9YOBKw.mft (raw, json) Hash identifier: 9ZgM9Ml2SYwl0KinJY1sOnEP/suRDK2il/3XVYRyoHI= Subject key identifier: B5:6D:B4:D9:FA:52:BF:55:32:EF:A4:E0:E3:B5:E2:5B:77:CF:EF:43 Authority key identifier: FC:B2:3C:7B:F5:F1:93:56:27:5B:AC:F5:7C:DB:55:BF:D6:0E:04:AC Certificate issuer: /CN=A91D599B/serialNumber=FCB23C7BF5F19356275BACF57CDB55BFD60E04AC Certificate serial: 150D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_LI8e_Xxk1YnW6z1fNtVv9YOBKw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D599B/D7224FF254B211E88E69E909C4F9AE02/_LI8e_Xxk1YnW6z1fNtVv9YOBKw.mft Manifest number: 1504 Signing time: Tue 12 Aug 2025 16:55:22 +0000 Manifest this update: Tue 12 Aug 2025 16:55:22 +0000 Manifest next update: Tue 19 Aug 2025 16:55:22 +0000 Files and hashes: 1: _LI8e_Xxk1YnW6z1fNtVv9YOBKw.crl (hash: SaPxhFe7GMlgZujjDC3Hy4a6+7c9XT6FBpVX64DuN6I=) 2: 1BFCE1E0554F11E8A5C82D57C4F9AE02.roa (hash: ZrttKe2gUPdi3/NYLhVsPF2RlqfjZO1IxCJ4ZBHDkLI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D599B/D7224FF254B211E88E69E909C4F9AE02/_LI8e_Xxk1YnW6z1fNtVv9YOBKw.crl rsync://rpki.apnic.net/member_repository/A91D599B/D7224FF254B211E88E69E909C4F9AE02/_LI8e_Xxk1YnW6z1fNtVv9YOBKw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_LI8e_Xxk1YnW6z1fNtVv9YOBKw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 16:55:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5389 (0x150d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D599B, serialNumber=FCB23C7BF5F19356275BACF57CDB55BFD60E04AC Validity Not Before: Aug 12 16:55:22 2025 GMT Not After : Aug 19 16:55:22 2025 GMT Subject: CN=689b71fa-a41a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:54:7b:fb:1f:8b:33:d5:4c:98:02:9a:50:d3: a7:49:c9:a0:44:07:aa:b1:c0:22:88:32:bf:86:cf: 9b:22:28:2f:c9:e9:6b:61:28:57:19:02:41:00:e5: 39:d6:7f:55:a1:c7:3d:1e:aa:b5:56:4a:69:68:7a: 37:15:59:91:d3:11:e8:d2:d7:e0:3c:da:21:93:f8: 96:db:f3:93:52:c9:eb:b7:a0:2e:54:a9:d0:e0:48: 9b:3a:9e:3c:46:d9:bf:5f:59:7e:9b:cc:33:17:a4: 7d:a8:48:79:fa:d6:7f:15:2d:29:cd:11:de:0a:fa: 46:9a:9c:90:c7:21:9c:2e:ab:0f:9f:45:ff:b7:a6: 07:6e:99:4f:a7:79:08:7f:4f:ca:6b:6c:d2:6b:f5: ac:46:18:c9:df:58:db:34:93:fe:4c:71:b4:75:fc: e2:28:3a:31:79:38:7b:85:61:b2:7d:04:d7:4f:9e: 59:6e:70:b3:c3:dd:32:bd:7f:fa:62:8d:5e:d0:9f: d4:71:01:50:fb:63:a6:a8:34:fa:63:e2:95:8d:b4: 73:5b:8f:83:0a:db:93:5c:81:d5:9a:4d:28:6d:e4: 91:e5:2a:38:c0:e3:96:75:41:ee:e6:88:f7:78:ad: d3:37:3b:a9:7c:fe:8a:ad:9f:bb:73:45:5e:61:b2: 84:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:6D:B4:D9:FA:52:BF:55:32:EF:A4:E0:E3:B5:E2:5B:77:CF:EF:43 X509v3 Authority Key Identifier: keyid:FC:B2:3C:7B:F5:F1:93:56:27:5B:AC:F5:7C:DB:55:BF:D6:0E:04:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D599B/D7224FF254B211E88E69E909C4F9AE02/_LI8e_Xxk1YnW6z1fNtVv9YOBKw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_LI8e_Xxk1YnW6z1fNtVv9YOBKw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D599B/D7224FF254B211E88E69E909C4F9AE02/_LI8e_Xxk1YnW6z1fNtVv9YOBKw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:2a:14:38:0c:6a:d5:72:ec:89:62:f9:7f:91:2c:d1:36:15: f3:2f:68:f7:f3:a5:9f:a3:72:78:3e:4e:2f:0a:40:fc:6d:a1: 5e:7e:b8:df:13:e6:a6:ea:eb:85:e1:2f:e3:f3:a1:3e:cf:a0: 9d:2c:15:c8:22:74:6e:8c:6f:dd:94:f3:bc:0b:fb:32:ab:59: 81:f1:65:fd:65:b5:6b:3a:90:de:c7:ed:2c:54:d7:10:66:a5: 71:cd:26:f5:be:cd:83:7b:cb:85:70:39:04:fd:01:d2:81:7f: 9d:c8:ae:04:ca:ad:39:c1:5b:b9:54:ab:24:5c:37:a8:9e:c7: 2e:35:7b:34:af:f2:d0:c1:92:53:24:24:6c:05:9b:0c:82:e5: 97:0b:3e:ce:c2:71:14:73:82:91:03:48:b6:20:3a:27:52:01: 4c:04:fd:c7:bf:eb:87:79:e1:27:91:6d:2f:55:94:b8:42:9a: 87:bf:41:34:95:3c:9f:4d:8c:02:a0:fd:66:f8:82:38:7a:00: 1a:84:16:58:f9:70:af:c8:ae:34:77:ea:75:71:b5:9b:0a:43: 8a:f2:ca:28:d4:6a:41:14:01:31:29:a2:4e:3b:bd:6a:94:71: 93:ae:5e:26:29:06:b3:52:15:49:8f:b0:5c:b0:95:db:c6:a0: e4:9d:77:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFQ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDU5OUIxMTAvBgNVBAUTKEZDQjIzQzdCRjVGMTkzNTYyNzVCQUNGNTdDREI1NUJG RDYwRTA0QUMwHhcNMjUwODEyMTY1NTIyWhcNMjUwODE5MTY1NTIyWjAYMRYwFAYD VQQDEw02ODliNzFmYS1hNDFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAolR7+x+LM9VMmAKaUNOnScmgRAeqscAiiDK/hs+bIigvyelrYShXGQJBAOU5 1n9Vocc9Hqq1VkppaHo3FVmR0xHo0tfgPNohk/iW2/OTUsnrt6AuVKnQ4EibOp48 Rtm/X1l+m8wzF6R9qEh5+tZ/FS0pzRHeCvpGmpyQxyGcLqsPn0X/t6YHbplPp3kI f0/Ka2zSa/WsRhjJ31jbNJP+THG0dfziKDoxeTh7hWGyfQTXT55ZbnCzw90yvX/6 Yo1e0J/UcQFQ+2OmqDT6Y+KVjbRzW4+DCtuTXIHVmk0obeSR5So4wOOWdUHu5oj3 eK3TNzupfP6KrZ+7c0VeYbKEtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLVttNn6 Ur9VMu+k4OO14lt3z+9DMB8GA1UdIwQYMBaAFPyyPHv18ZNWJ1us9XzbVb/WDgSs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTk5Qi9ENzIyNEZGMjU0 QjIxMUU4OEU2OUU5MDlDNEY5QUUwMi9fTEk4ZV9YeGsxWW5XNnoxZk50VnY5WU9C S3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19MSThlX1h4azFZblc2ejFmTnRWdjlZT0JLdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTk5Qi9ENzIyNEZGMjU0QjIxMUU4OEU2OUU5MDlDNEY5QUUwMi9fTEk4ZV9YeGsx WW5XNnoxZk50VnY5WU9CS3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPKhQ4DGrVcuyJYvl/kSzRNhXzL2j386Wfo3J4Pk4vCkD8baFefrjf E+am6uuF4S/j86E+z6CdLBXIInRujG/dlPO8C/syq1mB8WX9ZbVrOpDex+0sVNcQ ZqVxzSb1vs2De8uFcDkE/QHSgX+dyK4Eyq05wVu5VKskXDeonscuNXs0r/LQwZJT JCRsBZsMguWXCz7OwnEUc4KRA0i2IDonUgFMBP3Hv+uHeeEnkW0vVZS4QpqHv0E0 lTyfTYwCoP1m+II4egAahBZY+XCvyK40d+p1cbWbCkOK8soo1GpBFAExKaJOO71q lHGTrl4mKQazUhVJj7BcsJXbxqDknXc7 -----END CERTIFICATE-----Generated at Wed Aug 13 02:15:35 2025 by rpki-client