$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD38B/A1AB2ABCBA8911EF9B338512C4F9AE02/L2sefhQB3gCsju23qFkNA9xUD3g.mft File: L2sefhQB3gCsju23qFkNA9xUD3g.mft (raw, json) Hash identifier: Z0EjkgDQ+IVCWuZ3dGdWRMTgfPdR9LD3O8h9UoluuZc= Subject key identifier: 18:C5:66:BB:77:E9:D5:D2:08:4F:CA:5E:97:AF:7A:11:57:69:58:08 Authority key identifier: 2F:6B:1E:7E:14:01:DE:00:AC:8E:ED:B7:A8:59:0D:03:DC:54:0F:78 Certificate issuer: /CN=A91DD38B/serialNumber=2F6B1E7E1401DE00AC8EEDB7A8590D03DC540F78 Certificate serial: 7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2sefhQB3gCsju23qFkNA9xUD3g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD38B/A1AB2ABCBA8911EF9B338512C4F9AE02/L2sefhQB3gCsju23qFkNA9xUD3g.mft Manifest number: 7B Signing time: Mon 11 Aug 2025 07:00:56 +0000 Manifest this update: Mon 11 Aug 2025 07:00:55 +0000 Manifest next update: Mon 18 Aug 2025 07:00:55 +0000 Files and hashes: 1: L2sefhQB3gCsju23qFkNA9xUD3g.crl (hash: 0kJdjCKk4FpQY90SCDGo+Oo1CWWVGGPt2qHo286iTsI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD38B/A1AB2ABCBA8911EF9B338512C4F9AE02/L2sefhQB3gCsju23qFkNA9xUD3g.crl rsync://rpki.apnic.net/member_repository/A91DD38B/A1AB2ABCBA8911EF9B338512C4F9AE02/L2sefhQB3gCsju23qFkNA9xUD3g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2sefhQB3gCsju23qFkNA9xUD3g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 07:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 123 (0x7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD38B, serialNumber=2F6B1E7E1401DE00AC8EEDB7A8590D03DC540F78 Validity Not Before: Aug 11 07:00:55 2025 GMT Not After : Aug 18 07:00:55 2025 GMT Subject: CN=68999527-832b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:a5:69:20:65:0b:5b:39:e0:84:c7:b3:21:2c: b4:3e:b0:4a:b5:cb:e0:87:f3:29:79:3a:9e:63:1b: e4:19:21:fb:d8:a4:23:7a:e9:b6:0c:e4:bb:16:98: f4:78:2b:9f:c0:4b:94:92:ca:44:13:9f:eb:84:5c: 49:15:2d:74:10:bf:89:5d:8b:5c:94:4d:d4:48:59: 52:d8:8c:d0:ef:73:81:4e:18:04:f1:55:aa:28:b0: c2:82:62:57:3c:7a:8c:e6:e2:60:81:da:67:67:5e: e3:71:57:43:13:97:27:81:f8:f7:eb:2e:fb:94:ae: 5f:57:79:ae:e8:0e:74:e2:96:51:b5:16:07:e6:b4: c6:2a:44:66:40:66:5e:83:1b:aa:f0:5f:97:3d:f2: df:60:eb:33:04:a2:77:63:4d:7e:c7:80:85:41:1d: d6:01:67:b6:f2:a8:98:ec:84:10:88:71:04:ff:50: ca:6d:59:de:8c:ea:fd:2b:18:1a:b1:c9:bb:8e:c5: 32:28:00:2b:41:7a:e1:3b:af:7f:e7:94:97:5a:d4: d3:54:94:36:04:e4:e0:58:c3:59:42:27:4c:f3:2b: 0a:78:1d:27:65:e3:bf:f4:e7:55:51:47:ab:10:e3: 09:e1:3e:1f:c2:e5:7f:60:b9:a3:df:24:e1:fc:bc: a7:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:C5:66:BB:77:E9:D5:D2:08:4F:CA:5E:97:AF:7A:11:57:69:58:08 X509v3 Authority Key Identifier: keyid:2F:6B:1E:7E:14:01:DE:00:AC:8E:ED:B7:A8:59:0D:03:DC:54:0F:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD38B/A1AB2ABCBA8911EF9B338512C4F9AE02/L2sefhQB3gCsju23qFkNA9xUD3g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2sefhQB3gCsju23qFkNA9xUD3g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD38B/A1AB2ABCBA8911EF9B338512C4F9AE02/L2sefhQB3gCsju23qFkNA9xUD3g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:59:bf:1c:05:a0:8f:9b:47:32:eb:d1:54:16:c0:ae:da:58: 0e:a9:1a:c6:7f:70:fa:31:77:be:fc:a6:ac:aa:e8:5c:bf:f6: 6d:c0:92:f3:ab:86:f2:f5:38:f1:47:f4:f3:06:56:29:7a:ce: 58:ec:17:5c:db:df:c4:0d:34:6c:0f:a5:88:44:71:40:0a:7a: 07:62:17:fa:49:ab:5e:38:1f:a7:74:9d:35:01:89:b6:0a:6f: ba:e4:26:dd:4f:ae:d3:20:cd:1e:62:b6:c0:d0:ee:e6:0d:82: 5c:11:00:76:d7:69:05:c0:6b:be:74:94:08:19:ca:f4:bf:d7: 8d:c6:55:80:7c:15:91:e0:28:81:47:26:36:2b:51:65:20:2b: c4:b1:56:14:8a:ff:53:aa:1b:2e:83:a7:7b:84:aa:a1:ec:fa: be:37:b1:73:b2:7a:f4:f3:71:da:9a:1f:5b:cb:01:85:d0:e8: 80:10:2c:41:db:b6:d8:06:d3:b5:5a:5b:e0:ed:14:5c:b4:b4: f2:a6:21:1e:76:45:a6:5a:b7:88:b8:cb:e1:69:71:d7:3e:f9: db:f2:36:e2:58:c8:f0:2e:f7:e1:20:44:4c:d4:3a:ca:a2:bf: a6:2a:38:38:eb:00:46:ee:41:68:69:43:e4:c8:9f:34:f9:46: 19:a4:ab:19 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBezANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RDM4QjExMC8GA1UEBRMoMkY2QjFFN0UxNDAxREUwMEFDOEVFREI3QTg1OTBEMDNE QzU0MEY3ODAeFw0yNTA4MTEwNzAwNTVaFw0yNTA4MTgwNzAwNTVaMBgxFjAUBgNV BAMTDTY4OTk5NTI3LTgzMmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDXpWkgZQtbOeCEx7MhLLQ+sEq1y+CH8yl5Op5jG+QZIfvYpCN66bYM5LsWmPR4 K5/AS5SSykQTn+uEXEkVLXQQv4ldi1yUTdRIWVLYjNDvc4FOGATxVaoosMKCYlc8 eozm4mCB2mdnXuNxV0MTlyeB+PfrLvuUrl9Xea7oDnTillG1FgfmtMYqRGZAZl6D G6rwX5c98t9g6zMEondjTX7HgIVBHdYBZ7byqJjshBCIcQT/UMptWd6M6v0rGBqx ybuOxTIoACtBeuE7r3/nlJda1NNUlDYE5OBYw1lCJ0zzKwp4HSdl47/051VRR6sQ 4wnhPh/C5X9guaPfJOH8vKf/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUGMVmu3fp 1dIIT8pel696EVdpWAgwHwYDVR0jBBgwFoAUL2sefhQB3gCsju23qFkNA9xUD3gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUREMzhCL0ExQUIyQUJDQkE4 OTExRUY5QjMzODUxMkM0RjlBRTAyL0wyc2VmaFFCM2dDc2p1MjNxRmtOQTl4VUQz Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTDJzZWZoUUIzZ0NzanUyM3FGa05BOXhVRDNnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURE MzhCL0ExQUIyQUJDQkE4OTExRUY5QjMzODUxMkM0RjlBRTAyL0wyc2VmaFFCM2dD c2p1MjNxRmtOQTl4VUQzZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAH5ZvxwFoI+bRzLr0VQWwK7aWA6pGsZ/cPoxd778pqyq6Fy/9m3AkvOr hvL1OPFH9PMGVil6zljsF1zb38QNNGwPpYhEcUAKegdiF/pJq144H6d0nTUBibYK b7rkJt1PrtMgzR5itsDQ7uYNglwRAHbXaQXAa750lAgZyvS/143GVYB8FZHgKIFH JjYrUWUgK8SxVhSK/1OqGy6Dp3uEqqHs+r43sXOyevTzcdqaH1vLAYXQ6IAQLEHb ttgG07VaW+DtFFy0tPKmIR52RaZat4i4y+Fpcdc++dvyNuJYyPAu9+EgREzUOsqi v6YqODjrAEbuQWhpQ+TInzT5Rhmkqxk= -----END CERTIFICATE-----Generated at Tue Aug 12 14:39:46 2025 by rpki-client