$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft File: lHy2dKhYzZGupVJro2aKEeSey5M.mft (raw, json) Hash identifier: olHjiDGoQwlY0VDGYS8KJPUwSzEMogjOJWynwJL3kNA= Subject key identifier: EF:0A:C5:64:F8:8D:AB:A6:EB:D4:53:AE:4C:41:54:4A:40:CA:F6:18 Authority key identifier: 94:7C:B6:74:A8:58:CD:91:AE:A5:52:6B:A3:66:8A:11:E4:9E:CB:93 Certificate issuer: /CN=A91DFC30/serialNumber=947CB674A858CD91AEA5526BA3668A11E49ECB93 Certificate serial: 0405 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft Manifest number: 03FC Signing time: Sat 09 Aug 2025 01:00:30 +0000 Manifest this update: Sat 09 Aug 2025 01:00:30 +0000 Manifest next update: Sat 16 Aug 2025 01:00:30 +0000 Files and hashes: 1: lHy2dKhYzZGupVJro2aKEeSey5M.crl (hash: I2ByNEhxUXgjIXr2t0Byb/I9RrHGFtKzhHNHlEUK1xU=) 2: 13F5D28685B111ECB675B552C4F9AE02.roa (hash: wg979tEV/edC9z/60lEEUA1wH6+Atveb0Z20mtMK9/g=) 3: 147D51CA85B111ECB675B552C4F9AE02.roa (hash: e9cwg8d7bC8r2DHgx/kL7/A4+KHztZ7rWF6Yv+XqYD8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.crl rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1029 (0x405) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFC30, serialNumber=947CB674A858CD91AEA5526BA3668A11E49ECB93 Validity Not Before: Aug 9 01:00:30 2025 GMT Not After : Aug 16 01:00:30 2025 GMT Subject: CN=68969dae-189b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:9d:93:26:4f:91:fa:41:29:3c:62:61:45:20: 2f:7c:75:f6:ef:2b:b2:c5:4a:6e:52:c8:d1:cf:25: 0d:9e:9c:a1:fc:3e:98:cc:28:81:43:d0:02:93:9f: fa:be:2c:74:f2:ac:d2:75:16:b2:27:da:ce:4a:6d: d5:2e:6c:38:9f:07:cd:43:f3:08:5b:d3:ef:c2:72: 11:1d:b8:4b:39:91:5e:a2:62:04:c3:b5:0d:8d:eb: d5:4e:fc:11:d0:b0:d8:76:f4:25:0d:e8:d2:2a:1b: e6:19:3d:e0:85:22:b5:6b:5b:44:80:94:ab:bd:af: d6:fa:d2:29:15:9e:13:5b:9e:5d:e7:d2:a3:27:58: d9:4b:59:71:7f:24:79:50:21:ae:49:5a:89:bd:73: 94:28:97:93:2a:30:60:9c:af:05:72:69:ad:99:e9: 56:9d:94:7d:f4:86:94:a7:4a:4b:55:29:3c:08:bb: 93:5f:f0:5c:b7:eb:dd:c1:13:2d:a0:b0:95:c3:51: 58:69:db:41:0c:2f:b8:56:66:21:72:0c:f5:bf:7f: a6:bf:b5:02:b6:46:de:b8:a9:0b:b2:4c:04:a1:d2: 45:71:5b:7a:64:0c:cf:a9:ec:e4:b8:80:1d:e3:3e: 3a:a6:4d:04:dc:5c:bf:2c:0f:cd:22:02:14:de:f7: c8:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:0A:C5:64:F8:8D:AB:A6:EB:D4:53:AE:4C:41:54:4A:40:CA:F6:18 X509v3 Authority Key Identifier: keyid:94:7C:B6:74:A8:58:CD:91:AE:A5:52:6B:A3:66:8A:11:E4:9E:CB:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:6d:96:51:55:6a:2a:0d:78:60:65:b3:cb:47:8c:3d:7c:0b: 75:b7:4c:04:6e:26:70:fb:f9:e6:42:b0:18:f3:c4:6e:30:f1: 78:98:99:40:1d:60:88:3f:a5:87:5c:b7:8c:51:e9:d5:73:80: dd:11:f9:b8:a7:bf:13:c4:ac:2a:1a:31:44:00:b1:2a:58:f0: 8e:fa:d1:7d:c2:ee:5e:59:ca:03:12:4f:a4:74:c7:b9:70:25: d1:1f:e3:ff:1a:c6:f8:06:93:9a:0a:15:db:b8:2a:f0:e4:84: dd:64:2a:89:e6:62:2a:c0:2c:9a:ba:dc:81:b6:b6:34:8d:ac: a1:09:3b:0f:ed:28:67:75:27:20:54:b4:f0:24:63:d5:f2:b9: 60:e5:a3:b3:ee:c9:59:8e:62:b9:58:e0:c3:49:3f:38:0a:8e: 1e:9d:99:07:d7:a7:ae:a3:3c:25:c2:17:e2:79:4f:35:e8:0f: 0d:9c:19:da:75:11:a4:ef:93:68:63:43:97:9b:0c:c1:f7:f5: 81:6b:19:ca:52:10:24:06:8d:59:ef:73:d1:ab:0d:a2:c3:09: f5:0a:72:65:be:27:7e:e7:b8:aa:49:fd:00:57:79:98:89:f1: 4f:36:9b:d5:a8:ca:f1:8a:dc:e9:8b:48:f8:f6:1e:f9:b6:9a: 37:6c:1d:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZDMzAxMTAvBgNVBAUTKDk0N0NCNjc0QTg1OENEOTFBRUE1NTI2QkEzNjY4QTEx RTQ5RUNCOTMwHhcNMjUwODA5MDEwMDMwWhcNMjUwODE2MDEwMDMwWjAYMRYwFAYD VQQDEw02ODk2OWRhZS0xODliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw52TJk+R+kEpPGJhRSAvfHX27yuyxUpuUsjRzyUNnpyh/D6YzCiBQ9ACk5/6 vix08qzSdRayJ9rOSm3VLmw4nwfNQ/MIW9PvwnIRHbhLOZFeomIEw7UNjevVTvwR 0LDYdvQlDejSKhvmGT3ghSK1a1tEgJSrva/W+tIpFZ4TW55d59KjJ1jZS1lxfyR5 UCGuSVqJvXOUKJeTKjBgnK8FcmmtmelWnZR99IaUp0pLVSk8CLuTX/Bct+vdwRMt oLCVw1FYadtBDC+4VmYhcgz1v3+mv7UCtkbeuKkLskwEodJFcVt6ZAzPqezkuIAd 4z46pk0E3Fy/LA/NIgIU3vfIUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO8KxWT4 jaum69RTrkxBVEpAyvYYMB8GA1UdIwQYMBaAFJR8tnSoWM2RrqVSa6NmihHknsuT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkMzMC8xMTJBRjFBQzg1 QUQxMUVDQjM2RjQxNERDNEY5QUUwMi9sSHkyZEtoWXpaR3VwVkpybzJhS0VlU2V5 NU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xIeTJkS2hZelpHdXBWSnJvMmFLRWVTZXk1TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RkMzMC8xMTJBRjFBQzg1QUQxMUVDQjM2RjQxNERDNEY5QUUwMi9sSHkyZEtoWXpa R3VwVkpybzJhS0VlU2V5NU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwbZZRVWoqDXhgZbPLR4w9fAt1t0wEbiZw+/nmQrAY88RuMPF4mJlA HWCIP6WHXLeMUenVc4DdEfm4p78TxKwqGjFEALEqWPCO+tF9wu5eWcoDEk+kdMe5 cCXRH+P/Gsb4BpOaChXbuCrw5ITdZCqJ5mIqwCyautyBtrY0jayhCTsP7ShndScg VLTwJGPV8rlg5aOz7slZjmK5WODDST84Co4enZkH16euozwlwhfieU816A8NnBna dRGk75NoY0OXmwzB9/WBaxnKUhAkBo1Z73PRqw2iwwn1CnJlvid+57iqSf0AV3mY ifFPNpvVqMrxitzpi0j49h75tpo3bB1B -----END CERTIFICATE-----Generated at Sat Aug 9 20:40:07 2025 by rpki-client