$ rpki-client -vvf rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft File: l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft (raw, json) Hash identifier: HLnvUp4zudCnWKVp/ZlXoPhLFk/IgeS7bxl/O1ZMnrI= Subject key identifier: 8A:57:1D:D7:B7:96:D8:5C:60:0D:9B:39:5E:0B:7A:17:E2:AE:3E:64 Authority key identifier: 97:B3:DD:2A:B3:C8:9B:C8:A2:BB:C1:DB:80:3B:CE:68:EA:A5:AA:12 Certificate issuer: /CN=A91E39B4/serialNumber=97B3DD2AB3C89BC8A2BBC1DB803BCE68EAA5AA12 Certificate serial: 0B63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7PdKrPIm8iiu8HbgDvOaOqlqhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft Manifest number: 0B4F Signing time: Fri 08 Aug 2025 19:24:00 +0000 Manifest this update: Fri 08 Aug 2025 19:24:00 +0000 Manifest next update: Fri 15 Aug 2025 19:24:00 +0000 Files and hashes: 1: l7PdKrPIm8iiu8HbgDvOaOqlqhI.crl (hash: qJbavNJiyJ7DMY/gVA3E/ugd197nEydGwDMh5ecCLMY=) 2: 46F57CF8137B11EBA3B47E37C4F9AE02.roa (hash: 2qnnF6MVOAPWKTwVx6xcANvt7+ipRsuxDi1zcVsoM90=) 3: D968823E3DA111EA9A3FD550C4F9AE02.roa (hash: LHN9DyWzlGRcwkpXqFqZ90XaKLujDGwCFAysXhBXguc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.crl rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7PdKrPIm8iiu8HbgDvOaOqlqhI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2915 (0xb63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E39B4, serialNumber=97B3DD2AB3C89BC8A2BBC1DB803BCE68EAA5AA12 Validity Not Before: Aug 8 19:24:00 2025 GMT Not After : Aug 15 19:24:00 2025 GMT Subject: CN=68964ed0-b898 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:42:78:c1:52:05:4f:51:73:0e:3c:49:6f:8a: 51:05:3f:09:09:60:f3:11:6a:f9:82:e1:7d:ff:85: d6:ed:65:e4:d2:49:26:dc:50:76:fa:66:25:5b:9b: ee:04:3a:98:d9:cd:db:94:7b:b8:83:0f:c5:8b:7a: b7:6c:57:2e:63:f1:6a:ed:bc:c0:2f:10:f0:9e:05: a9:aa:24:38:d6:b1:79:12:e0:dd:b0:a5:3d:7d:1c: 39:23:e0:36:54:9f:6d:32:86:1e:51:03:a4:9e:18: 4c:8f:6a:92:12:d7:62:b5:65:5b:82:e5:78:57:3a: bd:e4:db:7a:0d:40:0d:10:e8:4e:d6:07:a4:81:81: 61:4d:26:9e:ae:5b:ab:a0:e7:98:f7:d9:af:96:bf: fa:a7:33:66:20:7a:c8:b7:ff:bc:22:43:cf:4d:86: 98:54:b3:80:76:a6:d2:cc:09:4a:72:fe:c0:51:57: a5:3c:f5:6d:7b:9d:e7:67:60:36:0d:c3:07:b3:6e: 07:74:b9:4a:91:01:dd:c4:9e:37:5d:fc:91:dc:ac: 6e:06:45:fe:2c:24:90:2f:71:9d:6c:88:25:fc:2a: fc:07:b0:ed:67:66:7b:b8:e6:5d:9a:19:e2:20:2c: c0:d0:d7:06:da:a7:75:6d:93:bf:60:c7:e9:be:ae: ef:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:57:1D:D7:B7:96:D8:5C:60:0D:9B:39:5E:0B:7A:17:E2:AE:3E:64 X509v3 Authority Key Identifier: keyid:97:B3:DD:2A:B3:C8:9B:C8:A2:BB:C1:DB:80:3B:CE:68:EA:A5:AA:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7PdKrPIm8iiu8HbgDvOaOqlqhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:20:bf:0a:9c:a6:0f:74:4e:11:50:7f:5a:e3:e4:32:4a:45: 32:04:a5:9a:1e:6a:64:53:1c:77:f8:4f:ed:69:31:e5:fb:aa: 78:b9:9a:ab:f5:de:28:8e:fa:e3:4b:fc:68:d4:c6:12:28:b2: 26:cd:af:e0:7e:df:b3:83:bc:d5:92:e9:c1:76:f7:2f:20:df: d7:9e:15:d4:2b:5b:66:89:5b:dd:e3:20:5a:ae:a1:77:57:6e: 36:61:02:b7:19:df:ea:67:df:16:a7:ca:a0:38:e0:2a:19:14: 4d:a9:e4:5f:c1:2c:ef:ab:d3:19:ba:22:9b:f1:11:ad:f7:90: ea:83:c1:07:20:a1:28:52:3f:83:0c:77:a0:f3:9e:97:bf:ef: 0e:eb:3b:3d:40:5a:03:9f:53:e4:45:29:e2:b7:fe:18:52:46: 63:5b:ed:69:70:e8:66:11:11:99:f3:f2:cd:ee:66:43:cf:6e: 95:ce:a2:28:e7:28:5a:32:0a:ca:ff:39:8a:49:b4:84:70:d2: 45:23:0e:79:93:c6:8c:19:5d:12:2d:51:81:d4:a1:05:50:ed: f2:e0:de:94:fd:9e:eb:c4:68:c9:ee:db:b2:af:6e:d6:7c:80: e9:91:fc:b9:f2:56:f3:16:16:44:27:a9:be:39:08:96:43:2e: d1:34:0d:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC2MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM5QjQxMTAvBgNVBAUTKDk3QjNERDJBQjNDODlCQzhBMkJCQzFEQjgwM0JDRTY4 RUFBNUFBMTIwHhcNMjUwODA4MTkyNDAwWhcNMjUwODE1MTkyNDAwWjAYMRYwFAYD VQQDEw02ODk2NGVkMC1iODk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0J4wVIFT1FzDjxJb4pRBT8JCWDzEWr5guF9/4XW7WXk0kkm3FB2+mYlW5vu BDqY2c3blHu4gw/Fi3q3bFcuY/Fq7bzALxDwngWpqiQ41rF5EuDdsKU9fRw5I+A2 VJ9tMoYeUQOknhhMj2qSEtditWVbguV4Vzq95Nt6DUANEOhO1gekgYFhTSaerlur oOeY99mvlr/6pzNmIHrIt/+8IkPPTYaYVLOAdqbSzAlKcv7AUVelPPVte53nZ2A2 DcMHs24HdLlKkQHdxJ43XfyR3KxuBkX+LCSQL3GdbIgl/Cr8B7DtZ2Z7uOZdmhni ICzA0NcG2qd1bZO/YMfpvq7vRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIpXHde3 lthcYA2bOV4Lehfirj5kMB8GA1UdIwQYMBaAFJez3SqzyJvIorvB24A7zmjqpaoS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzlCNC8xRUUxODI5RTNE QTExMUVBOEI2N0U5NEZDNEY5QUUwMi9sN1BkS3JQSW04aWl1OEhiZ0R2T2FPcWxx aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w3UGRLclBJbThpaXU4SGJnRHZPYU9xbHFoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzlCNC8xRUUxODI5RTNEQTExMUVBOEI2N0U5NEZDNEY5QUUwMi9sN1BkS3JQSW04 aWl1OEhiZ0R2T2FPcWxxaEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8IL8KnKYPdE4RUH9a4+QySkUyBKWaHmpkUxx3+E/taTHl+6p4uZqr 9d4ojvrjS/xo1MYSKLImza/gft+zg7zVkunBdvcvIN/XnhXUK1tmiVvd4yBarqF3 V242YQK3Gd/qZ98Wp8qgOOAqGRRNqeRfwSzvq9MZuiKb8RGt95Dqg8EHIKEoUj+D DHeg856Xv+8O6zs9QFoDn1PkRSnit/4YUkZjW+1pcOhmERGZ8/LN7mZDz26VzqIo 5yhaMgrK/zmKSbSEcNJFIw55k8aMGV0SLVGB1KEFUO3y4N6U/Z7rxGjJ7tuyr27W fIDpkfy58lbzFhZEJ6m+OQiWQy7RNA1c -----END CERTIFICATE-----Generated at Sun Aug 10 16:07:31 2025 by rpki-client