$ rpki-client -vvf rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft File: lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft (raw, json) Hash identifier: ZVSfbi95J3mwyQQCGzWXxYIS01GChJ/bgB79aGAnEQs= Subject key identifier: E1:46:05:96:B1:21:63:E6:08:75:56:22:CD:56:2D:16:BA:89:04:38 Authority key identifier: 94:70:E7:61:08:06:3E:4F:7C:64:AD:43:D0:76:BC:11:AE:1F:DB:5D Certificate issuer: /CN=A91E41C9/serialNumber=9470E76108063E4F7C64AD43D076BC11AE1FDB5D Certificate serial: 08A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHDnYQgGPk98ZK1D0Ha8Ea4f210.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft Manifest number: 08A3 Signing time: Sun 10 Aug 2025 20:33:22 +0000 Manifest this update: Sun 10 Aug 2025 20:33:22 +0000 Manifest next update: Sun 17 Aug 2025 20:33:22 +0000 Files and hashes: 1: lHDnYQgGPk98ZK1D0Ha8Ea4f210.crl (hash: rn/nEta4K+wnhAjggXWL1YIS/Pic9okrRsC0Kwz0nDk=) 2: 2C74B00CF70011EA8EFF4C67C4F9AE02.roa (hash: tCsERzsAtsk+5phQVU01aXCd1wv6EXGawIRg0i0oP6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.crl rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHDnYQgGPk98ZK1D0Ha8Ea4f210.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2217 (0x8a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E41C9, serialNumber=9470E76108063E4F7C64AD43D076BC11AE1FDB5D Validity Not Before: Aug 10 20:33:22 2025 GMT Not After : Aug 17 20:33:22 2025 GMT Subject: CN=68990212-f2f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:68:e2:97:06:a0:49:c1:56:6d:84:99:38:16: 89:89:f2:0d:ad:a3:29:7c:ea:ac:5f:bb:ea:e0:67: 5c:ff:8f:a6:8f:27:f5:c3:b7:e9:1d:1f:0f:04:a6: 9d:e8:1f:60:48:0d:9b:88:aa:b3:e2:4a:80:11:b8: e8:09:7d:52:d8:2b:7e:c2:65:9b:42:7d:69:37:4c: 7f:fc:f2:23:55:18:60:6c:8e:49:bd:ce:5b:e2:03: 7b:1d:87:57:16:1c:1e:dc:59:25:72:f7:59:3a:1e: 68:b4:30:56:79:76:ff:32:f2:90:a8:9a:55:7e:b1: 9d:4d:4f:e0:5b:5e:a3:08:6a:30:16:44:82:2b:76: 39:e2:db:6f:bb:d0:dd:68:ba:8e:59:0c:7c:d3:9a: 9c:be:e4:7f:6d:6e:11:c6:c2:50:ac:2d:a6:0c:c9: 43:08:5b:ce:24:1f:de:e7:b8:df:dc:be:e6:6b:c0: f3:be:74:7d:c2:0f:21:98:f0:a2:a0:ee:8a:ab:58: 3d:f4:91:dd:e5:da:13:32:5e:ba:a4:33:23:60:c2: 0c:8a:d2:7e:25:0a:e2:68:79:a8:eb:9a:a4:a8:17: 68:0e:41:a5:59:5c:e9:08:7a:e8:a1:4f:f4:e6:10: 02:ea:5e:e2:48:2f:8b:9e:04:d8:22:b3:16:70:22: 95:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:46:05:96:B1:21:63:E6:08:75:56:22:CD:56:2D:16:BA:89:04:38 X509v3 Authority Key Identifier: keyid:94:70:E7:61:08:06:3E:4F:7C:64:AD:43:D0:76:BC:11:AE:1F:DB:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHDnYQgGPk98ZK1D0Ha8Ea4f210.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:ee:d1:e6:f7:93:f3:4a:1a:6d:3f:4f:d4:14:11:c5:9a:6d: 53:a8:60:90:6f:40:46:6b:24:77:a6:0c:ff:71:37:9e:cb:0f: 68:70:15:75:12:bf:66:e4:30:54:b3:ef:1e:ae:a9:58:f0:2f: 9d:56:3e:5d:6b:66:e8:19:c2:fd:28:74:a8:ad:ac:fc:3d:35: 3f:2c:42:58:8e:76:d1:81:39:13:dc:bf:b9:5e:7e:33:f1:52: 45:33:73:1c:e0:ff:c1:a6:8e:af:12:62:78:4f:e4:97:6e:5a: de:81:e0:05:16:a6:f2:9d:88:d4:09:2a:c2:a9:5f:59:41:49: 55:36:fb:1e:83:4d:59:87:d7:90:25:6b:8f:5d:fa:c6:46:c1: bb:8e:f9:85:c7:38:9e:9f:21:06:24:7b:d8:96:34:2e:bb:bd: bc:3e:ba:5c:43:3d:16:bd:ed:3d:20:42:65:2d:17:c9:67:93: 47:1f:4f:9d:0e:20:7b:be:94:cd:cd:46:b2:57:a0:a9:45:22: 6c:1f:ac:a2:72:d2:b1:e6:e8:4b:62:3e:5b:71:ef:67:e7:5a: c8:96:08:60:2f:da:ed:27:bc:71:c1:cc:27:b2:49:87:b0:19: 93:ac:1d:dc:63:bc:12:f5:3f:7a:84:f5:53:60:2d:0a:f1:84: 78:5d:84:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQxQzkxMTAvBgNVBAUTKDk0NzBFNzYxMDgwNjNFNEY3QzY0QUQ0M0QwNzZCQzEx QUUxRkRCNUQwHhcNMjUwODEwMjAzMzIyWhcNMjUwODE3MjAzMzIyWjAYMRYwFAYD VQQDEw02ODk5MDIxMi1mMmYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0GjilwagScFWbYSZOBaJifINraMpfOqsX7vq4Gdc/4+mjyf1w7fpHR8PBKad 6B9gSA2biKqz4kqAEbjoCX1S2Ct+wmWbQn1pN0x//PIjVRhgbI5Jvc5b4gN7HYdX Fhwe3FklcvdZOh5otDBWeXb/MvKQqJpVfrGdTU/gW16jCGowFkSCK3Y54ttvu9Dd aLqOWQx805qcvuR/bW4RxsJQrC2mDMlDCFvOJB/e57jf3L7ma8DzvnR9wg8hmPCi oO6Kq1g99JHd5doTMl66pDMjYMIMitJ+JQriaHmo65qkqBdoDkGlWVzpCHrooU/0 5hAC6l7iSC+LngTYIrMWcCKVvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOFGBZax IWPmCHVWIs1WLRa6iQQ4MB8GA1UdIwQYMBaAFJRw52EIBj5PfGStQ9B2vBGuH9td MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDFDOS80OUJEOURBNkMw RjgxMUVBOEFDNkM0NkNDNEY5QUUwMi9sSERuWVFnR1BrOThaSzFEMEhhOEVhNGYy MTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xIRG5ZUWdHUGs5OFpLMUQwSGE4RWE0ZjIxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDFDOS80OUJEOURBNkMwRjgxMUVBOEFDNkM0NkNDNEY5QUUwMi9sSERuWVFnR1Br OThaSzFEMEhhOEVhNGYyMTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAA7tHm95PzShptP0/UFBHFmm1TqGCQb0BGayR3pgz/cTeeyw9ocBV1 Er9m5DBUs+8erqlY8C+dVj5da2boGcL9KHSoraz8PTU/LEJYjnbRgTkT3L+5Xn4z 8VJFM3Mc4P/Bpo6vEmJ4T+SXblregeAFFqbynYjUCSrCqV9ZQUlVNvseg01Zh9eQ JWuPXfrGRsG7jvmFxzienyEGJHvYljQuu728PrpcQz0Wve09IEJlLRfJZ5NHH0+d DiB7vpTNzUayV6CpRSJsH6yictKx5uhLYj5bce9n51rIlghgL9rtJ7xxwcwnskmH sBmTrB3cY7wS9T96hPVTYC0K8YR4XYTY -----END CERTIFICATE-----Generated at Mon Aug 11 01:48:54 2025 by rpki-client