$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2E92/1885A6D206CF11EE9C97127BC4F9AE02/l_PsEBRVjghHCgOpR4yE8j5FADo.mft File: l_PsEBRVjghHCgOpR4yE8j5FADo.mft (raw, json) Hash identifier: /YSO4nC149sf/+MGFMJfHww+w0hrkibNtMGK86SbD14= Subject key identifier: E0:8D:5A:C7:8A:B8:A6:0E:65:C2:17:98:26:3F:7D:3B:35:30:4F:13 Authority key identifier: 97:F3:EC:10:14:55:8E:08:47:0A:03:A9:47:8C:84:F2:3E:45:00:3A Certificate issuer: /CN=A91E2E92/serialNumber=97F3EC1014558E08470A03A9478C84F23E45003A Certificate serial: 01B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_PsEBRVjghHCgOpR4yE8j5FADo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2E92/1885A6D206CF11EE9C97127BC4F9AE02/l_PsEBRVjghHCgOpR4yE8j5FADo.mft Manifest number: 01A3 Signing time: Thu 07 Aug 2025 03:53:20 +0000 Manifest this update: Thu 07 Aug 2025 03:53:19 +0000 Manifest next update: Thu 14 Aug 2025 03:53:19 +0000 Files and hashes: 1: l_PsEBRVjghHCgOpR4yE8j5FADo.crl (hash: bKwBIvVxSdke6YOAjFL9MtJnNjq6zJ350wElwnYrR/I=) 2: B7D34CC444ED11EE8D931624C4F9AE02.roa (hash: o91C1jFze1aQemqWDwZsi+b9/Rmy3VyieJUeIkyvzoc=) 3: D78EA2DE44ED11EEA6685324C4F9AE02.roa (hash: 4QpgormCT1kZqyeVQ/y0TiB9qs/O+TjOWDffZPqJhKo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2E92/1885A6D206CF11EE9C97127BC4F9AE02/l_PsEBRVjghHCgOpR4yE8j5FADo.crl rsync://rpki.apnic.net/member_repository/A91E2E92/1885A6D206CF11EE9C97127BC4F9AE02/l_PsEBRVjghHCgOpR4yE8j5FADo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_PsEBRVjghHCgOpR4yE8j5FADo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 03:53:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 433 (0x1b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2E92, serialNumber=97F3EC1014558E08470A03A9478C84F23E45003A Validity Not Before: Aug 7 03:53:19 2025 GMT Not After : Aug 14 03:53:19 2025 GMT Subject: CN=68942330-c8d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:a1:d1:9f:48:de:cb:91:1f:58:4e:21:fd:74: d8:77:11:f6:01:b5:3c:02:29:01:51:bc:33:1d:f1: c4:42:ae:96:22:44:5c:ac:09:7f:46:91:69:45:d6: f9:26:90:49:48:97:23:d7:cf:44:36:ca:b1:e8:13: e9:bf:a3:72:00:a4:c9:1b:0e:2b:21:6f:62:50:b1: f4:7d:3c:15:19:b0:da:2f:e8:28:dd:20:65:85:43: c5:0b:19:36:7f:38:b4:ea:01:8c:cb:9a:ab:de:3b: ec:a7:df:f4:32:21:25:19:2f:76:26:43:f8:4b:89: 2d:76:13:9c:c1:26:5a:49:cc:e3:98:99:96:1f:f0: 05:88:58:d2:a6:81:67:85:3b:79:40:f4:03:81:37: 73:50:60:91:be:ed:29:7a:b5:1c:4a:08:84:da:0d: f5:5b:7f:f8:cd:a8:5d:4a:86:de:17:04:32:cd:3b: 06:0a:a1:df:06:06:ed:e1:cf:d7:35:a1:3b:94:20: 4b:38:63:18:1f:60:76:44:ae:85:07:09:bc:5b:5d: bc:62:19:b7:e5:c9:ed:bc:b4:4b:db:ff:db:70:84: 1b:01:94:a4:25:c3:45:fb:ae:cc:f2:42:de:82:f8: 27:d3:3b:b2:72:33:f0:a2:6c:ca:ad:cd:82:f6:62: 5c:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:8D:5A:C7:8A:B8:A6:0E:65:C2:17:98:26:3F:7D:3B:35:30:4F:13 X509v3 Authority Key Identifier: keyid:97:F3:EC:10:14:55:8E:08:47:0A:03:A9:47:8C:84:F2:3E:45:00:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2E92/1885A6D206CF11EE9C97127BC4F9AE02/l_PsEBRVjghHCgOpR4yE8j5FADo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_PsEBRVjghHCgOpR4yE8j5FADo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2E92/1885A6D206CF11EE9C97127BC4F9AE02/l_PsEBRVjghHCgOpR4yE8j5FADo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:0c:2f:b0:51:1a:ff:6e:2b:8f:4e:31:e1:1f:a9:7a:ff:a2: 21:8b:f9:b3:84:62:3f:0e:26:00:ef:b3:f8:20:25:54:9f:3e: 40:fd:fe:62:cb:94:01:3a:13:e9:b7:50:aa:2c:6e:2c:15:0f: 7b:42:b6:02:cf:a2:17:38:30:14:f9:76:ba:c2:40:6b:2d:4b: ec:d6:ed:f3:be:95:12:b0:5d:5d:88:b8:fb:1a:b1:9d:bf:d4: d1:b6:41:2f:7a:5b:a6:52:66:fa:e7:3d:d3:ba:63:f9:43:7a: a7:74:cd:6d:ba:79:ee:d0:08:41:5f:26:75:91:86:3a:f5:e8: 46:71:6b:d4:65:82:f0:44:7a:69:90:42:5d:8c:77:42:63:29: c8:1c:8b:31:92:fa:07:a2:75:3c:d7:ba:22:f2:e5:e6:84:bd: 4c:f8:11:36:dc:2f:9d:83:24:6f:27:e0:79:15:32:5c:c9:03: 29:c9:fc:b6:20:57:1e:13:04:e5:b8:a4:15:6d:34:80:32:cb: bc:72:5e:90:1b:c6:75:47:1b:dd:e2:aa:20:25:e5:f9:6d:56: 11:02:b9:d3:13:b3:27:23:1a:6a:2c:ca:a9:b5:db:38:07:8d: 2e:6a:88:6a:68:93:9e:46:f4:be:86:7c:5b:5d:45:09:bf:8f: 57:ae:ad:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJFOTIxMTAvBgNVBAUTKDk3RjNFQzEwMTQ1NThFMDg0NzBBMDNBOTQ3OEM4NEYy M0U0NTAwM0EwHhcNMjUwODA3MDM1MzE5WhcNMjUwODE0MDM1MzE5WjAYMRYwFAYD VQQDEw02ODk0MjMzMC1jOGQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0qHRn0jey5EfWE4h/XTYdxH2AbU8AikBUbwzHfHEQq6WIkRcrAl/RpFpRdb5 JpBJSJcj189ENsqx6BPpv6NyAKTJGw4rIW9iULH0fTwVGbDaL+go3SBlhUPFCxk2 fzi06gGMy5qr3jvsp9/0MiElGS92JkP4S4ktdhOcwSZaSczjmJmWH/AFiFjSpoFn hTt5QPQDgTdzUGCRvu0perUcSgiE2g31W3/4zahdSobeFwQyzTsGCqHfBgbt4c/X NaE7lCBLOGMYH2B2RK6FBwm8W128Yhm35cntvLRL2//bcIQbAZSkJcNF+67M8kLe gvgn0zuycjPwomzKrc2C9mJcnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOCNWseK uKYOZcIXmCY/fTs1ME8TMB8GA1UdIwQYMBaAFJfz7BAUVY4IRwoDqUeMhPI+RQA6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkU5Mi8xODg1QTZEMjA2 Q0YxMUVFOUM5NzEyN0JDNEY5QUUwMi9sX1BzRUJSVmpnaEhDZ09wUjR5RThqNUZB RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xfUHNFQlJWamdoSENnT3BSNHlFOGo1RkFEby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkU5Mi8xODg1QTZEMjA2Q0YxMUVFOUM5NzEyN0JDNEY5QUUwMi9sX1BzRUJSVmpn aEhDZ09wUjR5RThqNUZBRG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAODC+wURr/biuPTjHhH6l6/6Ihi/mzhGI/DiYA77P4ICVUnz5A/f5i y5QBOhPpt1CqLG4sFQ97QrYCz6IXODAU+Xa6wkBrLUvs1u3zvpUSsF1diLj7GrGd v9TRtkEvelumUmb65z3TumP5Q3qndM1tunnu0AhBXyZ1kYY69ehGcWvUZYLwRHpp kEJdjHdCYynIHIsxkvoHonU817oi8uXmhL1M+BE23C+dgyRvJ+B5FTJcyQMpyfy2 IFceEwTluKQVbTSAMsu8cl6QG8Z1Rxvd4qogJeX5bVYRArnTE7MnIxpqLMqptds4 B40uaohqaJOeRvS+hnxbXUUJv49Xrq0F -----END CERTIFICATE-----Generated at Fri Aug 8 19:22:38 2025 by rpki-client